Entra ID

Microsoft Entra June 2026: Passkeys, Linux MFA, B2C

3 min read

Summary

Microsoft Entra’s June 2026 updates bring major identity improvements across passkeys, phishing-resistant MFA for Linux desktops, and Azure AD B2C migration to External ID. The release also adds cross-tenant group sync, app deactivation, redesigned My Account pages, and new governance features that help IT teams strengthen security and simplify administration.

Need help with Entra ID?Talk to an Expert

Introduction

Microsoft Entra’s June 2026 updates focus on a clear priority for identity teams: stronger phishing-resistant authentication, smoother cross-tenant administration, and lower operational overhead. For IT administrators managing hybrid and multi-platform environments, this release closes several long-standing gaps while adding safer lifecycle and governance controls.

What’s new in Microsoft Entra

Phishing-resistant MFA expands to Linux

Microsoft Entra now supports phish-resistant MFA on Linux desktops through the Microsoft identity broker. Supported platforms include Ubuntu 24.04 and 26.04, plus RHEL 8, 9, and 10. This brings Linux closer to parity with Windows and macOS for secure modern authentication.

Passkey adoption gets a boost

Two important passkey updates arrived:

  • Registration campaigns now support passkeys, including FIDO2, so admins can prompt users to enroll during sign-in.
  • Windows passkey sign-in now supports device-bound passkeys stored in the Windows Hello container, even when the device is not Entra joined or registered.

Easier B2C migration to External ID

High Scale Compatibility (HSC) mode gives large Azure AD B2C tenants a new migration path to Microsoft Entra External ID without forcing password resets or user re-registration. This is aimed at organizations with roughly 5 million or more objects.

Cross-tenant and governance improvements

Several new admin capabilities stand out:

  • Cross-tenant group synchronization for centralized group and membership management across tenants
  • Account discovery for connected apps in Entra ID Governance, including orphaned accounts
  • Automated agent identity sponsorship transitions through Lifecycle Workflows
  • App Deactivation to safely disable applications without deleting them
  • Device Soft Delete to recover deleted device objects during a retention period

User experience and preview features

Microsoft also updated the My Account portal with redesigned Devices, Security Info, and Organizations pages. In preview, admins can test:

  • Domain-less SAML federation for workforce tenants
  • Sensitivity labels for Entra security groups using Microsoft Purview

Why this matters for IT admins

These updates improve both security posture and operational resilience. Linux MFA and passkeys help reduce password and phishing risk, while app deactivation and device soft delete add safer recovery options during incidents or administrative mistakes. Cross-tenant group sync and governance enhancements are especially useful for enterprises managing mergers, partners, or multi-tenant operations.

Next steps

Administrators should review passkey profiles, evaluate Linux desktop support requirements, and identify whether B2C environments may qualify for HSC migration. It’s also a good time to assess app deactivation, device soft delete, and cross-tenant group sync for inclusion in identity governance and incident response processes.

Need help with Entra ID?

Our experts can help you implement and optimize your Microsoft solutions.

Talk to an Expert

Stay updated on Microsoft technologies

Microsoft Entrapasskeysphishing-resistant MFAExternal IDidentity governance

Related Posts

Entra ID

Microsoft Entra Agent ID: Secure AI Agent Access

Microsoft is urging organizations to treat AI agent governance as an immediate identity and access problem, not a future concern. Based on feedback from identity professionals at Identiverse 2026, the company highlights unmanaged agent sprawl, orphaned agents, and weak agent-to-agent controls, while positioning Microsoft Entra Agent ID and Agent 365 as the foundation for inventory, ownership, and policy enforcement.

Entra ID

Microsoft Entra Agent ID Adds AI Agent Governance

Microsoft has announced general availability of agent identity governance capabilities in Microsoft Entra as part of Microsoft Agent 365. The update helps organizations govern AI agents with dedicated identities, named sponsors, access packages, and lifecycle workflows to reduce overprivileged access and improve accountability.

Entra ID

Microsoft Purview and Entra Add Real-Time AI DLP

Microsoft has announced a public preview that extends data protection to the network layer using Microsoft Purview and Microsoft Entra. The integration helps organizations detect and block sensitive data moving to unmanaged SaaS, personal cloud storage, and generative AI apps in real time, reducing data leakage risk before exposure occurs.

Entra ID

Entra PIM Custom Extensions Preview for Role Activation

Microsoft has introduced preview support for custom extensions in Microsoft Entra Privileged Identity Management, allowing organizations to call a REST API during role activation to enforce business-specific rules. This helps IT teams automate checks such as ticket validation, HR status, compliance gates, and on-call logic while improving auditability and reducing manual approval gaps.

Entra ID

Microsoft Entra Backup and Recovery GA Now Available

Microsoft Entra Backup and Recovery is now generally available for customers with Entra ID P1 or P2, bringing built-in recovery for critical identity objects across workforce tenants. The release extends retention from 5 to 7 days and adds more flexibility for snapshots, difference reports, and recovery jobs, helping IT teams respond faster to accidental or malicious changes.

Entra ID

Microsoft Entra AI Security Webinar Series Announced

Microsoft has launched a three-part Microsoft Entra and Purview webinar series focused on securing AI at scale. The sessions cover identity, access, data protection, browser and network controls, and governance for AI agents, giving IT teams practical guidance for safer AI adoption.