Microsoft Entra ID (formerly Azure Active Directory)

Microsoft Entra ID is the core identity and access service in the Microsoft Entra product family. It provides directory, authentication, SSO, application access, Conditional Access, identity protection, provisioning, and governance features for organizations; Azure Active Directory was renamed to Microsoft Entra ID on July 11, 2023.

Key Capabilities

  • Standards-based SSO & Federation: Supports OpenID Connect, OAuth 2.0, SAML** 2.0**, and WS-Federation for apps and enterprise federation.

  • Conditional Access (risk & context): Policy engine for device/user/app/location conditions; risk-based policies integrate with Entra ID Protection.

  • MFA & Passwordless / Passkeys: Built-in MFA and passwordless options including FIDO2/WebAuthn passkeys and Microsoft Authenticator; admin and Graph controls to enable/manage methods.

  • Provisioning & Lifecycle (SCIM 2.0): Microsoft Entra provisioning service automates user/group provisioning to apps via SCIM 2.0.

Limitations

  • Lifecycle/rename impacts: Azure Active Directory was renamed to Microsoft Entra ID (announced July 11, 2023). Teams should verify SKU/feature naming changes in scripts, docs, and procurement.

  • Legacy APIs deprecated: Azure AD Graph and ADAL are retired/deprecated; Microsoft requires migration to Microsoft Graph and MSAL. Plan remediation for any lingering dependencies.

  • Feature licensing tiers: Conditional Access is P1; Identity Protection risk policies and certain governance features are P2. Budget/feature mapping is required.

  • Protocol modernisation: While WS-Federation is supported for compatibility, Microsoft documentation emphasizes modern OIDC/SAML for new apps. Legacy protocol usage can constrain capabilities.

Customer Identity, Simplified.

No Complexity. No Limits.
Thousands of businesses trust LoginRadius for reliable customer identity. Easy to integrate, effortless to scale.

See how simple identity management can be. Start today!
Free Trial
Contact Sales