Entra ID Capability Lifecycle and Support

Last updated: November 15, 2023
Audience: IT Staff / TechnicalDecision Makers

The UW Entra ID provides a very large number of capabilities crossing many areas. This page lists those capabilities, the lifecycle stage each is in, and our support for them.

The UW Enterprise Architecture (EA) program promotes using specific terms to communicate technology lifecycle status, and we attempt to use their terminology. You may want to consult the UW EA documentation on the intended meaning of these terms.

Lifecycle Support

The following chart can be used to help understand what the lifecycle terms listed for each Entra ID capability mean.

Not Available Emerging Baseline Containment Retired
Possible for customers No Maybe Yes Restricted No
MI support available No No Yes Limited No
MI consulting available No Yes Yes Yes No
Requires special licensing N/A Maybe No Maybe N/A

Authentication and Credential Management Capabilities

Capability Component Support Lifecycle
Authentication Entra ID Security Token Service Baseline
Entra ID UW NetID & authentication integration Entra ID Security Token Service, NETID domain, Entra ID Connect Baseline
Web app identity (social, id registration, or UW NetID) AAD B2C Emerging
Multi-factor authentication Azure MFA Baseline
Note: requires Microsoft Student/Advanced/Transitional service level.
MFA: Windows Hello for Business (Entra ID join-based) Entra ID Device Registration Service Baseline
Note: requires Microsoft Student/Advanced/Transitional service level.
Entra ID Self Service Password Reset (SSPR) Entra ID Access Portal Not available

Baseline for Entra ID-only users

Cloud to on-prem token translation Entra ID App Proxy Retired
Per-app logon token issuance based on conditions Entra ID Conditional Access Baseline

Note: requires Microsoft Student/Advanced/Transitional service level.

Collaboration and Application Management Capabilities

Capability Component Support Lifecycle
Entra ID Groups (integrated) Entra ID Groups, Entra ID Connect, UW Groups Service Baseline
Entra ID Office groups Entra ID Groups, Office 365, Azure/Office portals Baseline (via MSCA)
Entra ID Member private groups N/A Not available
Entra ID Group integration for external users N/A Not available
Entra ID Groups integration for Office groups N/A Not available
Entra ID Self Service/Delegated Group Management Azure Portal, Entra ID Access Portal, Group owner Not available

Baseline for Office groups

Entra ID Dynamic and Dedicated Groups Azure Portal Emerging
Self-service app identity and permission creation Entra ID Apps, Entra ID Service Principals, Entra ID OAuth server Baseline
User consent to app access Entra ID OAuth server Baseline

Device Management Capabilities

Capability Component Support Lifecycle
Entra ID Device Join Entra ID Device Registration Service Baseline
Entra ID Device Registration Entra ID Device Registration Service Baseline
Cloud-based device provisioning (Autopilot) Entra ID Device Registration Service, Intune Baseline (via Managed Workstation)
Entra ID MDM (InTune) Entra ID Device Registration Service, MDM provider Not available, may emerge laterĀ (via Managed Workstation)

Information Security Capabilities

Capability Component Support Lifecycle
Azure Purview (Info Protection & RMS) Azure Purview, Azure Info Protection, Azure RMS, Azure RMS Connector Baseline
Entra ID RBAC & Roles, & Admin Units (AUs) Entra ID Role templates, Entra ID Roles Baseline
Entra ID Admin Units Entra ID AUs Emerging (no AUs yet)
Entra ID Privileged Identity Management Entra ID PIM Baseline
Audit information Entra ID Graph & Log Analytics Baseline
Audit reporting Microsoft Graph & Log Analytics Baseline: CISO & UW Medicine Security
Entra ID Threat Analytics Entra ID Threat Analytics Emerging

Enable Cloud Capabilities

Capability Component Support Lifecycle
Directory information Microsoft Graph API Baseline
Entra ID Directory integration Entra ID Connect, Microsoft Graph, PS interface Baseline
External Users Entra ID B2B Baseline
Discover what SaaS apps are being used Entra ID Cloud App Discovery Not available, may emerge later
Non-modern cloud-based app integration Entra ID Domain Services Not available, no plans
Entra ID user based licensing Microsoft Graph API, Azure Portal, PS interface Retired
Entra ID Group-based license assignment Entra ID Group-based licensing Baseline