BOOK OF NEWS

Welcome to Microsoft Ignite, the annual event that showcases the updates and creations that empower customers, partners and developers to utilize the full potential of Microsoft technology and change the way people and organizations tackle work.

This year’s Microsoft Ignite will focus on exploring the complete lifecycle of AI, creating tools and solutions to drive the next generation of digital transformation as organizations push themselves to unlock creativity and innovation.

More than 200,000 people have registered to join us at Ignite this year, with more than 20,000 in attendance at our events in San Francisco. Attendees can choose from more than 400 sessions, demos and expert-led labs from Microsoft and our partners. Much of the Ignite content will be available on demand for those unable to attend live.

The Book of News is your handy guide to our announcements, crafted to highlight our most current updates and deliver key insights into the topics you find most compelling. Please feel free to share your feedback as we want to ensure you receive the information and context you seek from this event.

fxs

Microsoft Ignite, the tech giant’s annual showcase, kicks off with a spotlight on the evolving landscape of AI and its role in driving digital transformation across industries. With more than 200,000 registrants and 17,000 attendees converging in San Francisco, the event offers over 400 sessions, demos and labs led by Microsoft and its partners. This year, Ignite emphasizes empowering organizations to unlock creativity and innovation through cutting-edge solutions. For those unable to attend in person, much of the content will be available on demand. Attendees and viewers can turn to the Book of News for a comprehensive guide to the latest announcements and industry insights, ensuring everyone stays informed on Microsoft’s newest developments.

Microsoft Ignite kicks off with a spotlight on the full AI lifecycle, unveiling innovations designed to fuel the next wave of digital transformation for businesses and developers alike. With over 200,000 registrants and 17,000 attendees gathering in San Francisco, participants can dive into 400+ sessions, demos, and hands-on labs led by Microsoft and partners. Even if you can't attend in person, much of the content is available on demand. For a comprehensive look at the latest announcements and insights, the Book of News serves as your go-to resource—setting the stage for a dynamic, feedback-driven event that aims to redefine how organizations harness Microsoft technology.

Microsoft Ignite kicks off with a bold focus on the full lifecycle of AI, unveiling tools and solutions designed to spark the next wave of digital transformation. Over 200,000 registrants—17,000 in San Francisco alone—are set to explore more than 400 sessions, demos, and hands-on labs, all crafted to empower builders, developers, and partners to unlock creativity and innovation. Even if you can’t attend in person, much of the content is available on demand, ensuring everyone can tap into the latest updates. Dive into the Book of News for a curated guide to this year’s key announcements and insights, all aimed at helping you build what’s next with Microsoft technology.

The Microsoft Ignite 2025 Book of News is your guide to key news items that we are announcing at Microsoft Ignite. The interactive Table of Contents gives you the option to select the items you are interested in, and the translation capabilities make the Book of News more accessible globally (just click the Translate button below the Table of Contents to enable translations).

We pulled together a folder of imagery related to a few of the news items – please take a look at the imagery here. To watch keynotes and sessions related to news items, we have links below many of the news items to give you quick access to upcoming sessions and on-demand videos.

We hope the Book of News provides all the information, executive insight and context you need. If you have any questions or feedback regarding content in the Book of News, please email [email protected].

If you are interested in speaking with an industry analyst about news announcements at Microsoft Ignite or Microsoft’s broader strategy and product offerings, please contact [email protected].

Microsoft unveils the Ignite 2025 Book of News, delivering a centralized hub for all major announcements at its annual tech conference. Readers can navigate an interactive Table of Contents, access global translation features, and browse a curated folder of imagery tied to select news items. Quick links beneath each announcement offer seamless entry to keynotes and session videos, ensuring attendees stay informed with executive insights and context. For questions or media inquiries, Microsoft provides dedicated contact channels for feedback and analyst discussions, underscoring its commitment to transparency and engagement throughout the event.

Dive into the Microsoft Ignite 2025 Book of News for instant access to all major announcements and updates, enhanced with an interactive Table of Contents and global translation features. Explore curated imagery highlighting key developments, and jump into related keynotes and sessions via convenient links for both live and on-demand viewing. Designed to deliver executive insights and essential context, the Book of News ensures you stay informed and connected. For questions, feedback, or to connect with industry analysts about Microsoft’s strategy, dedicated contact options are readily available.

Dive into the Microsoft Ignite 2025 Book of News for a curated guide to all the major announcements and innovations revealed at the event. Navigate with an interactive Table of Contents and enable instant translations for global accessibility. Enhance your experience by exploring a dedicated imagery folder and accessing direct links to keynotes and sessions, whether live or on-demand. Comprehensive executive insights and context ensure you stay informed, while dedicated contacts are available for feedback or deeper industry analysis. Start building your knowledge with everything you need, all in one place.

As agents get added to every workflow and become more capable, IT leaders are facing a dilemma of how to accelerate innovation without introducing risk or rebuilding their entire infrastructure. Microsoft Agent 365 will extend the infrastructure for managing users to agents — helping organizations govern agents responsibly and at scale. Agent 365 is available now in Microsoft 365 admin center with the Frontier program, Microsoft’s early access program for the latest AI innovations.

Agent 365 includes Microsoft’s leading security and productivity solutions: Microsoft Defender, Microsoft Entra and Microsoft Purview to protect and govern agents; Microsoft 365 apps such as Word, Excel, Outlook and Work IQ to provide work context and accelerate productivity; and Microsoft 365 admin center to manage agents.

Here are the core capabilities of Agent 365:

• Registry: Get the complete view of all agents in your organization, including agents with agent ID, agents you register yourself and shadow agents.
• Access control: Bring agents under management and limit their access only to resources they need. Prevent agent compromise with risk-based conditional access policies.
• Visualization: Explore connections between agents, people and data, and monitor agent behavior and performance in real time to assess their impact on your organization.
• Interoperability: Equip agents with apps and data to simplify human-agent workflows. Connect them to Work IQ to provide context of work to onboard into business processes.
• Security: Protect agents from threats and vulnerabilities; detect, investigate and remediate attacks that target agents. Protect data that agents create and use from oversharing, leaks and risky agent behavior.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news
• Breakout: Scale your human + AI workforce with secure, productive agents
• Breakout: Build Your next Autonomous AI Agent with Enterprise Grade Tools
• Breakout: Empower your AI Workforce: Find, Onboard & Manage Agents of Tomorrow

Microsoft is rolling out Agent 365, an extension of an existing infrastructure that you already use, designed to help IT leaders manage and secure AI agents as they become integral to workplace operations. Available now in the Microsoft 365 admin center through Frontier early access program for AI innovations, Agent 365 brings together top security tools including Defender, Entra and Purview, alongside productivity apps like Word and Outlook. Core features include a registry for tracking agents, robust access controls, real-time visualization of agent activities, and interoperability with business workflows. By streamlining governance and protection for AI agents, Microsoft aims to accelerate innovation without compromising security or requiring a complete infrastructure overhaul.

Microsoft introduces Agent 365, designed to help IT leaders manage, govern, and secure AI agents at scale without overhauling existing infrastructure. Now available in the Microsoft 365 admin center through the Frontier early access program for AI innovations, Agent 365 integrates robust security tools like Microsoft Defender, Entra, and Purview to safeguard agents, while productivity apps such as Word and Outlook boost workflow efficiency. Core features include a comprehensive agent registry, risk-based access controls, real-time visualization of agent activity, seamless app interoperability, and advanced security measures to detect and mitigate threats. Discover how Agent 365 empowers organizations to innovate confidently while protecting both data and productivity.

Microsoft unveils Agent 365, designed to seamlessly integrate AI agents into enterprise workflows while maintaining governance, security, and productivity. Available now in the Microsoft 365 admin center through Frontier early access program for AI innovations, Agent 365 empowers IT leaders to manage agents at scale without overhauling existing infrastructure. Key features include registry tracking for all agents, granular access control, real-time visualization of agent interactions, and interoperability with Microsoft 365 apps like Word and Outlook. Enhanced security measures—powered by Defender, Entra, and Purview—safeguard agents and organizational data against threats, leaks, and risky behaviors.

To help sales teams scale their selling capacity, Microsoft is introducing the Sales Development Agent, now available through the Frontier program. It’s a fully autonomous sales agent that will research, qualify and engage leads during and after business hours to drive revenue growth. Features include:

• Revenue and pipeline growth: The agent will research prospects, craft personalized outreach and automatically follow up to ensure no lead is left behind.
• Scalability: The agent will be able to work independently, with the ability to hand off leads to human sellers if needed.
• Security and governance: Built on Microsoft’s trusted security and compliance foundation, the Sales Development Agent will come ready to use with the security, governance and productivity tools in Agent 365 right out of the box.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news
• Keynote: Opening Keynote
• Breakout: Accelerate Revenue and Seller Productivity with Agentic Sales

Microsoft is launching the Sales Development Agent through its Frontier program, aiming to boost sales teams’ capacity with an autonomous, AI-powered solution. This agent researches prospects, crafts tailored outreach and follows up, ensuring leads are engaged. Designed for scalability, it can operate independently or hand off leads to human sellers, all while leveraging Microsoft’s security and compliance framework in Agent 365. With immediate integration of productivity and governance tools, the Sales Development Agent promises to accelerate revenue growth and streamline seller workflows. Additional resources, including a blog, keynote, and innovation session, offer deeper insights into this new technology.

Microsoft launches the fully autonomous Sales Development Agent via the Frontier program, empowering sales teams to scale operations and maximize revenue. By researching prospects, personalizing outreach, and following up, the agent ensures no lead slips through the cracks. Designed for seamless scalability, it operates independently yet hands off high-potential leads to human sellers when needed. With robust security and compliance, the agent is enabled with Agent 365, providing instant access to productivity and governance tools. Explore further insights through Microsoft’s blog, downloadable visual assets, and sessions on innovation and agentic sales.

Microsoft unveils the Sales Development Agent, a fully autonomous sales tool available via the Frontier program, designed to help teams boost revenue and pipeline growth. By researching prospects, crafting personalized outreach, and ensuring consistent follow-ups—even after hours—this agent ensures no lead slips through the cracks. Built on Microsoft’s robust security and compliance framework, it is enabled with Agent 365, delivering scalability and governance from day one. Human sellers can easily step in when needed, making it a flexible solution for modern sales teams. Explore blog updates, keynote sessions, and downloadable visual assets to dive deeper into this innovative offering.

Agents in Microsoft Teams channels can now work with third-party apps and agents via Model Context Protocol (MCP) servers, such as GitHub, Asana and Atlassian (Jira). This update is available in preview. For example, a user can ask the agent in a channel about blockers and mitigation plans for an upcoming product launch, and the agent will pull risks directly from Jira and then schedule a meeting with the team to discuss a mitigation plan. By connecting with other apps and agents, agents in Teams channels will enable human-agent teamwork and collaboration.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news

Microsoft Teams channels now allow agents to collaborate with third-party apps and agents—including GitHub, Asana and Atlassian’s Jira—using Model Context Protocol (MCP) servers, in a newly launched preview. This integration empowers users to query agents for project blockers and mitigation plans, with agents able to pull real-time risk data from platforms like Jira and automatically coordinate meetings to address concerns. By bridging Teams with external tools, Microsoft aims to foster deeper teamwork and streamline collaboration between humans and AI agents. More details are available on the company’s blog.

Teams agents just leveled up: now, thanks to Model Context Protocol (MCP) servers, they can collaborate with third-party apps like GitHub, Asana, and Atlassian (Jira) right inside your channels. Available in preview, this integration lets users query agents for project blockers, instantly pull risks from Jira, and even schedule follow-up meetings—all within Teams. Seamless connections between agents and external platforms unlock new possibilities for human-agent teamwork and smarter collaboration. Discover more in the official announcement blog.

Agents in Microsoft Teams channels can now seamlessly collaborate with third-party apps like GitHub, Asana, and Jira through Model Context Protocol (MCP) servers, now available in preview. Imagine asking an agent about blockers for a product launch—risks are pulled straight from Jira, and a meeting with the team is scheduled in moments. This integration empowers agents to coordinate tasks, surface critical insights, and facilitate teamwork between humans and AI across your favorite tools. Explore the blog for more on how this update transforms channel collaboration.

Three new agents — Workforce Insights, People and Learning Agents, all powered by Work IQ — are now available to help redefine the employee experience. Work IQ is the intelligence layer powering Microsoft 365 Copilot and agents. Together, these agents will help simplify workforce management, strengthen employee connections and accelerate upskilling across the organization. They are:

• Workforce Insights Agent: This agent will give leaders and delegates a real-time, comprehensive view of their organization across roles, tenure, location and other attributes, supporting faster, data-driven workforce decisions.
• People Agent: This agent will help users find people in their organization based on role, function or skill and offer tailored suggestions on how to connect with colleagues based on previous interactions.
• Learning Agent: This agent will deliver personalized microlearning experiences, tailored tips and curated courses to help employees build role-specific and AI skills, with content sources configurable to team goals.

These agents are available in the Frontier program.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news

Microsoft rolls out three new AI-powered agents—Workforce Insights, People Agent and Learning Agent—designed to transform employee engagement and development. Built on the Work IQ intelligence layer that powers Microsoft 365 Copilot, these tools offer leaders real-time organizational analytics, streamline colleague connections and deliver tailored microlearning experiences. The Workforce Insights Agent enables rapid, data-driven decisions by providing a comprehensive workforce overview, while the People Agent helps users find and connect with coworkers through personalized suggestions. Meanwhile, the Learning Agent delivers curated courses and role-specific AI skills to support employee growth. The agents debut in the Frontier program, signaling a new era in workforce management.

Three new Work IQ-powered agents—Workforce Insights, People, and Learning—are now live, poised to transform the employee experience within Microsoft 365 Copilot. Workforce Insights delivers leaders real-time, granular visibility across organizational roles, tenure, and locations, enabling swifter, data-driven decisions. Meanwhile, the People Agent streamlines colleague discovery, offering personalized connection suggestions based on prior interactions. For professional growth, the Learning Agent curates microlearning, role-specific tips, and AI skill-building courses, all adaptable to team objectives. These innovations are available through the Frontier program, enabling a smarter, more connected, and agile workplace.

Three new agents—Workforce Insights, People, and Learning—powered by Work IQ, have launched to transform how organizations build employee experiences. Workforce Insights Agent enables leaders to access real-time data across roles and locations, streamlining strategic decisions. Meanwhile, the People Agent makes it easier to discover colleagues by role or skill, offering smart connection suggestions based on prior interactions. Rounding out the trio, the Learning Agent delivers personalized microlearning journeys and curated courses, fostering rapid upskilling and AI proficiency. Available now through the Frontier program, these agents are set to simplify management, boost collaboration, and accelerate growth for teams.

The Teams Admin Agent in the Microsoft Teams admin center, now in preview, allows IT admins to automate and streamline administrative tasks. This agent can autonomously and securely execute workflows like meeting monitoring and user provisioning. By automating recurring or complex tasks, this agent allows IT admins to provide faster, more consistent support without additional time burdens and with fewer user issues. With uniform application of policies and strengthened compliance, agent delegation also helps minimize compliance risks.

Additional resources:

• Email: Contact the Microsoft Media and Analyst Events Team for more information

Microsoft unveils the Teams Admin Agent in preview, offering IT administrators a powerful tool to automate and streamline tasks within the Teams admin center. The agent securely executes workflows such as meeting monitoring and user provisioning, reducing manual burdens while improving consistency and speed of support. By automating complex, recurring operations, organizations benefit from uniform policy enforcement and enhanced compliance, helping to lower risks tied to manual errors. Additional insights and resources are available on Microsoft’s official blog and in dedicated sessions.

Teams Admin Agent debuts in preview mode within Microsoft Teams admin center, empowering IT admins to automate vital workflows like meeting monitoring and user provisioning. Autonomous execution ensures faster, more consistent support, reducing both manual effort and user issues. Enhanced policy enforcement and compliance tracking help minimize risks, while agent delegation streamlines operations across the board. Explore the official blog for deeper insights and upcoming sessions to maximize this tool’s potential.

Microsoft introduces the Teams Admin Agent in preview, empowering IT admins to automate and streamline tasks within the Teams admin center. By handling workflows such as meeting monitoring and user provisioning autonomously and securely, the agent reduces manual effort and boosts support speed. Automation ensures consistent policy application, enhances compliance, and minimizes risks, freeing up IT teams to focus on innovation rather than routine management. Dive into the official blog and sessions for deeper insights on harnessing this new tool.

The SharePoint Admin Agent, now in preview, in the SharePoint admin center uses AI-driven insights and automation to help IT admins maintain a secure, compliant and cost-efficient environment. It assists in monitoring inactive or ownerless sites, overshared content and permissions sprawl, then applies policies or automated actions such as archiving or access adjustments. The agent also provides visibility into sites with the highest agentic (AI-driven) activity, enabling proactive governance as Microsoft Copilot adoption grows. By automating manual tasks, it reduces operational overhead, mitigates security and compliance risks, and optimizes storage costs, delivering governance that scales with the organization.

Additional resources:

• Blog: Learn more about this news

SharePoint Admin Agent enters preview in the SharePoint admin center, harnessing AI to streamline security and compliance for IT admins. The tool tracks inactive or ownerless sites, overshared content and permission sprawl, then initiates automated actions like archiving and access adjustments. Enhanced visibility into sites with the most AI-driven activity prepares organizations for increased Microsoft Copilot adoption, while proactive governance reduces manual workload and operational costs. By automating routine tasks and optimizing storage, the agent helps organizations scale governance efficiently, mitigating risks and supporting compliance as environments grow.

SharePoint Admin Agent enters preview, bringing AI-powered insights and automation to the SharePoint admin center. IT admins can now easily spot and manage inactive or ownerless sites, overshared content, and sprawling permissions, with the agent applying policies or automating tasks like archiving and access changes. Enhanced visibility into high-activity sites supports proactive governance, especially as Microsoft Copilot usage expands. By streamlining manual work, this tool reduces operational overhead, strengthens security and compliance, and keeps storage costs in check—delivering scalable governance for growing organizations.

Introducing the SharePoint Admin Agent—now in preview—bringing AI-powered automation to the SharePoint admin center. IT teams gain tools to monitor inactive or ownerless sites, control overshared content, and curb permissions sprawl with automated policies for archiving and access. Enhanced visibility into high-activity sites empowers proactive governance, especially as Microsoft Copilot adoption accelerates. By streamlining manual tasks, the agent reduces operational overhead, strengthens security and compliance, and cuts storage costs. Scalable governance meets evolving organizational needs, making SharePoint management smarter and more efficient. Dive deeper in the official blog and dedicated sessions.

In preview by March 2026, Copilot Chat will provide even more value in Outlook, Word, Excel and PowerPoint for users without a Microsoft 365 Copilot license.

Copilot Chat in Outlook will be content aware across a user’s entire inbox, calendar and meetings, instead of only individual email threads. Users will be able to triage their inbox, schedule and prepare for upcoming meetings, and surface insights and actions across their inbox and calendar to stay ahead.

Agent Mode in Word, Excel and PowerPoint will also be available with standard access. Users will be able to work iteratively with Copilot as it helps orchestrate multistep tasks to deliver high-quality documents, spreadsheets and presentations. Agent Mode in Copilot Chat will use web data and referenced files to help users create and refine content in their apps.

Additional resources:

• Email: Contact the Microsoft Media and Analyst Events Team for more information
• Download: Visual assets related to this news

Copilot Chat is set to launch in preview by March 2026, expanding its capabilities in Outlook, Word, Excel and PowerPoint for users without a Microsoft 365 Copilot license. In Outlook, the AI assistant will analyze entire inboxes, calendars and meetings, enabling users to efficiently triage emails, prep for meetings and extract key insights. Meanwhile, Agent Mode in Word, Excel and PowerPoint provides iterative collaboration, guiding users through multi-step tasks to produce polished documents, spreadsheets and presentations. By leveraging web data and referenced files, Copilot Chat aims to streamline content creation and refinement across Microsoft’s productivity suite.

Copilot Chat is set to launch in preview by March 2026, expanding powerful AI assistance in Outlook, Word, Excel, and PowerPoint—even for users without a Microsoft 365 Copilot license. In Outlook, enhanced content awareness across inbox, calendar, and meetings will enable smarter triage, scheduling, and actionable insights. Meanwhile, Agent Mode in Word, Excel, and PowerPoint brings iterative, multi-step task orchestration to everyone, leveraging web data and files for richer, more refined documents, spreadsheets, and presentations. These upgrades will help streamline workflows and unlock new productivity for users across the Microsoft ecosystem.

By March 2026, Copilot Chat enters preview, unlocking powerful AI features in Outlook, Word, Excel, and PowerPoint for users without a Microsoft 365 Copilot license. In Outlook, Copilot Chat becomes content aware across your entire inbox, calendar, and meetings, making it easier to triage emails, prep for meetings, and surface actionable insights. Meanwhile, Agent Mode arrives in Word, Excel, and PowerPoint, enabling iterative, multi-step collaboration with Copilot to craft high-quality documents, spreadsheets, and presentations. Leveraging web data and referenced files, Agent Mode streamlines content creation and refinement across your favorite Microsoft apps—no premium license required.

Microsoft 365 Copilot will feature dedicated Word, Excel and PowerPoint Agents — available through the Frontier program — that can create high-quality Office content directly from Microsoft 365 Copilot Chat. Simply type a prompt, and these agents will ask targeted follow-up questions to tailor the output to a user’s goals in creating documents, spreadsheets and presentations. The agents will be able to handle tasks like research, formatting and layout design.

Users will be able to iterate through multiturn conversations or easily transition to the apps to continue editing with Copilot. Each agent will be grounded in web data for broad knowledge. Word and PowerPoint Agents will include Work IQ, enabling advanced reasoning across files, meetings, emails and organizational knowledge for high-quality, relevant results. Agent capabilities will include:

• Excel Agent: Turns data into charts, summaries and insights using built-in formulas and logic — helpful for forecasts, project plans and decision-making tools.

• Word Agent: Organizes complex information into clear, well-written documents — ideal for strategic plans, policy write-ups and technical papers.

• PowerPoint Agent: Builds presentations with storytelling and visual structure — helpful for executive decks, strategic updates and market overviews.

Early access is available through the Frontier program for Microsoft 365 Copilot licensed customers and will be coming soon to Frontier for Microsoft 365 Personal, Family and Premium subscribers.

Additional resources:

• Blog: Introducing Word, Excel, and PowerPoint Agents in Microsoft 365 Copilot
• Breakout: Innovation Session: Microsoft 365 Copilot: AI Built For Work
• Breakout: What’s new in Microsoft 365 Copilot Chat: Secure AI chat for everyone

Microsoft 365 Copilot is introducing specialized Word, Excel and PowerPoint Agents, now available via the Frontier program, that generate high-quality Office content directly from Copilot Chat. By simply entering a prompt, users engage in dynamic multi-turn conversations, with agents asking targeted follow-up questions to fine-tune documents, spreadsheets or presentations. Each agent leverages web data for broad knowledge and offers advanced features; Word and PowerPoint Agents include Work IQ for deep reasoning across files and meetings. Excel Agent transforms raw data into actionable charts and insights, Word Agent crafts organized, well-written documents, and PowerPoint Agent creates compelling presentations. Early access is rolling out for licensed Copilot customers, with broader availability coming soon for Personal, Premium and Family subscribers.

Microsoft 365 Copilot introduces specialized Word, Excel, and PowerPoint Agents through the Frontier program, enabling users to craft high-quality Office content directly from Copilot Chat. By simply entering a prompt, these AI-powered agents engage in targeted follow-up questions to personalize documents, spreadsheets, and presentations. Each agent handles research, formatting, and layout, while Word and PowerPoint Agents leverage Work IQ for advanced reasoning across organizational knowledge. Excel Agent transforms data into actionable insights, Word Agent streamlines complex information, and PowerPoint Agent creates compelling presentations. Early access is now available for Copilot-licensed customers, with expansion to Personal, Family, and Premium subscribers coming soon.

Microsoft 365 Copilot introduces dedicated Word, Excel, and PowerPoint Agents—available first through the Frontier program—that create polished documents, spreadsheets, and presentations directly from Copilot Chat. Users simply enter a prompt, and the agents ask smart follow-up questions to fine-tune content, handling everything from research and formatting to layout design. With multi-turn conversations and seamless handoff to native apps, these AI-powered agents draw on web data and, for Word and PowerPoint, leverage Work IQ for deeper reasoning across files, meetings, and emails. The Excel Agent transforms raw data into charts and insights; Word Agent crafts clear, strategic documents; and PowerPoint Agent builds visually compelling presentations. Early access rolls out now for Copilot-licensed customers, with broader availability for Personal, Family, and Premium subscribers coming soon.

Agent Mode was recently introduced in Excel and Word, enabling Copilot to iteratively create, edit and format content directly within the apps. This capability has now been expanded to PowerPoint, and existing Agent Mode features in Excel and Word have been enhanced for more powerful in-app collaboration.

Early access to Agent Mode in PowerPoint, available through the Frontier program, will bring co-creating to an app many users rely on to design and deliver presentations. Working natively in PowerPoint, Agent Mode will be able to update existing decks using an organization’s branded template. Users will be able to iterate with Agent Mode to create new slides, rewrite and format text, insert and style tables, add images and rearrange content. Agent Mode will also be able to draw context from work data — files, meetings and emails — and combine it with web sources to create presentations. Agent Mode in PowerPoint is available through the Frontier program on the Insiders Beta Channel for Windows.

Agent Mode in Excel is also now available through the Frontier program across web and desktop platforms including Windows and Mac. Users will be able to easily bring external data into workbooks with an integrated web search capability. Users will also be able to choose between Anthropic and OpenAI reasoning models, offering flexible output generation. Agent Mode in Excel is available through the Frontier program for Microsoft 365 Copilot licensed customers and Microsoft Personal and Premium subscribers.

Agent Mode in Word, now generally available for Microsoft 365 Copilot and Microsoft 365 Premium subscribers, can now use Work IQ to automatically select relevant sources like files, emails and meetings, ensuring documents reflect the latest and contextually accurate information. The capability is available for both web and desktop apps, including Mac.

Additional resources:

• Blog: Microsoft Ignite 2025: Copilot and agents built to power the Frontier Firm
• Breakout: Innovation Session: Microsoft 365 Copilot: AI Built For Work
• Breakout: Agentic productivity in Microsoft 365 apps and Copilot Chat

Agent Mode, Microsoft’s AI-powered Copilot feature, is expanding its reach in PowerPoint, Excel and Word, creating a new era of in-app collaboration and content creation. With early access now available for PowerPoint via the Frontier program, users can co-create presentations, update decks using branded templates, and draw context from organizational data and web sources—all natively within the app. Enhanced Agent Mode in Excel introduces integrated web search, external data import, and the option to choose between Anthropic and OpenAI models, available for both web and desktop users. Meanwhile, Word’s Agent Mode leverages Work IQ to automatically source up-to-date information from files, emails and meetings, ensuring documents remain accurate. These updates are rolling out for Microsoft 365 Copilot licensed customers and subscribers, further integrating AI into everyday workflows.

Agent Mode, Copilot’s iterative content creation feature, now powers PowerPoint alongside enhanced tools in Excel and Word. With early access via the Frontier program, PowerPoint users can co-create presentations, update decks with branded templates, and leverage organizational data and web sources for dynamic slides—all natively within the app. Excel’s Agent Mode, available on web and desktop for Copilot and Premium subscribers, introduces integrated web search for seamless external data import and lets users choose between Anthropic and OpenAI models for tailored analysis. Word’s Agent Mode, now generally available, uses Work IQ to automatically pull context from files, emails, and meetings, ensuring documents stay accurate and up-to-date across web and desktop platforms.

Agent Mode transforms how users build content in Microsoft 365, now extending its iterative Copilot-powered features from Excel and Word to PowerPoint. With early access via the Frontier program, PowerPoint users can co-create presentations, update decks with branded templates, and seamlessly integrate slides, tables, images, and content sourced from work data and the web. Excel users benefit from integrated web search, flexible AI reasoning models (Anthropic or OpenAI), and expanded platform support, while Word’s Agent Mode leverages Work IQ to automatically source the most relevant, up-to-date information for documents. These enhancements unlock dynamic collaboration and smarter content creation across web and desktop apps, inviting builders to elevate productivity with AI-driven tools.

Microsoft 365 Copilot in Outlook has several new updates that will support users in their work, including emailing and scheduling meetings.

Copilot in Outlook mobile now offers an interactive voice experience that summarizes unread emails and guides users through actions like drafting replies, deleting, archiving, pinning and flagging — all hands-free. Early access is available for iOS and Android users via Apple’s TestFlight program and Google Play’s Beta testing program.

Copilot in Outlook is making it easier to catch up and perform tasks using one-tap prompts. Copilot surfaces relevant actions that make it easier to get work done on the go, such as “Triage my inbox,” “What needs my reply?” and “Summarize and reply,” and guides the user through drafting a response step by step. One-tap prompts are generally available for Outlook for Windows, web, iOS, Android and classic Outlook.

Users now can schedule meetings directly from chat. Ask Copilot to schedule a meeting with colleagues and it will find available times, book rooms, draft agendas and send invites, all through chat. This feature is generally available in Copilot Chat across all endpoints for users with a Microsoft 365 Copilot license.

Copilot will also be able to help resolve scheduling conflicts for 1:1s and personal events. Users can set preferences for which meetings are flexible and Copilot will automatically reschedule when double-booked, notifying users of changes. Early access to this feature is available in Outlook for Windows and web for tenants that have enabled Targeted Release.

Additional resources:

• Email: Contact the Microsoft Media and Analyst Events Team for more information
• Breakout: What’s new in Microsoft 365 Copilot Chat: Secure AI chat for everyone
• Breakout: Agentic productivity in Microsoft 365 apps and Copilot Chat

Microsoft 365 Copilot in Outlook rolls out powerful new features to boost productivity, including an interactive voice experience on mobile that reads unread emails and guides users through tasks hands-free. Early access is live for iOS and Android via TestFlight and Google Play Beta. Across Windows, web and mobile, Copilot now offers one-tap prompts like 'Triage my inbox' and 'Summarize and reply,' streamlining email management and response drafting. Scheduling meetings just got easier—users can ask Copilot to coordinate times, book rooms and draft agendas directly from chat, available for all Copilot license holders. Copilot also tackles scheduling conflicts, automatically rescheduling flexible meetings and notifying users, with early access for targeted Outlook tenants.

Microsoft 365 Copilot in Outlook rolls out powerful new features to streamline emailing, meeting scheduling, and inbox management. On Outlook mobile, users can now enjoy an interactive voice experience that summarizes unread emails and guides them through drafting replies, archiving, and organizing—all hands-free, with early access via Apple’s TestFlight and Google Play Beta. One-tap prompts like “Triage my inbox” and “Summarize and reply” are now available across Windows, web, iOS, Android, and classic Outlook, making it easier to catch up and act quickly. Scheduling meetings from chat is now seamless: Copilot finds times, books rooms, drafts agendas, and sends invites. It even handles scheduling conflicts for 1:1s and personal events, automatically rescheduling and notifying users. These updates empower users to manage work on the go and boost productivity across devices.

Microsoft 365 Copilot in Outlook rolls out powerful updates to streamline work, including a hands-free voice experience on mobile that summarizes unread emails and guides users through drafting replies, organizing messages, and more. With early access available for iOS and Android, users can quickly catch up and act using intuitive one-tap prompts like “Triage my inbox” and “Summarize and reply,” now generally available across major platforms. Meeting scheduling gets a boost: simply ask Copilot in chat to find times, book rooms, draft agendas, and send invites, with this feature live for all Copilot license holders. Resolving scheduling conflicts is now easier too, as Copilot can reschedule flexible meetings and notify users of changes, available in early access for select Outlook users. These updates empower builders to work smarter and manage productivity.

Work IQ, the intelligence layer powering Microsoft 365 Copilot and agents, has new enhancements in Microsoft 365 Copilot and SharePoint. Work IQ is designed to understand your work inside and out. Built on data, memory and inference, Work IQ connects to organizational and personal data such as files, emails, meetings and more while building memory from your preferences, habits and workflows. Through inference, Copilot delivers insights, anticipates your needs, proactively executes tasks and can be fine-tuned to reflect your company’s unique knowledge. Enhancements to Work IQ include:

• Conversational memory in Microsoft 365 Copilot will allow Copilot to retain context and specific details across sessions. By combining explicit signals — such as work profile, custom instructions and saved preferences — with insights from previous chats and contextual awareness based on Work IQ, Copilot will offer more relevant, personalized and useful responses. Users will have full control over their data and conversational memories can be reviewed, updated or deleted at any time. This is available via the Frontier program.
• Reasoning over structured metadata in SharePoint document libraries, now generally available, enables more accurate, context-aware and precise answers when a prompt is grounded in SharePoint content. Populating SharePoint document libraries with metadata can be done manually or automatically with Knowledge Agent. For example, a Copilot prompt grounded on a SharePoint library of vehicle spec sheets with metadata such as make, model and engine size delivers answers that are more accurate, complete and relevant. While connectors provide access to SharePoint content, Copilot goes further with a rich understanding of SharePoint. In addition to the new metadata understanding, this includes images embedded in PowerPoint decks, SharePoint intranet site page content and files encrypted with sensitivity labels.

Additional resources:

• Blog: Learn more about this news
• Keynote: Opening keynote

Microsoft is rolling out significant upgrades to Work IQ, the intelligence layer behind Microsoft 365 Copilot and agents, enhancing workplace productivity and personalization. The latest enhancements introduce conversational memory in Copilot, enabling the AI to remember context and details across sessions, drawing from work profiles, custom instructions and previous chats for richer, more personalized responses. Users retain full control, with the ability to review, update or delete conversational memories, available now via the Frontier program. In SharePoint, Copilot’s improved reasoning over structured metadata in document libraries—now generally available—delivers more precise, context-aware answers, especially when prompts are grounded in detailed metadata. These advances extend Copilot’s understanding to images in PowerPoint decks, intranet site content and encrypted files, for deeper, more relevant assistance for organizations.

Work IQ, the intelligence layer behind Microsoft 365 Copilot, now brings enhanced conversational memory and deeper SharePoint integration. Copilot can remember context and preferences across sessions, using both explicit user signals and past interactions to deliver more personalized, proactive assistance, with users retaining full control to review or delete conversational memory via the Frontier program. In SharePoint, Copilot’s new ability to reason over structured metadata in document libraries means prompts grounded in company content yield more precise, context-aware answers—whether drawing on vehicle specs or sensitive files. These updates empower organizations to harness their unique knowledge and workflows more effectively within Microsoft 365.

Work IQ, the intelligence layer behind Microsoft 365 Copilot and agents, now features enhanced conversational memory and advanced reasoning over SharePoint metadata. Copilot remembers context and details across sessions, leveraging explicit signals and past interactions to deliver personalized, proactive insights. Users retain full control, with options to review or delete conversational memories via the Frontier program. In SharePoint, Copilot’s ability to reason over structured metadata—now generally available—means prompts yield highly accurate, context-aware answers. Whether accessing vehicle spec sheets or encrypted files, Copilot taps into rich organizational data, including images and site content, building a smarter, more responsive workspace.

Voice in Microsoft 365 Copilot, now generally available for commercial customers, makes interacting with Copilot more natural than ever. Users can speak to Copilot, interrupt it and easily move from voice to text on both mobile and desktop. Just tap, “Start a new voice chat” or say, “Hey, Copilot” to get instant, personalized insights, powered by Work IQ and surfacing top priorities and key information from meetings, emails and files. This capability will first roll out to Word, Excel and PowerPoint agents with availability in Microsoft 365 Copilot app, Word, PowerPoint, Outlook and more apps to follow.

Additional resources:

• Email: Contact the Microsoft Media and Analyst Events Team for more information

 

Microsoft 365 Copilot now features Voice, allowing commercial users to interact naturally by speaking, interrupting, and switching between voice and text across mobile and desktop. With a simple tap or command, Copilot delivers personalized insights, leveraging Work IQ to highlight top priorities and key details from meetings, emails and files. The rollout begins with Word, Excel and PowerPoint agents, then expanding to the Copilot app, Word, PowerPoint and Outlook, with additional apps to follow.

Voice in Microsoft 365 Copilot is now available for commercial users, enabling natural conversations with Copilot across desktop and mobile. Instantly access personalized insights by tapping 'Start a new voice chat' or simply saying, 'Hey, Copilot,' with seamless transitions between speaking and typing. Powered by Work IQ, the feature quickly highlights priorities and key info from meetings, emails, and files. Initially launching in Word, Excel, and PowerPoint agents, the rollout begins in the Microsoft 365 Copilot app, with Word, PowerPoint, Outlook, and more apps to follow soon.

Voice in Microsoft 365 Copilot is now live for commercial users, unlocking seamless, conversational AI across desktop and mobile. Simply tap or say, “Hey, Copilot” to launch instant, personalized insights—whether you’re shifting between voice and text or jumping in to interrupt with new questions. Powered by Work IQ, Copilot quickly surfaces top priorities and key details from meetings, emails, and files, streamlining your workflow. Rolling out first to Word, Excel, and PowerPoint, this voice capability will soon expand to Outlook and more, changing the way teams collaborate and build productivity.

Copilot Notebooks has added several enhancements to improve collaboration, all available through the Frontier program, including a new overview page, Video Overview feature and the ability to share Notebooks.

Getting started is simple: Copilot will proactively recommend new Notebook topics based on recent activity and priorities, helping users capture ideas and begin projects with confidence.

Within each Notebook, Copilot will suggest relevant references to ensure the project has the most current content. To help users stay on track and up to date, the new overview page will surface live updates and insights as content changes. Alongside Audio Overview, the new Video Overview feature will provide quick, AI-generated summaries for any Notebook — making it easy to catch up. When it’s time to collaborate, users will be able to share Notebooks across an organization for convenient co-authoring and contribution across the team. These new experiences are available through the Frontier program for Microsoft 365 Copilot licensed customers.

Additional resources:

• Blog: Learn more about this news

Copilot Notebooks rolls out a suite of collaboration upgrades for Microsoft 365 Copilot users in the Frontier program, introducing a streamlined overview page, AI-powered Video Overview summaries and seamless sharing capabilities. Proactive recommendations for new Notebook topics help users kick off projects quickly, while in-notebook reference suggestions ensure teams work with the latest information. Live updates and actionable insights keep projects on track, and the new Video Overview joins Audio Overview for instant, AI-generated summaries. With enhanced sharing, co-authoring across organizations is easy.

Copilot Notebooks rolls out major collaboration upgrades via the Frontier program for Microsoft 365 Copilot users. Teams can now share Notebooks for co-authoring, while a new overview page delivers live updates and insights as projects evolve. Video Overview joins Audio Overview, offering instant, AI-powered summaries to help users catch up fast. Getting started is effortless—Copilot proactively suggests Notebook topics based on recent activity and priorities, and recommends up-to-date references within each project. Dive deeper in the official blog or join upcoming sessions for more details.

Copilot Notebooks rolls out powerful collaboration upgrades in the Frontier program, streamlining project management for Microsoft 365 Copilot users. Builders can now jump into new projects with Copilot’s proactive topic recommendations, making idea capture effortless. The enhanced overview page delivers live updates and insights, while AI-powered Video Overview joins Audio Overview to provide instant, digestible summaries. Sharing Notebooks for co-authoring is now easier, connecting teams and speeding up contributions.

Microsoft 365 Copilot Chat now creates Copilot Pages based on user intent, making it easy to turn ideas into interactive content. Using the latest reasoning models, Copilot now can write code directly onto a page, letting users create interactive reports, visualize concepts and prototype new ideas. Users can continue to iterate with Copilot using chat or directly on the page and share it with others. Copilot can also turn the page into a PowerPoint presentation. This is generally available.

Additional resources:

• Email: Contact the Microsoft Media and Analyst Events Team for more information

Microsoft 365 Copilot Chat introduces Copilot Pages, a feature that transforms user intent into interactive content using advanced reasoning models. Users can now generate code directly on a page, enabling the creation of interactive reports, visualizations and idea prototypes. Collaboration is easy, with options to iterate through chat or on the page and share results instantly. Notably, Copilot can convert pages into PowerPoint presentations, streamlining workflows. The update is now generally available.

Microsoft 365 Copilot Chat introduces Copilot Pages, transforming user ideas into interactive content with advanced reasoning models. Now, users can generate code directly on a page to build interactive reports, visualize concepts, and rapidly prototype new solutions. Iteration is possible through chat or direct editing, and sharing with collaborators is effortless. Additionally, Copilot can instantly convert these pages into PowerPoint presentations. This feature is now generally available.

Microsoft 365 Copilot Chat introduces Copilot Pages, empowering users to transform ideas into interactive content with ease. Leveraging advanced reasoning models, Copilot now generates code directly on a page, enabling the creation of dynamic reports, concept visualizations, and rapid prototypes. Iteration becomes natural, whether through chat or direct editing, and sharing with others is just a click away. Additionally, Copilot can instantly convert any page into a polished PowerPoint presentation. This feature is now generally available.

Microsoft 365 Copilot will bring OpenAI’s Sora 2 video model into the Create experience. Users will be able to generate short AI-generated video clips from natural language prompts or swap out stock footage with AI-generated content within their video projects. Video projects will have built-in tools for voiceover, music and brand kits to ensure that content is consistent. Sora 2 in Create is available for commercial users in the Frontier program.

Additional resources:

• Email: Contact the Microsoft Media and Analyst Events Team for more information

Microsoft 365 Copilot is set to integrate OpenAI’s Sora 2 video model into its Create platform, allowing users to generate short AI-driven video clips from simple text prompts or enhance projects with seamless stock footage swaps. Commercial customers in the Frontier program will gain access to built-in features for voiceover, music and brand kits, ensuring brand consistency across content.

Microsoft 365 Copilot is integrating OpenAI’s Sora 2 video model into its Create experience, empowering users to generate short, AI-driven video clips from simple text prompts or seamlessly blend stock footage with AI-generated visuals. New built-in tools for voiceover, music, and brand kits ensure every project stays on-brand and polished. Sora 2 in Create is now accessible to commercial users participating in the Frontier program. Discover more details in the official blog and breakout resources.

Microsoft 365 Copilot is integrating OpenAI’s Sora 2 video model into the Create experience, empowering users to craft short, AI-generated video clips from simple text prompts. Whether swapping out stock footage or generating new visuals, the platform’s robust tools for voiceover, music, and brand kits ensure content remains polished and on-brand. Commercial users in the Frontier program can start exploring Sora 2 in Create.

Users in the Frontier enterprise program can now create SharePoint pages and lists directly from Microsoft 365 Copilot Chat. These new features will allow users to generate structured content quickly and intuitively using natural language prompts without leaving their current workflow. Examples include:

• “@SharePoint list agent create a list of my top-selling products by geography”
• “@SharePoint page agent create a page for our Q4 marketing campaign”

Additional resources:

• Blog: Learn more about this news

Microsoft's Frontier enterprise program now lets users create SharePoint pages and lists directly within Microsoft 365 Copilot Chat, streamlining workflow and boosting productivity. By leveraging natural language prompts, employees can quickly generate structured content—such as top-selling product lists by region or dedicated campaign pages—without switching platforms. The update aims to make collaboration more intuitive and efficient, offering new tools for teams to organize and share information.

Frontier enterprise users can now harness Microsoft 365 Copilot Chat to instantly generate SharePoint pages and lists using simple natural language commands. By integrating these tools directly into daily workflows, teams streamline the creation of structured content—such as top-selling product lists by geography or dedicated campaign pages—without switching apps. This enhancement makes SharePoint content creation more accessible than ever. Discover more details and examples in the official blog and breakout resources.

Frontier enterprise users can now build SharePoint pages and lists instantly through Microsoft 365 Copilot Chat, streamlining content creation with simple natural language prompts. Effortlessly generate structured lists—such as top-selling products by geography—or design campaign pages without disrupting your workflow. This intuitive integration empowers teams to construct and organize SharePoint resources directly from chat, unlocking faster collaboration and productivity. Discover more about these new tools and how they can change your enterprise content building experience.

Microsoft 365 Copilot Business is a new offering created for small and midsize businesses (SMBs) with fewer than 300 users. Built on the Microsoft 365 foundation, Copilot is designed to help SMBs scale without complexity. For $21 per user monthly, Copilot will automate everyday tasks such as summarizing emails, drafting documents, analyzing data and capturing meeting notes — so teams can focus on customers and strategic growth. Businesses will be able to add agents to Copilot to handle tasks and processes and free up time for the business. Microsoft 365 Copilot Business will be generally available in December.

Additional resources:

• Blog: Introducing Microsoft 365 Copilot Business: Empowering Small and Medium Businesses with AI

 

 

Microsoft is launching Microsoft 365 Copilot Business in December, targeting small and midsize companies with fewer than 300 users. Priced at $21 per user each month, the AI-powered tool promises to automate routine tasks like email summarization, document drafting, data analysis and meeting note capture. By enabling businesses to add agents that handle processes and repetitive work, Copilot aims to streamline operations and allow teams to prioritize customer engagement and growth. Built on the Microsoft 365 platform, the new offering seeks to help SMBs scale efficiently and minimize complexity.

Microsoft unveils 365 Copilot Business, a new AI-powered solution tailored for SMBs with under 300 users. Priced at $21 per user/month, this new tool automates daily tasks—from summarizing emails and drafting documents to analyzing data and capturing meeting notes—empowering teams to prioritize customers and drive growth. With the ability to add agents for handling routine processes, businesses can boost efficiency without added complexity. General availability kicks off in December.

Microsoft 365 Copilot Business rolls out an AI companion tailored for small and midsize businesses under 300 users, streamlining daily tasks for just $21 per user/month. By automating essentials like email summarization, document drafting, data analysis, and meeting note capture, Copilot empowers teams to shift their focus from routine work to customer engagement and strategic growth. With the added capability to deploy agents for handling specific tasks and processes, businesses can scale efficiently without added complexity. General availability begins in December.

Microsoft Power Apps is introducing several major updates to its core capabilities that will make it easier for makers to build and govern apps.

The new maker workspace in Power Apps, now in preview, will combine what a maker needs — planning, data modeling and app building — into one intelligent, AI-powered canvas.

It will be an agent-powered experience enabling makers to generate modern, multipage, business-ready apps by chatting with Microsoft 365 Copilot and refining them with point-and-click editing. The workspace will intelligently connect design, data and logic, allowing makers to visualize and modify in real time, with changes synced instantly across the app and no more switching between tools or views. It will be a faster, smarter and more intuitive way to go from idea to working solution.

The new Power Apps Model Context Protocol (MCP) Server, in preview, will connect AI agents to the logic and data already defined within the Power App. MCP services will act as an intermediary layer that standardizes communication between agents and app services, removing the need for custom integrations. Through MCP, agents will be able to call capabilities built into apps — such as submitting approvals, filling out forms, retrieving records or requesting user input — using a consistent protocol. For makers, Power Apps MCP will provide a structured framework to expose app functionality to agents, turning apps into reusable components of an enterprise’s AI ecosystem.

The Power Apps MCP Server now powers the updated agent feed, currently in preview. The agent feed will give makers greater control over tasks surfaced to users, support richer experiences for users, enable task assignment and provide agent performance metrics.

Starting Dec. 17, Power Apps customers will have the opportunity to preview the unified Copilot Chat experience in the model-driven apps in early release environments. This will go beyond basic Q&A and actions on app data. Copilot Chat will travel with users, carrying context from productivity apps into business apps. This will reduce context switching, helping users get things done more efficiently.

Additional resources:

• Blog: Learn more about this news
• Breakout: The future of Power Platform: AI-powered and enterprise-grade
• Breakout: Power Apps: Reimagine the human-agent collaboration
• Breakout: Power Platform: Innovation across apps, automation, and portals
• Breakout: Automating processes at scale with Power Automate and Copilot Studio

Microsoft Power Apps is rolling out a suite of major updates aimed at streamlining app creation and governance for makers. The redesigned maker workspace, now in preview, brings planning, data modeling and app building together on a single AI-powered canvas. Makers can chat with Microsoft 365 Copilot to generate business-ready apps and fine-tune them with intuitive editing, while real-time syncing eliminates the need to switch between tools. The new Model Context Protocol Server, also in preview, enables AI agents to interact with app logic and data, transforming apps into reusable enterprise components. Enhanced agent feeds empower makers with better task control and user experiences. Beginning Dec. 17, customers can preview the unified Copilot Chat in model-driven apps for smarter context-aware interactions across productivity and business tools.

Microsoft Power Apps unveils a new maker workspace—now in preview—that unifies planning, data modeling, and app building in a single, AI-powered environment. Makers can chat with Microsoft 365 Copilot to generate multi-page apps, then fine-tune them with intuitive point-and-click tools, all while using real-time syncing and seamless workflow. The new Power Apps Model Context Protocol (MCP) Server, also in preview, enables AI agents to interact directly with app logic and data, standardizing communication and eliminating custom integrations. Enhanced agent feeds empower makers with deeper control and analytics, while the upcoming unified Copilot Chat (previewing Dec. 17) can streamline user productivity by carrying context across business and productivity apps—minimizing context switching and boosting efficiency.

Microsoft Power Apps unveils a new maker workspace, now in preview, that unifies planning, data modeling, and app building in a single, AI-powered canvas. Makers can chat with Microsoft 365 Copilot to rapidly generate multi-page, business-ready apps, then refine them through intuitive point-and-click editing—all while seeing real-time updates across the entire app. The new Power Apps Model Context Protocol (MCP) Server, also in preview, standardizes communication between AI agents and app logic, transforming apps into reusable components within enterprise AI ecosystems and eliminating the need for custom integrations. Additionally, the updated agent feed and unified Copilot Chat experience (previewing Dec. 17) will help streamline collaboration, task assignment, and context sharing between productivity and business apps.

Microsoft Copilot Studio has several new enhancements to give makers and admins greater confidence, flexibility and control when building and managing agents. These updates will make it easier to create high-performing, secure and enterprise-ready agents while unlocking new capabilities for automation and governance. Highlights include:

• Agent evaluations: Agent evaluations are automated tests that measure an agent’s performance against a set of predefined scenarios and criteria. The agent is run through many test queries and its responses are automatically graded against expected outcomes. This will provide objective metrics to monitor the agent’s performance, catch regressions early and even compare different agent versions side by side. This feature is in preview.
• Computer use in Copilot Studio now enables two new, secure experiences powered by Windows 365 for Agents: using a hosted browser to quickly access the internet and using Cloud PC pools to deploy cloud-based PCs managed by the organization. Computer use in Copilot Studio will enable agents to automate tasks across nearly any app or website by interacting directly with user interfaces via a virtual machine. This is in preview.
• Real-time monitoring during agent runs: Microsoft Copilot Studio security capabilities have been extended with the ability to integrate trusted real-time monitoring solutions, either internal and external, during agent runs. Admins can opt to run Microsoft Defender, third-party security platforms or custom tools. This ability helps organizations harness the full potential of Copilot Studio while safeguarding against threats like prompt injection attacks using their preferred security infrastructure. This feature is generally available.
• Microsoft Entra Agent ID: Agents built in Copilot Studio will now get a Microsoft Entra Agent ID. Microsoft Entra Agent ID enables organizations to discover and manage their entire fleet of AI agents, including shadow agents, by assigning unique identities and maintaining a complete inventory. It also means that Agent 365-equipped agents built in Copilot Studio can be built leveraging tools like Agent 365 MCP servers. Lifecycle governance helps ensure agents are created, sponsored and deactivated according to enterprise policies, including automated controls to prevent orphaned or overprivileged agents. These enterprise identities and access controls give organizations the visibility and oversight needed to keep agents secure.

Additional resources:

• Blog: Learn more about this news 
• Breakout: Secure Every Agent Built in Copilot Studio with Microsoft Security
• Breakout: What’s new in Copilot Studio and roadmap
• Breakout: Build Agents for Copilot with the Microsoft 365 Agents Toolkit
• Breakout: Automation in Copilot Studio: Agent flows and computer use
• Breakout: From Flows to Agents: Modernizing with Copilot Studio + Power Automate

Microsoft Copilot Studio unveils a suite of enhancements aimed at empowering makers and admins with greater control in building enterprise-ready agents. New features include agent evaluations—automated tests that objectively score agent performance and enable side-by-side version comparisons, now available in preview. Computer use capabilities, also in preview, allow agents to automate tasks across apps and websites via secure, cloud-based Windows 365 environments. Real-time monitoring options have expanded, offering integration with Microsoft Defender and third-party security platforms to guard against threats like prompt injection attacks. With the introduction of Microsoft Entra Agent ID, organizations gain improved visibility and lifecycle governance over their entire fleet of AI agents.

Microsoft Copilot Studio unveils upgrades aimed at boosting agent performance, security, and manageability for makers and admins. Automated agent evaluations now let users objectively test and compare agent responses, catching regressions early—currently in preview. Through new computer use features powered by Windows 365, agents can securely automate tasks across nearly any app or website using hosted browsers or cloud-based PCs, also in preview. Security gets a lift with real-time monitoring integrations, allowing admins to deploy Microsoft Defender or third-party tools during agent runs—this is now generally available. Every agent now receives a unique Microsoft Entra Agent ID, enhancing discovery, lifecycle governance, and access control across enterprise environments.

Microsoft Copilot Studio introduces new features to streamline agent creation and management for builders and admins. Automated agent evaluations now provide objective performance metrics, allowing teams to monitor, catch regressions, and compare agent versions with ease. Leveraging Windows 365, agents can securely automate tasks across apps and websites using hosted browsers and Cloud PC pools, unlocking broad automation capabilities. Security takes center stage with real-time monitoring integrations, enabling organizations to deploy trusted solutions like Microsoft Defender or custom tools during agent runs. Enterprise control is further strengthened as agents receive unique Microsoft Entra Agent IDs, facilitating comprehensive lifecycle governance, automated policy enforcement, and robust inventory management.

Agents created in Microsoft 365 Copilot now support document generation using natural language. Agents can create Word, Excel and PowerPoint files. This capability simplifies content creation and encourages secure, centralized storage within Microsoft 365.

Agents also have access to a broadened set of Microsoft 365 knowledge sources, enabling more context-rich interactions. Scoped access includes Teams meetings and calendar data, and organizational directory information via People, OneNote and shared mailboxes. This update is generally available.

Additional resources:

• Blog: Learn more about this news
• Breakout: Democratizing agent building in Microsoft 365 Copilot

Microsoft 365 Copilot agents have rolled out new document generation features, allowing users to create Word, Excel and PowerPoint files simply by using natural language, streamlining content creation and promoting secure, centralized storage. Expanded access to Microsoft 365 knowledge sources, including Teams meetings, calendar data, People directory, OneNote and shared mailboxes, brings richer context to agent-driven interactions. The update is now generally available.

Microsoft 365 Copilot agents now empower users to generate Word, Excel, and PowerPoint documents through natural language, streamlining content creation and promoting secure, centralized storage. With expanded access to Microsoft 365 knowledge sources—including Teams meetings, calendar data, People, OneNote, and shared mailboxes—agents deliver richer, context-aware interactions. These enhancements are now generally available.

Microsoft 365 Copilot agents now empower users to generate Word, Excel, and PowerPoint documents through natural language commands, streamlining content creation and ensuring secure, centralized file storage. With expanded access to knowledge sources—including Teams meetings, calendar data, organizational directories, OneNote, and shared mailboxes—agents deliver richer, context-driven support for everyday workflows. The update is generally available.

Microsoft Dataverse, the data platform for Microsoft Dynamics 365, Microsoft Power Platform and Microsoft Copilot Studio, is introducing new updates to unlock integration between AI and data. This includes Dataverse SDK for Python and Dataverse MCP.

Data scientists and agent developers will be able to use the Dataverse SDK for Python, now in preview, to build agentic process workflows and perform data science using Python.

Dataverse Model Context Protocol (MCP) Server, now generally available, unlocks a new level of integration between AI and data, whether a user is building with Copilot Studio or GitHub Copilot in VS Code. New features include:

• Unified AI-to-data access: MCP standardizes how large language machines like Copilot Studio agents and GitHub Copilot interact with Dataverse. This means that enterprise data is now fully extensible and platform agnostic.
• Natural language interface: Users can ask questions and get real-time responses from the Dataverse environment. Under the hood, MCP clients translate these natural language requests and execute one or more built-in tools in Dataverse.
• Powerful tooling: Dataverse MCP tools currently support built-in tools that allow users to insert or update data in tables, view tables and their descriptions, read data from a table, search knowledge and view and execute prompts available in the environment.

Additional resources:

• Email: Contact the Microsoft Media and Analyst Events Team for more information
• Theater: AI Agents that Think, Learn & Scale with Dataverse & Copilot Studio

Microsoft is modernizing the foundation that connects AI agents with enterprise resource planning (ERP) systems. The Dynamics 365 ERP Model Context Protocol (MCP) server — first introduced at Microsoft Build 2025 — is evolving from a static implementation to a dynamic framework, and a new MCP server for analytics is being added. Together, these updates, both in preview, will advance how ERP systems, data and AI agents connect — unlocking agentic ERP, AI-powered insights and extensibility at enterprise scale. The updates will help organizations move from disconnected automation efforts to a unified model in which business logic, data and AI operate through a common protocol — reducing integration complexity and accelerating time to value.

The Dynamics 365 ERP MCP server is evolving from a fixed catalog of tools to a dynamic, configurable framework that will adapt as business needs change. This evolution will simplify how developers and partners extend ERP capabilities using agentic AI, allowing new actions or APIs to be registered and updated dynamically instead of through code rewrites. As a result, organizations will be able to automate finance and supply chain processes faster, connect AI agents directly to live business logic and evolve systems, while maintaining compliance and control.

The new Dynamics 365 ERP Analytics MCP server will apply the same model-context principles to business reporting, analytics and insights. It will provide governed access to ERP analytics data, including metrics, dimensions and semantic models, so agents can reason over consistent, trusted information. Agents that generate analytics or insights will be able to surface them in the apps people use every day, including Copilot experiences, helping decision makers act on trends and forecasts more quickly and with context. This will close the loop between operational data and business performance management, enabling continuous planning and more responsive forecasting inside the same governed environment.

By evolving the existing MCP server and introducing the analytics server, Dynamics 365 ERP is building a connective layer that will be able to unify data, actions and insights. These advancements lay the groundwork for a new generation of adaptive, agentic ERP systems that not only record transactions but act on them.

Additional resources:

• Blog: Learn more about this news
• Breakout: Reinvent Finance & Operations with Agentic ERP
• Theater: Accelerate ERP Agent deployment with MCP Server

Microsoft is revamping the Dynamics 365 ERP Model Context Protocol (MCP) server, unveiled at Build 2025, shifting from a static toolset to a dynamic, adaptable framework and introducing a new analytics MCP server. These preview features will help unify AI agents, business logic and ERP data, streamlining integration and speeding up automation for enterprises. Developers and partners will benefit from easier extensibility, registering new actions or APIs without code rewrites. The analytics MCP server brings governed access to ERP data, empowering AI agents to deliver actionable insights directly within everyday apps, including Copilot. By linking operational data with performance management, Microsoft aims to enable continuous planning and responsive forecasting, laying the foundation for agentic ERP systems that act on business events, not just record them.

Microsoft is transforming how AI agents interact with enterprise resource planning (ERP) systems, unveiling major updates to the Dynamics 365 ERP Model Context Protocol (MCP) server introduced at Build 2025. Shifting from a static setup to a dynamic, configurable framework, the MCP server now adapts to evolving business needs, enabling organizations to automate finance and supply-chain processes with greater speed and flexibility. A new MCP server for analytics introduces governed access to ERP data, empowering AI agents to deliver actionable insights directly within everyday apps like Copilot. These innovations unify business logic, data, and AI under a common protocol, streamlining integration, boosting extensibility, and paving the way for agentic ERP systems that drive continuous planning and responsive forecasting.

Microsoft is transforming how AI agents interact with enterprise resource planning (ERP) systems by evolving the Dynamics 365 ERP Model Context Protocol (MCP) server into a dynamic, configurable framework and introducing a new analytics MCP server. Introduced at Microsoft Build 2025, these innovations will enable agentic ERP, AI-powered insights, and extensibility at scale. Organizations will shift from fragmented automation to a unified model where business logic, data, and AI collaborate through a common protocol, dramatically reducing integration complexity and speeding up value delivery. Developers and partners gain flexibility to extend ERP capabilities, register new actions, and update APIs dynamically—no code rewrites needed. With governed access to analytics data, AI agents can generate actionable insights and embed them directly into everyday apps, enabling contextual decision-making and continuous planning.

Microsoft Baseline Security Mode, now generally available, helps organizations secure their Microsoft 365 environment with recommended configurations in just a few clicks. Through a guided admin experience, IT and security teams can identify gaps, simulate changes and deploy protections across Office, SharePoint, Microsoft Teams, Microsoft Entra and more. These configurations help organizations reduce risk from known vulnerabilities and build resilience against emerging threats, with minimal disruption.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news

Microsoft’s Baseline Security Mode has officially launched, offering organizations a streamlined way to fortify their Microsoft 365 environments. Through a guided admin interface, IT and security teams can swiftly pinpoint vulnerabilities, simulate configuration changes and deploy recommended protections across platforms like Office, SharePoint, Teams and Entra. By enabling these security settings in just a few clicks, companies can minimize risks from both known and emerging threats, all while maintaining business continuity.

Microsoft Baseline Security Mode launches into general availability, empowering organizations to fortify their Microsoft 365 environments with streamlined, recommended configurations. A guided admin experience allows IT and security teams to identify gaps, simulate security changes, and deploy protections across Office, SharePoint, Teams, Entra, and other platforms. By reducing risk from known threats and enhancing resilience against emerging ones, these new configurations can deliver security with minimal business disruption.

Microsoft Baseline Security Mode launches as a powerful tool for organizations aiming to quickly fortify their Microsoft 365 environments. With an intuitive admin experience, teams can pinpoint security gaps, simulate updates, and implement robust protections across Office, SharePoint, Teams, Microsoft Entra, and beyond. These recommended configurations streamline risk reduction from known vulnerabilities while boosting resilience against new threats—all with minimal impact on daily operations.

Agent Dashboard, available in preview, will provide a centralized report on agent usage and adoption across the organization. IT and leadership teams will be able to view trends, adoption by group and agent highlights, supporting better governance and maximizing impact.

Additional resources:

• Email: Contact the Microsoft Media and Analyst Events Team for more information
• Download: Visual assets related to this news

Agent Dashboard debuts in preview, offering IT and leadership teams a unified view of agent usage and adoption throughout the organization. The platform delivers insights into adoption trends, group-specific metrics and agent performance, empowering decision-makers to strengthen governance and increase operational impact.

Agent Dashboard, now in preview, offers IT and leadership teams a unified view of agent usage and adoption trends across the organization. From tracking group-level engagement to agent highlights, the dashboard empowers more effective governance and drives greater impact.

Agent Dashboard, now in preview, empowers IT and leadership teams with a unified view of agent usage and adoption organization-wide. Dive into actionable insights and track adoption trends by group and agent highlights to drive smarter governance and amplify outcomes. With this centralized reporting tool, teams can build a stronger foundation for decision-making and maximize their agent investments.

Microsoft Purview Data Loss Prevention (DLP) for Microsoft 365 Copilot will help ensure sensitive information stays protected. If a prompt includes confidential data such as credit card numbers or personal details, Microsoft Purview DLP for Copilot prompts, now in preview, will block Copilot and agents from responding, so that the sensitive information will not be used for grounding in Microsoft 365 or through a web search.

Overshared link remediation, now in preview in Microsoft Purview Data Security Posture Management (DSPM) for SharePoint, will enable admins to identify and fix overshared links at scale, reducing exposure and strengthening compliance. Microsoft Purview AI Observability in DSPM, now in preview, will provide full visibility into all agents, helping security teams make informed decisions and proactively manage risk. These features are available in preview.

These features are designed to help organizations deploy, monitor and secure AI agents at scale, ensuring compliance, reducing risk and providing clear insights into agent activity across Microsoft 365.

Additional resources:

• Email: Contact the Microsoft Media and Analyst Events Team for more information

 

Microsoft rolls out new security previews for its 365 Copilot platform, aiming to bolster data protection and compliance. The latest Microsoft Purview Data Loss Prevention feature blocks Copilot responses to prompts containing sensitive information, such as credit card numbers, ensuring confidential data isn’t misused or exposed. Alongside this, overshared link remediation in SharePoint helps administrators identify and fix risky links at scale, while Purview AI Observability offers comprehensive visibility into agent activity, empowering security teams to manage risk proactively. These enhancements are now available in preview.

Microsoft Purview Data Loss Prevention (DLP) for Microsoft 365 Copilot will help block AI responses when prompts contain sensitive data like credit card numbers or personal details, ensuring confidential information remains secure. Overshared link remediation, also in preview within Purview Data Security Posture Management (DSPM) for SharePoint, empowers admins to swiftly identify and correct overly shared links, minimizing exposure and boosting compliance. Additionally, Purview AI Observability in DSPM offers comprehensive agent visibility, enabling security teams to proactively manage risk and make informed decisions. These innovations, available in preview, equip organizations to securely deploy, monitor, and govern AI agents across Microsoft 365, enhancing compliance and risk management with actionable insights.

Microsoft Purview Data Loss Prevention (DLP) for Microsoft 365 Copilot automatically blocks Copilot responses when prompts contain sensitive data—like credit card numbers or personal details—ensuring confidential information stays protected. Overshared link remediation in Purview Data Security Posture Management (DSPM) for SharePoint lets admins efficiently identify and fix overshared links, minimizing risk and improving compliance. Meanwhile, AI Observability in DSPM delivers comprehensive visibility into agent activity, enabling security teams to proactively manage risk and maintain compliance across Microsoft 365 environments. These new capabilities are now in preview.

To better understand how AI can be used to transform businesses across industries, Microsoft commissioned a global study with the International Data Corporation (IDC) of more than 4,000 business leaders responsible for AI decisions. The findings reveal 68% of these companies are using AI today, but the real difference lies in how they’re using it. In the study, Frontier firms, the ones leading AI transformation, report they are achieving returns that are three times higher than slow adopters. IDC categorized businesses based on their AI usage and found that 22% are Frontier firms, 39% are categorized as neutral and 39% are slow adopters.

Frontier firms’ success goes beyond efficiency and productivity at scale. They are driving growth, expansion and industry leadership in a new AI-powered economy. Based on the IDC study, Microsoft has identified five key lessons on how organizations can transform their businesses with AI.

• Expanding AI impact across every business function: On average, Frontier firms are using AI across seven business functions.
• Unlocking industry-specific value: 67% of Frontier firms are monetizing industry-specific AI use cases to boost revenue. Leaders in this trend include financial services, healthcare and manufacturing.
• Building custom AI solutions for competitive advantage: 58% of Frontier firms are using custom AI solutions today; IDC estimates that number will jump to 77% in the next 24 months.
• Agentic AI is the new differentiator for business leaders: In the next two years, IDC estimates the number of companies using agentic AI will triple.
• AI budgets are growing and so is the team behind them: 71% of respondents plan to increase their AI budgets, with funding coming from IT and non-IT sources.

Among organizations surveyed, many are navigating challenges around security, privacy, governance and cost, as well as ethical considerations, integration complexity and scaling from pilot to production.

The message is clear: Businesses that embrace AI benefit from momentum in efficiency, customer experience and innovation. To stay competitive, leaders should act now and embrace AI not as an experiment but as a strategic imperative for growth.

Additional resources:

• Blog: Learn more about this news
• Download: The IDC study

 

Microsoft, in partnership with IDC, unveils a global study of 4,000 business leaders, revealing that 68% of companies are already deploying AI. The early AI adopters, dubbed Frontier firms, are not just using AI—they’re reaping returns three times higher than slow adopters. These innovators are leveraging AI across an average of seven business functions and are monetizing industry-specific solutions, especially in financial services, healthcare and manufacturing. Custom AI development is surging, with projections for adoption jumping from 58% to 77% within two years, while agentic AI is set to triple in use. Amid rising budgets and expanding teams, organizations face challenges from security to ethics. The takeaway: AI is reshaping the business landscape, and leaders must move decisively to harness its potential for growth and industry leadership.

Microsoft and IDC’s global study of 4,000+ AI decision-makers reveals that 68% of companies are already leveraging AI, but Frontier firms—those leading the charge—outperform slow adopters with returns three times higher. These frontrunners aren’t just boosting efficiency; they’re driving industry growth and expansion by integrating AI across an average of seven business functions. Notably, 67% of Frontier firms monetize industry-specific AI use cases, with financial services, healthcare, and manufacturing leading the way. Custom AI solutions are on the rise, expected to reach 77% adoption among these leaders in 24 months, while agentic AI is set to triple in usage. With 71% of respondents planning to grow their AI budgets, organizations face challenges in security, governance, and ethics. The takeaway: businesses must embrace AI as a strategic imperative to unlock innovation and maintain their competitive edge.

Microsoft and IDC’s global study of 4,000 business leaders reveals that 68% of companies are already harnessing AI, yet true transformation is driven by Frontier firms—22% of organizations leading the charge are realizing returns three times higher than slow adopters. These AI trailblazers are expanding impact across seven business functions, monetizing industry-specific use cases—especially in financial services, healthcare, and manufacturing—and accelerating custom AI deployments, with 77% expected to build bespoke solutions within two years. As agentic AI adoption is set to triple, budgets and multidisciplinary teams are rising to meet the challenge. Navigating hurdles from security to ethics, leaders are urged to move beyond experimentation and adopt AI as a strategic driver for growth and innovation.

New Microsoft Foundry updates in preview will enable developers to enrich agents with real-time business context, multimodal capabilities and custom business logic through a unified catalog of Model Context Protocol (MCP) tools built with security and governance in mind. The catalog includes:

• Unified tool discovery: Developers will be able to find, connect and manage public or private MCP tools for agents from a single, secure interface in Microsoft Foundry.
• Deep business integration: Logic Apps connectors will provide access to more than 1,400 systems like SAP, Salesforce and HubSpot that will be exposed as MCP tools. This will enable agents to be quickly integrated with core business services and act on real-time business data and events.
• New tools for prebuilt AI services: New tools will provide out-of-the-box capabilities for transcription, translation, voice and intelligent document processing, and be available as MCP servers.
• Custom tool extensibility: Developers will be able to securely expose any API or function as an MCP tool through API management, enabling them to reuse existing business logic.

Additional resources:

• Blog: Learn more about this news
• Breakout: Innovation Session: Your AI Apps and Agent Factory
• Breakout: Connected, managed, complete: Agentic apps with Microsoft Foundry
• Breakout: Driving agentic innovation with MCP as the backbone of tool-aware AI

Microsoft Foundry aims to to transform agent development with new preview updates, offering developers the ability to enrich agents using real-time business context and multimodal capabilities. Through a unified catalog of Model Context Protocol tools, users gain streamlined access to public and private MCP tools, all managed from a secure interface. Integration deepens with Logic Apps connectors, granting agents connectivity to over 1,400 business systems, including SAP and Salesforce. Out-of-the-box AI services for transcription, translation and intelligent document processing are now available as MCP servers. Developers can also securely expose APIs and functions as MCP tools, driving reuse and custom business logic.

Microsoft Foundry’s latest preview brings a unified Model Context Protocol (MCP) tool catalog, empowering developers to supercharge agents with real-time business context, multimodal abilities, and custom logic—all secured and governed. Tool discovery now allows easy connection and management of both public and private MCP tools from a single interface. Deep business integration is unlocked via Logic Apps connectors providing access to over 1,400 systems like SAP, Salesforce, and HubSpot as MCP tools for instant access to live business data. Out-of-the-box AI services, including transcription, translation, voice, and document processing, arrive as MCP servers, while custom tool extensibility lets any API or function be securely surfaced as an MCP tool.

Microsoft Foundry’s latest preview brings a unified MCP tool catalog, empowering developers to seamlessly enrich agents with real-time business context, multimodal capabilities, and custom business logic. Through a secure interface, teams can now discover, connect, and manage both public and private MCP tools, streamlining integration across more than 1,400 business systems like SAP, Salesforce, and HubSpot via Logic Apps connectors. Out-of-the-box prebuilt AI services—including transcription, translation, voice, and document processing—arrive as MCP servers, while custom tool extensibility lets any API or function become an MCP tool through API management. These updates make it easier to build secure, deeply integrated AI agents tailored to enterprise needs.

A model router that automatically selects the best model for the task is now generally available in Microsoft Foundry. It can help developers balance cost, performance and complexity by simplifying model selection and deployment while allowing developers to use a single endpoint for optimized AI workflows. By continuously learning from usage patterns, it delivers up to 40% faster responses and 50% lower costs in early customer deployments — all without code changes or loss in quality.

The model router selects the most suitable language model for each prompt based on factors like query complexity, cost and latency. This dynamic routing helps ensure high-quality results while reducing operational costs, eliminating the need for manual model evaluation or switching.

The model router now includes access to 12 models, including the GPT-4.1 family, GPT-5 family, gpt-oss-120b, DeepSeek-v3.1, Llama-4-Maverick-17B-128E-Instruct-FP8, Llama-3.3-70B-Instruct, Grok 4 and Grok 4 Fast. The model router capability is also available in preview in Foundry Agent Service.

Additional resources:

• Blog: Learn more about this news
• Breakout: Making Smarter Model Choices in Microsoft Foundry
• Theater: Model Router in Microsoft Foundry to slash costs and win big

Microsoft Foundry has launched its model router, now generally available, for streamlined AI workflows with automatic model selection for each task. By leveraging usage patterns, the router delivers up to 40% faster responses and slashes costs by 50% in early customer deployments, all without requiring code changes or sacrificing quality. The tool dynamically picks from 12 leading language models—including GPT-4.1, GPT-5, DeepSeek-v3.1, and Grok-4—based on query complexity, cost and latency, eliminating manual model evaluation. Developers can now deploy optimized solutions from a single endpoint, while preview access is expanding to Foundry Agent Service.

Microsoft Foundry launches a model router that automatically picks the best AI model for each task, streamlining deployment and reducing complexity for developers. With a single endpoint, the router dynamically balances cost, performance, and latency, learning from usage patterns to deliver up to 40% faster responses and 50% lower costs—no code changes required. Now supporting 12 advanced models, including GPT-4.1, GPT-5, Llama, and Grok variants, the router eliminates manual model selection while maintaining top-quality results. The feature is also available in preview in Foundry Agent Service.

Unlock easier AI deployment with Microsoft Foundry’s new model router, now generally available for builders seeking smarter model selection. This tool automatically chooses the optimal language model for each prompt—balancing cost, speed, and complexity—so you can focus on building without manual switching or code changes. Early adopters report up to 40% faster responses and 50% lower costs, with no drop in output quality. With dynamic routing to 12 leading models—including GPT-4.1, GPT-5, DeepSeek-v3.1, Llama, and Grok variants—developers gain a single endpoint for robust, efficient AI workflows. Preview the model router’s power in Foundry Agent Service and start building smarter today.

Foundry Agent Service is introducing hosted agents, built-in memory and multi-agent workflows, all in preview, to give organizations a managed, interoperable way to run and coordinate agents with enterprise identity, autoscaling, governance and observability.

Whether teams use the Microsoft Agent Framework or frameworks such as LangGraph, CrewAI or OpenAI Agents SDK, Foundry Agent Service provides a fully managed, enterprise-grade runtime to host, scale and govern agents — accelerating the path from pilot to production. New features, all in preview, include:

• Microsoft 365 and Agent 365 integration will enable developers to instantly deploy agents from Microsoft Foundry to Microsoft productivity apps — making it simple to reach users directly within the Microsoft 365 ecosystem while leveraging Agent 365 for secure orchestration, governance and enterprise-grade deployment.
• Hosted agents will simplify runtime management and provide an easy path from local prototyping to secure, production-grade deployment. Developers will be able to deploy custom-code agents built with frameworks like Microsoft Agent Framework, LangGraph or CrewAI without managing containers or infrastructure. Microsoft Foundry handles autoscaling, observability and identity integration, enabling teams to focus on agent logic while running multi-agent systems in a governed, enterprise environment.
• Multi-agent workflows will be able to coordinate specialized agents to execute multistep business processes — such as onboarding, financial approvals or supply-chain automation — using either a visual designer or a code-first API. Workflows will enable long-running, stateful collaboration with built-in recovery and debugging.
• Memory will allow agents to retain context, preferences and conversation history across sessions with secure, persistent recall integrated into the agent runtime. This will reduce external data-store complexity and enable more personalized, context-aware interactions out of the box. Memory will be available in preview in Foundry Agent Service later this year.
• Microsoft Agent Framework, an open-source SDK, will unify Microsoft’s prior work from Semantic Kernel and AutoGen into a single developer toolkit and share the same runtime foundation as Foundry Agent Service. It will also add durable execution, helping developers build resilient agents that recover automatically from timeouts and system faults.

Additional resources:

• Blog: Learn more about this news
• Keynote: Opening Keynote
• Breakout: AI powered automation & multi-agent orchestration in Microsoft Foundry
• Breakout: AI agents in Microsoft Foundry, ship fast, scale fearlessly

Foundry Agent Service debuts hosted agents, built-in memory and multi-agent workflows, all in preview, offering organizations a managed, interoperable platform for agent deployment with enterprise identity, autoscaling and governance. Developers can leverage frameworks like Microsoft Agent Framework, LangGraph or CrewAI to build custom agents, which can now be deployed to Microsoft 365 apps through Agent 365 integration. The platform streamlines runtime management, enabling secure, production-grade deployment without infrastructure headaches. Multi-agent workflows allow coordination of complex business processes and feature visual or code-first design, supporting long-running, stateful collaboration. New memory capabilities promise persistent, secure context retention, while the updated Microsoft Agent Framework unifies previous SDKs and introduces durable execution for more resilient agents.

Foundry Agent Service debuts hosted agents, built-in memory, and multi-agent workflows—all in preview—offering organizations a managed, interoperable platform for enterprise-grade agent deployment, autoscaling, governance, and observability. Developers can leverage Microsoft Agent Framework, LangGraph, CrewAI, or OpenAI Agents SDK to move from prototyping to production without managing infrastructure. Integration with Microsoft 365 and Agent 365 empowers instant agent deployment in productivity apps, ensuring secure orchestration and governance. Multi-agent workflows enable coordination of complex business processes with visual or code-first tools, while new memory features provide persistent, context-aware interactions. The open-source Microsoft Agent Framework unifies Semantic Kernel and AutoGen, introducing durable execution for resilient agents.

Foundry Agent Service unveils hosted agents, built-in memory, and multi-agent workflows in preview, empowering organizations to run and coordinate AI agents with enterprise-grade identity, autoscaling, governance, and observability. Teams can deploy custom agents using frameworks like Microsoft Agent Framework, LangGraph, or CrewAI—without managing infrastructure—accelerating the journey from pilot to production. Integration with Microsoft 365 and Agent 365 enables instant deployment to productivity apps, combining secure orchestration and governance. Multi-agent workflows now support complex business processes with visual or code-first design, featuring robust recovery and debugging. Agents gain persistent memory for context-rich, personalized interactions, while the open-source Microsoft Agent Framework brings unified, resilient agent development. Explore how these innovations streamline enterprise automation and agent collaboration.

Microsoft is introducing a new, universal context layer that combines intelligence across Work IQ from Microsoft 365 Copilot, Fabric IQ and Foundry IQ. This will enable AI agents to understand what users are doing, what business data means and where and how to find the information to make decisions with AI. Fabric IQ, now in preview, extends the unified semantic layer already provided by Power BI across 20 million models to business operations. Foundry IQ, also in preview, will be the next generation of retrieval-augmented generation (RAG), offering a smarter way to connect agents with data from a single knowledge base.

Fabric IQ will unify all data with operational systems under a semantic model of business entities and their relationships — providing a live, connected view of the enterprise. This holistic view of the enterprise will empower teams and AI agents to understand and act on live, context-rich insights, driving smarter decisions and better business outcomes. Teams will be able to define this model once and reuse it everywhere across analytics, apps and agents, improving reasoning quality while preserving governance and lineage. Since all the data resides in OneLake, either natively or through shortcuts and mirroring, organizations will be able to realize these benefits regardless of whether the data is on premises, hybrid or in multicloud environments.

Foundry IQ is a fully managed knowledge system designed to ground AI agents. Agents will be able to connect to one knowledge base running a knowledge retrieval engine over multiple data sources — indexed or federated — including Azure data services, Microsoft 365 SharePoint, Fabric IQ and the web. Built on Azure AI Search, Foundry IQ will automate RAG data pipelines for multimodal data and perform agentic retrieval (query planning, iterative search, reflection and synthesis) across knowledge sources to maximize context while respecting user permissions. Integration with Microsoft Purview will also support compliance, data security and governance.

Additional resources:

• Blog: Learn more about this news
• Keynote: Opening Keynote
• Breakout: The future of RAG with agentic knowledge retrieval and AI Search
• Breakout: Build agents with knowledge, agentic RAG and Azure AI Search
• Breakout: Create a semantic foundation for your AI agents in Microsoft Fabric
• Breakout: Microsoft Fabric: The data platform for the next AI frontier
• Breakout: Unlock the power of Real-Time Intelligence in the era of AI

Microsoft unveils a universal context layer that merges intelligence from Microsoft 365 Copilot, Fabric IQ and Foundry IQ, aiming to change how AI agents interpret user actions and business data. Fabric IQ, now in preview, expands Power BI’s unified semantic layer to operational systems, offering teams a live, connected view of the enterprise for sharper decision-making. Foundry IQ, also debuting in preview, introduces an advanced retrieval-augmented generation engine, enabling agents to access and reason over data from a single knowledge base across platforms such as Azure, SharePoint and the web.

Microsoft unveils a universal context layer that fuses intelligence from Microsoft 365 Copilot, Fabric IQ, and Foundry IQ, empowering AI agents to grasp user actions, business data meaning, and decision-making pathways. Fabric IQ, now in preview, expands Power BI’s semantic capabilities to unify data and operational systems, delivering live, connected enterprise views for smarter, context-rich insights. Meanwhile, Foundry IQ—also in preview—ushers in next-gen retrieval-augmented generation, enabling agents to tap a single, fully managed knowledge base across diverse sources like Azure, Microsoft 365, and the web. Leveraging Azure AI Search, Foundry IQ automates multimodal data pipelines and advanced retrieval, all to help ensure compliance and governance via Microsoft Purview. Teams can define semantic models once and reuse them across analytics, apps, and agents, streamlining reasoning and maintaining data lineage regardless of environment.

Microsoft unveils a universal context layer across Work IQ from Microsoft 365 Copilot, Fabric IQ, and Foundry IQ, empowering AI agents to grasp user intent and business data meaningfully. With Fabric IQ now in preview, organizations can extend Power BI’s semantic layer across 20 million models into business operations, unifying data and systems for a live, connected enterprise view. Foundry IQ, also in preview, redefines retrieval-augmented generation (RAG), enabling agents to tap into a single knowledge base spanning Azure, SharePoint, Fabric IQ, and the web. Built on Azure AI Search, Foundry IQ automates data pipelines and agentic retrieval, to help ensure rich, secure context through Microsoft Purview integration. Teams can define semantic models once and reuse them everywhere, enhancing decision-making, governance, and data lineage across analytics, apps, and AI agents.

Foundry Control Plane, available in preview, will extend Agent 365 for developers to have visibility, security and control of agents operating in the Microsoft Cloud. Foundry Control Plane will bring observability, behavioral guardrails and lifecycle management into one environment where teams can monitor agent health, performance and cost, plus apply policies and take action in real time. Built on Microsoft Entra Agent ID for verified identity, with Microsoft Defender securing runtime activity and Microsoft Purview protecting data flow, Foundry Control Plane will help developers operate safe, efficient and high-performing AI systems at scale.

Key features include:

• Fleetwide visibility: Unified view to observe, control and govern 100% of an organization’s agents across Microsoft Foundry, Microsoft Entra, Copilot Studio and external platforms. This is in preview.
• Connects development and operations: Enables easy movement between development and operations, so teams can build robust safety into agents, evaluate performance and alerts once deployed, and easily act on insights to optimize them. This is in preview.
• Observability: Enables real-time tracing, continuous monitoring, evaluations and red teaming to measure and improve quality, safety and efficiency across the entire agent lifecycle. This capability also features a wide range of quality, risk, safety and agent evaluators, and the ability to run evaluations in the cloud and through an AI Red Teaming Agent. This is generally available.
• Agent controls: Defines and enforces policies that govern agent inputs and outputs, tools, calls and responses to prevent unsafe or misaligned behavior. This is in preview.
• Identity and access: Entra Agent ID assigns each agent a verifiable identity to establish ownership, lineage and access control across environments. This is in preview.
• Security: Defender integration provides runtime threat detection and posture insights, while Microsoft Purview integration helps safeguard sensitive data and information flow throughout agent operations. This is in preview.
• Cost and usage management: AI Gateway provides centralized usage limits and cost controls for models, agents and MCP tools. This is in preview.
• New integrations: An integration with Palo Alto Networks is coming soon to help extend security and governance capabilities across multicloud and enterprise environments. An integration with Zenity is also coming soon.

Additional resources:

• Blog: Learn more about this news
• Keynote: Opening Keynote
• Breakout: AI Operations to own the fleet, master the mission in Microsoft Foundry
• Breakout: Building responsible AI agents with Microsoft Foundry
• Breakout: Monitor, optimize and scale with AI Observability in Microsoft Foundry
• Theater: Managing AI agents at scale

Microsoft unveils Foundry Control Plane in preview for developers to have oversight, security and management of AI agents across the cloud. By consolidating observability, behavioral guardrails and lifecycle controls into one platform, teams can monitor agent health, performance and costs, while enforcing real-time policies for safety and efficiency. Built atop Entra Agent ID for verified identity, with Defender safeguarding runtime activity and Purview protecting data flow, the solution brings fleetwide visibility, centralized cost controls and robust security integrations—including upcoming integrations with Palo Alto Networks and Zenity. Foundry Control Plane aims to streamline development and operations to help organizations to scale responsible, high-performing AI systems.

Foundry Control Plane, now in preview, empowers developers with comprehensive visibility, security, and control over AI agents in the Microsoft Cloud. By unifying observability, behavioral guardrails, and lifecycle management, teams can monitor agent health, performance, and costs, while enforcing real-time policies. Built on Microsoft Entra Agent ID for verified identity, with Microsoft Defender and Purview integrations safeguarding runtime activity and data flow, the platform ensures agents are safe, efficient, and high-performing at scale. Key features include fleetwide agent governance, dev-ops transitions, real-time monitoring, policy enforcement, and centralized cost controls. Upcoming integrations with Palo Alto Networks and Zenity will further strengthen multicloud security and governance.

Foundry Control Plane, now in preview, empowers developers with unified visibility, security, and control over agents running across the Microsoft Cloud. By integrating observability, behavioral guardrails, and lifecycle management, teams can monitor agent health, performance, and costs while enforcing real-time policies. Built on Microsoft Entra Agent ID for verified identity, with Defender and Purview ensuring runtime and data security, the platform supports safe, efficient AI operations at scale. Fleetwide visibility, development-to-operations workflows, robust agent controls, and centralized cost management are key highlights. Upcoming integrations with Palo Alto Networks and Zenity expand multicloud security and governance. Dive deeper into responsible AI and agent operations through featured keynotes and breakouts.

Microsoft Azure DocumentDB, the first managed service built on the open-source DocumentDB standard, is generally available. Now governed by the Linux Foundation, DocumentDB delivers an open and community-driven MongoDB-compatible engine with multicloud flexibility, running consistently across Azure, other clouds and on premises. This gives organizations freedom from proprietary lock-in and the ability to standardize on open source while operating at a global scale.

Azure DocumentDB provides AI-ready vector and hybrid search, instant autoscale and independent compute and storage scaling for optimizing performance and costs. It also has Microsoft Entra ID authentication, customer-managed keys and up to 99.995% service-level agreement availability for enterprise-grade reliability, plus 35-day backups included at no additional cost.

Azure DocumentDB was previously known as Azure Cosmos DB for MongoDB (vCore).

Additional resources:

• Blog: Learn more about this news
• Breakout: Move fast, save more: Kraft Heinz builds MongoDB apps on DocumentDB
• Breakout: Modern data, modern apps: Innovation with Microsoft Databases

Microsoft Azure DocumentDB, now generally available, emerges as the first managed service built on the open-source DocumentDB standard. Governed by the Linux Foundation and offering a MongoDB-compatible, multicloud solution, the platform empowers organizations to escape proprietary lock-in and embrace open-source innovation at a global scale. Enhanced features include AI-ready vector and hybrid search, instant autoscale, independent compute and storage scaling, and robust security with Microsoft Entra ID authentication and customer-managed keys.

Microsoft Azure DocumentDB launches as the first managed service built on the open-source DocumentDB standard, now overseen by the Linux Foundation. Offering a MongoDB-compatible engine, DocumentDB enables organizations to operate across Azure, other clouds, and on premises — eliminating proprietary lock-in and supporting open-source standardization at global scale. With AI-ready vector and hybrid search, instant autoscale, and independent compute/storage scaling, businesses can optimize both performance and costs. Enterprise-grade features include Entra ID authentication, customer-managed keys, 99.995% SLA availability, and 35-day backups at no extra charge. Previously known as Azure Cosmos DB for MongoDB (vCore), this release empowers modern app innovation and data management.

Microsoft Azure DocumentDB launches as the first managed service built on the open-source DocumentDB standard, now under the Linux Foundation’s governance. Offering a MongoDB-compatible, multicloud-ready engine, organizations gain freedom from proprietary lock-in and can scale globally on Azure, other clouds, or on-premises. With AI-ready vector and hybrid search, instant autoscale, and flexible compute/storage scaling, builders can optimize performance and costs. Enterprise-grade reliability comes standard, featuring Entra ID authentication, customer-managed keys, a 99.995% SLA, and 35-day backups at no extra charge. Previously known as Azure Cosmos DB for MongoDB (vCore), this service empowers teams to innovate and modernize with open-source data solutions.

Microsoft SQL Server 2025, with built-in AI and developer-first enhancements, is now generally available. The platform enables customers to securely use data they already have and work in the familiar T-SQL language. It provides:

• A way to access AI models of choice, hosted locally or in the cloud, and to securely use data to best fit business needs.
• Simplified data processing with native JSON support, built-in REST APIs and change event streaming.
• Near real-time analytics by replicating SQL Server data to Microsoft OneLake with database mirroring in Microsoft Fabric.
• Increased workload performance, uptime and concurrency for SQL Server apps with enhanced query optimization, optimized locking and improved failover reliability.
• Improved credential management and fewer potential vulnerabilities with Microsoft Entra ID for authentication through Microsoft Azure Arc.
• GitHub Copilot integration in Visual Studio Code and SQL Server Management Studio 22 for better productivity.
• A new Microsoft Python driver for SQL Server (mssql-python) for a fast and developer-friendly experience in Windows, macOS and Linux.

Additional resources:

• Blog: Learn more about this news
• Breakout: SQL Server 2025: The AI-ready enterprise database

Microsoft SQL Server 2025 debuts with built-in AI, providing a secure, developer-first experience for businesses leveraging their existing data. Users can tap into AI models on-premises or in the cloud, while new features like native JSON support, REST APIs and change event streaming simplify data processing. The platform boosts analytics by mirroring SQL Server data to Microsoft OneLake, enabling near real-time insights through Microsoft Fabric. Enhanced query optimization, improved failover reliability and optimized locking deliver higher performance and uptime for enterprise workloads. Credential management gets a lift with Microsoft Entra ID authentication, and GitHub Copilot integration streamlines productivity in Visual Studio Code and SQL Server Management Studio 22. The new mssql-python driver expands developer flexibility across Windows, macOS and Linux.

Microsoft SQL Server 2025 is now generally available, delivering built-in AI capabilities and developer-focused upgrades for secure, familiar data management in T-SQL. Users can leverage AI models locally or in the cloud, simplify data workflows with native JSON support, REST APIs, and event streaming, and achieve near real-time analytics by mirroring data to Microsoft OneLake via Fabric. Enhanced query optimization, improved failover reliability, and optimized locking boost performance and uptime. Credential management is strengthened through Microsoft Entra ID integration, while GitHub Copilot in Visual Studio Code and Management Studio 22 streamlines productivity. The new mssql-python driver offers fast, cross-platform development for Windows, macOS, and Linux.

Microsoft SQL Server 2025 launches with built-in AI, empowering developers to harness familiar T-SQL while tapping into their preferred AI models—locally or via the cloud. Native JSON support, REST APIs, and change event streaming streamline data processing, while near real-time analytics are unlocked through seamless replication to Microsoft OneLake and database mirroring in Microsoft Fabric. Enhanced query optimization, improved failover reliability, and optimized locking drive higher performance and uptime. Security gets a boost with Microsoft Entra ID via Azure Arc, and productivity soars thanks to GitHub Copilot integration in Visual Studio Code and SSMS 22. Developers also benefit from the new cross-platform mssql-python driver for a faster, more flexible coding experience.

Microsoft Azure HorizonDB, a new PostgreSQL cloud database service for building or modernizing mission-critical apps, is now in private preview. Integrated with Microsoft Foundry, Microsoft Fabric, Visual Studio Code and more, Azure HorizonDB streamlines development with the following features:

• Transactions and vector search up to three times faster than open-source PostgreSQL, based upon internal benchmarking.
• Scale-out compute to 15 replicas with 192 vCores each.
• Auto-scaling storage up to 128 TB.
• Advanced DiskANN vector indexing for AI workloads and native semantic operators.
• AI-readiness with pre-provisioned models.

Organizations can right-size consumption to their workloads’ needs and save capacity for future requirements by independently scaling compute and storage scale. Modern authentication with Microsoft Entra ID and security features like Microsoft Defender and private endpoints support enterprise-grade protection.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news
• Keynote: Opening Keynote
• Breakout: Modern data, modern apps: Innovation with Microsoft Databases
• Breakout: Build mission-critical apps that scale with PostgreSQL on Azure

Microsoft has unveiled Azure HorizonDB, a new PostgreSQL cloud database service now in private preview, targeting organizations building or modernizing mission-critical applications. Boasting integration with Microsoft Foundry, Fabric and Visual Studio Code, HorizonDB promises transactions and vector search up to three times faster than open-source PostgreSQL, according to internal benchmarks. Developers can scale compute up to 15 replicas with 192 vCores each, auto-scale storage to 128 TB and leverage advanced DiskANN vector indexing for AI workloads and native semantic operators. Enhanced security arrives via Microsoft Entra ID, Defender and private endpoints, while independent scaling of compute and storage allows for efficient resource management and future growth.

Microsoft unleashes Azure HorizonDB, a high-performance PostgreSQL cloud database now in private preview, tailored for mission-critical applications. Developers gain integration with Microsoft Foundry, Fabric, and Visual Studio Code, while enjoying transactions and vector search speeds up to three times faster than open-sourc PostgreSQL. With scale-out compute reaching 15 replicas and 192 vCores each, auto-scaling storage to 128 TB, and advanced DiskANN vector indexing, AI workloads and native semantic opeators are handled with ease. Flexible compute and storage scaling lets organizations optimize costs and prepare for future growth. Enterprise-grade security, including Microsoft Entra ID, Defender, and private endpoints, provide robust protection.

Microsoft unveils Azure HorizonDB, a high-performance PostgreSQL cloud database now in private preview, designed for building and modernizing mission-critical applications. Developers can leverage seamless integration with Microsoft Foundry, Fabric, and Visual Studio Code, while enjoying transactions and vector search speeds up to three times faster than open-source PostgreSQL. HorizonDB supports scale-out compute with up to 15 replicas and 192 vCores each, auto-scaling storage to 128 TB, and advanced DiskANN indexing for AI workloads. Flexible scaling lets organizations optimize resource consumption, and robust security features—including Microsoft Entra ID and Defender—ensure enterprise-grade protection. Discover more through the official blog, keynote, and breakout sessions.

Microsoft Fabric databases, now generally available, bring together SQL database and Cosmos DB in a new, unified software-as-a-service (SaaS) experience for organizations to manage, analyze and activate their data. Fabric databases provide instant provisioning, autonomous architecture, enterprise-grade security and native AI integration — including support for vector data and retrieval-augmented generation (RAG) patterns — to help teams build intelligent, real-time apps.

Additional resources:

• Blog: Learn more about this news
• Keynote: Opening Keynote
• Breakout: SQL database in Fabric: The unified database for AI apps and analytics
• Breakout: Real-time analytics and AI apps with Cosmos DB in Fabric

Microsoft unveils Fabric databases, now generally available, merging SQL database and Cosmos DB in a unified SaaS platform designed for data management and analytics. With instant provisioning, autonomous architecture and enterprise-grade security, organizations gain robust tools for building intelligent, real-time applications. Native AI integration, support for vector data and retrieval-augmented generation (RAG) patterns provide a foundation for advanced analytics and innovation. Fabric databases aim to empower teams to activate data faster.

Microsoft Fabric databases, now generally available, merge SQL database and Cosmos DB into a unified SaaS platform designed for data management, analytics, and activation. Offering instant provisioning and an autonomous architecture, Fabric delivers enterprise-grade security alongside native AI integration, supporting vector data and retrieval-augmented generation (RAG) patterns to empower teams in building intelligent, real-time applications. With resources including a detailed blog, an opening keynote, and breakout sessions on AI-driven analytics, organizations can explore how Fabric’s innovative approach streamlines database deployment and elevates app development with advanced AI capabilities.

Microsoft Fabric databases launch, merging SQL and Cosmos DB into a unified SaaS platform designed for builders seeking streamlined data management and analytics. With instant provisioning, autonomous architecture, and robust enterprise security, teams can quickly spin up intelligent, real-time apps with native AI integration, support for vector data and RAG patterns. Fabric databases offer the flexibility and performance needed to innovate faster. Dive deeper with the official blog, keynote, and breakout sessions to unlock new possibilities for your projects.

Now in preview, Managed Instance on Azure App Service will enable organizations to move web apps to the cloud with just a few configuration changes, saving the time and effort of rewriting code. Whether .NET web apps are running on premises or in virtual machines, customers will be able to modernize them into a fully managed platform-as-a-service (PaaS) environment and future-proof their infrastructure.

Many companies rely on older .NET apps for critical tasks like billing and HR, often depending on Windows-specific features and custom tools, which makes rewriting them expensive and risky. With Managed Instance on Azure App Service, they can keep operating with critical dependencies on local Windows services, third-party vendor libraries and custom runtimes without requiring any code changes. The result is faster app modernization with lower overhead and access to cloud-native scalability, built-in security and Azure’s AI capabilities. 

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news
• Breakout: From legacy to modern .NET apps on Azure faster than ever
• Breakout: Technical deep dive on migrating .NET apps to Azure App Service

Microsoft unveils Managed Instance on Azure App Service in preview, providing a path for organizations to migrate legacy .NET web apps to the cloud with minimal configuration changes. By eliminating the need for costly code rewrites, companies can modernize critical applications—such as billing and HR systems—while retaining essential dependencies on Windows services and custom tools. This new offering streamlines app modernization, reduces operational overhead, and delivers cloud-native scalability, robust security features, and access to Azure’s AI capabilities. Organizations looking to future-proof their infrastructure can now transition faster and more efficiently than ever before.

Managed Instance on Azure App Service enters preview, empowering organizations to migrate legacy .NET web apps to the cloud with minimal configuration changes and zero code rewrites. By supporting critical dependencies—local Windows services, third-party vendor libraries, and custom runtimes—businesses can modernize billing, HR, and other essential applications without disrupting operations or risking costly redevelopment. Transitioning to this fully managed platform-as-a-service unlocks cloud-native scalability, enhanced security, and access to Azure’s AI features, streamlining app modernization and future-proofing infrastructure. Dive deeper with technical breakouts and the official blog for migration strategies and insights.

Managed Instance on Azure App Service, now in preview, empowers organizations to migrate legacy .NET web apps to the cloud with minimal configuration and no code rewrites. Builders can modernize critical applications—such as billing and HR systems—while retaining dependencies on Windows services, vendor libraries, and custom runtimes. This streamlined approach reduces risks and costs, transforming on-premises or VM-based apps into a scalable, secure, cloud-native PaaS environment. Teams benefit from built-in security, Azure’s AI features, and easy scalability, accelerating modernization and future-proofing their infrastructure. Dive into the technical details and real-world migration stories in the linked resources.

The next phase of Azure Copilot, with agents built directly into the Azure portal, PowerShell and Command Line Interface (CLI), is available in private preview. The new, specialized agents will be able to help customers migrate, operate and continuously modernize workloads running anywhere for efficient end-to-end lifecycle management.

Azure Copilot will evolve chat into an immersive, full-screen command center powered by GPT-5 reasoning, artifact generation and Azure Resource Manager (ARM)-driven scenarios. Customers will be able to invoke Copilot in existing workflows with contextual and personalized experiences, including chat history and inline actions across the Azure portal.

Azure Copilot and its agentic capabilities fully respect all existing role-based access controls, Azure Policy and compliance frameworks, and it asks for explicit confirmation before making any changes. Enterprise-grade safeguards will also allow central IT teams to enforce compliance, policy and transparency across operations.

Capabilities in the new Azure Copilot agents will include:

• Deployment to help users streamline infrastructure planning and deployment based on Well-Architected Framework (WAF) best practices.

• Migration for accelerating cloud migration and modernization with intelligent capabilities that automate discovery and generate AI-powered infrastructure-as-a-service (IaaS) and platform-as-a-service (Paas) recommendations. This capability will also integrate with GitHub Copilot to help modernize .NET and Java apps and turn inventory into actionable development blueprints.

• Optimization for surfacing high-impact, cost-saving actions; comparing financial and carbon outcomes for sustainable decisions; and validating recommendations with evidence. This capability will also streamline execution through guided, agentic workflows that reduce effort and build confidence.

• Observability that uses metric, traces and log data from Azure Monitor application insights or Service Groups with health models. This will help users investigate and diagnose complex, full-stack apps across app and infrastructure layers, and provide recommended mitigation steps.

• Resiliency to help users improve business continuity with zonal resiliency recommendations, auto-remediation scripts, Recovery Point Objective/Recovery Time Objective goal orchestration and built-in compliance and ransomware protection. Customers will be able to plan, validate and sustain resilient environments through Copilot-guided smart summaries, configurations and inline insights.

• Troubleshooting with user-initiated issue resolution support, root causes and mitigation suggestions for several resource types, including virtual machines, Kubernetes and databases. Copilot will also auto-create support tickets when further escalations are required.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news
• Breakout: Unlock agentic intelligence in the cloud with Copilot in Azure
• Breakout: Unlock cloud-scale observability and optimization with Azure
• Breakout: End-to-End migration of applications with AI Agents to IaaS and PaaS

Microsoft unveils the next phase of Azure Copilot, introducing agents embedded directly into the Azure portal, PowerShell and CLI, now available in private preview. Leveraging GPT-5 reasoning and ARM-driven scenarios, the new Copilot transforms chat into a full-screen command center, empowering users to migrate, operate and modernize workloads with contextual, personalized assistance. Enterprise-grade safeguards ensure role-based access and explicit user confirmation before changes, while central IT retains control over policy enforcement and compliance. Key agent capabilities span deployment planning, intelligent migration with GitHub Copilot integration, cost and carbon optimization, advanced observability, zonal resiliency, and troubleshooting across diverse resources. The update promises secure lifecycle management for enterprises embracing cloud innovation.

Azure Copilot enters its next phase with specialized agents now embedded in the Azure portal, PowerShell, and CLI, available in private preview. Harnessing GPT-5 reasoning and ARM-driven scenarios, Azure Copilot transforms chat into a full-screen command center for migration, operation, and modernization of workloads running anywhere. Users benefit from contextual, personalized workflows, chat history, and inline actions, all while maintaining strict compliance through built-in safeguards and explicit change confirmations. Key capabilities include streamlined deployment with WAF best practices, accelerated cloud migration, AI-powered optimization for cost and sustainability, advanced observability, enhanced resiliency, and intelligent troubleshooting with auto-escalation. Enterprise IT teams gain robust visibility and control, making cloud management smarter and more secure.

Azure Copilot enters a new era with agent-driven capabilities now embedded in the Azure portal, PowerShell, and CLI—available in private preview. These specialized agents empower users to migrate, operate, and modernize workloads anywhere, delivering lifecycle management through intelligent automation. Powered by GPT-5 reasoning and ARM-driven scenarios, Copilot transforms chat into a dynamic, full-screen command center, offering contextual guidance and personalized workflows. Enterprise safeguards ensure compliance and transparency, while robust features span deployment, migration, optimization, observability, resiliency, and troubleshooting. With integrated support for GitHub Copilot and streamlined execution, builders can accelerate cloud innovation and create resilient, efficient solutions.

The latest generation of Azure Boost, now in preview, supports remote storage throughput of up to 20 Gbps, up to 1 million remote storage IOPS and network bandwidth of up to 400 Gbps, enabling significant performance improvements for the latest Azure virtual machine series.

Azure Boost is a server subsystem designed by Microsoft consisting of purpose-built software and hardware that offloads server virtualization processes traditionally performed by the hypervisor and host OS. Various storage- and network-intensive workloads will benefit the most from these new performance specifications.

In addition to increased storage and network bandwidth, Azure Boost can help enhance virtual machine security and isolation by providing a physical boundary and memory isolation between the Boost infrastructure and customer workloads to help protect user workloads from attacks at the host level. By providing a hardware-based root of trust, Boost can help ensure only trusted firmware and software can run on Boost-powered hosts, enhancing overall server security.

Additional resources:

• Blog: Learn more about this news
• Breakout: Powering modern cloud workloads with Azure Compute

The latest generation of Azure Boost, now in preview, delivers a leap in performance for Azure virtual machines with remote storage throughput reaching 20 Gbps, up to 1 million IOPS and network bandwidth of 400 Gbps. Built by Microsoft as a dedicated server subsystem, Azure Boost shifts virtualization tasks away from the hypervisor and host OS, optimizing workloads that demand intensive storage and network resources. Beyond speed, the platform introduces enhanced security and isolation by establishing a physical boundary and memory separation between the Boost infrastructure and customer workloads. By enforcing a hardware-based root of trust, Azure Boost ensures only verified firmware and software run on its hosts, bolstering protection against host-level attacks.

The latest generation of Azure Boost enters preview, delivering remote storage throughput of up to 20 Gbps, 1 million remote storage IOPS, and network bandwidth reaching 400 Gbps—propelling the latest Azure VM series to new performance heights. Purpose-built by Microsoft, this server subsystem offloads critical virtualization tasks from the hypervisor and host OS with specialized software and hardware, unlocking gains for storage- and network-intensive workloads. Beyond sheer speed, Azure Boost strengthens security and isolation by introducing a physical and memory boundary between infrastructure and customer workloads, thwarting host-level attacks. With a hardware-based root of trust, only verified firmware and software run on Boost-powered hosts, safeguarding server integrity.

The latest generation of Azure Boost, now in preview, brings upgrades to Azure virtual machines, delivering remote storage throughput up to 20 Gbps, 1 million remote storage IOPS, and network bandwidth to 400 Gbps. Engineered by Microsoft with custom software and hardware, this server subsystem offloads virtualization tasks from the hypervisor and host OS, unlocking peak performance for storage and network-heavy workloads. Beyond speed, Azure Boost strengthens VM security and isolation by creating a physical boundary and memory separation between infrastructure and customer workloads, shielding against host-level attacks. A hardware-based root of trust ensures only verified firmware and software run on Boost hosts.

Azure Cobalt 200, now in preview, is the next-generation Cobalt CPU designed to power cloud-native apps on Azure.

Cobalt 200 will advance Microsoft’s systems approach to infrastructure, integrating the latest silicon technology with infrastructure enhancements, including Azure Boost and the Azure-integrated hardware security module (HSM). Features on Cobalt 200 include:

• Performance: Up to 50% higher performance than Cobalt 100.
• Advanced architecture: More cores, larger cache and faster memory, all built on the latest Arm architecture and 3nm TSMC process technology.
• Advanced infrastructure: Integrates the current generation of Azure Boost and Azure-integrated HSM for enhanced efficiency and security.
• Power efficiency: Azure’s most power-efficient compute platform, reducing energy consumption while accelerating workloads.

Additional resources:

• Blog: Learn more about this news

Microsoft unveils Azure Cobalt 200, its next-generation Cobalt CPU now in preview, elevating cloud-native app performance on Azure. Built on Arm architecture and TSMC’s 3nm process, Cobalt 200 delivers up to 50% higher performance than its predecessor with more cores, larger cache and faster memory. Integrating Azure Boost and an Azure-integrated hardware security module, the processor enhances both efficiency and security for cloud workloads. Cobalt 200 stands out as Azure’s most power-efficient compute platform, significantly reducing energy consumption while accelerating demanding tasks.

Azure Cobalt 200 debuts in preview as Azure's most power-efficient CPU, delivering up to 50% higher performance over its predecessor, Cobalt 100. Leveraging the latest Arm architecture and built on TSMC’s cutting-edge 3nm process, Cobalt 200 packs more cores, a larger cache, and faster memory for demanding workloads. Infrastructure gains include integration with Azure Boost and Azure’s hardware security module (HSM), ensuring both speed and security. This platform cuts energy consumption while accelerating workloads.

Azure Cobalt 200, now in preview, delivers up to 50% higher performance over its predecessor by harnessing more cores, larger cache, and faster memory—all built on Arm architecture and TSMC’s 3nm process. Builders can leverage integrated Azure Boost and hardware security modules for improved efficiency and security, while enjoying Azure’s most power-efficient compute platform to accelerate workloads with reduced energy consumption. This next-generation CPU advances Microsoft’s systems infrastructure.

Microsoft Marketplace — the destination for cloud solutions, AI apps and agents — is now globally available following its U.S. launch in September. Featuring the industry’s largest catalog of AI apps and agents, Marketplace extends the Microsoft Cloud, helping customers accelerate their AI-first transformation with vetted solutions from tens of thousands of partners. These solutions integrate easily with Microsoft products, delivering faster time-to-value.

Marketplace powers Microsoft’s ecosystem of more than 500,000 partners to support commercial customers worldwide. To enable more channel-led opportunities, resale-enabled offers are also now available in nearly all regions supported by Marketplace, allowing software companies to empower their channel partners to manage listings and drive scale. Channel partners can now lead customers’ AI transformation while benefiting from Marketplace capabilities.

Additional resources:

• Blog: Learn more about this news
• Breakout: Microsoft Marketplace: Your trusted source for cloud and AI solutions
• Breakout: Boost cloud and AI ROI using Microsoft Marketplace
• Theater: Build, buy, or blend: Charting your agent strategy with Marketplace

Microsoft has rolled out its Marketplace for cloud solutions and AI apps globally, expanding beyond its initial U.S. launch in September. The platform connects customers with vetted offerings from tens of thousands of partners, integrating with Microsoft products to accelerate AI-first transformation. With more than 500,000 partners in its ecosystem, Microsoft now enables resale offers in nearly all supported regions, empowering software companies and channel partners to manage listings and scale commercial opportunities.

Microsoft Marketplace, now globally available after its U.S. debut in September, offers the industry’s largest catalog of AI apps and agents, empowering organizations to accelerate their AI-first transformation. Customers benefit from seamless integration with Microsoft products and access to tens of thousands of vetted solutions from a vast partner ecosystem. With over 500,000 partners, Marketplace enables commercial customers worldwide to achieve greater scalability. Resale-enabled offers now span nearly every supported region, allowing software companies and channel partners to manage listings and drive growth.

Microsoft Marketplace, now available worldwide after its September U.S. debut, opens the door to the industry’s largest catalog of AI apps and agents. Builders can tap into vetted solutions from tens of thousands of partners that accelerate AI-first projects and time-to-value. Marketplace empowers over 500,000 partners to support commercial customers at scale, and with expanded resale capabilities, software companies can enable channel partners to manage listings and drive growth.

Microsoft Edge for Business, the first AI browser to securely combine public web data with organizational data, is introducing Copilot Mode in private preview, turning the browser into a proactive, agentic partner.

AI browsing is set to boost productivity, but until now, organizations have been asked to drop their bar on enterprise-grade security to benefit from it. Microsoft aims to change this by transforming the secure enterprise browser into a secure enterprise AI browser, making AI-assisted browsing safe for workplaces.

With the addition of Copilot Mode, Edge for Business now delivers agentic, proactive and contextual intelligence, helping users streamline workflows, stay on task and connect the dots across data silos while ensuring that unique work context is integrated. Edge for Business aligns with Microsoft’s commitment to security, controls and enterprise data protection.

When IT admins enable Copilot Mode, it will initially include the following features:

• Agent Mode: Makes the browser capable of taking actions on a user’s behalf with multistep workflows on IT-approved websites. Users will be able to set the direction and receive visual cues for transparency and prompts for oversight at critical junctions, all to help streamline tasks. A Microsoft 365 Copilot license will be required.
• Copilot-inspired new tab page: Combines search and chat in one intelligent box, with easy access to files, personalized Copilot prompt suggestions and more. A Microsoft 365 Copilot license is required.

• Daily Briefing: Delivers curated highlights of meetings, tasks and priorities using Microsoft Graph and browser history, so users can focus on the right things at the right time. A Microsoft 365 Copilot license will be required.

Other new AI features are also available in private preview outside of Copilot Mode, leveraging context to make browsing smarter. They include:

• Multitab reasoning will provide answers based on all open tabs, across organizational and web content.
• Intelligent browser history will retrieve pages from the past three months using natural language with no need to remember exact titles.
• YouTube video summarization gives quick summaries and answers questions about YouTube content, bringing the efficiency of webpage summarization to video.

Agent Mode and multitab reasoning will respect existing data protection policies, like data loss prevention. Agent Mode won’t access passwords, payment methods and other sensitive info stored in the Edge wallet. It will require explicit user permission for any action it considers sensitive.

All new features are in private preview now, with broader availability coming in February.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news
• Breakout: Edge for Business: Shaping the future of secure enterprise browsing
• Theater: Edge for Business: Unlocking secure, productive work

 

Microsoft Edge for Business is debuting Copilot Mode in private preview, positioning itself as the first AI browser to securely merge public web data with organizational data. The update transforms Edge into a proactive partner, offering agentic and contextual intelligence that streamlines workflows and bridges data silos — without compromising enterprise-grade security. Key features include Agent Mode for multi-step automated tasks, a Copilot-inspired new tab page, and Daily Briefing summaries. Additional AI tools such as multi-tab reasoning and YouTube video summarization further enhance browsing. With strict adherence to data protection policies, these innovations provide safe, AI-assisted enterprise browsing, with wider rollout planned for February.

Microsoft Edge for Business unveils Copilot Mode in private preview, transforming the browser into a proactive AI partner that securely blends public and organizational data. By introducing agentic and contextual intelligence, Edge empowers users to streamline workflows and connect insights across data silos—without compromising enterprise-grade security. Highlights include Agent Mode for multi-step actions, a Copilot-inspired new tab with search and chat, and Daily Briefing powered by Microsoft Graph. Additional AI features—like multi-tab reasoning, intelligent browser history, and YouTube video summarization—further enhance productivity while respecting strict data protection standards. All new features are rolling out broadly in February.

Microsoft Edge for Business unveils Copilot Mode in private preview, transforming the browser into a proactive AI-powered partner that securely blends public web and organizational data. With features like Agent Mode, users can automate multi-step workflows on IT-approved sites, benefiting from transparency and oversight. The Copilot-inspired new tab page integrates search, chat, and personalized prompt suggestions, while Daily Briefing delivers curated meeting and task highlights. Additional AI capabilities—multi-tab reasoning, intelligent browser history, and YouTube video summarization—enhance productivity without compromising enterprise-grade security. All new features are available for private preview, with wider rollout slated for February.

Microsoft Edge for Business is introducing a cost-effective solution that enables secure access to work resources on contractor-managed devices. Admins can currently support Bring Your Own Device (BYOD) scenarios on Edge for Business by using Intune Mobile Application Management (MAM). With this update, coming to preview beginning in January, those Intune MAM protections will extend to devices managed by other organizations. 

Admins will be able to set up a MAM profile on an externally managed device, creating a controlled browser environment in Edge for Business. Previously, files downloaded onto an agency-controlled device would typically be stored on a local drive, increasing the risk of data leaks to the contractor’s agency. With the new Intune MAM protections, IT admins will be able to safely direct file downloads to a OneDrive for Business location associated with the managed Edge for Business profile. Admins will also be able to enforce copy/paste restrictions, ensuring that copied data remains within the organization’s tenant, so proprietary data doesn’t leave the managed boundary.

Edge for Business with Intune MAM protections for agency-managed devices is expected to be in preview beginning in January.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news
• Breakout: Edge for Business: Shaping the future of secure enterprise browsing
• Theater: Edge for Business: Unlocking secure, productive work

Microsoft Edge for Business is rolling out enhanced security measures for contractor-managed devices, allowing admins to safely extend access to work resources. Beginning in January, a preview update will let Intune Mobile Application Management (MAM) protections cover devices managed by external organizations, not just BYOD setups. This advancement enables IT teams to create controlled browser environments, enforce copy/paste restrictions, and direct file downloads to OneDrive for Business—reducing risks of data leaks to contractor agencies.

Microsoft Edge for Business is rolling out a budget-friendly solution that lets contractors securely access work resources on externally managed devices. Starting in January, Intune Mobile Application Management (MAM) protections will expand to agency-managed devices, empowering admins to configure controlled browser environments and enforce strict data boundaries. Instead of saving files locally—risking data leaks—downloads can now be routed to OneDrive for Business, keeping sensitive information protected. Enhanced controls like copy/paste restrictions ensure proprietary data stays within the organization’s tenant.

Microsoft Edge for Business is rolling out a streamlined solution to securely connect contractors to work resources on their own agency-managed devices. Starting in January, admins can leverage Intune Mobile Application Management (MAM) to set up controlled browsing environments, extending protections beyond traditional BYOD scenarios. This update empowers IT teams to direct file downloads safely to OneDrive for Business and apply copy/paste restrictions, ensuring sensitive data stays within organizational boundaries. By harnessing these enhanced controls, businesses can collaborate with external partners while minimizing data leakage risks, all within a cost-effective and flexible framework.

Microsoft Edge for Business is rolling out two updates, both in preview beginning later this month, to significantly simplify browser management for IT admins.

With new cross-platform security policies, admins will be able to use the Edge management service in the Microsoft 365 admin center to easily set and enforce Edge browser policies across macOS, iOS and Android. Admins will be able to select checkboxes for the additional platforms to manage. Whether configuring policies broadly or adjusting individual settings, everything will happen in one place.

Edge for Business is also introducing a simpler, more flexible approach to test pre-release Edge builds. Enterprise preview will enable admins to deliver Beta builds directly inside the Stable Edge app with no extra installs for admins and no switching apps for users. With the Edge management service and Intune, admins will be able to set policies to designate who gets preview builds and whether users can roll back to Stable at any time. The rollback option will give users a safety net to keep work moving and admins more flexibility to crowdsource validation. With everything in one app instead of multiple app instances, testing will become a natural part of browser workflow, giving admins more control and coverage, while reducing the compromise between security and productivity.

The updates will empower IT teams with simple, unified capabilities to manage and test Edge across platforms, builds and their organizations.

Additional resources:

• Blog: Learn more about this news
• Breakout: Edge for Business: Shaping the future of secure enterprise browsing
• Theater: Edge for Business: Unlocking secure, productive work

Microsoft Edge for Business is set to launch two preview updates later this month, streamlining browser management for IT administrators. New cross-platform security policies will let admins enforce Edge settings across macOS, iOS and Android directly from the Microsoft 365 admin center, using simple checkboxes for platform selection. The introduction of Enterprise preview allows Beta builds to be tested within the Stable Edge app, eliminating the need for separate installations or app switching. Admins can control who receives preview builds and enable rollbacks to Stable, providing flexibility and a safety net for users. These updates aim to unify policy management and testing in one place, enhancing security and productivity for organizations.

Microsoft Edge for Business unveils two major updates in preview this month, streamlining browser management for IT admins. Cross-platform security policies now let admins set and enforce Edge policies across macOS, iOS, and Android from the Microsoft 365 admin center, enabling easy configuration for multiple platforms in one location. Meanwhile, the new enterprise preview feature allows Beta builds to be tested directly within the Stable Edge app—no extra installations or app switching required. Admins can control who receives preview builds and offer a rollback option, enhancing flexibility and security while minimizing workflow disruptions. These enhancements empower IT teams with unified, efficient tools to manage and test Edge across devices and builds.

Microsoft Edge for Business is launching two major updates in preview later this month, streamlining browser management for IT admins. With new cross-platform security policies, admins can now set and enforce Edge policies across macOS, iOS, and Android directly from the Microsoft 365 admin center, managing all platforms in one unified dashboard. Additionally, a revamped enterprise preview allows Beta builds of Edge to be delivered inside the Stable app, eliminating extra installs and app switching. Admins gain granular control over who receives preview builds and can offer users instant rollback to Stable. These enhancements empower IT teams to manage, test, and secure Edge deployments, promoting both flexibility and robust security across their organizations.

Microsoft Edge for Business is introducing the preview of watermarking and clipboard controls to help protect sensitive data without slowing productivity, giving admins more precision to guide user behavior and reduce risk.

Employees often struggle to recognize which files are safe to share and which are not. Edge for Business is making it easier to distinguish sensitive data with a watermarking overlay — a persistent, visual reminder that will prompt users to pause and think before sharing confidential content. Admins will be able to enable watermarking with a simple toggle in the Edge management service. Once turned on, the overlay will appear on sensitive files and sites based on sensitivity labels or data loss prevention (DLP) policies.

Another new feature addresses the “all or nothing” dilemma common in data protection: Admins can either block all copy/paste actions or allow users to copy/paste freely and risk data leaks. Protected clipboard in Edge for Business will enable admins to define trusted boundaries across managed web apps. Data from inside the boundary can’t be pasted outside, while data from outside can enter the boundary if needed. Users will get a clear warning if they try to paste outside the trusted zone, keeping data safe without breaking workflows.

These features are available in preview beginning later this month.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news
• Breakout: Edge for Business: Shaping the future of secure enterprise browsing
• Theater: Edge for Business: Unlocking secure, productive work

Microsoft Edge for Business is rolling out a preview of watermarking and clipboard controls this month, aiming to strengthen data protection without hindering productivity. With a watermark overlay now marking sensitive files and sites, employees receive a constant visual cue to reconsider sharing confidential content. Administrators can activate watermarking via a simple toggle, making it easier to safeguard information. Additionally, the new protected clipboard feature lets IT teams set trusted boundaries for copy-paste actions, preventing data leaks while allowing necessary workflow flexibility. These enhancements will help enable more precise user guidance and reduced risk in enterprise environments.

Edge for Business is set to roll out watermarking and clipboard controls in preview, empowering admins to safeguard sensitive data without hindering productivity. With watermark overlays on confidential files and sites, users receive a clear visual cue to think twice before sharing. Admins can easily activate watermarking via Edge's management service, customizing protection by sensitivity labels or DLP policies. Meanwhile, the new protected clipboard feature enables granular control, letting admins define trusted boundaries for copy/paste actions within managed web apps. This helps ensure data can't leak outside designated zones, while workflow remains uninterrupted thanks to clear user warnings. Preview access begins later this month.

Edge for Business is rolling out preview features designed to safeguard sensitive data while maintaining workflow efficiency. Watermarking overlays now clearly flag confidential files and sites, prompting employees to double-check before sharing, and admins can activate this protection with a single toggle in the Edge management service. Meanwhile, the new protected clipboard feature lets admins set trusted boundaries for copy/paste actions—data can stay secure within managed web apps, with users receiving warnings if they try to paste sensitive information outside safe zones. These enhancements, available in preview later this month, empower organizations to guide user behavior and reduce risk without sacrificing productivity.

Native integration of Microsoft Defender for Cloud and GitHub Advanced Security is now available in preview. With this integration, users will be able to protect cloud-native apps across the full app lifecycle. The rise in sophisticated software supply chain attacks demands this more comprehensive approach to security, from code to runtime.

The natively integrated solution introduces runtime context as the most effective measure for prioritizing security risk, with powerful insights that will allow teams to focus on what matters most and fix issues faster with AI-powered remediation. Features include:

• Real-time visibility across the app lifecycle to empower developer and security teams to collaborate in tools they use every day. Security teams will be able to ask for vulnerability remediation by having a security campaign alert GitHub owners, as well as opening a GitHub issue directly from Defender for Cloud and tracking the status of the vulnerability.
• Critical alert prioritization: By connecting runtime context to code, developer teams will be able to prioritize exploitable issues and map them back to the code. Security teams will be able to understand the traceability of the artifact from code to runtime and trace runtime threats directly to the code in GitHub. As a result, the most critical alerts will be fixed first.
• Remediation time reduction: AI-suggested fixes with Copilot Autofix and GitHub Copilot coding agent will automatically be generated, making it faster for developers to resolve security issues with confidence.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news
• Breakout: Secure code to runtime with AI infused DevSecOps
• Breakout: Secure your applications: Unified Visibility and Posture Management

Microsoft Defender for Cloud now offers native integration with GitHub Advanced Security in preview, aiming to shield cloud-native apps throughout their lifecycle amid a surge in software supply chain attacks. By introducing runtime context, the platform enables teams to prioritize and address security risks more effectively, leveraging AI-powered remediation tools like Copilot Autofix for faster fixes. Real-time collaboration features allow security teams to trigger alerts, open GitHub issues directly from Defender, and track vulnerabilities seamlessly. The integration connects code to runtime, helping developers focus on exploitable issues and ensuring critical threats are resolved first, ultimately reducing remediation time.

Microsoft Defender for Cloud now natively integrates with GitHub Advanced Security, previewing a unified approach to safeguarding cloud-native apps from code to runtime. Responding to escalating software supply chain threats, this solution brings real-time visibility, AI-powered remediation, and runtime context directly into developer workflows. Teams can launch security campaigns, open GitHub issues from Defender, and track vulnerabilities. By linking runtime threats to code, critical alerts are prioritized and fixes are accelerated with Copilot Autofix and GitHub Copilot agents. Developers and security teams gain collaboration tools and insights, helping to ensure that the most exploitable risks are addressed first.

Microsoft Defender for Cloud now integrates with GitHub Advanced Security in preview, empowering teams to protect cloud-native apps throughout the entire development lifecycle. With the rise of complex supply chain attacks, this unified solution introduces runtime context for smarter risk prioritization and leverages AI-powered remediation to accelerate issue resolution. Real-time visibility and collaborative workflows allow developers and security teams to tackle vulnerabilities together, opening GitHub issues directly from Defender and tracking progress. Critical alerts are mapped from runtime threats back to code, ensuring the most urgent fixes come first. AI-driven Copilot Autofix streamlines remediation, helping builders secure their code faster and with confidence.

Posture management for serverless resources is coming at the end of November in preview in Microsoft Defender for Cloud (MDC). As cloud and AI technologies advance, more organizations are moving away from traditional infrastructure as a service (IaaS) and adopting serverless solutions across multicloud environments. This introduces new and expanded entry points, simplifies lateral movement and leaves serverless resources increasingly vulnerable to risk.

With the new serverless coverage in MDC, customers will gain greater visibility into serverless compute environments and application platforms. Integrating serverless posture insights into the attack path will strengthen end-to-end security with comprehensive protection across workloads and services. The preview will enable organizations to get cloud security posture management insights for serverless resources including Azure Functions, Azure Web Apps and AWS Lambda.

IT and security teams will also be able to identify and visualize risk, analyze serverless attack paths, continuously monitor and detect misconfigurations, and find vulnerable serverless resources — further strengthening the security posture across the modern application lifecycle.

Additional resources:

• Blog: Learn more about this news
• Breakout: Secure your applications: Unified Visibility and Posture Management

Microsoft Defender for Cloud will preview posture management for serverless resources at the end of November, as organizations shift from traditional IaaS to serverless solutions in multicloud environments. The new feature offers enhanced visibility into serverless compute environments and platforms like Azure Functions, Azure Web Apps and AWS Lambda, helping security teams pinpoint risks and misconfigurations. By integrating serverless posture insights into attack path analysis, MDC aims to deliver comprehensive protection across workloads and services. IT teams can expect improved risk visualization, continuous monitoring and stronger security throughout the modern application lifecycle.

Microsoft Defender for Cloud will launch preview support for serverless resource posture management at the end of November, expanding protection as organizations shift to serverless and multicloud environments. With this update, customers gain enhanced visibility into serverless compute and application platforms, including Azure Functions, Azure Web Apps, and AWS Lambda. By integrating posture insights directly into attack path analysis, the new feature empowers IT and security teams to identify risks, detect misconfigurations, and monitor vulnerabilities in real time. This comprehensive approach fortifies end-to-end security and streamlines management across the modern application lifecycle.

Posture management for serverless resources arrives in preview at the end of November in Microsoft Defender for Cloud, empowering organizations to secure Azure Functions, Azure Web Apps, and AWS Lambda across multicloud environments. As businesses shift from traditional IaaS to serverless architectures, new entry points and risks emerge—making cloud security a top priority. With enhanced visibility and integrated attack path insights, IT and security teams can proactively identify vulnerabilities, monitor for misconfigurations, and analyze serverless attack paths. This comprehensive coverage strengthens protection across workloads and services.

Unified posture management and threat protection for AI agents in Microsoft Defender are now available in preview as a part of Microsoft Agent 365.

As organizations adopt agentic AI apps across pro-code, low-code and no-code platforms, the complexity and attack surface of their digital estate expands dramatically. AI developers and security administrators need a unified view of agentic AI assets to manage security posture and reduce risk, while security operations analysts need AI security signals correlated with contextual alerts to speed up remediation. The new tools in Defender will empower customers in three areas:

• Comprehensive posture visibility for AI agents: The new unified agent posture and threat management experience will provide comprehensive visibility, posture management and threat protection across pro-code, low-code and no-code platforms, helping to reduce shadow agents and agent sprawl.
• Risk reduction for AI agents: Defender proactively enhances the security posture of agentic AI apps with security recommendations and attack path analyses, allowing organizations to detect and address agentic AI vulnerabilities before potential breaches.
• Threat protection for AI agents: Defender enables security analysts to detect, investigate and respond to threats against agentic AI services, such as prompt injections, sensitive data exposure and malicious tool misuse, across AI models, agents and cloud apps. New AI agent-related detections will be contextualized with threat intelligence to provide a comprehensive picture of alerts.

What distinguishes the security for AI in Defender is its build-to-runtime approach and unified protection for AI models, agents, software-as-a-service (SaaS) apps and cloud infrastructure.

Additional resources:

• Blog: Learn more about this news
• Breakout: Secure agents in Microsoft Foundry with Microsoft Security

Microsoft Defender introduces unified posture management and threat protection for AI agents, now available in preview with Agent 365. As businesses embrace agentic AI across pro-code, low-code and no-code platforms, the tools offer comprehensive visibility, streamlined posture management and robust threat protection to curb shadow agents and agent sprawl. Security teams gain proactive risk reduction with tailored recommendations and attack path analysis, helping organizations identify vulnerabilities before breaches occur. Defender also empowers analysts to detect and respond to threats like prompt injections, sensitive data leaks and malicious tool misuse, leveraging contextual threat intelligence. The build-to-runtime design helps ensure security across AI models, agents, SaaS apps and cloud infrastructure.

Unified posture management and threat protection for AI agents are now available in preview within Microsoft Defender, as part of Agent 365. As organizations embrace agentic AI apps across pro-code, low-code, and no-code platforms, Defender streamlines security by offering comprehensive visibility and posture management, reducing shadow agents and agent sprawl. Enhanced risk reduction features proactively flag vulnerabilities and recommend fixes before breaches occur, while security analysts benefit from contextualized alerts and threat intelligence to detect, investigate, and remediate issues like prompt injections and data exposure. Defender’s build-to-runtime approach delivers unified protection for AI models, agents, SaaS apps, and cloud infrastructure.

Unified posture management and threat protection for AI agents debut in Microsoft Defender’s preview, integrated with Microsoft Agent 365. As organizations expand their use of agentic AI apps across pro-code, low-code, and no-code platforms, the digital attack surface grows more complex. Defender’s new capabilities offer comprehensive visibility into AI agents, empowering developers and security teams to manage assets, reduce shadow agents, and address vulnerabilities before breaches occur. Enhanced threat protection enables detection and rapid response to risks like prompt injections and data exposure, with contextualized alerts informed by threat intelligence. Defender’s build-to-runtime approach delivers unified security across AI models, agents, SaaS apps, and cloud infrastructure.

Unified security posture management is available in preview for existing Microsoft Defender for Cloud (MDC) customers.

Security teams today face a growing challenge in managing risk across sprawling hybrid and multicloud environments. Fragmented signals, siloed tools and disjointed views slow down detection and response, making it harder for security operations centers (SOCs) to stay ahead of threats.

MDC will be deeply integrated into the Defender portal for security personas. This native integration will eliminate silos so security teams can see and act on threats across all environments from one place. This integration will offer:

• A cloud security dashboard that will bring together posture management and threat protection in one place, giving security teams a complete view of their cloud environment.
• Unified cloud posture capabilities within Exposure Management, so security teams will be able to see assets, vulnerabilities, attack paths, secure scores and prioritized recommendations in one view.
• A centralized asset inventory that will provide a consolidated view of code and cloud resources across Azure, Amazon Web Services and Google Cloud Platform. It will enable posture validation and logical segmentation, helping teams align visibility and actionable data with operational needs.

To complement this integration, granular role-based access control (RBAC) will reduce operational risk and simplify compliance across multicloud environments. With threat protection already deeply embedded into the Defender portal, this expansion will add posture management, bringing together a complete cloud security solution in one unified experience.

The Azure portal remains important for Defender for Cloud personas beyond security teams such as DevOps, so adding security for new resources will continue to remain in the Azure portal.

Additional resources:

• Blog: Learn more about this news
• Breakout: Secure your applications: Unified Visibility and Posture Management

Microsoft rolls out unified security posture management in preview for Defender for Cloud customers, aiming to streamline risk management across hybrid and multicloud environments. By integrating MDC directly into the Defender portal, security teams gain a consolidated dashboard for posture management and threat protection, breaking down silos and accelerating response times. Enhanced exposure management now offers a single view of assets, vulnerabilities, attack paths and prioritized recommendations, while a centralized inventory spans Azure, AWS and Google Cloud, enabling posture validation and logical segmentation. Granular role-based access control further reduces operational risk and simplifies compliance.

Unified security posture management arrives in preview for Microsoft Defender for Cloud customers, tackling the complexities of hybrid and multicloud risk. By integrating deeply into the Defender portal, MDC empowers security teams with a single dashboard for posture management and threat protection, consolidating views across Azure, AWS, and Google Cloud. Exposure Management now offers visibility into assets, vulnerabilities, attack paths, and secure scores, while a centralized asset inventory streamlines posture validation and segmentation. Enhanced with granular RBAC for simplified compliance, this unified experience eliminates silos and accelerates response.

Unified security posture management is now in preview for Microsoft Defender for Cloud customers, empowering security teams to tackle risk across hybrid and multicloud environments. By integrating deeply into the Defender portal, silos are eliminated, enabling seamless threat detection and response from a single dashboard. Teams gain unified visibility of assets, vulnerabilities, attack paths, secure scores, and prioritized recommendations, all consolidated across Azure, AWS, and Google Cloud. Centralized asset inventory and granular role-based access control streamline compliance and operational risk, while exposure management ensures actionable insights are within reach.

Microsoft Defender is introducing several innovations, in preview, that will strengthen its ability to detect and thwart attacks. Capabilities will include:

• Predictive Shielding, a component of automatic attack disruption, will be able to anticipate attacker movement and proactively harden pathways to critical assets. Once a compromised asset is contained, Predictive Shielding will use threat intelligence and graph insights to forecast where attackers are likely to pivot and apply targeted, just-in-time hardening actions — such as Group Policy Object changes or disabling Safe Boot. This coordinated response will reduce tens of thousands of potential attack paths to just a handful, optimizing business continuity while minimizing risk.
• Third-party attack disruption for AWS, Proofpoint and Okta: Automatic attack disruption is a capability that identifies sophisticated attacks, such as ransomware and adversary-in-the-middle attacks, with high confidence and contains compromised assets like devices and identities within minutes to limit impact. Microsoft is expanding this capability, which previously exclusively worked on top of Defender solutions, to AWS, Proofpoint and Okta, when the signal is ingested via Microsoft Sentinel. This will enable real-time detection and containment of threats like phishing and identity compromise across federated accounts and cloud boundaries.
• A Threat-Hunting Agent that will orchestrate full threat-hunting sessions through natural language. Analysts will be able to ask questions like, “Which devices communicated with this domain in the last 24 hours?” and receive summarized answers, underlying KQL queries and dynamic follow-up suggestions — all within a chat interface. The agent will also provide contextual insights and visualizations like timelines, making advanced hunting accessible even to those without query expertise.

Additional resources:

• Blog: Learn more about this update

Microsoft Defender is rolling out preview features aimed at elevating cybersecurity with predictive shielding that proactively fortifies critical assets based on attacker behavior. By leveraging threat intelligence and graph insights, the platform swiftly narrows thousands of attack paths to just a few, reducing risk and maintaining business continuity. In a significant expansion, automatic attack disruption now extends beyond Defender to third-party platforms such as AWS, Proofpoint and Okta via Microsoft Sentinel, enabling rapid containment of threats across cloud boundaries. Meanwhile, a new Threat Hunting Agent empowers analysts with chat-driven, natural language queries, providing dynamic answers, visualizations and full threat-hunting sessions—making advanced security accessible to all skill levels.

Microsoft Defender unveils powerful new security features in preview, including Predictive Shielding, which proactively forecasts attacker moves and hardens critical pathways using threat intelligence and graph insights. By reducing thousands of potential attack paths to just a few, organizations benefit from enhanced business continuity and minimized risk. Expanded automatic attack disruption now covers AWS, Proofpoint, and Okta via Microsoft Sentinel, enabling rapid detection and containment of threats like ransomware and phishing across cloud environments. The new Threat Hunting Agent empowers analysts to conduct advanced investigations using natural language, offering instant summaries, contextual insights, and visualizations—all within a user-friendly chat interface.

Microsoft Defender unveils powerful new features in preview, including Predictive Shielding, which leverages threat intelligence and graph insights to anticipate attacker moves and proactively reinforce critical assets. By forecasting potential pivots and applying just-in-time security measures, this innovation dramatically narrows thousands of attack paths to just a few, ensuring both robust protection and business continuity. In a significant expansion, Defender’s automatic attack disruption now extends beyond Microsoft environments to AWS, Proofpoint, and Okta via Microsoft Sentinel, enabling swift detection and containment of threats like ransomware and phishing across multi-cloud and federated accounts. Additionally, a new Threat Hunting Agent empowers analysts to conduct advanced investigations through natural language, offering instant answers, KQL queries, and visual insights—making expert-level threat hunting accessible to all.

Microsoft Entra is introducing secure access for AI agents, agentic workflows for identity and security professionals, enhanced protections for employees using generative AI apps and web resources, and expanded passwordless authentication. Microsoft Entra Agent ID is now in preview via Microsoft Agent 365. An enterprise-grade solution for preventing agent sprawl and protecting AI agent identities and their access to resources, Agent ID will enable organizations to:

• Register and manage AI agents through a complete inventory of the agent fleet, and ensure new agents are created with a built-in identity and automatically protected by organizational policies.
• Govern agent identities and lifecycle with lifecycle management and IT-defined guardrails for both agents and the people creating and managing them.
• Protect agent access to resources to reduce risk of breaches, block risky agents and prevent agent access to malicious resources with conditional access and traffic inspection.

At preview, agents developed in Microsoft Copilot Studio, Microsoft Foundry and Security Copilot will have built-in Entra Agent ID features. Developers will be able to adopt Entra Agent ID for agents built through Microsoft Agent Framework, Microsoft Agent 365 SDK or Microsoft Agent ID SDK.

New AI-powered Security Copilot agents are also available in Entra for organizations to automate identity and access security tasks with more accuracy and efficiency. Entra Agent ID will support each agent with a unique, governed identity. The agents include:

• A Conditional Access Optimization Agent for ensuring the right protections are applied to the right users. This is generally available, with new features in preview.
• An Identity Risk Management Agent for investigating and remediating risky users with intelligent insights and recommendations. This is in preview.
• An App Lifecycle Management Agent for automating discovery, onboarding, monitoring and remediation of apps across the environment. This is in preview.
• An Access Review Agent for streamlining user access and permissions reviews and quickly acting on recommendations with AI-powered insights. This is in preview.

Microsoft Entra Internet Access has new capabilities, in preview, for securing access and usage of generative AI on a network level. The AI-centric capabilities include:

• Real-time protection against prompt injection attacks across all generative AI apps — sanctioned, unsanctioned or custom.
• Expanded visibility into network traffic to uncover unsanctioned AI usage, including custom apps.
• Integration of network file filtering with Microsoft Purview to discover and block sensitive content in files sent to generative AI and software-as-a-service (SaaS) apps.

New Microsoft Entra ID features, in preview, will strengthen identity protection and reduce the risk of phishing and impersonation attacks, while providing a user-friendly experience and self-service options. The features will include:

• Support for synced passkeys from Apple, Google and other third-party providers, and passkey profiles for easier management.
• Expanded risk remediation and detection to help identity admins respond faster and enhance security operations center collaboration with Microsoft Defender.
• Secure, self-service account recovery for users to regain access with Verified ID Face Check and a government-issued ID if their device is lost or stolen.

Additional resources:

• Blog: Learn more about this update
• Breakout: Microsoft Entra: What’s New in Secure Access on the AI Frontier
• Breakout: Secure access for AI agents with Microsoft Entra
• Breakout: Microsoft Entra Suite: Accelerate Zero Trust and Secure AI Access
• Breakout: Identity Under Siege: Modern ITDR from Microsoft
• Breakout: Top Essentials for an Integrated, AI-Ready Security Foundation
• Theater: Move OFF Passwords: Passkeys in Microsoft Entra ID
• Theater: Modernize Identity Governance for SAP with Microsoft Entra

Microsoft Entra unveils a suite of AI-powered security enhancements, including Agent ID—now in preview—to safeguard enterprise AI agents and streamline their management. Organizations can register, govern and protect agent identities, leveraging built-in lifecycle controls and conditional access to curb breaches and block risky agents. New Security Copilot agents automate identity and access tasks, with features such as conditional access optimization, risk management and app lifecycle oversight. Entra Internet Access adds real-time defense against prompt injection attacks and improved monitoring of generative AI app usage. Preview features for Entra ID bolster identity protection with support for synced passkeys, expanded risk detection and secure, self-service account recovery using Verified ID Face Check.

Microsoft Entra unveils Agent ID, now in preview via Agent 365, enabling organizations to securely register, manage, and govern AI agents with enterprise-grade lifecycle controls and built-in identity protections. New Security Copilot agents automate identity and access security tasks, including conditional access optimization, risk management, app lifecycle, and access reviews—each powered by Entra’s unique, governed agent identities. Enhanced passwordless authentication, real-time protection against prompt injection attacks, and expanded network visibility further safeguard employee use of generative AI apps. Preview features include support for synced passkeys, improved risk remediation, and secure self-service account recovery, all designed to accelerate Zero Trust and secure AI access across the enterprise.

Microsoft Entra unveils Agent ID, now in preview via Microsoft Agent 365, empowering organizations to register, manage, and govern AI agents with enterprise-grade security. By integrating lifecycle management, IT-defined guardrails, and conditional access, Entra ensures agents and their creators are protected from sprawl and malicious threats. New AI-powered Security Copilot agents automate tasks like conditional access optimization, identity risk management, app lifecycle, and access reviews—streamlining security operations with intelligent insights. Enhanced Entra Internet Access features offer real-time protection against prompt injection attacks, expanded network visibility, and sensitive file filtering for generative AI apps. Previewed Entra ID updates introduce passwordless authentication, synced passkey support, smarter risk detection, and secure self-service recovery.Explore breakout sessions and resources for deeper insights.

Microsoft Intune has new features, all in preview or coming soon to preview, that will help IT teams secure, manage and recover endpoints more efficiently. They are new Security Copilot agents, admin controls and expanded Copilot support.

The new Security Copilot agents, all in preview, are:

• A Change Review Agent — This agent will analyze change requests in context, checking for risks, conflicts and compliance. It will provide detailed insights and clear recommendations, so IT admins can move forward with confidence knowing their decision is informed. Initially, the Change Review Agent will handle Multi-Admin Approval script requests, with additional types of change requests added over time.
• A Policy Configuration Agent — This agent will accelerate policy creation by capturing intent from uploaded documents or natural language requirements, mapping them to recommended settings, and enabling admins to review, discuss and refine configurations before deployment.
• A Device Offboarding Agent — This agent will use activity signals to suggest which devices should be removed and provides a simple way to offboard them from the environment, improving efficiency and strengthening the security of the digital estate.

Intune is also introducing remote Windows recovery at scale, an industry first, to enable the remote management of Windows Recovery Environment (WinRE) at scale in Intune. IT admins will be able to recover Windows devices remotely — even if the device is unable to boot or the user is not present. This is in preview.

New admin controls will help deliver new levels of precision, combined with the security and agility of the cloud. These will include:

• Admin tasks: A centralized, prioritized task list that will help IT teams identify and act on what matters most — accelerating vulnerability remediation and simplifying daily management. This is in preview.
• Maintenance windows: A unified way to schedule and orchestrate updates, minimize disruption and improve patch compliance. This is expected to be in preview in January 2026.
• Deployments thatcan be controlled with pause and resume options to reduce risk and create a pathway for future AI-driven automation. This is expected to be in preview in January 2026.

Copilot in Intune will unlock even more Intune data for natural language exploration, including Autopilot, Endpoint Privilege Management and Advanced Analytics. Admins will be able to accelerate their work in these areas by using natural language to ask questions, navigating custom data views and creating new groups or adding to existing ones directly from query results. This is generally available.

Additional resources:

• Blog: Learn more about this update
• Breakout: What’s new in Intune: empower IT, protect endpoints & optimize with AI
• Breakout: Demystify endpoint migration: a clear path to Zero Trust with Intune
• Breakout: Windows: Powering intelligent work without limits
• Breakout: Inside Windows Security, from client to cloud
• Breakout: Security Copilot: Protect at the speed and scale of AI
• Breakout: Transform security and IT with Security Copilot agents
• Breakout: Top Essentials for an Integrated, AI-Ready Security Foundation​

Microsoft Intune is rolling out a suite of preview features aimed at bolstering endpoint security and streamlining IT management. New Security Copilot agents include a Change Review Agent for analyzing requests, a Policy Configuration Agent that transforms intent into actionable settings, and a Device Offboarding Agent to efficiently remove outdated devices. Intune introduces remote Windows recovery at scale, enabling admins to restore devices even if they won’t boot or users are absent. Enhanced admin controls such as centralized task lists and unified maintenance windows provide greater precision and reduced disruption, with some features expected by January 2026. Expanded Copilot support lets admins explore Intune data and automate tasks using natural language, now generally available.

Microsoft Intune unveils a suite of new features—either in preview or coming soon—that empower IT teams to secure, manage, and recover endpoints with greater efficiency. New Security Copilot agents include the Change Review Agent, which analyzes change requests for risk and compliance, the Policy Configuration Agent, which streamlines policy creation from documents or natural language, and the Device Offboarding Agent, which identifies devices ready for removal. Remote Windows recovery at scale, now in preview, allows admins to restore devices even when they're unbootable or users are absent. Enhanced admin controls introduce prioritized task lists and unified maintenance windows, with pause/resume deployment options expected in January 2026. Expanded Copilot support unlocks natural language exploration across Intune data, enabling admins to navigate, group, and manage endpoints faster.

Microsoft Intune is rolling out a suite of new features—currently in preview or arriving soon—to empower IT teams to secure, manage, and recover endpoints with greater efficiency. Three new Security Copilot agents include: the Change Review Agent analyzes change requests for risks and compliance, the Policy Configuration Agent streamlines policy creation from documents or natural language, and the Device Offboarding Agent identifies devices ready for removal to enhance security. Remote Windows recovery at scale, an industry first, enables admins to restore devices even when they’re unbootable or unattended. Upcoming admin controls offer centralized task lists, unified maintenance windows, and deployment pause/resume options, while expanded Copilot support allows natural language exploration of Intune data, accelerating decision-making and management.

Microsoft Purview is introducing significant advancements, reinforcing its role as a comprehensive solution for enterprise data security and governance.

Keeping data secure is more complicated than ever, as organizations face persistent challenges: managing fragmented security tools, ensuring compliance across business units and regions, protecting sensitive data without compromising user experience and addressing a shortage of skilled cybersecurity professionals. These Microsoft Purview updates will help address those challenges:

• Enhanced Microsoft Purview Data Security Posture Management (DSPM): AI and agents at the center of this new, centralized, AI-powered DSPM experience will help simplify data security posture and stitch together the scenarios and goals that customers have for their data. The experience will combine the depth of Microsoft Purview visibility and controls with the breadth of external signals and agentic activities, all powered by Security Copilot, to provide a strong, proactive DSPM experience. This is in preview.
• Data security and compliance capabilities for agents, including agents via Microsoft Agent 365: As organizations adopt more autonomous agents, new risks emerge. In response, Microsoft Purview is expanding its industry-leading data security and compliance capabilities to protect all agents through new agent-focused detections and risk analyses, with extended visibility into and control of agent actions. This is in preview.
• New visibility, controls and experience improvements in Microsoft Purview in Data Loss Prevention, Information Protection, Insider Risk Management and Data Security Investigations. This will include DLP for Microsoft 365 Copilot to safeguard prompts containing sensitive data. The real-time control will help organizations mitigate data leakage and oversharing risks by preventing Microsoft 365 Copilot, Copilot Chat and Microsoft 365 Copilot agents from returning a response when prompts contain sensitive data. It will also prevent the agents from using that sensitive data for grounding in Microsoft 365 and the web. This is in preview.
• New Security Copilot agents: The Data Security Posture Agent, now in preview, will help admins proactively manage risk by discovering sensitive content, assessing posture gaps and improving policy hygiene. The Data Security Alert Triage Agent, now generally available, enables analysts to triage, prioritize and remediate critical alerts, automating incident response and surfacing the threats that matter most. Together, these agents allow organizations to scale operations, reduce manual workloads and stay ahead of emerging threats and compliance demands.

Additional resources:

• Blog: Learn more about news on Microsoft Purview Data Security Posture Management (DSPM)
• Blog: Learn more about news on data security and data compliance capabilities for agents
• Blog: Learn more about news on data security
• Breakout: Address core data security & governance goals with Microsoft Purview
• Breakout: Securing data across Microsoft environments with Microsoft Purview
• Breakout: Beyond Visibility: Microsoft Purview Data Security Posture Management
• Breakout: Protecting your data at speed and scale with AI-powered data security
• Breakout: Preventing data exfiltration with a layered protection strategy

Microsoft unveils 12 new Security Copilot agents integrated into Defender, Entra, Intune and Purview, now available in preview, alongside 30-plus partner agents for comprehensive protection. These AI-powered agents streamline workflows, automate threat detection and bolster identity and data security across SOC, IT and compliance teams. Leveraging Microsoft’s vast threat intelligence and unified data in Sentinel, the agents deliver contextual insights and recommendations, while interactive chat experiences help teams engage with tailored expertise. Security Copilot rolls out to all Microsoft 365 E5 customers, beginning with frontier users and expanding in the coming months, promising smarter decisions and faster response against evolving threats.

Twelve new Security Copilot agents integrated into Microsoft Defender, Entra, Intune, and Purview are now available in preview, alongside over 30 partner agents for comprehensive protection. These agents seamlessly blend into workflows, automating alert triage, surfacing threat intelligence, managing identity risks, and supporting data remediation and endpoint compliance. Security operations teams benefit from prioritized threat insights and dynamic threat detection, while identity and data security teams gain tools for access policy management and sensitive data protection. IT teams can swiftly convert requirements into policies and optimize device compliance. Security Copilot is rolling out to all Microsoft 365 E5 customers, starting now for frontier customers, with advanced notice before activation. Powered by Microsoft’s vast threat intelligence and Enterprise Knowledge Integration, agents deliver tailored, actionable insights.

Microsoft unveils 12 new Security Copilot agents integrated into Defender, Entra, Intune, and Purview, now available in preview to streamline security workflows. Over 30 partner agents join the lineup, delivering automated alert triage, dynamic threat detection, and enhanced identity and data risk management. Security Copilot, powered by Microsoft’s vast threat intelligence and Enterprise Knowledge Integration, offers tailored, interactive agent experiences and contextual insights using unified data from Sentinel. Rollout begins for Microsoft 365 E5 frontier customers, with broader availability coming soon, empowering IT and security teams to accelerate response, improve compliance, and proactively safeguard sensitive data.

Microsoft Purview is expanding its data security and compliance capabilities to protect agents across Microsoft 365 Copilot, Microsoft Copilot Studio, Microsoft Foundry and third-party platforms.

As organizations adopt more autonomous agents, including those managed through Microsoft Agent 365, new risks emerge, such as unsupervised data access, cascading agent interactions and unclear accountability.

Key advancements in Microsoft Purview, designed to help mitigate these risks, include:

• Agent observability and posture management: Microsoft Purview’s Data Security Posture Management (DSPM) will provide inventory of all agents across an organization, including third-party agents, as well as an assessment of risks, assigned risk level and guided remediation for agents on Microsoft 365 Copilot, Copilot Studio and Foundry. This will be in preview within the next month.
• Extension of Microsoft Purview protection: Established security and governance policies within Microsoft 365 now extend to agents acting autonomously, allowing them to inherit the same protections and organizational policies as users. For instance, DLP policies for Teams, SharePoint, Exchange and endpoint devices can be scoped to behaviors such as attempting to send an email with sensitive data outside of the organization or sending a Teams message containing credentials. These controls will help prevent oversharing and unauthorized processing without requiring separate policy frameworks, delivering consistent protection for both people and agents. This is in preview.
• IRM for Agents: Dedicated indicators and behavioral analytics in Insider Risk Management (IRM) will be able to flag risky agent activities, enabling proactive investigation and policy enforcement. Insider risk capabilities will be extended to AI-powered agents, ensuring organizations can adopt automation without compromising data security. As agents built in Microsoft 365 Copilot, Copilot Studio or Foundry gain access to sensitive data and execute tasks autonomously, they introduce unique risks such as unsupervised access, prompt injection and chained actions. IRM for Agents will address these challenges by delivering agent-aware policies, unified investigation workflows and customizable risk scoring that will incorporate agent-specific signals and activities. With built-in guardrails and strong auditability, organizations will gain visibility into agent behavior across human and digital workforces, helping security teams reduce noise, prioritize critical risks and confidently enable secure AI adoption. This will be in preview within the next couple of weeks.
• Extended governance: Communication Compliance, Data Lifecycle Management, Audit and eDiscovery tools have been extended to more agent interactions, supporting responsible use, secure retention and full agentic accountability. This is generally available.

Additional resources:

• Blog: Learn more about this update
• Breakout: Address core data security & governance goals with Microsoft Purview
• Breakout: Securing data across Microsoft environments with Microsoft Purview
• Breakout: Drive secure Microsoft 365 Copilot adoption using Microsoft Purview
• Breakout: Preventing data exfiltration with a layered protection strategy

 

Microsoft has launched its Security Store for general availability, introducing robust new features designed to streamline how organizations discover, purchase and deploy trusted security solutions and AI agents. Now integrated directly into Microsoft Defender for SOC-focused agents and Microsoft Entra for Verified ID and External ID scenarios, the Store brings security tools into familiar workflows to bolster operations. The expanded catalog boasts over 100 third-party offerings, ranging from fraud prevention to threat intelligence, while partners can now list and sell managed detection and response services directly.

Microsoft Security Store launches with robust new features, streamlining the way organizations discover, buy, and deploy trusted security tools and AI agents that integrate with Microsoft’s security ecosystem. Embedded directly into Microsoft Defender and Microsoft Entra, the Store now supports SOC-focused agents, Verified ID, and External ID scenarios, making fraud protection and identity management easier within familiar workflows. With an expanded catalog exceeding 100 third-party solutions—including advanced fraud prevention, forensic analysis, and threat intelligence—the platform empowers users to bolster security operations. Partners can also offer managed detection, response, and threat hunting services directly through the Store, enhancing flexibility and choice for enterprises seeking comprehensive protection.

Microsoft Security Store launches with robust new features, streamlining how organizations find, buy, and deploy trusted security solutions and AI agents that integrate seamlessly with Microsoft Security products. Now embedded directly in Microsoft Defender and Microsoft Entra, the Store brings SOC-focused agents and Verified ID tools into everyday workflows, empowering teams to bolster security operations with ease. An expanded catalog features over 100 third-party offerings, from fraud prevention to threat intelligence, while partners can now offer managed detection and response or threat hunting services directly through the platform.

Twelve new Security Copilot agents built into Microsoft Defender, Microsoft Entra, Microsoft Intune and Microsoft Purview are now available in preview. Additionally, more than 30 new agents from partners are available to provide end-to-end protection. These agents will be woven into the user’s workflow to streamline high-volume tasks, surface threat intelligence and assist with identity risk management, sensitive data remediation and endpoint compliance. The agents will offer the following capabilities across these teams:

• Security operations center (SOC) teams: New agents in Defender will automate alert triage, surface prioritized threat intelligence, enable natural-language threat hunting and dynamically detect missed threats, closing visibility gaps and accelerating response.
• Identity teams: Agents in Entra will help manage risky users, optimize conditional access policies, streamline access reviews and govern the application lifecycle.
• Data security teams: Agents in Purview will help strengthen data protection and compliance by discovering, analyzing and remediating sensitive data exposure, providing contextual insights on data risk and enabling proactive remediation at scale.
• IT teams: New agents in Intune will help turn requirements into policies, assess changes before they impact productivity and identify devices for removal — for smarter decisions, better compliance and reduced risk.

To help security teams get started with agents more quickly, Security Copilot will be available to all Microsoft 365 E5 customers. Rollout starts now for Frontier Security Copilot customers with Microsoft 365 E5 and will continue in the upcoming months for all Microsoft 365 E5 customers. Customers will receive advanced notice before activation of Security Copilot into Microsoft 365.

The interactive agent experience, now in preview, will help security teams engage in scoped, focused chats tailored to each agent’s expertise.

To truly empower agents, context and data are key: Security Copilot taps into Microsoft’s unmatched threat intelligence — informed by over 100 trillion daily signals — and leverages unified data in Microsoft Sentinel. With Enterprise Knowledge Integration, now in preview, agents will also be able to reason over an organization’s internal data, from runbooks to historical incidents, delivering contextually relevant insights and recommendations.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news
• Breakout: Security Copilot: Protect at the speed and scale of AI
• Breakout: Transform security and IT with Security Copilot agents
• Breakout: Protecting your data at speed and scale with AI-powered data security
• Breakout: Building the predictive SOC with guest Allie Mellen
• Breakout: Blueprint for Building the SOC of the Future

Microsoft unveils Security Dashboard for AI, a unified platform now in preview, aimed at giving chief information security officers and AI risk leaders real-time visibility into AI posture and risks. By aggregating signals from Defender, Purview and Entra, the dashboard offers comprehensive discovery and observability of AI assets, while consolidating risk profiles across data, configurations, models and threats. Enhanced with AI-powered recommendations and Security Copilot skills, the tool streamlines mitigation strategies and delivers actionable guidance within familiar Microsoft environments. As organizations accelerate AI adoption, the dashboard can eliminate fragmented oversight and governance gaps, providing a clear path to end-to-end security.

Security Dashboard for AI, now in preview, delivers a unified, real-time view of AI risk and posture tailored for CISOs and AI risk leaders. By aggregating signals from Microsoft Defender, Purview, and Entra, the dashboard provides comprehensive discovery and observability across all AI assets. Users gain a consolidated risk profile, seamlessly connecting security and data insights—spanning configurations, models, and threats—while actionable, AI-driven recommendations and Security Copilot skills accelerate risk mitigation. As organizations scale AI adoption, this integrated solution eliminates fragmented visibility and governance gaps, empowering security teams to manage AI risks from a single, familiar interface.

Security Dashboard for AI debuts in preview, offering CISOs and AI risk leaders a powerful, unified hub to monitor and manage AI risks across Microsoft Security solutions. By aggregating real-time insights from Microsoft Defender, Purview, and Entra, the dashboard delivers comprehensive discovery and observability, consolidating risk signals for unified AI asset visibility. Users gain a holistic AI risk profile, seamlessly connecting data, configuration, and threat insights to streamline governance. With built-in AI-powered recommendations and Security Copilot skills, the dashboard accelerates risk mitigation, embedding actionable guidance within familiar Microsoft tools. As organizations scale AI adoption, this integrated view eliminates fragmented oversight and empowers security teams to stay ahead of emerging threats.

Microsoft Security Store is now generally available with powerful new capabilities to make it easier for organizations to discover, purchase and deploy trusted security solutions and AI agents that integrate easily with Microsoft Security products.

There are three major enhancements to the Store:

• Embedded where you work: The Store is now built into Microsoft Defender, featuring SOC-focused agents, and into Microsoft Entra for Verified ID and External ID scenarios like fraud protection. By bringing these capabilities into familiar workflows, organizations can combine Microsoft and partner innovation to strengthen security operations and outcomes.
• Expanded catalog: The Store now offers more than 100 third-party solutions, including advanced fraud prevention, forensic analysis and threat intelligence agents.
• Security services available: Partners can now list and sell services such as managed detection and response and threat hunting directly through the Store.

Additional resources:

• Blog: Learn more about this news on the Tech Community Blog
• Read: Learn more about this news on Microsoft Learn

Microsoft Sentinel is rolling out enhanced preview features for its data lake, graph and model complex protocol (MCP) server, broadening its capabilities across both first- and third-party security scenarios. These updates enable security teams to build custom graphs, integrate threat intelligence directly into the data lake, and efficiently search and access information on the MCP server. Sentinel now operates as a powerful SIEM and AI-ready platform, with user and entity behavior analytics providing critical insights when user activity deviates from expected patterns.

Microsoft Sentinel unveils powerful new preview features for its data lake, graph, and model complex protocol (MCP) server, broadening its reach across diverse first- and third-party security scenarios. These enhancements enable users to craft custom graphs, integrate threat intelligence directly into the data lake, and streamline data searches on the MCP server. Evolving from a traditional SIEM solution to an AI-ready security platform, Sentinel now offers advanced user and entity behavior analytics (UEBA), delivering deep insights when behaviors shift unexpectedly. With these updates, organizations gain flexible, intelligent tools to defend against emerging cyber threats and maximize security operations.

Microsoft Sentinel unveils enhanced data lake, graph, and MCP server capabilities in preview, empowering builders to create custom graphs, integrate threat intelligence, and streamline data access for diverse security scenarios. With its evolution into a robust SIEM and AI-ready platform, Sentinel now delivers deeper user and entity behavior analytics, enabling proactive detection of abnormal activities. These updates open new possibilities for both first- and third-party integrations, helping teams construct comprehensive, agentic defense solutions.

Security Dashboard for AI is a new, unified dashboard in preview designed for chief information security officers and AI risk leaders. It will aggregate and surface real-time AI posture and risk insights — spanning proactive governance and reactive threat protection across Microsoft Security solutions, all in a single, integrated view.

This experience will enable users to:

• Unlock complete discovery and observability by aggregating risk signals from Microsoft Defender, Microsoft Purview and Microsoft Entra for unified AI asset visibility.
• See a consolidated AI risk profile by connecting security and data posture insights across configurations, data, models and threats.
• Accelerate AI risk mitigation with AI-powered recommendations and Security Copilot skills, delivering actionable guidance directly within familiar Microsoft tools.

With Security Dashboard for AI, security and risk leaders will gain a clear, consolidated view of AI risks across agents, apps and platforms — eliminating fragmented visibility, disconnected posture insights and governance gaps as AI adoption scales.

Additional resources:

• Blog: Learn more about this update
• Breakout: End-to-end security for your AI platforms, apps, and agents
• Breakout: Empowering Partners to Navigate the New Security Landscape

Windows is embracing a new era of computing with the preview of native Model Context Protocol (MCP) support, introducing built-in agent connectors and an agent workspace for enterprise productivity. MCP offers a standardized framework for AI agents to automate tasks and interact securely with line-of-business apps, while developers gain tools to make their apps discoverable and accessible to local agents. The file explorer connector enables advanced, consent-driven file operations using natural language search, and the Windows Settings connector lets agents manage device configurations. The agent workspace, now in private preview, provides a secure, auditable environment for agents to work alongside users, backed by enterprise-grade governance via Microsoft Intune and Entra. This architecture provides stronger security and transparency for businesses, setting a new standard for AI integration on Windows.

Windows is embracing a new era of computing with the preview of native Model Context Protocol (MCP) support, enabling AI agents to connect with enterprise apps and automate routine tasks. Developers gain new tools to make their apps discoverable and accessible to agents via built-in connectors, while users retain control through configurable access settings. Highlights include the File Explorer connector, which empowers agents to securely search, read, and edit local files using natural language queries, and the Windows Settings connector, designed to manage complex device configurations. The private preview of Agent Workspace introduces a secure, isolated environment for agents to operate in parallel, backed by enterprise-grade security and governance managed through Intune, Entra, and Group Policy.

Windows introduces a preview of native Model Context Protocol (MCP) support, ushering in an operating system designed to supercharge productivity. Developers can now register agent connectors—such as File Explorer and Windows Settings—allowing AI agents to securely automate tasks across apps and tools, with user consent and granular control. The new agent workspace, available in private preview, creates a secure, policy-driven environment where agents perform parallel tasks without interfering with users’ sessions. Enterprise-grade security and governance are baked in, with policy management through Microsoft Intune, Entra, and Group Policy. MCP’s standardized framework marks a major leap forward, empowering enterprises with enhanced automation, transparency, and control.

Microsoft Sentinel has updated capabilities, now in preview, to the data lake, graph and model complex protocol (MCP) server, which will expand use cases across first- and third-party security scenarios. The updates will support such tasks as creating custom graphs, adding threat intelligence to the data lake and searching and accessing data on the MCP server.

Sentinel has evolved into both a security information and event management (SIEM) system and an AI-ready platform. As part of Sentinel SIEM, user and entity behavior analytics (UEBA)  offer valuable insights into entities when their behavior deviates from the norm.

Additional resources:

• Blog: Learn more about news on Microsoft Sentinel graph
• Blog: Learn more about news on Microsoft Sentinel MCP server
• Blog: Learn more about news on Microsoft Sentinel SIEM & data lake
• Breakout: Power agentic defense with Microsoft Sentinel
• Theater: Leveraging the power of Microsoft Sentinel SIEM and data lake

Windows is introducing the preview of Ask Copilot, a composer experience embedded in the taskbar and Start menu. This feature streamlines access to Copilot and Microsoft 365 Copilot, letting users invoke, manage and monitor AI agents — including third-party assistants and troubleshooting tools — directly from the desktop. By introducing a unified composer and a tools menu, Windows aims to make AI agents more accessible and interactive across apps, workflows and devices. The update signals Microsoft’s push toward intelligent productivity, positioning Windows 11 as a secure, efficient hub for next-generation AI-powered work.

Windows is introducing new preview features that put Copilot and other AI agents front and center. The Ask Copilot composer, now accessible from the taskbar and Start menu, streamlines user interaction with Copilot and Microsoft 365 Copilot across apps, workflows, and devices. By leveraging the “tools” menu or typing ‘@’, users can launch AI agents instantly, while shell integration enables access anywhere in the OS. The revamped taskbar transforms Windows into a unified platform for invoking, monitoring, and managing AI agents—including troubleshooting tools and third-party assistants—making intelligent productivity more accessible and interactive than ever before.

Windows is introducing a unified composer experience called Ask Copilot on the taskbar. This feature empowers users to invoke Copilot and Microsoft 365 Copilot from anywhere in the OS, whether through the taskbar or Start menu. The composer’s tools menu and ‘@’ command make launching AI agents effortless. By reimagining the taskbar as a central hub, Windows now enables users to initiate, monitor, and manage a range of AI agents—including troubleshooting assistants and third-party integrations—all from one place. This transformation promises streamlined workflows and intelligent productivity, setting the stage for a smarter, more interactive Windows experience.

Windows is evolving to enhance productivity with the preview of native support for Model Context Protocol (MCP) on Windows, including new built-in agent connectors and agent workspace.

MCP on Windows, now in preview, is a standardized framework for AI agents to connect with line-of-business apps and tools to automate routine scenarios and perform tasks for enterprise users. Developers will be able to make their apps discoverable to local agents through agent connectors, which can be registered in the Windows on-device registry. Developers building agents will also be able to leverage MCP on Windows to access agent connectors to complete tasks for end users. End users will be able to configure which apps can be accessed by agents on their device through the new agent connectors settings page.

The new built-in agent connectors, also in preview, include:

• File explorer connector: This will enable secure access to local user files on the system so agents can act more efficiently and perform desired file operations, all with user consent. Agents will be able to use this connector to perform a wide range of operations on local files on users’ devices, including searching, reading, writing and editing. The file search capabilities will support natural language queries, allowing agents to find files based on descriptions, content, metadata and, for images, enhanced search based on image classification.
• System Settings connector: This will help agents handle complex setting operations by modifying a user’s device settings such as Bluetooth, network and more.

Agent workspace, now in private preview, offers an isolated, policy-controlled and auditable environment where agents can interact with software much like humans do — performing tasks on behalf of end users in parallel without disrupting a user’s primary session. All agentic interactions involving MCP and computer-using agents will run in Agent workspace, setting a new standard in enterprise security.

Windows provides enterprise-grade security and governance, ensuring every agent runs in a contained, compliant and auditable way. IT admins can also manage basic policies for agent connectors and agent workspaces in Microsoft Intune, Microsoft Entra and Group Policy.

This architecture represents a material improvement over native app experiences, offering enterprises enhanced protection, transparency and governance.

Additional resources:

• Blog: Learn more about this news
• Breakout: Windows Development for Enterprise: Secure, Scalable, & AI-ready
• Breakout: Unleash the future of Agentic Windows backed by security
• Theater: Drive enterprise productivity with agents powered by MCP on Windows

Windows is rolling out a preview of new Microsoft Copilot and AI features designed to reshape user interaction, offering personalized experiences. Among the highlights, 'Ask Microsoft 365 Copilot' integrates with Click to Do and File Explorer, letting users leverage Copilot’s assistance directly from files or images without changing context. Enhanced Windows search now enables semantic searches across local and cloud documents for Copilot+ PC users. Writing Assistance debuts with built-in rewriting and proofreading—including offline support—while the new 'Hey Copilot' voice command and Copilot key provide quick, hands-free access. Accessibility advances include fluid dictation for faster, natural voice typing and upgraded Narrator and Magnifier tools powered by Azure AI. These innovations signal Windows’ continued push toward intelligent productivity.

Windows unveils a suite of new Copilot and AI features in preview, reshaping user interaction with smarter, personalized tools. Ask Microsoft 365 Copilot integrates directly with Click to Do and File Explorer, enabling AI-powered insights for text, images, and documents—no context switching required. Enhanced Windows search now leverages Microsoft 365 federation, allowing Copilot+ PC users to semantically search both local and cloud files. Writing Assistance introduces built-in rewriting and proofreading, with offline support for Copilot+ PCs. Voice engagement gets a boost through “Hey Copilot” commands and dedicated shortcuts, while accessibility advances include fluid dictation for effortless speech-to-text and lifelike Narrator/Magnifier voices powered by Azure AI. Explore how these innovations drive productivity and inclusivity.

Windows unveils a suite of new Copilot and AI-powered features, all in preview, aiming to improve user productivity and accessibility. Users can now send text or images directly to Microsoft 365 Copilot via 'Click to Do,' interact with AI inside File Explorer, and enjoy smarter search with semantic capabilities across both local and cloud files. Writing Assistance brings built-in rewriting and proofreading, even offline on Copilot+ PCs, while hands-free engagement is enabled through 'Hey Copilot' voice commands and the dedicated Copilot key. Accessibility gets a boost with fluid dictation for seamless voice typing and enhanced Narrator and Magnifier experiences using more lifelike generative AI voices. Explore how Windows is shaping intelligent, efficient workflows for every user.

Windows is transforming how users access and manage AI agents across the operating system, with new features in preview:

• Ask Copilot on the Windows taskbar is a new composer experience in Windows, designed to unify how users interact with Copilot and other AI agents across apps, workflows and devices. It will act as a shell-integrated control that enables easy invocation of Copilot and Microsoft 365 Copilot from anywhere in the OS — via the taskbar and the Start menu. Users will also be able to start AI agents directly from the composer by using the Tools menu or typing ‘@’.
• Agents on the Windows taskbar reimagines Windows as a platform where AI agents — like agents in Microsoft 365 Copilot, troubleshooting agents and third-party assistants — can be invoked, monitored and managed directly from the Windows taskbar. This will unify how users invoke and manage AI agents across the OS and make them easily accessible and interactive.

Additional resources:

• Blog: Learn more about this news
• Download: Visual assets related to this news
• Breakout: Agents at Work: Windows Powers the Era of Intelligent Productivity
• Breakout: Secure & Manage the Most Productive, Intelligent OS: Windows 11
• Theater: Copilot+ PCs & Microsoft 365: Secure, smart, efficient Windows

Windows 365 Link, Microsoft’s first Cloud PC device designed for Windows 365, is set to expand into Belgium, Finland, Ireland, Italy, Poland, Singapore and Spain beginning February 2026. As demand grows for secure, flexible cloud computing, organizations are relying on streamlined access to Cloud PCs to boost productivity. Currently available in 13 countries, Windows 365 Link offers monthly updates, with early 2026 bringing new features such as Bluetooth device pairing during setup, customizable tenant branding for sign-in screens, and enhanced IT recovery options via bare metal recovery images. These advancements signal Microsoft’s commitment to supporting remote work and secure digital transformation worldwide.

Windows 365 Link, Microsoft’s first purpose-built Cloud PC device, is set to launch in Belgium, Finland, Ireland, Italy, Poland, Singapore, and Spain starting February 2026, expanding beyond the 13 countries where it’s already available. As organizations increasingly move workloads to the cloud for better security and scalability, streamlined Cloud PC access is becoming essential for productivity. Coming Q1 2026, key updates will enable Bluetooth device pairing during setup, enhanced tenant branding with custom wallpapers and logos on the sign-in screen, and simplified IT recovery via bare metal images. With monthly updates and new features on the horizon, Windows 365 Link continues to redefine cloud-powered workspaces.

Windows 365 Link, Microsoft’s dedicated Cloud PC device, is set to launch in Belgium, Finland, Ireland, Italy, Poland, Singapore, and Spain starting February 2026, expanding beyond its current 13-country footprint. As businesses increasingly leverage cloud solutions for security and scalability, this streamlined device empowers teams with access to Cloud PCs. Monthly updates ensure continuous improvement, with Q1 2026 bringing Bluetooth pairing during setup, customizable tenant branding for sign-in screens, and IT-friendly bare metal recovery options. With these enhancements, organizations can build a more productive and resilient cloud-first workspace.

Windows has added new Microsoft Copilot and AI features, all in preview. With these new features, Windows is continuing to transform how users interact with AI by delivering a simple, personalized and multimodal experience. The new features are:

• Ask Microsoft 365 Copilot is an action in Click to Do that will allow a user to take any text or image recognized by Click to Do and send it to Copilot without needing to switch context.
• Ask Microsoft 365 Copilot in File Explorer Home will allow users to click on any file and interact with Copilot for assistance or insights, all within File Explorer. Additionally, users will be able to hover over a document in File Explorer to have it enhanced by AI models.
• Improved Windows search with Microsoft 365 federation will let users describe the content they’re looking for to find files. Microsoft 365 Copilot customers with Copilot+ PCs will be able to search local and cloud documents semantically.
• Writing Assistance will give users built-in access to rewriting and proofreading help, plus offline support on Copilot+ PCs, enabling fast, flexible writing anywhere on Windows.
• “Hey Copilot” in Windows and the Copilot key (or Win+C shortcut for devices with a Copilot key) will allow users to engage with voice in Microsoft 365 Copilot without the interruption of switching apps or windows.

Other new and improved features designed to enhance accessibility include:

• Fluid dictation is an AI-powered feature in Windows 11 Copilot+ PCs that will make voice typing fast, accurate and natural — turning speech into text with minimal effort. As part of the Voice Access suite, the feature will streamline input and reduce manual corrections. This is in preview.
• Narrator and Magnifier now deliver a more natural and lifelike reading experience powered by Azure’s latest on-device text-to-speech models. These high-definition voices, built on advanced generative AI, adapt tone and pace contextually to make interactions feel intuitive and engaging. This is generally available.

Additional resources:

• Blog: Learn more about this news
• Breakout: Agents at Work: Windows Powers the Era of Intelligent Productivity
• Breakout: Secure & Manage the Most Productive, Intelligent OS: Windows 11
• Theater: Copilot+ PCs & Microsoft 365: Secure, smart, efficient Windows

Windows unveils new AI APIs aimed at streamlining app development for Copilot+ PCs to provide faster performance, enhanced privacy and lower costs by running AI tasks locally. Developers can now access Video Super Resolution (VSR), an AI-powered tool that upscales low-res video for clearer calls and playback, available in preview with WinAppSDK 2.0 Experimental 3. The Stable Diffusion XL API introduces advanced text-to-image generation directly on device, eliminating cloud dependencies. Meanwhile, Phi Silica, an NPU-optimized language model, reaches stable release in WinAppSDK 1.8, delivering up to 40% improved performance for local text generation and summarization. These advances open the door for richer, enterprise-ready AI experiences on Windows.

Windows unveils new AI APIs, empowering developers to build smarter apps that run locally on Copilot+ PCs. By leveraging local AI for features like Video Super Resolution—upscaling low-res streams for clearer video calls and playback—and Stable Diffusion XL for high-quality image generation, developers can deliver faster, more private experiences without cloud dependency. Phi Silica, an NPU-optimized language model, now moves to stable release with up to 40% performance gains, offering efficient text generation and summarization directly on-device. With these APIs available in WinAppSDK previews and stable releases, building enterprise-grade AI experiences on Windows just got easier and more cost-effective.

Windows unveils new AI APIs for developers, streamlining the creation of advanced, locally-powered applications on Copilot+ PCs. With features like Video Super Resolution (VSR) now accessible via API, video calls and streaming gain sharper clarity without cloud dependency. The Stable Diffusion XL (SDXL) API empowers builders to generate high-quality images directly on device, while the Phi Silica language model—optimized for efficient text generation and summarization—transitions to stable release, delivering up to 40% faster performance. Enhanced privacy, reduced latency, and lower costs set the stage for building next-generation AI experiences, all supported by the latest WinAppSDK releases and comprehensive developer resources.

Windows 365 Link, the first Cloud PC device purpose-built for Windows 365, will expand availability starting in February 2026 to Belgium, Finland, Ireland, Italy, Poland, Singapore and Spain. As organizations shift more workloads to the cloud for enhanced security, flexibility and scalability, streamlined access to Cloud PCs becomes crucial for productivity, and Microsoft introduced Windows 365 Link for this purpose. The simple, secure device is currently available in 13 countries.

Cloud PC devices receive monthly updates. Key updates in the first quarter of 2026 will include support for pairing Bluetooth devices during the out-of-box experience; support for tenant branding, including setting a custom wallpaper, logo and name on the sign-in screen; and the ability for IT to recover a device using a bare metal recovery image.

Additional resources:

• Blog: Learn more about this news
• Breakout: Unlock efficiencies with Windows 365 Frontline & Cloud PC devices
• Theater: Cloud PC devices: Get started with Windows 365 Link and see what’s new

Microsoft unveils Autopatch update readiness, now in preview, to improve the Windows update process for IT administrators. The feature offers real-time visibility across an organization’s device estate, pinpointing which devices are primed for updates and highlighting those needing attention, along with the reasons why. By shifting from reactive troubleshooting to proactive management, IT teams gain actionable insights and remediation guidance via a unified dashboard in Microsoft Intune. Early identification of policy conflicts, compliance issues and missing telemetry helps prevent disruptions, ensuring devices remain secure and up to date. As enterprise device counts soar, this innovation aims to streamline compliance, reduce manual patching and empower teams to focus on strategic initiatives.

Autopatch update readiness, now in preview, introduces real-time visibility and actionable insights to the Windows update process, empowering IT admins to track which devices are ready for updates and pinpoint those needing attention—with clear reasons such as policy conflicts or missing telemetry. As device fleets expand and work environments evolve, this unified dashboard in Microsoft Intune shifts the approach from reactive troubleshooting to proactive management, helping prevent disruptions and streamline compliance. Early flagging of noncompliant devices and transparent remediation guidance aim to reduce update issues, keeping enterprises secure, efficient, and focused on strategic goals.

Autopatch update readiness debuts in preview, improving the Windows update process for IT teams. By offering real-time visibility across all devices, administrators can instantly spot which endpoints are update-ready and which require attention—complete with detailed reasons like policy conflicts or missing telemetry. Instead of reacting to issues after they arise, organizations gain actionable insights and remediation guidance, streamlining security and compliance at scale. Through a unified dashboard in Microsoft Intune, potential update failures are flagged and explained, enabling swift intervention and proactive management. This innovation shifts focus from troubleshooting to strategic IT priorities, making device maintenance smarter and more predictable for growing enterprises.

Windows is providing developers with new Windows AI APIs that will simplify building powerful apps. The APIs will enable local AI features on Copilot+ PCs, offering reduced latency, better privacy and lower costs without relying on cloud computing. The new APIs are:

• Local AI enhanced video streaming: Video Super Resolution (VSR) is now available as an API. VSR is an AI-powered enhancement that upscales low-resolution video streams, restoring clarity and detail for better video calls, streaming and playback. This is in preview as part of WinAppSDK 2.0 Experimental 3.
• High-quality image generation: The Stable Diffusion XL (SDXL) API is a powerful text-to-image generative AI model that developers will be able to run locally on Copilot+ PCs, enabling high-quality image generation directly on device without relying on cloud services. This is in preview as part of WinAppSDK 2.0 Experimental 3.
• Phi Silica moves to stable release: Phi Silica is an NPU-optimized language model that runs locally on Copilot+ PCs for efficient text generation and summarization without using the cloud. The API for this model will require a Limited Access Feature (LAF) token for developers to ship into production. Developers will also see up to a 40% boost in performance in Phi Silica as it moves to general availability in WinAppSDK 1.8 stable.

Additional resources:

• Blog: Learn more about this news
• Breakout: Deploy and Optimize local enterprise ML models with Windows ML
• Breakout: Build Enterprise AI Experiences with AI APIs in Windows AI Foundry

Windows 11 is set to introduce enhanced recovery features aimed at reducing downtime from system disruptions such as faulty updates or outages. Rolling out in preview during the first half of 2026, Microsoft’s new tools—including quick machine recovery, point-in-time restore and cloud rebuild—will provide swift remediation for both individual devices and entire fleets. With Microsoft Intune serving as a unified platform, IT professionals will gain remote control over recovery environments, send scripts or trigger recovery actions, and coordinate endpoint strategies. The point-in-time restore feature allows users to roll back systems within minutes, while cloud rebuild reinstalls Windows 11 and restores data, apps and settings. These advancements form part of the Windows Resiliency Initiative, underscoring Microsoft’s push to simplify IT management and boost organizational productivity.

Windows 11 is introducing new capabilities designed to minimize downtime and streamline remediation, previewing in the first half of 2026. Leveraging Microsoft Intune, IT pros will remotely control Windows Recovery Environment, deploy scripts, and trigger recovery actions across individual devices or entire fleets. Point-in-time restore provides near-instant rollback to a device’s previous state—OS, apps, settings, and files—eliminating the need for technical expertise or lengthy troubleshooting. Meanwhile, the new cloud rebuild feature enables complete reinstallation of Windows 11, including drivers, with seamless restoration of data and settings via Autopilot, Backup, and OneDrive integration. These advancements, part of the Windows Resiliency Initiative, empower organizations to recover quickly from flawed updates, outages, or configuration errors, keeping productivity on track.

Windows 11 is rolling out advanced recovery features to reduce downtime and streamline fixes for organizations facing system disruptions. Scheduled for preview in early 2026, these enhancements empower IT teams with Microsoft Intune as a unified platform to remotely manage recovery processes, send scripts, and trigger actions across devices. Point-in-time restore (PITR) allows quick rollback to a precise system state before issues, restoring OS, apps, and files in minutes. For severe cases, cloud rebuild can completely reinstall Windows 11 with all necessary drivers, while recovering user data and settings via Intune, Autopilot, and OneDrive. These innovations, part of the Windows Resiliency Initiative, are designed to keep systems resilient and productivity high.

Autopatch update readiness is a new feature, now in preview, marking a significant innovation to the Windows update process, with capabilities that will make update readiness more transparent, predictable and manageable. It’s designed to help IT administrators gain real-time visibility into the entire device estate, showing exactly which devices are ready for updates or need attention and why. Instead of guessing or waiting for problems to surface, organizations will be able to see the full picture — from fully compliant devices to ones at risk due to policy conflicts, missing telemetry and other blockers.

As organizations grow and adapt to new ways of working, the number of devices across an enterprise climbs, presenting challenges in keeping devices secure, compliant and updated.

Autopatch update readiness will surface actionable insights, provide clear guidance on remediation and help prevent issues before they disrupt work. IT teams will be able to use a unified dashboard in Microsoft Intune to identify devices that might fail updates, understand why and immediately remediate issues within Windows Autopatch. This shift from reactive troubleshooting to proactive management will mean less time chasing and patching problems and more time on strategic priorities.

Autopatch update readiness will also address common pain points in the update process. For example, devices that are out of compliance or missing critical signals will be flagged early, enabling timely intervention. Policy conflicts that could block updates will be identified and explained, making it easier to maintain alignment across management layers. Detailed telemetry will help ensure that every device provides the data needed for update readiness and compliance tracking.

Additional resources:

• Blog: Learn more about this news
• Breakout: The future of managing Windows
• Breakout: What’s new in Intune: empower IT, protect endpoints & optimize with AI
• Breakout: Secure & Manage the Most Productive, Intelligent OS: Windows 11

Microsoft unveils new Windows 365 features aimed at empowering Frontier firms with intelligent workflows, secure cloud delivery and scalable flexibility. Now in preview, Windows 365 for Agents extends agentic capabilities to the Microsoft Cloud, providing developers a trusted platform with modular UI controls and enterprise-grade security for building and deploying automated agents on Windows or Linux. The technology fuels advanced AI initiatives, including custom Copilot AI agents, enabling automation without machine setup. Meanwhile, Windows 365 AI-enabled Cloud PCs provide faster file searches and direct in-app actions through AI-driven improvements.

Windows 365 unveils new features supporting intelligent workflows for Frontier firms, blending AI-driven automation, secure cloud delivery, and device flexibility. Now in preview, Windows 365 for Agents empowers agent makers with modular UI controls, enterprise-grade security, and compatibility across Windows and Linux, enabling deployment of agents that open apps, process data, and automate tasks on Cloud PCs. This platform forms the backbone of advanced Microsoft AI initiatives, including Copilot Studio, allowing easy automation directly from prompts without machine setup. Meanwhile, Windows 365 AI-enabled Cloud PCs introduce smarter Windows search and Click to Do actions, letting users interact with images, videos, and text instantly.

Windows 365 introduces powerful new features for Frontier firms, blending AI-driven workflows, secure cloud delivery, and scaling across devices. Now in preview, Windows 365 for Agents empowers agent makers with modular UI controls, enterprise-grade security, and the flexibility to build and run agents on Windows or Linux Cloud PCs—perfect for automating tasks, processing data, and deploying advanced AI solutions. As the execution platform for Copilot Studio’s custom AI agents, it enables secure, code-driven automation without machine setup. Meanwhile, AI-enabled Cloud PCs elevate productivity by delivering smarter Windows search and Click to Do actions, allowing employees to interact with content directly on-screen.

Windows 11 is adding additional modern recovery capabilities designed to minimize downtime and simplify remediation. System disruptions, whether from flawed updates, configuration errors or outages, can cost organizations valuable time and productivity. Microsoft introduced quick machine recovery as a tool that allows recovery of Windows PC impacted by a global incident, and these new tools help recover individual machines as well as groups of devices that are impacted. The updates, which will be in preview in the first half of 2026, include:

• Microsoft Intune will serve as a unified, scalable management platform for recovery tools, enabling remote control of Windows Recovery Environment (WinRE) on Intune-managed clients. IT professionals can select appropriate recovery tools and coordinate endpoint recovery strategies. Intune will support sending recovery scripts to devices or triggering recovery actions directly.
• Point-in-time restore (PITR) will help PC users and IT professionals recover a device or group of devices without needing technical expertise or lengthy troubleshooting. It will offer comprehensive rollback within minutes to the exact state of a system before a problem emerged, restoring the OS, apps, settings and local files.
• Cloud rebuild will enable IT professionals to completely rebuild an existing PC that is experiencing erratic behavior or has become inoperative. Cloud rebuild will reinstall a completely new Windows 11 OS with the appropriate drivers, so the device becomes reliable. In combination with Microsoft Intune, Windows Autopilot, Windows Backup for organizations and OneDrive, the user will also get their data, apps and PC settings restored.

These tools are part of the broader Windows Resiliency Initiative (WRI) focused on preventing, managing and recovering from incidents.

Additional resources:

• Blog: Learn more about this news
• Breakout: Resilient by design: How Windows has evolved with new recovery tools

Windows 365 rolls out new features aimed at boosting organizational productivity and agility. Windows 365 Reserve, now generally available, lets IT teams quickly deploy secure, pre-configured Cloud PCs for temporary needs such as device loss, ransomware attacks or short-term projects. Meanwhile, Windows 365 Cloud Apps enables administrators to deliver individual apps from the cloud—streamlining virtual desktop management and reducing overhead. The platform’s Frontline offering introduces user experience sync, ensuring consistent app settings and configurations across shared sessions. These updates arrive as research from WSP USA highlights the sustainability benefits of Windows cloud solutions, showing significant reductions in carbon emissions and extended device lifecycles. As Microsoft continues to invest in resilient, flexible cloud tools, organizations gain new ways to modernize IT and lower their environmental impact.

Windows 365 unveils powerful new features to boost organizational productivity and agility, including Windows 365 Reserve—a flexible, secure Cloud PC solution that lets IT teams quickly deploy pre-configured devices for temporary needs, such as hardware delays or security incidents. Users gain secure, anywhere access while IT maintains control and easy revocation. Streamlining virtual desktop environments, Windows 365 Cloud Apps now allow administrators to deliver specific applications like Outlook or custom business tools directly from the cloud, without provisioning a full desktop. Enhanced with User experience sync in Frontline deployments, these updates ensure personalized app settings persist across sessions and devices, even in shared environments. These updates come as new research from WSP USA shows that Windows 365 and Azure Virtual Desktop offer significant carbon emission reductions by extending endpoint lifecycles—delivering sustainability alongside cost savings and resilience.

Windows 365 unveils powerful new features to boost organizational productivity and agility. Windows 365 Reserve, now generally available, lets IT teams quickly deploy secure, temporary Cloud PCs with pre-installed apps and policies—perfect for device delays, losses, or short-term needs. Meanwhile, Windows 365 Cloud Apps empower admins to deliver specific applications from the cloud, reducing overhead and modernizing virtual desktop setups without requiring full desktops. Enhancements to Windows 365 Frontline include user experience sync, ensuring persistent app settings across sessions for shared deployments. Recent research from WSP USA highlights how moving to Windows cloud solutions can slash carbon emissions by extending device lifecycles, offering both cost savings and sustainability benefits.

New Windows 365 features will support Frontier firms that prioritize intelligent work by combining AI-powered workflows, secure cloud delivery and flexibility to scale across devices and environments. These features, now in preview, are Windows 365 for Agents and Windows 365 AI-enabled Cloud PCs.

Windows 365 for Agents will extend agentic capabilities to the Microsoft Cloud. Agent makers will have a trusted platform with modular UI controls, enterprise-grade security and flexibility to run on Windows or Linux. That means they will be able to build and deploy agents that open apps, process data and automate tasks on a Cloud PC.

• Windows 365 for Agents is the backbone of some of the most advanced Microsoft AI initiatives and partner solutions.It serves as the execution platform for agents built into Microsoft Copilot Studio computer use — the Microsoft toolkit for building custom Copilot AI agents to automate web tasks right from a prompt. Here, Windows 365 unlocks an easy, secure automation experience with no machine setup required.
• Researcher uses Windows 365 for Agents to spin up Cloud PCs running a Linux environment to enable a fully fledged web browser and a command line terminal for more advanced code-driven execution scenarios.

Agent makers, enterprise leaders or developers interested in being among the first to try Windows 365 for Agents should join the waiting list today.

Windows 365 AI-enabled Cloud PCs are transforming the way businesses operate by unlocking advanced AI capabilities within select, existing Windows 365 Cloud PC configurations. AI-enabled Cloud PCs will deliver improved Windows search that finds files faster with AI by understanding user intent, not just keywords, as well as Click to Do functionality, so employees can take actions directly on images, videos, tables or text on-screen without needing to switch apps.

Additional resources:

• Blog: Smarter IT, Lower Emissions: Sustainability with Windows and Microsoft Intune
• Download: Visual assets related to this news
• Breakout: What’s new & what’s next in Azure Virtual Desktop​
• Breakout: Unlock efficiencies with Windows 365 Frontline & Cloud PC devices
• Breakout: Unlock the full power of Windows 365
• Breakout: Agents at Work: Windows Powers the Era of Intelligent Productivity
• Breakout: Inside Windows Security, from client to cloud
• Breakout: Resilient by design: How Windows has evolved with new recovery tools
• Theater: Get started with Windows 365 Frontline and Cloud Apps
• Theater: Windows in the Cloud: Resilience Meets Productivity
• Lab: Windows 365 Reserve: Fast, flexible, and ready for anything
• Lab: Windows 365 Frontline: Explore dedicated, shared, cloud apps
• Lab: Windows 365 AI Lab: Improved Windows Search & Click to Do in action
• Lab: Windows 365 deployment lab: Cloud native, Zero Trust, fully ready

Windows 365 and Azure Virtual Desktop are rolling out new security features designed to address the demands of today’s digital workplace. External identities, now generally available, enable organizations to support B2B logins for contractors, BYOD users and external partners, streamlining access while maintaining control. In preview, Windows Cloud I/O Protection introduces advanced safeguards against keylogger malware and keystroke injection attacks, giving IT administrators enhanced tools to protect Cloud PCs. These updates come alongside a suite of resources and breakout sessions focused on sustainability, intelligent productivity, resilience and Zero Trust deployments, reflecting Microsoft’s commitment to secure, adaptive cloud environments.

Windows 365 and Azure Virtual Desktop roll out enhanced security features, now supporting external identities for seamless B2B logins on Cloud PCs and virtual machines—ideal for BYOD, contractors, and external users. With external identity capabilities generally available, organizations gain flexibility and control. Windows Cloud I/O Protection, currently in preview, offers advanced keyboard input/output safeguards against keyloggers and keystroke injection attacks, empowering IT admins to strengthen endpoint defenses. Dive deeper into these updates and discover smarter IT strategies, sustainability insights, and hands-on labs covering Windows 365 and Azure Virtual Desktop innovations across productivity, resilience, and AI-powered solutions.

Windows 365 and Azure Virtual Desktop unveil powerful new tools to bolster security and streamline remote access. With external identities now generally available, organizations can seamlessly enable B2B logins for BYOD, contractors, and external users across Cloud PCs and virtual desktops. The preview of Windows Cloud I/O Protection introduces advanced defense against keylogger malware and keystroke injection, giving IT admins robust control over input security. A full suite of resources, from sustainability insights and breakout sessions to hands-on labs, empowers IT professionals to maximize these platforms—unlocking efficiencies, exploring intelligent productivity, and deploying resilient, cloud-native solutions with Zero Trust foundations.

Windows 365 is introducing new capabilities designed to help organizations stay productive and agile. They are:

Windows 365 Reserve, now generally available, offers a simple, secure and cost-effective temporary Cloud PC solution, enabling IT teams to quickly provide a Reserve Cloud PC pre-installed with organizational apps, as well as settings and security policies via Microsoft Intune. The capability is ideal for such scenarios as device delays, loss, theft, ransomware attacks, hardware/software failures and short-term access needs. Users can securely connect from any device anywhere, and access can be easily revoked when no longer needed, maintaining IT flexibility and control.

Windows 365 Cloud Apps allow administrators to give users access to specific apps delivered from the cloud instead of a full Cloud PC. This is ideal for organizations that want to streamline app delivery, reduce overhead and modernize their virtual desktop infrastructure (VDI) environments. Windows 365 Cloud Apps run on Windows 365 Frontline Cloud PCs in shared mode, streaming apps like Outlook, Word or an organization’s custom apps published via Microsoft Intune — all without loading a full desktop experience. This feature is generally available.

Windows 365 Frontline has added User experience sync in shared mode deployments, enabling persistent app settings and user configurations across sessions and devices. Backed by Microsoft-managed cloud storage and scoped to the same provisioning policy, this feature ensures a consistent experience for users sharing Cloud PCs. When paired with Windows 365 Cloud Apps, it allows administrators to easily provision individual apps to users from a non-personalized Cloud PC image, while still retaining application settings and configurations for each user. User experience sync is now generally available.

These updates come as new Windows in the cloud research by sustainability analyst WSP USA has found that Windows 365 and Azure Virtual Desktop can reduce carbon emissions by extending the lifecycle of physical endpoints. The study compared four business-as-usual scenarios with a cloud-first approach. Modeling showed that modernizing endpoints with Windows cloud solutions can deliver significant emissions reductions — all while maintaining productivity and reducing costs.

Additional resources:

• Blog: Smarter IT, Lower Emissions: Sustainability with Windows and Microsoft Intune
• Breakout: What’s new & what’s next in Azure Virtual Desktop​
• Breakout: Unlock efficiencies with Windows 365 Frontline & Cloud PC devices
• Breakout: Unlock the full power of Windows 365
• Breakout: Agents at Work: Windows Powers the Era of Intelligent Productivity
• Breakout: Inside Windows Security, from client to cloud
• Breakout: Resilient by design: How Windows has evolved with new recovery tools
• Theater: Get started with Windows 365 Frontline and Cloud Apps
• Theater: Windows in the Cloud: Resilience Meets Productivity
• Lab: Windows 365 Reserve: Fast, flexible, and ready for anything
• Lab: Windows 365 Frontline: Explore dedicated, shared, cloud apps
• Lab: Windows 365 AI Lab: Improved Windows Search & Click to Do in action
• Lab: Windows 365 deployment lab: Cloud native, Zero Trust, fully ready
• On-demand: Windows & Intune: Enabling the Sustainability Enterprise of the Future

 

Microsoft has launched the Windows Endpoint Security Platform API in preview for Virus Initiative partners, marking a significant step toward a 2026 general release. By enabling development of security tools for Windows 11 outside of kernel mode, the company aims to improve system reliability and stability, with special attention to early boot security components. More than 4,000 partners are involved in creating drivers for audio, networking and other functions, as Microsoft tightens driver requirements to ensure future devices source current drivers exclusively through Windows Update. The move signals an intensified focus on security, resiliency and recovery as Windows adapts to new challenges, including those posed by AI.

Windows Endpoint Security Platform API debuts in preview for Microsoft Virus Initiative partners, paving the way for broader availability in 2026. By enabling early boot security solutions to operate outside kernel mode, Microsoft empowers partners to build robust Windows 11 protection tools that enhance system stability and reliability. The shift to user-mode APIs marks a major step in reducing vulnerabilities while supporting a thriving ecosystem, with over 4,000 partners developing drivers for audio, networking, and more. Stricter requirements for driver updates aim to ensure future devices source only the latest drivers via Windows Update, reinforcing security and resilience as Windows evolves.

Windows Endpoint Security Platform API enters preview for Microsoft Virus Initiative partners, setting the stage for a 2026 general release. By enabling security tool development for Windows 11 outside kernel mode—especially for early boot components—Microsoft empowers partners to build more stable and reliable solutions. This shift to user mode is poised to enhance system resilience and reduce crashes. Beyond security, Microsoft collaborates with over 4,000 partners on essential drivers like audio and networking, raising standards to ensure future devices get only the latest drivers via Windows Update. Explore deeper insights in Microsoft's blog and breakout session on advancing Windows security and recovery.

Windows 365 and Azure Virtual Desktop have new features that add protections and controls to meet evolving security needs. These new features are:

• External identities: Windows 365 and Azure Virtual Desktop can now use external identities to log into Windows 365 Cloud PCs or Azure Virtual Desktop virtual machines, expanding the opportunity for organizations to use B2B login capabilities for Bring Your Own Device (BYOD), contractor or external user scenarios. External identity (B2B) capabilities are generally available.
• Windows Cloud I/O Protection provides keyboard input and output protection for Cloud PCs. These capabilities help IT admins defend against keylogger malware and keystroke injection attacks. This is in preview.

Additional resources:

• Blog: Smarter IT, Lower Emissions: Sustainability with Windows and Microsoft Intune
• Breakout: What’s new & what’s next in Azure Virtual Desktop​
• Breakout: Unlock efficiencies with Windows 365 Frontline & Cloud PC devices
• Breakout: Unlock the full power of Windows 365
• Breakout: Agents at Work: Windows Powers the Era of Intelligent Productivity
• Breakout: Inside Windows Security, from client to cloud
• Breakout: Resilient by design: How Windows has evolved with new recovery tools
• Theater: Get started with Windows 365 Frontline and Cloud Apps
• Theater: Windows in the Cloud: Resilience Meets Productivity
• Lab: Windows 365 Reserve: Fast, flexible, and ready for anything
• Lab: Windows 365 Frontline: Explore dedicated, shared, cloud apps
• Lab: Windows 365 AI Lab: Improved Windows Search & Click to Do in action
• Lab: Windows 365 deployment lab: Cloud native, Zero Trust, fully ready

Microsoft rolls out a suite of security updates for Windows 11 and Windows Server 2025, integrating Sysmon directly into the operating system for streamlined threat detection. Organizations gain early access to Post Quantum Cryptography APIs, bolstering defenses against future quantum attacks and meeting national security standards. The new Zero Trust DNS feature enforces encrypted, policy-driven name resolution, aligning with NIST guidelines. Hardware-accelerated BitLocker leverages modern CPUs and dedicated crypto engines for faster, more secure encryption, while passkey sync enhances Windows Hello by letting users seamlessly choose and manage passkeys for multi-factor authentication.

Windows 11 and Windows Server 2025 roll out major security upgrades, now featuring integrated Sysmon for streamlined threat hunting and reduced IT admin overhead. Organizations gain early access to Post Quantum Cryptography APIs, bolstering defenses against future quantum attacks and meeting global compliance standards. Zero Trust DNS elevates network protection by enforcing encrypted, policy-driven DNS queries in line with NIST guidelines. Hardware-accelerated BitLocker leverages modern chips to boost encryption speed and security through dedicated crypto engines and hardware-protected keys. Passkey sync debuts, enabling seamless multi-factor authentication via users’ preferred passkey manager integrated with Windows Hello for faster, safer sign-ins. Discover more on enhanced security, sustainability, and enterprise innovation in Windows through dedicated blogs and breakout sessions.

Windows users gain powerful new security tools with the latest updates, including built-in Sysmon integration for streamlined event logging and improved threat visibility. Organizations can now leverage Post Quantum Cryptography (PQC) APIs to future-proof data against quantum attacks, meeting compliance standards and minimizing risk. Zero Trust DNS fortifies outbound DNS traffic using encrypted protocols and approved servers, aligning with NIST standards. Next-gen hardware-accelerated BitLocker boosts performance and security by offloading cryptographic operations and utilizing hardware-protected keys. Windows 11 also introduces passkey manager integration with Windows Hello, delivering seamless, secure multi-factor authentication across the web. Explore more on Windows security and sustainability in the latest blogs and breakout sessions.

Windows Endpoint Security Platform API is now available in preview to Microsoft Virus Initiative partners, who are helping Microsoft make the API generally available in 2026. Partners need a solid platform to start development of their security tools for Windows 11 outside of kernel mode. Microsoft is focusing on early boot components of the security solutions, as they are easy for security partners to remove from kernel mode. Helping partners with new APIs to develop their security tools to run in user mode will greatly impact stability and reliability of Windows systems.

Additionally, Microsoft is working with more than 4,000 partners who are developing other drivers, such as audio and networking. The company is raising requirements for partners and vendors when it comes to drivers, with the goal of future machines only acquiring current drivers from Windows Update.

Additional resources:

• Blog: Advancing Windows security and resiliency in the new era of AI
• Breakout: Resilient by design: How Windows has evolved with new recovery tools

Microsoft has launched the Windows Endpoint Security Platform API in preview for Virus Initiative partners, marking a significant step toward a 2026 general release. By enabling development of security tools for Windows 11 outside of kernel mode, the company aims to improve system reliability and stability, with special attention to early boot security components. More than 4,000 partners are involved in creating drivers for audio, networking and other functions, as Microsoft tightens driver requirements to ensure future devices source current drivers exclusively through Windows Update. The move signals an intensified focus on security, resiliency and recovery as Windows adapts to new challenges, including those posed by AI.

Windows Endpoint Security Platform API debuts in preview for Microsoft Virus Initiative partners, paving the way for broader availability in 2026. By enabling early boot security solutions to operate outside kernel mode, Microsoft empowers partners to build robust Windows 11 protection tools that enhance system stability and reliability. The shift to user-mode APIs marks a major step in reducing vulnerabilities while supporting a thriving ecosystem, with over 4,000 partners developing drivers for audio, networking, and more. Stricter requirements for driver updates aim to ensure future devices source only the latest drivers via Windows Update, reinforcing security and resilience as Windows evolves.

Windows Endpoint Security Platform API enters preview for Microsoft Virus Initiative partners, setting the stage for a 2026 general release. By enabling security tool development for Windows 11 outside kernel mode—especially for early boot components—Microsoft empowers partners to build more stable and reliable solutions. This shift to user mode is poised to enhance system resilience and reduce crashes. Beyond security, Microsoft collaborates with over 4,000 partners on essential drivers like audio and networking, raising standards to ensure future devices get only the latest drivers via Windows Update. Explore deeper insights in Microsoft's blog and breakout session on advancing Windows security and recovery.

A series of security updates for Windows users are now generally available. These include:

Sysmon functionality in Windows: Sysinternals Sysmon is a popular free security event logging tool from Microsoft, and it can now be included in updates to Windows 11 and Windows Server 2025. Prior to release, customers had been responsible for deploying, updating and configuring Sysmon. This provides better visibility for proactive threat hunting with reduced operational overhead for IT admins.

• Post Quantum Cryptography (PQC) API: PQC allows organizations to use cryptographic algorithms to be secured against attacks from quantum computers. Early action helps ensure compliance with the Commercial National Security Algorithm Suite and other global standards, while reducing exposure to “harvest now, decrypt later” threats.
• Zero Trust DNS: This enforces zero trust at the DNS layer by controlling outbound name resolutions using encrypted DNS with approved DNS servers, complying with National Institute of Standards and Technology guidelines.
• Hardware-accelerated BitLocker: In new devices with supported hardware, BitLocker now utilizes capabilities of modern SoC (system on a chip) and CPUs. It can also now offload bulk cryptographic operations for storage I/O from the main CPU cores to a dedicated crypto engine to improve performance. Bitlocker can also now use hardware-protected keys, reducing their exposure to CPU and memory issues, to increase security.
• Passkey sync: Windows 11 now has passkey manager integration with Windows Hello, allowing users to select their passkey manager of choice. Passkey managers can integrate into Windows Hello to smoothly and securely use passkeys. Passkeys bring multifactor authentication to much of the web, so users get the benefit of simple, quick and secure sign-in.

Additional resources:

• Blog: Advancing Windows security and resiliency for a new era of AI
• Blog: Smarter IT, Lower Emissions: Sustainability with Windows and Microsoft Intune
• Download: Visual assets related to this news
• Breakout: Inside Windows Security, from client to cloud
• On-demand: Windows & Intune: Enabling the Sustainability Enterprise of the Future

Microsoft rolls out a suite of security updates for Windows 11 and Windows Server 2025, integrating Sysmon directly into the operating system for streamlined threat detection. Organizations gain early access to Post Quantum Cryptography APIs, bolstering defenses against future quantum attacks and meeting national security standards. The new Zero Trust DNS feature enforces encrypted, policy-driven name resolution, aligning with NIST guidelines. Hardware-accelerated BitLocker leverages modern CPUs and dedicated crypto engines for faster, more secure encryption, while passkey sync enhances Windows Hello by letting users seamlessly choose and manage passkeys for multi-factor authentication. These upgrades signal a major leap in proactive security and user convenience for Windows environments.

Windows 11 and Windows Server 2025 roll out major security upgrades, now featuring integrated Sysmon for streamlined threat hunting and reduced IT admin overhead. Organizations gain early access to Post Quantum Cryptography APIs, bolstering defenses against future quantum attacks and meeting global compliance standards. Zero Trust DNS elevates network protection by enforcing encrypted, policy-driven DNS queries in line with NIST guidelines. Hardware-accelerated BitLocker leverages modern chips to boost encryption speed and security through dedicated crypto engines and hardware-protected keys. Passkey sync debuts, enabling seamless multi-factor authentication via users’ preferred passkey manager integrated with Windows Hello for faster, safer sign-ins. Discover more on enhanced security, sustainability, and enterprise innovation in Windows through dedicated blogs and breakout sessions.

Windows users gain powerful new security tools with the latest updates, including built-in Sysmon integration for streamlined event logging and improved threat visibility. Organizations can now leverage Post Quantum Cryptography (PQC) APIs to future-proof data against quantum attacks, ensuring compliance and minimizing risk. Zero Trust DNS fortifies outbound DNS traffic using encrypted protocols and approved servers, aligning with NIST standards. Next-gen hardware-accelerated BitLocker boosts performance and security by offloading cryptographic operations and utilizing hardware-protected keys. Windows 11 also introduces passkey manager integration with Windows Hello, delivering seamless, secure multi-factor authentication across the web. Explore more on Windows security and sustainability in the latest blogs and breakout sessions.