Microsoft Lights Up Active Directory Features for Azure Portal

The Azure AD Admin Console, an addition to the Azure Portal, is now generally available (GA) after being in preview since September, Microsoft announced on Monday.

Microsoft has added one new capability to the console since the September preview: the ability to view the applications that a user can access. In the future, Microsoft is planning to add multifactor authentication "provider management" to the console, along with an "Azure AD Domain Services" feature, according to the announcement.

The Azure AD Admin Console's most prominent feature is its dashboard page, showing users and groups, user signs (in graph form), recommended activities and "quick tasks" links (see screenshot).

[Click on image for larger view.] Screenshot of Azure Active Directory Console. (Source: Microsoft blog post.)

The console lets IT pros automate tasks, such as adding or removing users or groups, adding SaaS apps, managing Microsoft licenses and enabling users to reset their passwords, according to a Microsoft video. The console will integrate with Active Directory on premises. There's an ability to set "dynamic membership rules" that will automatically add new users in certain departments to certain groups. Similarly, licenses can be automatically assigned as users are added.

The console also can be used to assign single-sign access to more than 2,000 applications that are preintegrated with Azure AD, as housed in the Azure Application Gallery. It's also possible to enforce multifactor authentication for access to apps.

The console can be used to control which users can automatically reset their passwords. There are drill-down capabilities to see end user application use, as well as license assignments. The "Audit Logs" view can display information about the success of end users in terms of their log-in attempts and ability to access apps.

The console now shows "streams of data with rich filtering and search capabilities" rather than showing reports. The information can be viewed across the organization or at the individual user level, Microsoft's announcement explained. The data also can be pulled into security information and event management (SIEM) applications using an API. Microsoft also released a Power BI content pack for use with the console.

Previous console descriptions by Microsoft had suggested that Azure AD Premium subscriptions were needed, in some cases, to use some of the console's features. Possibly, that's still true, but the announcement suggested otherwise.

"The new portal does not require an Azure subscription, which streamlines access, especially for Office 365 admins, whose lives will be made easier with our new group-based licensing functionality," Microsoft's announcement stated.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.


  • 2022 Microsoft Conference Calendar: For Partners, IT Pros and Developers

    Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss.

  • Datto Goes Private as Its Acquisition by Kaseya Is Finalized

    Kaseya's $6.2 billion acquisition of Datto, in the works for two years, is now complete, taking Datto from a publicly traded company to a private one.

  • Nebula

    Microsoft Expands on AI Face Standardization Rules and Guidelines

    Microsoft on Tuesday announced Version 2 of Microsoft's "Responsible AI Standard" document, which includes a disclosed a use-case approval process for its Azure Face API, Computer Vision, and Video Indexer customers, was released this week.

  • Road with Ocean Image

    Metaverse Standards Forum Created in the Spirit of Cooperation

    More than 30 tech organizations have come together to form the Metaverse Standards Forum, which will work towards standardizing requirements for future metaverse tech.