Kumaran

Microsoft 365 Admins: December 2025 — Retirements, New Features & What IT Teams Need to Do Next

by

December is usually the month where admins brace for year-end freezes… but Microsoft apparently didn’t get the memo. This month’s wave of updates brings retirements, new capabilities, compliance upgrades, and several “fix this or something breaks” action items for enterprise tenants.

As 2025 comes to a close, Microsoft is rolling out a series of final updates that reinforce its focus on data governance, AI-powered productivity, and secure-by-default principles. With key feature retirements, new security protections in Teams, and compliance tools being supercharged, December is far from a quiet month for Microsoft 365 admins.

Whether you manage collaboration, security, data lifecycle, or compliance, this guide covers the critical retirements, new features, enhancements, and action items rolling out this month.

December at a Glance

CategoryCount
🔻 Retirements6
🆕 New Features12
🔧 Enhancements8
🔄 Functionality Changes3
⚠️ Action Required3

Retirements: Cleanup Season Arrives for Legacy Features

Favorite Contacts Retires in Microsoft Places

Early December marks the retirement of the Favorite Contacts experience in Microsoft Places, replaced with the more consistent Frequent Contacts model used across other apps. Admins also lose the related PowerShell control.

🔗 Learn more:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1182693

App Skills Retired in Copilot for Excel

Microsoft is removing App Skills from Copilot for Excel and promoting Agent Mode as the new standard for in-workbook insights. Copilot Chat remains the recommended fallback.

🔗 Reference:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1184407

TeamworkDevice (Beta) API Removed From Microsoft Graph

The TeamworkDevice (beta) Graph API will be retired on Dec 8, 2025. Device management now routes through the Teams Rooms Pro Management Portal.

🔗 Details:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1183294

PowerPoint “Reuse Slides” Feature Retired

The well-loved Reuse Slides feature disappears from PowerPoint for Windows and Mac this month. Users must manually copy/paste slides after the removal.

🔗 Details:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1179161

End of Support for Teams on Android 8

By late December, Microsoft will no longer provide security patches or bug fixes for Teams on Android 8 devices.

🔗 More info:
http://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1181212

Assignments & Courses ACEs Retired in Viva Connections/SharePoint

Education tenants should prepare for the retirement of Assignments and Courses ACEs on Dec 31, 2025, with end of support coming June 30, 2026.

🔗 Announcement:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1184647

New Features: High-Impact Enhancements You’ll Want to Enable

Priority Cleanup for Purview Data Lifecycle Management

A powerful new capability allows admins to delete OneDrive and SharePoint content even if retention or legal holds apply, ideal for high-volume items like meeting recordings.

🔗 Feature documentation:
https://learn.microsoft.com/en-us/purview/priority-cleanup-exchange

Tenant-owned Domain Impersonation Detection in Teams

Teams will now automatically warn users when external senders use look-alike domains (e.g., “c0ntoso.com”), a major uplift in external collaboration protection.

🔗 Message Center:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1187679

More Accurate Presence for Teams on the Web

Teams presence will finally behave intelligently in the browser by tracking device activity, not just active tabs.

🔗 Info:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1184412

Cost Estimator & Transparency Reports for Data Security Investigations

Purview now offers a lightweight cost estimator and a billing usage dashboard for DSI workloads.

🔗 Reference:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1186360

Automatic Work Location Based on Wi-Fi

Teams can automatically set a user’s work location when connecting to company Wi-Fi.

🔗 Roadmap item:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=488800

Integration of Insider Risk & Data Security Investigation

Admins can now launch a pre-scoped DSI directly from an Insider Risk case, streamlining investigations.

🔗 Roadmap item:
https://www.microsoft.com/en-us/microsoft-365/roadmap?filters=&searchterms=501781

Microsoft 365 Backup Activity Logging

Backup policy changes and restore events will now surface in Microsoft 365 monitoring logs.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=500019

Actionable DLP Email Notifications

Users can now remediate DLP violations directly from email alerts: stop sharing, delete files, apply labels, and more.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=464996

PST Import Support for the New Outlook

Admins rejoice: PST import is coming to the new Outlook, easing migrations and mailbox recovery work.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=485739

ChatGPT Enterprise Connector Integration with Purview

Organizations can now collect and review ChatGPT Enterprise prompt/response logs within Purview.

🔗 Roadmap:
https://www.microsoft.com/en-us/microsoft-365/roadmap?filters=&searchterms=401125

eDiscovery Premium Support for Non-M365 Data

Review sets in eDiscovery Premium will support non-Microsoft 365 content through direct import.

🔗 MC post:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1176369

Enhancements: Improvements That Take Governance & Security Further

Sensitivity Label Group Modernization

Parent labels are being replaced by clean Label Groupings, reducing UI confusion.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=386900

Updated Identity Protection Alert Settings in Defender XDR

Starting Dec 11, admins can choose to ingest:

  • High-risk alerts only
  • High + Medium
  • All detections

The default will shift to High-risk only.

🔗 Message Center:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1190195

Organizational Messages Expanded to Hybrid-Joined Devices

Hybrid-joined endpoints now receive Organizational Messages alongside cloud-joined devices.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=503564

Insider Risk Management Scale Increases

Variants, detection group size, and total indicators get major increases for enterprises with high-volume signals.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=518291

Multiple DLP Policies as IRM Triggers

IRM can now listen for multiple DLP policies at the same time.

🔗 Roadmap:
https://www.microsoft.com/en-in/microsoft-365/roadmap?searchterms=493757

SMTP DANE with DNSSEC for Exchange Online (GCC High & DoD)

Better email authentication and routing security arrives for government cloud tenants.

🔗 Roadmap:
https://www.microsoft.com/en-in/microsoft-365/roadmap?featureid=361914&searchterms=361914

Microsoft 365 Backup for GCC

GCC tenants will gain access to Microsoft 365 Backup this month.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=494517

Planner Retention Support (Data Lifecycle Management)

Admins will be able to apply retention policies to Planner content, finally enabling compliance-grade lifecycle control.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=486828

Existing Functionality Changes: Updates You’ll Notice Immediately

Teams App Usage Report → Integrated Apps Usage Report

The redesigned report now includes Teams, Outlook, Microsoft 365 apps, and Copilot extensions.

🔗 Roadmap:
https://www.microsoft.com/en-in/microsoft-365/roadmap?id=410248

Intune Firewall Rules Updated (Azure Front Door)

Starting Dec 2, Intune endpoints shift to Azure Front Door IPs. Firewall allowlists must be updated.

🔗 Message Center:
https://admin.microsoft.com/Adminportal/Home#/MessageCenter/:/messages/MC1150664

SharePoint Agent Usage Stats Aggregated Tenant-wide

Instead of per-site views, SharePoint now aggregates usage statistics across the entire tenant.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=480729

Action Required: These Items Must Be Addressed Before Year-End

UKG & Blue Yonder Connectors in Teams Shifts Retired (Dec 7)

  • UKG → migrate to UKG Flow
  • Blue Yonder → build a custom integration

🔗 MC post:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1166868

Visio Data Visualizer Add-in Removed from Excel (Dec 8)

Creation of new diagrams via the add-in ends December 8. Export existing files to .vsdx.

🔗 MC post:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1182535

Mailbox Audit Log Cmdlets Retired (Late 2025)

Search-MailboxAuditLog and New-MailboxAuditLogSearch will be retired; use Search-UnifiedAuditLog instead.

🔗 TechCommunity post:
https://techcommunity.microsoft.com/blog/microsoft-security-blog/microsoft-exchange-online-search-mailboxauditlog-and-new-mailboxauditlogsearch-w/4366310

Final Thoughts: A Busy Month Sets the Tone for 2026

December 2025 is a fitting finale for the year, focused on resilience, risk mitigation, and refinement. AI is evolving, compliance tools are tightening, and the experience across M365 is becoming more predictable, governable, and secure.

  • Review what’s retiring
  • Enable new protections
  • Prepare for shifting compliance baselines
  • Communicate change to stakeholders

Stay sharp. Stay secure. Stay compliant.

Thank you for stopping by. ✌️

Microsoft Ignite 2025: Welcome to the Age of AI Agents (Whether You’re Ready or Not)

by

Microsoft Ignite 2025 has landed, and Microsoft showed up with the subtlety of a marching band crashing through your office, every instrument replaced with an AI agent. If last year was “AI everywhere,” this year is “AI doing everything.” The message is loud and direct: we’ve officially stepped beyond chatting with AI and squarely into delegating real work to it.

Yes, your job just got a small digital coworker. Possibly several hundred.

Below is the breakdown of the biggest announcements and what they actually mean, stripped of the marketing sparkle and served with just enough humor to keep you from yelling into your seminar coffee.

Microsoft Agent 365: The AI Workforce Goes Corporate

Microsoft kicked off with Agent 365, essentially a mission-control tower for every AI agent your company spawns, planned or otherwise. Consider it the antidote to “shadow AI,” the growing habit of employees quietly unleashing agents that poke around critical systems like overenthusiastic interns.

Agent 365 promises:

  • Full visibility into every AI agent operating inside your company
  • Permission controls granular enough to avoid AI “accidentally” reading payroll data
  • Security integrations with Defender, Entra, and Purview so agents behave like model citizens
  • Early agents, including an autonomous Sales Development Rep that works 24/7
    (Sure, it’s tireless. No, it won’t ask for PTO.)

In short, Microsoft wants AI agents to be first-class digital employees with HR-approved badges, governance, and a strict bedtime (a.k.a. throttling).

Copilot Grows Up: From Helpful Buddy to Specialist Colleague

Copilot is no longer just the friendly AI whispering suggestions in your apps. It’s splitting into specialized, highly trained “teammates” because apparently we’re staffing a full AI department now.

Office Specialists

Think of Excel, Word, and PowerPoint each hiring their own resident expert:

  • Excel’s agent can build financial models and forecasts
  • Word’s agent becomes a strategic writer that drafts policies and structured documents
  • PowerPoint’s agent turns messy ideas into polished decks (finally someone will do it)

We also get Sora 2 integration. yes, you can now describe a video clip and generate it straight from Copilot. Expect every marketing team on Earth to go feral with this.

Workforce Intelligence Agents

Powered by Work IQ, Microsoft introduced agents that can:

  • Map organizational insights
  • Discover who knows what within the company
  • Deliver snack-sized personalized learning

Basically, they’re giving you a corporate crystal ball.

Teams & SharePoint Agents

Agents will now collaborate with Jira, Asana, and other apps through MCP servers and help admins by automatically monitoring meetings, provisioning users, and cleaning up permissions sprawl across SharePoint.

They finally acknowledged that those sprawling “mystery sites” with 200 owners aren’t cleaning themselves.

Microsoft Foundry: An Enterprise Factory for AI Agents

This year’s heavyweight announcement is Microsoft Foundry, a complete platform for designing, deploying, and governing AI agents at enterprise scale. Think AWS for agents, but with guardrails and corporate compliance baked in.

Foundry offers:

  • Managed agent infrastructure that handles scaling and monitoring
  • Multi-agent orchestration, letting multiple agents collaborate like a tiny digital Avengers team
  • Model Router, which smartly picks the best model (GPT-5, Llama, Grok, etc.) for each task and cuts costs while improving performance
  • Massive integration catalog with 1,400+ enterprise systems via Logic Apps
  • Foundry IQ, a modernized approach to retrieval-augmented generation (RAG) with strong Purview-enforced boundaries
  • Robust governance, including Entra Agent ID, spending limits, red-teaming, and traceability

Microsoft’s pitch is clear: stop building toy AI bots. Use Foundry and build real, auditable digital workers that don’t set your SIEM on fire.

Azure Copilot: Six New Agents for the Ops Crowd

Cloud folks, Microsoft did not forget you. They gave Azure what is essentially a squad of GPT-5-powered consultants:

  • Deployment architect
  • Migration specialist
  • Optimization advisor
  • Observability analyst
  • Resiliency consultant
  • Troubleshooting agent

Each of these resides inside the Azure portal, PowerShell, or CLI. And yes, they always respect RBAC. (Because the last thing we need is an AI “fixing” your production environment at 2 a.m.)

Azure also got hardware love:
Azure Boost pushes insane I/O performance, and the new Cobalt 200 processors offer better efficiency and speed thanks to cutting-edge 3nm silicon.

Azure Copilot

SQL Server 2025: Now Officially AI-Native

SQL Server 2025 launches with:

  • Vector search baked directly into the engine
  • Local or cloud model access
  • Real-time analytics through mirroring into OneLake

Microsoft also announced three new database flavors:

  • Azure DocumentDB: open-source friendly, vector-enabled, scalable
  • Azure HorizonDB: a turbocharged PostgreSQL variant
  • Fabric Databases: unify SQL and Cosmos DB into a SaaS-like experience

It’s the biggest data platform shakeup Microsoft has done in years.

Power Platform & Dynamics 365: Agents Take the Wheel

Power Apps now includes a new maker workspace where describing an app in plain English generates a functioning multi-page application. The MCP Server for Power Apps makes those apps discoverable to agents, letting digital coworkers trigger approvals or submit forms.

Copilot Studio gets:

  • Automated agent evaluations
  • UI automation via Windows 365
  • Real-time security monitoring and Entra Agent ID

Dynamics 365 is gaining two MCP servers that streamline ERP automation and provide semantic access to metrics. Translation: smarter finance and supply chain agents.

Windows 11: The OS for AI Agents

Windows 11 is being refitted as the operating system where agents live, work, and sometimes break things (but with auditing!).

Key upgrades:

  • Built-in MCP support for native agent–OS interaction
  • Agent Workspace for isolated execution
  • Taskbar Copilot evolution
  • Semantic Windows Search across both local and cloud data
  • On-device AI APIs for video enhancement and image generation
  • Windows 365 for Agents for secure cloud-side execution
  • Enterprise recovery capabilities for admins dealing with, let’s be honest! agent chaos!!

Security: Microsoft’s “Don’t Panic, We Secured the Agents” Tour

With great AI comes great…potential attack vectors. Microsoft responded with a colossal security stack overhaul focused specifically on agent safety.

Highlights:

Defender for AI Agents

  • Unified protection across pro-code and low-code agents
  • Prompt-injection and malicious tool-use detection
  • A threat-hunting agent that conducts full investigations via natural language (finally, an analyst who never complains)

Entra Agent ID

Every AI agent gets a corporate identity, lifecycle governance, and conditional access.
Your AI coworker now has MFA. Good luck.

Purview for Agents

  • DLP for Copilot
  • Overshared link cleanup
  • Extended governance across Teams, SharePoint, and Exchange
  • Insider risk detection for rogue agents

Security Copilot & Sentinel Agents

A dozen new security agents deploy across Microsoft 365, while Sentinel’s enhanced UEBA and data lake make it “agent-ready.”

Unified Intelligence Layer & Marketplace: Microsoft Wants a Universal Brain

Microsoft’s big architectural move is building a shared context layer across Microsoft 365, Fabric, and Foundry.

  • Work IQ gains conversational memory
  • Fabric IQ extends semantics beyond BI
  • Foundry IQ becomes the connective tissue for enterprise knowledge
  • Marketplace expands globally with a huge catalog of agents and apps

The dream: one unified fabric of intelligence across every Microsoft service.

Final Verdict: The Agentic Era Is Officially Here

Ignite 2025 wasn’t subtle, but it didn’t have to be. This is the beginning of AI agents becoming real digital workers, governed, credentialed, and audited like any employee.

The era of “play with AI in the corner” is over.
Welcome to enterprise-grade AI labor.

If you’re a cloud or AI professional, your action plan is simple:

  1. Join the Frontier Program.
  2. Learn Foundry inside-out.
  3. Deploy governance with Agent 365.
  4. Stress-test Azure Copilot agents.
  5. Use the Model Router to optimize cost and speed.

Because the companies that figure out agents first won’t just save money, they’ll outpace everyone still stuck writing their own reports at midnight.

Thank you for stopping by. ✌️

Source: Microsoft Ignite – Book Of News

Microsoft 365 Admins: November 2025 Brings Major Retirements, AI-Driven Upgrades, and Required Actions – Here’s Your Definitive Guide

by

As 2025 winds down, Microsoft isn’t letting up. November is packed with meaningful retirements, AI-powered enhancements, and compliance-driven feature updates across SharePoint, Teams, Exchange, Purview, and Defender. Whether you’re overseeing tenant governance, security, automation, or user productivity, this month demands your attention.

Let’s walk through the key retirements, features, enhancements, and action items that Microsoft 365 admins and enterprise IT teams need to plan for right now.

November at a Glance

CategoryCount
Retirements6
New Features12
Enhancements5
Functionality Changes2
Action Required4

Retirements: What’s Going Away

  • SharePoint SendEmail API
    Retires Nov 1, 2025 — For years, custom code, Power Automate, and legacy workflows leaned on SP.Utilities.Utility.SendEmail to fire off emails straight from SharePoint. Effective October 31, this API stops working. Purview logs can help discover impacted implementations. The modern path: shift all automation to the Microsoft Graph API or Outlook connector for any ongoing email requirements.
    🔗 More Info
  • Mobile Devices Page in Outlook Web & New Outlook
    Retires Nov 6, 2025 — The dedicated device management UI inside Outlook Web is going away November 6. Microsoft wants all device management to move to My Account (web portal) or native device tools on iOS/Android, reflecting the steady march toward unified endpoint management.
    🔗 More Info
  • Power BI “Visualize the List/Library” in SharePoint
    Mid-Nov 2025 — If your users like clicking a button to spin up instant Power BI reports from SharePoint lists, it’s time to adapt. These features are retiring in mid-November, along with previously published legacy-linked reports. Instead, exporting data to Power BI Desktop or using new integrations is now the path forward.
    🔗 More Info
  • Viva Engage Desktop Notifications
    Mid-Nov 2025 — With the ongoing convergence of notification systems, desktop push options in Viva Engage will disappear mid-month. The replacement? In-app notifications across Teams, Outlook, and Viva Engage provide a single, reliable place for alerting and engagement.
    🔗 More Info
  • Microsoft Lists Mobile Apps (iOS & Android)
    Mid-Nov 2025Bye-bye, native apps! hello, responsive web. From mid-November, Lists mobile apps will no longer be on the app stores. Guide your users to the Lists web experience instead.
    🔗 More Info
  • “Refresh All on Page” in OneNote Meeting Details
    Nov 15, 2025 — If you’re accustomed to using the “Refresh All” button in OneNote’s meeting details, mark your calendar for November 15. After this date, only manual updates (reselecting meetings) will keep things current.
    🔗 More Info

New Features: Worth the Hype

  • Knowledge Agent in SharePoint
    Launching November 1, this AI-powered tool transforms content management with Copilot-smart organization, metadata auto-fill, broken link detection, co-authoring help, and responsive Q&A features. Site admins can opt-in at their own pace.
    🔗 More Info
  • Entra Authentication for Bots & Agents in Teams
    From November 3, bots and agents in Teams group chats now use Entra-based authentication, supporting private and secure token handling. This helps organizations maintain tighter app control and smoother consent workflows.
    🔗 Roadmap ID 503557
  • Enhanced Quarantine View in Defender for Office 365
    Quarantine email previews in Defender for Office 365 now display per recipient for clarity, and clickable URLs within them are disabled for added safety. Teams, meanwhile, will now show real-time malicious link warnings in chats and channels, keeping phishing threats at bay.
    🔗 More Info
  • Malicious URL Protection in Teams
    Teams will warn users about harmful links in chats and channels.
    🔗 More Info
  • SMTP Onboarding to App RBAC
    Assigning send-as permissions gets easier now, SMTP.SendAsApp roles can be granted to apps for groups of mailboxes, streamlining what used to be a tedious PowerShell-driven process.
    🔗 Roadmap ID 498356
  • Entra ID Passkey Profiles in Auth Methods Policy
    Admins gain granular control over FIDO2 passkey policies, letting specific groups live with appropriate authentication methods as preview support lands this month.
    🔗 More Info
  • Teams External Chat via Email
    Teams is amping up external collaboration by allowing users to chat with outside contacts via email address even if they aren’t on Teams. This is enabled by default, but organizations can toggle it off through policy.
    🔗 More Info
  • Enterprise Application Insights for SharePoint
    SharePoint gains a major reporting boost with a new tool showing third-party app access, permissions, and request history, crucial for auditing and defending tenant data.
    🔗 Roadmap ID 417481
  • IRM + DSI Integration in Microsoft Purview
    Launch scoped investigations directly from Insider Risk cases.
    🔗 Roadmap ID 486827
  • Immersive Events in Teams (GA)
    Starting Nov 14, the global launch of 3D virtual events in Teams. Participants can mingle as avatars in a virtual space. Note: Premium licenses are needed for organizers, and events can handle up to 300 attendees.
    🔗 More Info
  • Auto-Archiving in Exchange Online
    When mailbox storage hits 96%, older emails are auto-moved to archive (if enabled). Rolling out for Targeted Release tenants on November 15, Exchange mailboxes nearing quota will auto-archive older emails (barring exceptions), keeping mail flowing without admin intervention
    🔗 More Info
  • New Workflows Experience in SharePoint
    Natural language flows, modernized builder, and default templates now live.
    🔗 More Info

Enhancements: Behind-the-Scenes Upgrades

  • Quarantine Preview in Defender
    Plain text removed, link previews restricted, external content disabled by default.
    🔗 More Info
  • SharePoint Version History Optimization
    Grid view edits in SharePoint lists and libraries will now roll up rapid changes into a single version, reducing clutter and storage usage, a welcome efficiency boost.
    🔗 Roadmap ID 511800
  • Purview DLP + Entra GSA Integration
    Data loss prevention policies can now tap into the network layer, inspecting files in transit (for E3/E5 tenants) and curbing shadow IT or risky cloud behaviors.
    🔗 More Info
  • Admin Consent Now Required for Exchange/Teams APIs
    Expanding Secure by Default: Admin consent is now required for all third-party API access in Exchange and Teams, matching the higher bar already enforced on SharePoint and OneDrive.
    🔗 More Info
  • Conditional Access + Audit Logs for eDiscovery Admins
    Block non-compliant admins and log FilePreviewed actions in Purview. eDiscovery admins are now bound to Entra Conditional Access. If policy requirements (like MFA) aren’t met, admins will be blocked from accessing SharePoint content in Purview, and detailed audit logging (“FilePreviewed”) is enabled.
    🔗 More Info

Functionality Changes

  • “Files” Tab Renamed to “Shared” in Teams Channels
    Now includes files AND links shared in chats, not just the document library.
    🔗 Roadmap ID 470597
  • New Teams Calendar Experience (Legacy Toggle Removed)
    Includes Copilot/Places integration. Legacy calendar retired.
    🔗 More Info

Action Required

  • Nov 3 – Retirement of Microsoft Places Team Guidance
    Switch to Microsoft 365 Groups for scheduling. Team Guidance in Microsoft Places retires on November 3. Transition team scheduling to Microsoft 365 Groups as soon as possible.
    🔗 More Info
  • Nov 14 – Retirement of UKG & Blue Yonder Shifts Connectors
    UKG users move to UKG Flow; others need custom integrations. These connectors retire November 14. UKG customers should migrate to the UKG Flow app; others can develop custom integrations to maintain workforce data flows.
    🔗 More Info
  • Late Nov – Retirement of Viva Insights Export via MGDC
    Transition to Power BI Connector in Fabric or CSV export. Exporting via Microsoft Graph Data Connect is being phased out, migrate your reporting needs to the Power BI Connector in Microsoft Fabric or CSV export by November 27.
    🔗 More Info

Final Thoughts

November 2025 pushes Microsoft 365 into a smarter, more secure, AI-assisted future. Whether you’re optimizing Exchange storage, modernizing SharePoint governance, or prepping Teams for immersive experiences and secure external access, there’s something here for every admin.

  • Review audit logs.
  • Test archiving policies.
  • Communicate upcoming retirements to users.
  • Double-check consent settings for your apps.

Because in Microsoft 365 land, “set it and forget it” no longer works.

Thank you for stopping by. ✌️

Microsoft 365 Copilot App Builder and Workflows: Turning “What If” Into “Done”

by

You know that feeling when you wish you could build an app or automate a task without summoning a developer, bribing them with coffee, or learning Power Automate yourself?
Well, Microsoft heard the collective sigh of the modern workforce and said, “Hold my cloud.”

Enter the newest duo in Microsoft 365 Copilot’s lineup, App Builder and Workflows, the AI-powered sidekicks that make “vibe coding” (yes, that’s now a thing) a workplace reality.

What’s the Big Idea?

Microsoft is leaning hard into natural language app creation, imagine chatting with your digital assistant and saying:

“Hey Copilot, build me an app that tracks our product launch tasks, assigns owners, and updates the dashboard weekly.”

And in a few conversational turns, boom!, it’s done.
No schema design. No Power Automate flow spaghetti. No weekend lost to trial-and-error.

These two new agents, App Builder and Workflows live inside the Microsoft 365 ecosystem, letting you build, automate, and connect your work life in Outlook, Teams, and SharePoint just by describing what you need.

Meet the Dynamic Duo

App Builder: Creating Functional Applications at Conversational Speed

App Builder, Instead of writing requirements documents, creating data models, and waiting for sprint cycles, you can now describe an application’s purpose to Copilot, and it generates a working prototype in minutes.

What Can You Actually Build?

The possibilities are expansive. Imagine preparing for a product launch and needing dashboard-style tracking for launch milestones, task assignments, and campaign progress. With App Builder, you describe this scenario, and Copilot generates an interactive application complete with:

  • Dashboards and visualizations – charts, progress indicators, and real-time data displays
  • Data collection forms – lists, input fields, and structured data capture
  • Calculators and computational tools – custom logic without a single line of code
  • Interactive elements – anything your imagination can conjure up in a conversation

The magic? Your app is grounded in actual Microsoft 365 content – documents, spreadsheets, presentations, and OneNote files. It’s not abstract; it’s connected to your organizational data. Even more powerful, App Builder can generate and store new data using Microsoft Lists as a backend, giving you a proper database foundation without the traditional database setup headaches.

The Development Workflow is Deceptively Simple

Here’s where this becomes useful for those of us who’ve managed enterprise deployments: the development loop is instantaneous.

  1. Describe what you need in natural language through Copilot’s chat interface
  2. Preview your application directly within Copilot without leaving the chat
  3. Refine iteratively based on feedback – add fields, adjust visualizations, modify logic
  4. Deploy at conversational speed – each edit happens in the same conversation, making refinement effortless

Sharing? It’s trivial. Generate a link and distribute it exactly like you would a document. No complicated deployment processes, no provisioning requests, no waiting for your infrastructure team to create Azure resources. It’s the democratization of app development we’ve been theoretically discussing for the past five years, now actualized.

The Backend Reality Check

For those of us who’ve spent years wrestling with application architecture, here’s the beautiful part: App Builder abstracts complexity while maintaining enterprise integrity. The backend uses Microsoft Lists, which is infinitely more robust than Excel spreadsheets but infinitely simpler than building custom databases. It respects your organizational structure, permissions model, and data governance frameworks – not because it’s forced to, but because it’s natively integrated within the Microsoft 365 ecosystem.

Workflows: Your New Favorite Colleague That Never Forgets

Remember that one co-worker who keeps missing the Monday reminder email? Replace them (kindly) with Workflows, the Copilot agent that automates repetitive tasks across Outlook, Teams, SharePoint, and Planner.

Describing Automation, Not Coding It

The Workflows agent converts natural language descriptions into automated processes across your entire M365 ecosystem. Imagine you want to:

  • Send recurring team updates – describe it to Copilot, and it generates a flow that sends Teams messages every Monday with upcoming deadlines and priority tasks from Planner
  • Post approval reminders – describe the requirement, and Copilot creates workflow logic that posts reminders in Teams channels
  • Manage calendar automation – handle scheduling, time zone conversions, and conflict management without writing integration code
  • Email orchestration – send triggered emails based on conditions you describe conversationally

The workflow visualization happens in real-time as Copilot builds your automation. You see each step as it’s created, understand the logic flow, and can request modifications mid-conversation. Want to add another condition? Describe it. Need to adjust a trigger? Say it out loud (well, type it). The conversation remains context-aware, allowing iterative refinement without starting over.

Enterprise-Grade Reliability with End-User Simplicity

Here’s the strategic genius: Workflows is optimized for end-user simplicity but built on the same enterprise infrastructure that powers Agent Flows in the full Copilot Studio experience. This isn’t a toy framework; it’s production-ready automation infrastructure made accessible through conversational interfaces.

For those of us managing enterprise deployments, this means:

  • Consistent reliability – same backend as enterprise solutions
  • Scalability – handles organizational-scale automation without degradation
  • Supportability – integration with existing support structures and monitoring systems
  • Governance – compliant with organizational policies and audit requirements

Your IT department won’t wake up at 3 AM because the Workflow agent created an automation that broke the email system. It’s designed to function reliably at scale.

And Then There’s Copilot Studio…

If App Builder and Workflows are your starter Pokémon, Copilot Studio is your evolved form. While App Builder and Workflows handle individual productivity, Copilot Studio serves as the gateway to enterprise-scale agent deployment.

It lets you build personalized, work-grounded agents that can fetch data from SharePoint, meeting transcripts, chats, or even external systems like Jira and ServiceNow.
You can start simple, “Build an agent that answers product launch FAQs” and later scale it into a fully governed, enterprise-wide digital assistant.

Security and Governance: Because AI Still Needs Adult Supervision

Microsoft didn’t forget the admins (bless them).
Everything built with App Builder and Workflows respects your existing permissions, roles, and compliance policies.

Management is streamlined through the Microsoft 365 Admin Center’s agent inventory section. Instead of one-by-one guardrails for each application or automation, admins can:

  • Manage group-level access – approve which departments can use App Builder or Workflows
  • Control agent creation and sharing – determine who can publish agents across the organization
  • Monitor activity – visibility into what agents are being built and how they’re distributed
  • Enforce compliance – ensure all agent activity aligns with organizational policies

This addresses the concern every IT leader has about democratized development: “Won’t everyone build chaotic, unsupported applications?” With App Builder and Workflows, the answer is “Not if you don’t want them to” – because governance is enforced systematically, not through hope and prayer.

Admins can manage all these conversational AI tools right from the Microsoft 365 admin center, with unified visibility and granular control. That means no more rogue automations or apps accidentally emailing the entire company (we’ve all been there).

Who Gets to Play? Join the Frontier Program

These features are currently rolling out under the Microsoft 365 Frontier Program, Microsoft’s early-access sandbox for bleeding-edge AI features.
It’s like being a beta tester, but with less risk of your PC catching fire.

The Frontier program serves another purpose beyond technical access: it creates feedback loops. Microsoft collects real-world usage patterns, identifies edge cases, and refines the platform based on actual deployment experiences. Early access participants are shaping the future of these tools which is either exciting or terrifying depending on your perspective.

Want in?
Submit that IT ticket. Be nice to your IT folks. Maybe throw in the brownie offer. They’ll appreciate it, and you’ll get access to tools that genuinely reshape what’s possible in your organization.

The Bottom Line

We’re at an inflection point. Ten years ago, suggesting that non-technical employees could build business applications was theoretical. Five years ago, it was aspirational. Today, it’s genuinely achievable through Microsoft 365 Copilot’s App Builder and Workflows agents.

This doesn’t eliminate the need for IT professionals – quite the contrary. Enterprise architects, security engineers, and integration specialists will be more valuable as organizational development velocity increases. The role changes from “gatekeeper of development” to “enabler of development at scale.” The skill set evolves from hand-coding solutions to designing governance frameworks, establishing architectural patterns, and managing organizational complexity.

Reality Check: It’s Still Early Days

Now, despite all the buzzwords and Microsoft’s glossy demos, App Builder and Workflows still have their fair share of quirks. I’ve tried both, and while I did eventually get a workflow up and running, it took a few rounds of stubborn persistence, a bit of patience, and maybe some caffeine-powered optimism.

The concept is brilliant, Microsoft has already proven that low-code/no-code works with Power Apps but perfecting this new, conversational layer will take time. It’s one thing for Copilot to understand “build me an app to track product launches,” and another for it to build exactly what you pictured in your head without losing context halfway through the conversation.

That said, this is absolutely a step in the right direction. In a world where IT teams are stretched thinner than an overused OneNote license, not everyone should have to learn Python just to automate a weekly task. Tools like these empower business users to take initiative without waiting weeks for development queues or change approvals.

So yes, App Builder and Workflows aren’t flawless yet, but they’re a promising start toward a workplace where “I wish this was automated” turns into “done! built it over lunch.”

Microsoft 365 Copilot’s App Builder and Workflows are a leap toward a world where anyone, not just developers can build digital solutions that actually get work done.

  • App Builder turns ideas into working apps.
  • Workflows automates the boring stuff.
  • Copilot Studio takes it all enterprise-scale.

Together, they’re redefining what “low-code” really means more like no-code-but-still-looks-like-magic.

Thank you for stopping by. ✌️

Source: Microsoft 365 Copilot now enables you to build apps and workflows

Breaking Down the October 2025 AWS Outage in Plain English

by

If you woke up on October 20, 2025, and your app hosted in us-east-1 started acting like it forgot its own name, you weren’t alone. Half the internet basically sneezed in sync. Here’s what really went down without the 10,000-word AWS jargon-fest.

Source: wired.com

The Short Version

A small DNS bug in DynamoDB, one of AWS’s core databases accidentally deleted its own “where to find me” address.
When DynamoDB vanished from the internet’s phonebook, dozens of other AWS services that rely on it (like EC2, Lambda, and Redshift) suddenly couldn’t function.

One small DNS record went missing. The ripple effect?
Thousands of systems went, “Uh… where’s DynamoDB?”

The Chain Reaction Explained (Like We’re at a Coffee Shop)

The Root of Chaos: A DNS Glitch

Every AWS service has a DNS record like a street address for your app.
DynamoDB’s automation system had a race condition, meaning two parts of its system tried to update DNS at the same time.
Result: one overwrote the other and wiped the main DNS entry clean. Boom. DynamoDB disappeared from the map.

So, imagine you’re Google Maps, but you just forgot where New York City is. That’s what happened here.

EC2 Panics: “Where’s My Database?”

EC2 (the virtual machines of AWS) depends on DynamoDB to keep track of which physical servers are doing what.
When DynamoDB went dark, EC2’s backend started losing track of which machines it “leased.”
That’s like forgetting who’s renting which apartment suddenly, you can’t give out new keys (a.k.a., launch new EC2 instances).

Existing servers were fine, but new ones? Not so much. Launch requests failed, error messages flew, and the AWS dashboard started to look like a Christmas tree of red alerts.

Network Traffic Jam

Once DynamoDB was fixed, EC2 rushed to catch up but so many servers were checking in at once that the management system got overloaded and crashed again.
Meanwhile, the Network Manager (which sets up VPC connections) was stuck in a backlog, meaning some new servers were technically “alive” but couldn’t connect to anything.
So yeah, servers were being born into the void.

Load Balancers Lose Their Minds

Then Network Load Balancers (NLB) joined the party.
Because new instances weren’t fully online yet, the NLB’s health checks thought servers were dying.
So it started removing and re-adding healthy servers in a loop, basically load balancer whack-a-mole.

AWS engineers eventually turned off automatic failover, manually stabilized things, and slowly brought services back online.

Everyone Else Feels It

Other services like Lambda, ECS, EKS, Redshift, and Connect all rely on DynamoDB or EC2 in some way.
When those core systems went down, they went down too.
It was a chain reaction that rippled through AWS like a power outage in a skyscraper, one tripped breaker took out the whole floor.

The Recovery Timeline

  • 11:48 PM (Oct 19): DynamoDB DNS fails → everything starts breaking.
  • 2:25 AM: DNS fixed.
  • 10:30 AM: EC2 networking stabilizes.
  • 2 PM: NLB and other services fully recovered.
    Basically, AWS had a really bad night and a rough morning.

What AWS Is Fixing

To prevent this from happening again, AWS said they’re:

  • Fixing the DNS automation race condition that caused this mess.
  • Adding safety checks so DNS records can’t vanish entirely.
  • Improving EC2’s recovery processes and throttling logic to handle massive backlogs better.
  • Adding “velocity controls” to NLB so it doesn’t overreact and drop too much capacity during health check chaos.

In short: more guardrails, fewer ways to delete your own DNS entry by accident.

The Takeaway

Even the most reliable cloud can have bad days. This one was a masterclass in how a tiny automation bug in one core system can ripple across dozens of dependent services.

If your AWS architecture lives in us-east-1, this was a reminder to:

  • Use multi-region redundancy.
  • Don’t let a single service dependency take down your whole app.
  • And maybe, just maybe, give your ops team an extra coffee after nights like that.

TL;DR

A small DNS race condition in DynamoDB nuked its endpoint → EC2 lost track of its servers → networks backed up → load balancers freaked out → half of AWS coughed.
AWS fixed it, learned from it, and probably had a lot of postmortem meetings.

Thank you for stopping by. ✌️

Source: Summary of the Amazon DynamoDB Service Disruption in the Northern Virginia (US-EAST-1) Region