Windows 365 Reserve and Windows 365 Boot are two complementary Microsoft cloud services that, when combined, let employees resume work on a preconfigured Cloud PC from any Windows 11 device without additional setup. Windows 365 Reserve provides short-term Cloud PC access for users whose primary physical device is unavailable. Windows 365 Boot redirects the Windows 11 sign-in experience directly to a Cloud PC, though administrators can configure policies to allow users to access the physical device's local OS if needed.

Source

Microsoft Sentinel is Azure's cloud-native SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automated Response) platform. The Codeless Connector Framework (CCF) — formerly known as the Codeless Connector Platform — is the mechanism that enables partners, customers, and developers to build data connectors without writing infrastructure code. The newly public-preview CCF Push feature extends this framework with an event-driven ingestion pattern that sends security data directly to Sentinel as events occur, bypassing the latency inherent in traditional polling. This article explains what CCF Push is, how it differs from pull connectors, which Azure resources it automatically provisions, and how you configure an application to push data using the Log Ingestion API and OAuth 2.0.

Source

Microsoft has announced that moderation approvals in Exchange Online are transitioning from voting buttons to Actionable Messages Adaptive Cards, bringing Approve | Reject buttons directly into email bodies. This update enables moderators to approve or reject messages from any Outlook client, including Windows, macOS, web, and mobile. The rollout begins in late February 2026 and concludes by early April 2026 for Worldwide and GCC environments. The legacy voting button method remains available until July 31, 2026, after which Actionable Messages Adaptive Cards will be the only supported method.

Source

Microsoft has introduced the Microsoft Graph User Configuration API that enables you to manage custom settings and configuration data for user mailboxes in Exchange Online. This preview API provides full CRUD (create, read, update, delete) operations for user configuration objects, allowing you to store application state, settings, and metadata associated with specific mail folders. This guide shows you how to access and use this API with PowerShell.

Source

Microsoft Purview Data Security Investigations became generally available in January, providing data security teams with AI-powered tools to identify, investigate, and mitigate sensitive data risks across Microsoft 365 environments. The solution addresses the challenge of managing 220 zettabytes of organizational data while facing over 12,000 confirmed breaches annually by streamlining investigations that previously took weeks or months into hours.

Source

Microsoft announced the general availability (GA) of centralized RDP Shortpath configuration using Intune and Group Policy (GPO). RDP Shortpath is a UDP-based direct transport protocol that establishes connections between Remote Desktop clients and session hosts, reducing latency and improving reliability for Azure Virtual Desktop and Windows 365 Cloud PCs. You can now centrally configure this feature using Group Policy and Microsoft Intune, eliminating the need for manual per-host configuration.

Source

Starting March 2026, Microsoft Entra ID will introduce passkey profiles and synced passkeys to general availability, enabling group-based authentication configurations with granular control over device-bound and synced passkeys. Microsoft will automatically enable passkey profiles for tenants that don't opt in during the initial rollout, with existing settings preserved to maintain their current security posture.

Source

Microsoft has introduced trust-based enhancements to the Teams Admin Center (TAC), designed to simplify app security and compliance management for IT administrators. These updates, known as Trust Through Certification, enable you to quickly identify trusted applications, enforce organizational standards, and streamline governance workflows through features such as "apps to consider allowing," security compliance filters, and Microsoft-certified app collections. The enhancements build on existing foundational features while adding dedicated trust indicators that consolidate security signals in a centralized dashboard. You can now evaluate apps based on industry-standard certifications without leaving the Teams Admin Center, reducing the time spent on manual reviews and cross-checking vendor documentation.

Source

Microsoft just announced the Security Baseline for Microsoft 365 Apps for enterprise version 2512 ( (v2512, December 2025) as part of the Microsoft Security Compliance Toolkit. This security configuration package aligns with Administrative Templates released in version 5516 and introduces updated policies designed to strengthen protections in Excel, PowerPoint, and core Microsoft 365 Apps components. You can deploy these Microsoft-recommended security configurations through multiple methods including Office cloud policies, Microsoft Intune, or Group Policy to reduce configuration drift and ensure consistent protection across enterprise environments.

Source

Microsoft introduced a new PowerShell parameter, ExcludeFromAllHolds, that simplifies removing multiple retention holds from inactive mailboxes in Exchange Online. This capability enables you to remove various retention holds from inactive mailboxes while preserving essential compliance protections such as eDiscovery holds and litigation holds.

Source

Microsoft announces the general availability of the Azure Test Run Hub, which delivers a new interface for managing test execution in Azure DevOps Test Plans.

Source

Microsoft will transition Microsoft Entra identity services from DigiCert Global Root G1 to G2 certificates on January 7, 2026. Organizations that do not prepare for this change risk authentication failures across their Microsoft 365 and Azure environments.

Source

The Azure Developer CLI (azd) December 2025 release delivers substantial improvements centered on extension capabilities and developer workflow enhancements. The update introduces a powerful extension framework with custom configuration properties, support for interactive mode via Text User Interfaces, and distributed tracing for improved observability. User experience improvements include an interactive environment selector, faster provisioning progress updates with polling reduced from 10 seconds to 3 seconds, and clearer error messages for configuration issues. The release also adds flexible configuration options, such as support for azure.yml as an alternative filename and integrated access to the template gallery within initialization commands. Additionally, the update includes comprehensive bug fixes for Container Apps, Azure Pipelines, and deployment workflows, along with Microsoft Foundry rebranding throughout the platform.

Source

Microsoft offers organizations two on-premises options for email and collaboration: Microsoft 365 Local and Exchange Server Subscription Edition (Exchange SE). While both solutions deliver on-premises productivity capabilities, they differ fundamentally in architecture, scope, and target use cases.

Source

Microsoft has clarified the key differences between its one-time purchase Office 2024 and the subscription-based Microsoft 365 suite in an official support document. The comparison helps users understand the trade-offs between a single upfront payment for static software and ongoing subscription fees for continuously updated services.

Source

Recent Microsoft Entra and Windows updates introduce multiple changes across authentication, identity management, and access control. The updates include an option to replace the legacy EdgeHTML WebView with the Chromium-based WebView2 for Entra ID authentication flows, improved identity constructs for AI agents, public preview support for synced passkeys, and expanded self-service account recovery. Additional changes cover jailbreak detection in Microsoft Authenticator, enforcement of a stricter Content Security Policy for browser-based sign-ins, updates to session revocation behavior, and new capabilities in Entra ID Governance, External ID, and Global Secure Access.

Source

Microsoft Entra PowerShell is a module that lets administrators manage and automate Microsoft Entra ID resources—such as users, groups, applications, and policies—via PowerShell, built on and interoperable with the Microsoft Graph PowerShell SDK. ​Microsoft released version 1.1.0 of the Entra PowerShell module, introducing compatibility improvements and new filtering parameters for device and service principal management. The update removes version restrictions for Microsoft Graph PowerShell and adds functionality for administrators managing identity resources.

Source

Microsoft launched the new Azure Network Security Hub, providing a centralized interface for managing Azure Firewall, Web Application Firewall, and DDoS Protection services. The hub expands and rebrands Azure Firewall Manager to reflect broader network security capabilities.

Source