Microsoft Secure Score will add new improvement actions based on Microsoft Defender for Identity recommendations, rolling out from mid-August to late October 2025. These include removing inactive service accounts and discovered passwords. No admin action is needed; updates appear if a Defender for Identity sensor is deployed.
Introduction
We’re enhancing Microsoft Secure Score by introducing new improvement actions based on Microsoft Defender for Identity posture recommendations. These updates provide a more accurate reflection of your organization’s identity security posture and help strengthen your overall security configuration.
When this will happen
How this affects your organization
New posture recommendations will appear in Microsoft Secure Score as improvement actions. These include:
These recommendations will be visible only if your tenant has a Defender for Identity sensor deployed in your identity infrastructure. The update is enabled by default and requires no configuration changes.
What you can do to prepare
Compliance considerations
No compliance considerations identified, review as appropriate for your organization.