When Microsoft launched Microsoft Safety Copilot final yr, our imaginative and prescient was to empower organizations with generative AI that helps safety and IT groups simplify operations and reply sooner. Since then, we’ve repeatedly innovated and realized alongside our clients. They persistently inform us that practitioners find it irresistible when Copilot is constructed straight into the instruments they use each day.
That’s why we’re centered on delivering deeply built-in, scenario-based experiences that align with Zero Belief rules, making it simpler for IT and safety professionals to ask questions, take motion, and acquire insights straight inside their present workflows. These experiences not solely cut back friction but additionally assist IT groups keep in circulation, making smarter choices sooner and with better confidence. And the influence is actual: organizations utilizing Safety Copilot have seen a 54% discount in time to resolve system coverage conflicts, and a 22.8% drop in alerts per incident inside three months of adoption, releasing up groups to deal with extra strategic work.
We’re excited to announce the Safety Copilot capabilities in Microsoft Intune and Microsoft Entra have moved from preview to basic availability. This milestone displays the vital position Intune and Entra play in fashionable safety methods, serving as the muse for implementing a Zero Belief mannequin. Intune enforces system compliance, app safety, and endpoint privilege administration, whereas Entra governs id entry with Conditional Entry insurance policies and granular authentication controls. Collectively, they create a unified safety posture that aligns with Zero Belief rules throughout gadgets, customers, functions, and even brokers. Safety Copilot amplifies this basis by offering AI-assisted steering, autonomous brokers, and insights accessible by means of pure language, serving to IT groups scale operations, speed up skilling, and proactively remediate threats at machine velocity.
Reimagining IT workflows with Safety Copilot in Intune
IT directors typically face a each day flood of knowledge, alerts, and configuration particulars, making it tough to shortly discover the fitting info and act with confidence. AI is altering how individuals work, and Copilot in Intune is evolving how IT admins work together with and act on their endpoint administration knowledge. The Safety Copilot in Intune basic availability launch introduces a model new, Copilot-assisted knowledge exploration functionality. IT admins now have a devoted web page within the Intune admin middle to ask Copilot for the info they want, take motion, and full endpoint administration duties, all with out leaving their workflow. This functionality permits admins to extract insights throughout Intune domains—gadgets, apps, safety insurance policies, customers, compliance knowledge, app configurations, and extra—and act on it utilizing its deep integration into the Intune performance they’re acquainted with. It represents step one in a foundational shift from conventional reporting and queries to Copilot-powered investigation and IT-empowered motion.
This new Safety Copilot functionality is designed to simplify essentially the most time-consuming IT workflows, like assessing safety posture, managing updates, troubleshooting points, and producing customized studies. Whether or not it’s figuring out non-compliant gadgets, monitoring patch failures, previewing coverage influence, or automating remediation, Copilot brings collectively the info and actions IT wants in a single place.
Admins can ask pure language questions like, “Present me gadgets that aren’t on the newest model of Home windows and Workplace,” or “Which of my Endpoint Privilege Administration guidelines are in battle and what are the supply profiles?” and take motion immediately, with out switching context.
Determine 1. New expertise to discover your Intune knowledge with Copilot help throughout workloads.
The brand new Explorer expertise additionally contains help for Home windows 365 Cloud PCs, giving IT directors a constant technique to view and act on system particulars throughout each cloud and bodily endpoints. We’re excited to share that within the coming weeks, we’ll introduce extra AI capabilities in Intune with Copilot help for Home windows 365, providing insights into Cloud PC connectivity and connection high quality, licensing optimization, and efficiency points tied to compute sources. These capabilities construct on the momentum of digital computing and the flexibility to stream Home windows from the Cloud, enhancing the IT expertise and delivering much more endpoint administration worth—particularly for Home windows-based environments.
The overall availability launch of Safety Copilot in Intune additionally offers chat-based contextual help and contains integration with core and Microsoft Intune Suite options. Intune Superior Analytics a number of system question (MDQ), and Copilot assist admins write detailed Kusto Question Language (KQL) queries and Endpoint Privilege Administration with Copilot assesses app dangers for admins to make knowledgeable choices earlier than approving Home windows customers’ elevation requests. And with the Floor Administration Portal in Intune, Copilot offers unified visibility and controls for IT throughout Floor gadgets, additional strengthening safety posture and streamlining operations.
Simply as Safety Copilot is remodeling endpoint administration in Intune, it’s additionally reshaping how id is managed in Microsoft Entra.
Safety Copilot in Entra brings readability and velocity to id safety
Identification environments evolve each day—new person, apps, and permissions are always launched, making it tough for IT and id admins to maintain insurance policies updated and person entry correctly ruled. Handbook investigations completed the standard means may be very time-consuming and reactive, giving cyberattackers extra time to take advantage of gaps. With greater than 600 million identity-based assaults occurring each day, organizations can’t afford gradual, guide investigations or rare coverage evaluations.1
Safety Copilot in Microsoft Entra, now usually obtainable, brings AI-assisted reasoning, pure language prompts, and real-time insights throughout your id and entry property, all throughout the Microsoft Entra admin middle. We’ve made main enhancements to enhance efficiency, scalability, and accuracy, enabling Safety Copilot to raised perceive person intent, deal with extra advanced questions, and ship clearer solutions.
We’ve additionally expanded protection to help a broader set of real-world id eventualities. Copilot in Entra now helps admins examine customers, troubleshoot sign-ins, handle entry evaluations and entitlements, monitor tenant well being and service-level settlement (SLAs), optimize license utilization, and analyze position assignments and proposals—all grounded in Microsoft Graph knowledge.
Admins can now ask pure language questions like, “Which enterprise functions have credentials about to run out?” and “What position does the person have?” to shortly floor insights and take motion. Whether or not it’s reviewing entry packages, figuring out dangerous apps, or checking license availability, Safety Copilot in Entra helps groups transfer sooner, keep forward of cyberthreats, and deal with what issues most.
Goal-built brokers for real-world IT challenges
At Microsoft Safe 2025, as a part of our imaginative and prescient to ship an AI-first, end-to-end safety platform, Microsoft introduced 11 AI-powered Safety Copilot brokers which might be seamlessly built-in with Microsoft Safety and companion options. These brokers autonomously deal with high-volume, high-value duties, be taught from suggestions, adapt to workflows, and function securely, reflecting our dedication to serving to organizations obtain what was beforehand unimaginable—at machine velocity.
Right this moment marks a significant milestone in our journey towards an AI-first, end-to-end safety platform: we’re asserting the overall availability of the Conditional Entry Optimization Agent in Microsoft Entra. This launch brings AI-powered automation to IT and safety operations, serving to groups convey proactive safety straight into id workflows.
The Conditional Entry Optimization Agent runs autonomously, scanning your surroundings for gaps, overlaps, and outdated coverage assignments. It then recommends exact, one-click remediations to assist shut the gaps quick, turning reactive cleanup into proactive protection.
The Conditional Entry Optimization Agent offers:
- Autonomous safety, each day—Robotically detects newly created customers or apps not lined by Conditional Entry insurance policies, decreasing threat between guide audits.
- Actual-time, explainable choices—Each suggestion features a plain-language abstract and visible exercise map exhibiting how the agent reached its conclusion.
- Steady adaptability to your group’s wants—Help for customized enterprise guidelines, the agent can be taught based mostly in your natural-language suggestions (for instance, excluding break-glass accounts).
- Full auditability—Agent actions like set up, allow and disable, and proposals are recorded within the audit log for compliance and operational transparency.
With the Conditional Entry Optimization Agent, coverage protection turns into steady. You acquire each day safety, coverage readability, and built-in experience with out the guide raise. As one safety chief put it:
“The Conditional Entry Optimization Agent is like having a safety analyst on name 24/7. It proactively identifies gaps in our Conditional Entry insurance policies and ensures each person is protected against day one, and with report-only mode and AI-driven suggestions, we are able to take a look at and refine entry insurance policies with out disruption. It’s a safe path to innovation that each chief info safety officer can belief.”
—Julian Rasmussen, Senior advisor and Companion, Level Taken, Microsoft MVP
Step into the way forward for IT with Safety Copilot
We’re in a brand new period of AI that has implications for IT operations and safety. Now with Microsoft Safety Copilot in Intune and Entra, you may make your group future-ready with AI options that assist organizations rework IT and safety at machine velocity.
As a part of our ongoing dedication to enhancing the embedded expertise of Safety Copilot throughout Microsoft Safety merchandise, we’re excited to introduce a brand new in-portal capability calculator obtainable within the Safety Copilot standalone expertise (Azure account required). This instrument permits organizations to estimate the variety of Safety Compute Models (SCUs) they could want based mostly on the variety of Safety Copilot customers in every Microsoft Safety product. Customers can generate a fast estimate, offering a sensible start line for capability planning. SCU allocations may be adjusted at any time as real-world utilization patterns emerge. Study extra.
Discover extra use circumstances for IT and id admins within the Safety Copilot adoption hub. Discover Copilot in Intune and Entra and take these steps to be taught extra:
To be taught extra about Microsoft Safety options, go to our web site. Bookmark the Safety weblog to maintain up with our skilled protection on safety issues. Additionally, observe us on LinkedIn (Microsoft Safety) and X (@MSFTSecurity) for the newest information and updates on cybersecurity.
1Microsoft Digital Protection Report 2024.
The info, insights, and occasions on this report symbolize July 2023 by means of June 2024 (Microsoft fiscal yr 2024), except in any other case famous.
