Microsoft is rolling out a major update to the Data Security Posture Agent in Microsoft Purview, and it’s a big step forward for organizations looking to stay ahead of credential‑related risks.
The newest addition is a credential scanning capability designed to help you uncover exposed credentials, like Microsoft Entra ID details, private keys, API tokens, and other sensitive access points across your selected data locations. With this update, Purview doesn’t just spot the issues; it also gives you risk scores, AI‑generated insights, confidence levels, and credential categories so you can quickly understand what matters and what needs attention.
All findings are surfaced in one streamlined task board, making it easier than ever to review, confirm, and take action.
This enhancement is listed as Microsoft 365 Roadmap ID 558436.
Rollout Timeline
- Public Preview: Starts late March 2026, expected to finish by early April 2026
- General Availability (Worldwide): Starts late June 2026, wrapping up by early July 2026
What This Means for Your Organization
Who will notice the change?
Admins who manage Microsoft Purview and use the Data Security Posture Agent within Microsoft 365 tenants will see the new feature appear under the Explore Agent section.
What’s changing?
A brand‑new credential scanning experience is being introduced, including:
- LLM-powered detection of exposed credentials across selected data locations
- Automated identification of:
- Microsoft Entra ID credentials
- Private keys
- API tokens
- Additional sensitive credential types
Each detection comes with:
- A risk score
- AI-generated insights
- A confidence rating
- A credential category
And to help you stay organized, Purview provides a task board where you can follow up on findings, track progress, and take recommended actions, all in one place.
How to Prepare
