v1.0Microsoft GraphApplications
Added the applicationDataType enumeration type. Added the csaStarLevel enumeration type. Added the dataProtection enumeration type. Added the dataRetentionLevel enumeration type. Added the fedRampLevel enumeration type. Added the holdType enumeration type. Added the passwordPolicy enumeration type. Added the pciVersion enumeration type. Added the restEncryptionType enumeration type. Added the sslVersion enumeration type. Added the userOwnership enumeration type. Added the applicationLocation resource. Added the applicationRiskFactorCertificateInfo resource. Added the applicationRiskFactorGeneralInfo resource. Added the applicationRiskFactorLegalInfo resource. Added the applicationRiskFactorLegalInfoGdpr resource. Added the applicationRiskFactors resource. Added the applicationRiskFactorSecurityInfo resource. Added the applicationRiskScore resource. Added the applicationSecurityCompliance resource. Added the deprecationDate property to the applicationTemplate resource. Added the endpoints property to the applicationTemplate resource. Added the isEntraIntegrated property to the applicationTemplate resource. Added the lastModifiedDateTime property to the applicationTemplate resource. Added the riskFactors property to the applicationTemplate resource. Added the riskScore property to the applicationTemplate resource. Added the licenseRequired resource.
betaMicrosoft GraphSecurity
Added the categories property to the alert resource. Deprecated the category property on the alert resource. Use the categories property instead.
v1.0Microsoft GraphSecurity
Added the categories property to the alert resource. Deprecated the category property on the alert resource. Use the categories property instead.
betaMicrosoft GraphAgents
⏰ Update before removal May 1, 2026 · passed 54d ago
Added a deprecation notice to the agentRegistry resource and related APIs indicating that these Agent Registry APIs will be replaced by Agent 365-based APIs starting May 1, 2026. Added a deprecation notice to the agentCardManifest resource indicating that these Agent Registry APIs will be replaced by Agent 365-based APIs starting May 1, 2026. Added a deprecation notice to the agentCollection resource indicating that these Agent Registry APIs will be replaced by Agent 365-based APIs starting May 1, 2026. Added a deprecation notice to the agentInstance resource indicating that these Agent Registry APIs will be replaced by Agent 365-based APIs starting May 1, 2026.
betaMicrosoft GraphApplications
Added the deprecationDate property to the applicationTemplate resource.
v1.0Microsoft GraphTeamwork and communications
Deleted the model query parameter from the update operation of the chatMessage resource. Deleted the model query parameter from the chats: getAllMessages method. Deleted the model query parameter from the chat: getAllRetainedMessages method. Deleted the model query parameter from the channel: getAllMessages method. Deleted the model query parameter from the channel: getAllRetainedMessages method. Deleted the model query parameter from the deletedTeam: getAllMessages method. Deleted the model query parameter from the create operation of the subscription resource.
betaMicrosoft GraphTeamwork and communications
Deleted the model query parameter from the update operation of the chatMessage resource. Deleted the model query parameter from the chats: getAllMessages method. Deleted the model query parameter from the chat: getAllRetainedMessages method. Deleted the model query parameter from the channel: getAllMessages method. Deleted the model query parameter from the channel: getAllRetainedMessages method. Deleted the model query parameter from the deletedTeam: getAllMessages method. Deleted the model query parameter from the create operation of the subscription resource.
betaMicrosoft GraphDevice and app management
Added the retryUpload method to the cloudPcDeviceImage resource. Deprecated the reupload method on the cloudPcDeviceImage resource. Going forward, use the retryUpload API instead.
v1.0Microsoft GraphPermissions
Updated the FileStorageContainerType.Manage.All delegated permission to no longer require admin consent. Updated the FileStorageContainerTypeReg.Manage.All delegated permission to no longer require admin consent. Updated the ThreatSubmission.Read delegated permission to now require admin consent. Updated the ThreatSubmission.ReadWrite delegated permission to now require admin consent.
betaMicrosoft GraphSecurity
Deprecated the detonationBehaviourDetails resource. Use the detonationBehaviourDetailsV2 property of the detonationDetails resource instead. Added the detonationBehaviourDetailsV2 property to the detonationDetails resource. Added the entityMetadata property to the detonationDetails resource. Added the mitreTechniques property to the detonationDetails resource. Added the staticAnalysis property to the detonationDetails resource. Added the submissionSource property to the detonationDetails resource. Added the moveToQuarantine member to the remediationAction enumeration.
betaMicrosoft GraphPeople and workplace intelligence
Deprecated the List shared method of the sharedInsight resource. This API is deprecated and will stop returning data after November, 2026. Deprecated the List used method of the usedInsight resource. This API is deprecated and will stop returning data after November, 2026.
v1.0Microsoft GraphPeople and workplace intelligence
Deprecated the List shared method of the sharedInsight resource. This API is deprecated and will stop returning data after November, 2026. Deprecated the List used method of the usedInsight resource. This API is deprecated and will stop returning data after November, 2026.
In developmentOneDrive
The new My Sites tab in the OneDrive iOS app gives you one place to find every group-connected SharePoint site you own or belong to. Instead of relying on recent files or search, you can browse a complete list of your sites and jump straight to their default document libraries — right from your iPhone or iPad. It's especially handy when you don't remember a site's name, haven't opened it recently, or were just added as a member of a new site, so you spend less time hunting and more time working with your team's content.
In developmentMicrosoft Purview
Microsoft Purview is introducing a new view-only role management role to give admins permissions to see all the member assignments in Purview and Defender portal. This addition will be added to Global Reader and Security Reader in Purview and Entra.
In developmentMicrosoft VivaMicrosoft Copilot (Microsoft 365)
AI spend and usage insights for GitHub Copilot will be available on Viva Insights for managers with at least 5 direct reports (scoped access), Global analysts and Microsoft Global administrators. They can track spend and make data-driven decisions for AI spend and usage in GitHub Copilot. The dashboard is enabled by default to ensure immediate access.
In developmentMicrosoft Copilot (Microsoft 365)
Copilot Answers in Copilot Search (in the M365 Copilot App on web and desktop) will provide more concise responses and more prominently highlight the ability to continue in the conversation in Copilot chat on the right-hand sidebar.
In developmentMicrosoft Teams
Microsoft Teams introduces flexible presets for channel notifications, allowing you to choose between All new messages, @mentions and replies, or Mute. You can further customize alerts for unfollowed threads, tags, and channel or team mentions, as well as control banner notifications for the channel. This added flexibility enables you to set notifications to match to your work style and reduce unnecessary distractions.
In developmentMicrosoft VivaMicrosoft Copilot (Microsoft 365)
Key Microsoft 365 Copilot metrics in custom person queries and reports will have values up to 2-3 days old from the current date. This will provide fresher copilot usage analysis to analysts in Viva Advanced analysis.
In developmentMicrosoft Teams
What’s new
Teams now supports audio and video offloading for Town hall attendees in VDI environments that are using the new optimization. Media streams are offloaded directly to the user’s local device, improving performance and delivering a high definition viewing experience while reducing virtual desktop resource usage.
Who it applies to
• Windows endpoints only using the new VDI optimization
• Supported VDI platforms:
o Azure Virtual Desktop and Windows 365
o Citrix
o Omnissa
o Amazon WorkSpaces
What stays the same
All attendee interactivity features remain supported, including captions, DVR, reactions, streaming chat, and Q&A.
Additional details
First party and third party eCDNs are supported. When enabled, the attendee’s endpoint establishes a direct peer to peer connection using the local device network, avoiding virtual desktop double hop traffic.
Action required
No action is required if the new optimization for Microsoft Teams is already enabled.
In developmentMicrosoft Teams
Users have better experiences in flexible work environments with Microsoft Teams panel-based desk dock devices coming later this year. The Teams panel app now enables devices, such as the Yealink Linkhub, to enhance bookable desk experiences by indicating at-a-glance availability and letting visitors book directly on the device. Each device requires a Teams Shared Space license.
LaunchedMicrosoft Teams
The Teams room builder is a user-friendly, visually engaging tool to help IT managers design and configure Teams Rooms traditional, signature, and flex meeting spaces. This feature, available in the Teams Rooms Pro Management portal, enables faster design, standards creation, and rollout. With a variety of equipment options and helpful criteria filters, device and license selection and purchase is simplified. Available with Teams Rooms Pro.
In developmentMicrosoft Viva
With the new control in Viva Glint, service administrators can now configure whether to retain or delete survey and relevant indefinable user data for users who are manually deleted from Glint or deleted via the signals received via Microsoft Entra. This will ensure that the consistency of previously generate Glint survey reports is retained and user data is handled in accordance with the relevant organizational policies. We will also process the delete signals received via Microsoft Entra and handle the corresponding user data retention or deletion as per our terms of service.
Rolling outMicrosoft Teams
When a Teams Rooms on Android is invited as a meeting presenter, the front-of-room display defaults to the attendee view. Presenters always have full control from the console, including green room and off-stage management, and can switch the front-of-room display to presenter view without impacting attendees.
In developmentMicrosoft Teams
Teams rooms on Windows supports Entra Resource Accounts for secure, passwordless sign-in that separates device and user identities. IT admins can migrate to Entra accounts easily with the migration wizard, and track progress using a dashboard in the Pro Management portal.
In developmentMicrosoft Teams
Digital signage can now be displayed on idle Teams panel devices, similar to digital signage support for Microsoft Teams Rooms front of room displays. Signage source and settings can be configured in the Pro Management portal. Available with Teams Rooms Pro or Shared space-licensed spaces.
In developmentMicrosoft Teams
SMB Admins can use Microsoft 365 Admin Agent in Microsoft Teams to complete common admin tasks and get guidance on critical setup actions. Admin Agent can add users and assign licenses on behalf of the admin, as well as provide guidance on key SMB related topics such as organisation setup, security settings, and password resets—without leaving the Teams interface.
Rolling outMicrosoft Teams
IT gets new building level insights on the recommended actions page in the Teams Rooms Pro Management portal. This feature intelligently identifies buildings with high Teams Rooms utilization to help IT prioritize upgrades of bring your own device (BYOD) meeting spaces and ensure consistent, high-quality user experiences throughout their office buildings. Available with a Teams Rooms Pro or Shared Space license.
Rolling outMicrosoft Teams
You can join a Microsoft webinar and structured meeting from a Teams Room on Android and interact seamlessly during the event. Available for Teams Rooms Pro.
Rolling outAccess
⏰ Migrate before June CY2026 · overdue
With the removal of the 22-inch limit, your apps can now take full advantage of today’s larger monitors. You can display more data, create flexible layouts, and deliver a better experience on wide and high-resolution screens.
LaunchedMicrosoft Purview
Adaptive policy scopes enable your organization to create scopes that automatically updates which users to include in your policy based on geography, group, or another user attribute. The policy will automatically update to match the criteria defined in the scope instead of you constantly needing to update the static list of users in your policies.
LaunchedMicrosoft Purview
Adaptive policy scopes enable your organization to define user scopes for policies based on criteria such as geography, group, or other Azure Active Directory attributes. With adaptive policy scopes, policies are automatically updated to include users that match defined risk criteria rather than requiring admins to repeatedly update static lists of users to include in the policy scope. Microsoft Purview Communication Compliance provides the tools to help organizations detect regulatory compliance violations (e.g. SEC and FINRA obligations), such as inappropriate sharing of sensitive or confidential information, harassing or threatening language and sharing of adult content. Communication Compliance enables customers to create policies based on their own internal policies, governance and organizational requirements. Built with privacy by design, usernames are pseudonymized by default, role-based access controls are built in, investigators are opted in by an admin, and audit logs are in place to help ensure user-level privacy.
LaunchedMicrosoft Purview
The Communication
Compliance homepage will provide two columns that offer a quick overview of
policy performance: the first column shows the number of scanned parent items
in real time, giving visibility into scanning progress; the second column keeps
you informed about parent items that meet policy conditions, ensuring you stay
updated on potential issues requiring attention and maintaining control over
communication compliance. This item is no longer accurate and is being removed from the roadmap. We apologize for the inconvenience.
PreviewMicrosoft Defender XDR
Entity enrichments with threat intelligence: Entity pages for IP addresses, domains, URLs, and files now include a Threat Intelligence Insights tab that surfaces enrichment data from Microsoft Threat Intelligence directly in the investigation workflow. Enrichments include reputation scores, attributed threat reports, infrastructure relationships, and sandbox analysis, eliminating the need to switch between separate tools during investigations. For more information, see View threat intelligence in entity pages.
betaMicrosoft GraphTenants
Added the migrate method to the crossTenantMigrationJob resource. Changed the behavior of the validate method on the crossTenantMigrationJob resource to validate an existing job as an entity-bound action. Going forward, use the POST /solutions/migrations/crossTenantMigrationJobs/{crossTenantMigrationJobId}/validate endpoint to trigger the validation of an existing cross-tenant migration job. Removed the displayName parameter from the validate method. Removed the completeAfterDateTime parameter from the validate method. Removed the sourceTenantId parameter from the validate method. Removed the exchangeSettings parameter from the validate method. Removed the workloads parameter from the validate method. Removed the resourceType parameter from the validate method. Removed the resources parameter from the validate method.
betaMicrosoft GraphSecurity
Added the policyTip member to the dlpAction enumeration. Removed the overrideOption property from the notifyUserAction resource. Removed the policyTip property from the notifyUserAction resource. Added the policyTipAction resource.
betaMicrosoft GraphTasks and plans
Added the historyEntityType enumeration type. Added the historyEventType enumeration type. Added the completionInHostedApp member to the plannerTaskCompletionRequirements enumeration. Added the plannerTaskData resource. Added the plannerTaskDetailsData resource. Added the plannerHistoryItem resource and an associated method. Added the historyItems relationship to the plannerPlan resource. Added the taskHistoryItem resource.
betaMicrosoft GraphTeamwork and communications
Added the cloudVideoInteropInfo resource. Added the cloudVideoInteropInfo property to the onlineMeetingBase resource. Added the cloudVideoInteropInfo property to the onlineMeeting resource. Added the cloudVideoInteropInfo property to the virtualEventSession resource.
betaMicrosoft GraphTeamwork and communications
Added the isRegistrationRequired property to the virtualEvent resource. Added the isRegistrationRequired property to the virtualEventTownhall resource. Added the isRegistrationRequired property to the virtualEventWebinar resource.
v1.0Microsoft GraphIdentity and access
Added the accessPackageSuggestionFilterByCurrentUserOptions enumeration type. Added the accessPackageSuggestionRelatedPeopleInsightLevel enumeration type. Added the approverInformationVisibility enumeration type. Added the approverInformationVisibility property to the accessPackageApprovalStage resource. Added the accessPackageSuggestionReason resource. Added the accessPackageSuggestionRelatedPeopleBased resource. Added the accessPackageSuggestionSelfAssignmentHistoryBased resource. Added the identity resource. Added the accessPackageSuggestion resource. Added the availableAccessPackage resource. Added the controlConfiguration resource. Added the endUserSettings resource. Added the accessPackageSuggestions relationship to the entitlementManagement resource. Added the availableAccessPackages relationship to the entitlementManagement resource. Added the controlConfigurations relationship to the entitlementManagement resource. Added the filterByCurrentUser method to the accessPackageSuggestion resource.
betaMicrosoft GraphTeamwork and communications
Added the meetingType property to the onlineMeetingBase resource. Added the meetingType property to the onlineMeeting resource. Added the meetingType property to the virtualEventSession resource. Added the onlineMeetingType enumeration type.
v1.0Microsoft GraphIdentity and access
Added the roleType enumeration type. Added the type property to the accessPackageResourceRole resource.
betaMicrosoft GraphApplications
Added the redirectUris property to the appManagementApplicationConfiguration resource. Added the redirectUris property to the customAppManagementApplicationConfiguration resource. Added the redirectUriAllowedDomainConfiguration resource. Added the redirectUriAllowedSchemeConfiguration resource. Added the redirectUriBlockedDomainConfiguration resource. Added the redirectUriBlockedSchemeConfiguration resource. Added the redirectUriConfiguration resource. Added the redirectUriPlatformAllowedDomainConfiguration resource. Added the redirectUriPlatformAllowedSchemeConfiguration resource. Added the redirectUriPlatformBlockedDomainConfiguration resource. Added the redirectUriPlatformBlockedSchemeConfiguration resource. Added the redirectUriWildcardConfiguration resource. Added the redirectUriWildcardExcludeFormats resource.
betaMicrosoft GraphSecurity
Added the detectionRuleStatus enumeration type. Added the accountObjectIdAction resource. Added the accountSidAction resource. Added the alertCustomDetails resource. Removed the alertTemplate resource. Deprecated the allowFileResponseAction resource. Added the automatedAction resource. Added the automatedActionSet resource. Deprecated the blockFileResponseAction resource. Deprecated the collectInvestigationPackageResponseAction resource. Removed the detectionAction resource. Added the deviceAction resource. Deprecated the disableUserResponseAction resource. Added the emailAction resource. Added the fileAction resource. Deprecated the forceUserPasswordResetResponseAction resource. Deprecated the hardDeleteResponseAction resource. Deprecated the impactedAsset resource. Deprecated the impactedDeviceAsset resource. Deprecated the impactedMailboxAsset resource. Deprecated the impactedUserAsset resource. Deprecated the initiateInvestigationResponseAction resource. Added the isolateDeviceAction resource. Deprecated the isolateDeviceResponseAction resource. Deprecated the markUserAsCompromisedResponseAction resource. Added the mitreTactic resource. Added the mitreTechnique resource. Deprecated the moveToDeletedItemsResponseAction resource. Deprecated the moveToInboxResponseAction resource. Deprecated the moveToJunkResponseAction resource. Added the deviceGroups property to the organizationalScope resource. Deprecated the organizationalScope resource. Deprecated the organizationalScope resource. Deprecated the queryCondition resource. Deprecated the responseAction resource. Deprecated the restrictAppExecutionResponseAction resource. Added the frequency property to the ruleSchedule resource. Deprecated the ruleSchedule resource. Deprecated the ruleSchedule resource. Deprecated the runAntivirusScanResponseAction resource. Deprecated the runDetails resource. Deprecated the softDeleteResponseAction resource. Added the stopAndQuarantineFileAction resource. Deprecated the stopAndQuarantineFileResponseAction resource. Added the accountEntityMapping resource. Added the alertTemplate resource. Added the amazonResourceEntityMapping resource. Added the azureResourceEntityMapping resource. Added the cloudApplicationEntityMapping resource. Added the detectionAction resource. Added the createdBy property to the detectionRule resource. Added the createdDateTime property to the detectionRule resource. Added the description property to the detectionRule resource. Removed the detectionAction property from the detectionRule resource. Deprecated the detectionRule resource. Added the displayName property to the detectionRule resource. Added the id property to the detectionRule resource. Added the isEnabled property to the detectionRule resource. Added the lastModifiedBy property to the detectionRule resource. Added the lastModifiedDateTime property to the detectionRule resource. Deprecated the detectionRule resource. Added the status property to the detectionRule resource. Added the detectionAction relationship to the detectionRule resource. Added the dnsEntityMapping resource. Added the entityMapping resource. Added the entityMappingConfiguration resource. Added the fileEntityMapping resource. Added the googleCloudResourceEntityMapping resource. Added the hostEntityMapping resource. Added the ipEntityMapping resource. Added the mailboxEntityMapping resource. Added the mailClusterEntityMapping resource. Added the mailMessageEntityMapping resource. Added the oAuthApplicationEntityMapping resource. Added the processEntityMapping resource. Removed the protectionRule resource. Added the registryValueEntityMapping resource. Added the securityGroupEntityMapping resource. Added the urlEntityMapping resource.
betaMicrosoft GraphIdentity and access
Added the customTaskExtensionReplyMode enumeration type. Added the extensibility member to the lifecycleTaskCategory enumeration. Added the extensibility member to the lifecycleWorkflowCategory enumeration. Added the provisioningObject member to the subjectType enumeration. Added the extensibilityOnDemand member to the workflowExecutionType enumeration. Added the attributeSetEntry resource. Added the awaitedWorkflowProcessingResult resource. Added the targetSubject property to the customTaskExtensionCalloutData resource. Added the customTaskExtensionResponseData resource. Added the provisioningAttributeMapping resource. Added the provisioningObjectWorkflowSubject resource. Added the workflowSubject resource. Added the replyMode property to the customTaskExtension resource. Added the subjectProcessingResults relationship to the run resource. Added the subjectProcessingResult resource. Added the subjectProcessingResults relationship to the taskReport resource. Added the workflowSubject property to the taskProcessingResult resource. Added the activateAndWait method to the workflow resource. Added the List subjectProcessingResults method to the run resource. Added the List subjectProcessingResults method to the taskReport resource. Added the Get subjectProcessingResult method to the subjectProcessingResult resource.
betaMicrosoft GraphMail
Added the distributionList resource type. Added the distributionListMember resource type. Added the member complex type. Added the recipientType enumeration type. Added the distributionLists relationship to the user resource. Added the List distributionLists method to the user resource. Added the Create distributionList method to the user resource. Added the Get distributionList method. Added the Update distributionList method. Added the Delete distributionList method. Added the addMembers method to the distributionList resource. Added the deleteMembers method to the distributionList resource. Added the List distributionListMembers method. Added the Get distributionListMember method.
v1.0Microsoft GraphSecurity
Added the microsoftSecurityForAI member to the serviceSource enumeration type for the alert resource.
v1.0Microsoft GraphPeople and workplace intelligence
Added the isVisible property to the profileCardProperty resource.
betaMicrosoft GraphSecurity
Added the tenantId property to the userAccount resource.
v1.0Microsoft GraphSecurity
Added the tenantId property to the userAccount resource.
v1.0Microsoft GraphSecurity
Added the correlationReason enumeration type. Added the mergeResponse resource. Added the mergeIncidents method to the incident resource. Added the moveAlerts method to the alert resource.
betaMicrosoft GraphIdentity and access
Added the delegatedBy property to the accessReviewInstance resource to identify the users who delegated an access review to the current reviewer. Added the delegatedBy property to the accessReviewInstanceDecisionItem resource to identify the users who delegated an access review to the current reviewer. Added the directReviewer member to the filter options for the accessReviewScheduleDefinition: filterByCurrentUser , accessReviewInstance: filterByCurrentUser , accessReviewStage: filterByCurrentUser , and accessReviewInstanceDecisionItem: filterByCurrentUser APIs to return items directly assigned to the current reviewer. Added the delegatedReviewer member to the filter options for the accessReviewScheduleDefinition: filterByCurrentUser , accessReviewInstance: filterByCurrentUser , accessReviewStage: filterByCurrentUser , and accessReviewInstanceDecisionItem: filterByCurrentUser APIs to return items delegated to the current reviewer.
betaMicrosoft GraphReports
Added the passwordSubmit member to the authenticationEventType enumeration.
betaMicrosoft GraphFiles
Added the Get fileStorageContainer permission method to the fileStorageContainer resource. Updated the Update fileStorageContainer permission method to support the PATCH /storage/fileStorage/containers/{containerId}/permissions(email='{email}') and PATCH /storage/fileStorage/containers/{containerId}/permissions(userPrincipalName='{userPrincipalName}') endpoints. Updated the Delete fileStorageContainer permission method to support the DELETE /storage/fileStorage/containers/{containerId}/permissions(email='{email}') and DELETE /storage/fileStorage/containers/{containerId}/permissions(userPrincipalName='{userPrincipalName}') endpoints.
betaMicrosoft GraphFiles
Added the @microsoft.graph.conflictBehavior annotation parameter to the Create fileStorageContainer permissions method to control the behavior when an identity already exists with a different role. Specify fail to return a 409 Conflict error, or replace to update the existing role.
v1.0Microsoft GraphFiles
Added the Get fileStorageContainer permission method to the fileStorageContainer resource.
v1.0Microsoft GraphFiles
Added the @microsoft.graph.conflictBehavior annotation parameter to the Create fileStorageContainer permissions method to control the behavior when an identity already exists with a different role. Specify fail to return a 409 Conflict error, or replace to update the existing role.
betaMicrosoft GraphSecurity
Added the microsoftSecurityForAI member to the serviceSource enumeration type for the alert resource.
v1.0Microsoft GraphSecurity
Added the recipientType enumeration type. Added the caseMembers relationship to the ediscoveryCase resource. Added the ediscoveryCaseMember resource.
v1.0Microsoft GraphSecurity
Added the retryPolicy method to the ediscoveryHoldPolicy resource.
betaMicrosoft GraphDevice and app management
Added new supported media sizes to the mediaSizes property of the printerCapabilities resource.