Microsoft Entra Verified ID is Now Generally Available

Microsoft announced on August 8 that it has made Microsoft Entra Verified ID generally available. This event actually happened after Entra was delayed twice.

When the first preview version was ready, it was called Microsoft Azure Active Directory Verified Credentials. The service will be used by organizations to provide proof of education, employment, and other transactions, and will be easy to create.

12 picture

The faster, more reliable way to verify 

Customers rely on Azure AD to provide secure access to corporate resources. However, enabling the use of credentials for benefits outside the company (for example, proving employment for a bank loan) can be complex and comes with compliance risk. In contrast, everyday ID documents like a driver’s license or passport are well-suited for providing benefits beyond travel (for example, age or residency). 

Core Skills 

With today's announcement, millions of Azure AD customers (free and premium) can now easily provide, request, and verify credentials to represent proof of employment, education, or any other claim.  

Provide your identification information. Customers can now design and issue verifiable credentials to represent proof of employment, education, or other claims. The owner of the credential can decide when and with whom to share it. Each credential is signed with cryptographic keys that the user owns and controls. These credentials can be presented and verified even if the issuing institution no longer exists.

Request and verify credentials. Unlike credentials issued by current centralized identity systems, verifiable credentials are standards-based. This makes them easy for developers to understand and does not require special integrations. Applications can request and verify the authenticity of credentials from any organization using APIs included as part of the service.  

Present identifying information in a secure, confidential manner. Users can manage and present credentials using Microsoft Authenticator. What makes this unique is that it allows users to control who can access their credentials, even if they are issued by organizations. We will add capabilities like selective disclosure, derived claims (e.g. proof of age instead of date of birth), and measures to prevent correlation.  

Recover credentials. End users can manage their credentials using Microsoft Authenticator and recover from loss using a mnemonic-based (passphrase) scheme. We continue to partner with the community to find more user-friendly and elegant ways to enable recovery. Additionally, we will offer custody and social recovery solutions so users can choose a circle of trusted parties among their friends, family, and organizations.  

Can work together. We’ve also developed a standards-based interoperability profile in partnership with IBM, Workday, Ping, and Mattr so that anyone can create compliant digital wallets. This interoperability profile gives application developers a consistent way to manage and switch between credentials as part of the digital wallets they create. 

Partnership with leading authentication providers 

Some governments around the world are beginning to issue digital credentials to verify basic identity attributes (e.g. age or citizenship). We have partnered with 192 leading identity verification partners to enable organizations to remotely verify basic identity attributes, 6.000 identity documents, and 1.000s of attributes for organizations and individuals in 10 countries. End users can present these credentials to quickly get started, apply for loans, or access secure applications and services without having to repeatedly share sensitive information. 

Important scenarios 

During the preview period, customers from around the world issued and verified credentials in a variety of scenarios, from remote on-site recruiting to collaboration across business boundaries to off-campus training. Customers have issued and verified tens of thousands of credentials using our platform across industries to: 

  • Faster remote onboarding: Verify credentials for secure self-service registration and reduce time to onboarding. 
  • Verify access to high-value applications: Quickly verify a person's credentials and status to securely grant least privilege access. 
  • Easy account recovery: Replace support calls and security questions to verify identities with a streamlined self-service process.

Our API-first approach makes it easy for customers to integrate verifiable credentials into their existing applications and provides an easy quick-start model to increase verifiability and compliance. These applications and services can be hosted on-premises or in Azure, AWS, or GCP. 

Get started with Entra Verified ID today 

“We’ve identified about 60 different use cases for verifiable credentials. It’s so flexible,

potentially hundreds of different ways across an organization available . "

<a href="https://techcommunity.microsoft.com/t5/microsoft-enter -azure-ad-blog/microsoft-entra-verified-id-now-generally-available/ba-p/3295506″>Microsoft Entra Verified ID is now generally available – Microsoft Technology Community


Similar Articles – Microsoft Entra Verified ID is Now Available to the General

Comment