📋 Microsoft Entra Documentation Changes

Daily summary for changes since November 20th 2025, 7:11 PM PST

Report generated on November 21st 2025, 7:11 PM PST

📊 Summary

16
Total Commits
0
New Files
3
Modified Files
0
Deleted Files
9
Contributors

📝 Modified Documentation Files

MODIFIED docs/identity-platform/reference-native-authentication-api.md
Modified by Derdus Kenga on Nov 21, 2025 9:45 AM
📖 View on learn.microsoft.com
+6 / -6 lines changed
Commit: resolve review comments
Changes:
Before
After
 
1. [Associate your app registration with the user flow](../external-id/customers/how-to-user-flow-add-application.md).
 
1. For sign-in flow, [register a customer user](../external-id/customers/how-to-manage-customer-accounts.md#create-a-customer-account), which you use to test the sign-in API. Alternatively, you can get this test user after you run the sign-up flow.
 
1. For SSPR flow, [enable self-service password reset](../external-id/customers/how-to-enable-password-reset-customers.md) for customer users in the external tenant. SSPR is available for customer users who use email with password authentication method.
 
 
[!INCLUDE [entra-external-id-continuation-token](./includes/native-auth-api/continuation-token.md)]
 
## Sign-up API reference
 
To complete a user sign-up flow for either authentication method, your app interacts with four endpoints, `/signup/v1.0/start`, `/signup/v1.0/challenge`, `/signup/v1.0/continue`, and `/token`.
 
### Sign-up API endpoints
 
| Endpoint | Description |
|-----------------------|--------------------------------------------|
 
[!INCLUDE [native-auth-api-cors-note](./includes/native-auth-api/user-attribute-format.md)]
 
1. [Associate your app registration with the user flow](../external-id/customers/how-to-user-flow-add-application.md).
 
1. For sign-in flow, [register a customer user](../external-id/customers/how-to-manage-customer-accounts.md#create-a-customer-account), which you use to test the flow. Alternatively, you can get this test user after you run the sign-up flow.
 
1. For SSPR flow, [enable self-service password reset](../external-id/customers/how-to-enable-password-reset-customers.md) for customer users in the external tenant. SSPR is available for customer users who use email with password authentication method.
 
 
[!INCLUDE [entra-external-id-continuation-token](./includes/native-auth-api/continuation-token.md)]
 
## API reference for sign-up
 
To complete a user sign-up flow for either authentication method, your app interacts with four endpoints, `/signup/v1.0/start`, `/signup/v1.0/challenge`, `/signup/v1.0/continue`, and `/token`.
 
### API endpoints for sign-up
 
| Endpoint | Description |
|-----------------------|--------------------------------------------|
 
[!INCLUDE [native-auth-api-cors-note](./includes/native-auth-api/user-attribute-format.md)]
MODIFIED docs/identity-platform/concept-native-authentication.md
Modified by Derdus Kenga on Nov 21, 2025 3:01 PM
📖 View on learn.microsoft.com
+3 / -3 lines changed
Commit: add sign in with a username and password feature list
Changes:
Before
After
ms.service: identity-platform
ms.subservice: external
ms.topic: concept-article
ms.date: 08/08/2025
ms.author: cmulligan
 
#Customer intent: As a developer, devops, I want to learn more how to host the user interface (UI) within the client app by using native authentication so that I can take greater control over the UI and experience of my customer apps.
| | Browser-delegated authentication | Native authentication |
| ---- | --- | --- |
| **Sign-up and sign-in with email one-time passcode (OTP)** | :heavy_check_mark: | :heavy_check_mark: |
| **Sign-up and sign-in with email and password** | :heavy_check_mark: | :heavy_check_mark: |
| **Self-service password reset (SSPR)** | :heavy_check_mark: | :heavy_check_mark: |
| **Custom claims provider** | :heavy_check_mark: | :heavy_check_mark: |
| **Social identity provider sign-in** | :heavy_check_mark: | :x: |
| **Multifactor authentication with email one-time passcode (OTP)**| :heavy_check_mark: | :x: |
ms.service: identity-platform
ms.subservice: external
ms.topic: concept-article
ms.date: 11/21/2025
ms.author: cmulligan
 
#Customer intent: As a developer, devops, I want to learn more how to host the user interface (UI) within the client app by using native authentication so that I can take greater control over the UI and experience of my customer apps.
| | Browser-delegated authentication | Native authentication |
| ---- | --- | --- |
| **Sign-up and sign-in with email one-time passcode (OTP)** | :heavy_check_mark: | :heavy_check_mark: |
| **Sign-up and sign-in with email and password** <br> * Sign in with a username and password | :heavy_check_mark: | :heavy_check_mark: |
| **Self-service password reset (SSPR)** | :heavy_check_mark: | :heavy_check_mark: |
| **Custom claims provider** | :heavy_check_mark: | :heavy_check_mark: |
| **Social identity provider sign-in** | :heavy_check_mark: | :x: |
| **Multifactor authentication with email one-time passcode (OTP)**| :heavy_check_mark: | :x: |
MODIFIED docs/external-id/reference-cross-tenant-custom-roles.md
Modified by m-hanisch on Nov 21, 2025 9:13 AM
📖 View on learn.microsoft.com
+2 / -2 lines changed
Commit: Update reference-cross-tenant-custom-roles.md
Changes:
Before
After
 
| Actions |
| ------- |
| microsoft.directory.tenantRelationships/standard/read |
| microsoft.directory/crossTenantAccessPolicy/standard/read |
| microsoft.directory/crossTenantAccessPolicy/default/standard/read |
| microsoft.directory/crossTenantAccessPolicy/partners/identitySynchronization/standard/read |
 
| Actions |
| ------- |
| microsoft.directory.tenantRelationships/standard/read |
| microsoft.directory/crossTenantAccessPolicy/standard/read |
| microsoft.directory/crossTenantAccessPolicy/basic/update |
| microsoft.directory/crossTenantAccessPolicy/default/standard/read |
 
| Actions |
| ------- |
| microsoft.directory/tenantRelationships/standard/read |
| microsoft.directory/crossTenantAccessPolicy/standard/read |
| microsoft.directory/crossTenantAccessPolicy/default/standard/read |
| microsoft.directory/crossTenantAccessPolicy/partners/identitySynchronization/standard/read |
 
| Actions |
| ------- |
| microsoft.directory/tenantRelationships/standard/read |
| microsoft.directory/crossTenantAccessPolicy/standard/read |
| microsoft.directory/crossTenantAccessPolicy/basic/update |
| microsoft.directory/crossTenantAccessPolicy/default/standard/read |

🤖 This report was automatically generated by the Entra Docs Monitor

📧 Delivered to merill@merill.net

🔗 Visit Repository