Microsoft has announced general availability for Azure AD Identity Protection. Alongside that release, Azure AD Privileged Identity Management and Azure Premium P2 are also moving to GA. More specifically, the trio will be made available on September 15. Microsoft announced the availability in a blog post, while also expanding on each service.
The company announced Azure AD Identity Protection earlier in the year. Customers have been accessing the service in the US and Europe in preview. Now the service is rolling out to all users next week.
Microsoft describes Azure AD Identity Protection as a “one of a kind” cloud-based security service. It can analyze 10TB of behavioral and contextual data every day through advanced machine learning.
This high-powered analysis helps customers protect their data and organization from attacks. In talking up the service, Microsoft says it is “unprecedented”.
Identity Protection can give customers reports, risk scores, and alerts to help them understand their security. The focus of the service is to show the risks and stop insecure user access attempts. If someone attempts signing in with leaked credentials or suspicious activity, the service can alert the user.
Microsoft's Graph APIs can be accessed by Identity Protection to give reports on security information nd SIEM solutions. Microsoft describes the following threat data sources:
- User behavior data from 14 billion daily authentication events each day
- Attacker behavior data from millions of attacks each day
- Threat data from applications, industry partners, researchers, law enforcement and industry
- Botnet data from Microsoft's Digital Crimes Unit
- Malware information from the Windows Defender team
Azure AD Premium P2
Another service moving to GA next week is Azure AD Premium P2. This is a new SKU of Azure AD, which expands on Azure AD Premiums P1. It comes with all of the features from the previous release and adds some new ones. For example, Identity Protection and Privileged Identity Management are included.
The service gives organizations more control over privileged access users. Microsoft says there have been numerous attacks where attackers accessed sideways through a privileged account. Azure AD Privileged Identity Management gives admins various tools. They can check privileged users in Azure AD, Office 365, Intune and other services.