Entra ID Capability Lifecycle and Support

The UW Entra ID provides a very large number of capabilities crossing many areas. This page lists those capabilities, the lifecycle stage each is in, and our support for them.

The UW Enterprise Architecture (EA) program promotes using specific terms to communicate technology lifecycle status, and we attempt to use their terminology. You may want to consult the UW EA documentation on the intended meaning of these terms.

Lifecycle Support

The following chart can be used to help understand what the lifecycle terms listed for each Entra ID capability mean.

	Not Available	Emerging	Baseline	Containment	Retired
Possible for customers	No	Maybe	Yes	Restricted	No
MI support available	No	No	Yes	Limited	No
MI consulting available	No	Yes	Yes	Yes	No
Requires special licensing	N/A	Maybe	No	Maybe	N/A

Authentication and Credential Management Capabilities

Capability	Component	Support Lifecycle
Authentication	Entra ID Security Token Service	Baseline
Entra ID UW NetID & authentication integration	Entra ID Security Token Service, NETID domain, Entra ID Connect	Baseline
Web app identity (social, id registration, or UW NetID)	AAD B2C	Emerging
Multi-factor authentication	Azure MFA	Baseline Note: requires Microsoft Student/Advanced/Transitional service level.
MFA: Windows Hello for Business (Entra ID join-based)	Entra ID Device Registration Service	Baseline Note: requires Microsoft Student/Advanced/Transitional service level.
Entra ID Self Service Password Reset (SSPR)	Entra ID Access Portal	Not available Baseline for Entra ID-only users
Cloud to on-prem token translation	Entra ID App Proxy	Retired
Per-app logon token issuance based on conditions	Entra ID Conditional Access	Baseline Note: requires Microsoft Student/Advanced/Transitional service level.

Collaboration and Application Management Capabilities

Capability	Component	Support Lifecycle
Entra ID Groups (integrated)	Entra ID Groups, Entra ID Connect, UW Groups Service	Baseline
Entra ID Office groups	Entra ID Groups, Office 365, Azure/Office portals	Baseline (via MSCA)
Entra ID Member private groups	N/A	Not available
Entra ID Group integration for external users	N/A	Not available
Entra ID Groups integration for Office groups	N/A	Not available
Entra ID Self Service/Delegated Group Management	Azure Portal, Entra ID Access Portal, Group owner	Not available Baseline for Office groups
Entra ID Dynamic and Dedicated Groups	Azure Portal	Emerging
Self-service app identity and permission creation	Entra ID Apps, Entra ID Service Principals, Entra ID OAuth server	Baseline
User consent to app access	Entra ID OAuth server	Baseline

Device Management Capabilities

Capability	Component	Support Lifecycle
Entra ID Device Join	Entra ID Device Registration Service	Baseline
Entra ID Device Registration	Entra ID Device Registration Service	Baseline
Cloud-based device provisioning (Autopilot)	Entra ID Device Registration Service, Intune	Baseline (via Managed Workstation)
Entra ID MDM (InTune)	Entra ID Device Registration Service, MDM provider	Not available, may emerge later (via Managed Workstation)

Information Security Capabilities

Capability	Component	Support Lifecycle
Azure Purview (Info Protection & RMS)	Azure Purview, Azure Info Protection, Azure RMS, Azure RMS Connector	Baseline
Entra ID RBAC & Roles, & Admin Units (AUs)	Entra ID Role templates, Entra ID Roles	Baseline
Entra ID Admin Units	Entra ID AUs	Emerging (no AUs yet)
Entra ID Privileged Identity Management	Entra ID PIM	Baseline
Audit information	Entra ID Graph & Log Analytics	Baseline
Audit reporting	Microsoft Graph & Log Analytics	Baseline: CISO & UW Medicine Security
Entra ID Threat Analytics	Entra ID Threat Analytics	Emerging

Enable Cloud Capabilities

Capability	Component	Support Lifecycle
Directory information	Microsoft Graph API	Baseline
Entra ID Directory integration	Entra ID Connect, Microsoft Graph, PS interface	Baseline
External Users	Entra ID B2B	Baseline
Discover what SaaS apps are being used	Entra ID Cloud App Discovery	Not available, may emerge later
Non-modern cloud-based app integration	Entra ID Domain Services	Not available, no plans
Entra ID user based licensing	Microsoft Graph API, Azure Portal, PS interface	Retired
Entra ID Group-based license assignment	Entra ID Group-based licensing	Baseline