Microsoft Ignite 2025 – Key Announcements by Technical Area

Published on November 21, 2025 • 15 min read

This is a comprehensive summary of the most significant announcements from Microsoft Ignite 2025, organized by technical area rather than by session. Many sessions covered overlapping topics, so this structure makes it easier to see the full picture of what's new in each technology domain.

Windows 365 & Cloud PCs

Windows 365 for Agents

Windows 365 for Agents extends agentic capabilities to the Microsoft Cloud, providing a trusted platform with modular UI controls, enterprise-grade security, and flexibility to run on Windows or Linux. Agent makers can build and deploy agents that open apps, process data, and automate tasks on a Cloud PC.

  • Serves as execution platform for agents in Microsoft Copilot Studio computer use
  • Powers Researcher with Linux environment support for web browser and terminal execution
  • Now in preview - join the waiting list

Discussed in: BRK343, BRK1700

Windows 365 Reserve

Now generally available, Windows 365 Reserve offers a simple, secure, and cost-effective temporary Cloud PC solution for organizations dealing with device delays, loss, theft, ransomware attacks, or hardware/software failures.

  • Pre-installed with organizational apps, settings, and security policies via Microsoft Intune
  • Users can securely connect from any device anywhere
  • Easy access revocation when no longer needed
  • Ideal for short-term access needs and emergency situations

Discussed in: BRK343

Windows 365 Cloud Apps

Allow administrators to give users access to specific apps delivered from the cloud instead of a full Cloud PC, ideal for streamlined app delivery and VDI modernization.

  • Run on Windows 365 Frontline Cloud PCs in shared mode
  • Stream apps like Outlook, Word, or custom apps via Intune
  • User experience sync in shared mode now generally available
  • Persistent app settings and configurations across sessions

Discussed in: BRK343, BRK342

Microsoft Intune & Endpoint Management

New Security Copilot Agents in Intune

Three new AI-powered agents now in preview to help IT teams secure, manage, and recover endpoints more efficiently:

  • Change Review Agent: Analyzes change requests in context, checking for risks, conflicts, and compliance
  • Policy Configuration Agent: Accelerates policy creation by capturing intent from documents or natural language
  • Device Offboarding Agent: Uses activity signals to suggest which devices should be removed

Discussed in: BRK341, BRK1700

Remote Windows Recovery at Scale

Industry-first capability enabling remote management of Windows Recovery Environment (WinRE) at scale in Intune:

  • Recover Windows devices remotely even if device can't boot or user is not present
  • Now in preview
  • Dramatically reduces downtime and IT support burden

Discussed in: BRK345, BRK341

Enhanced Admin Controls

  • Admin Tasks: Centralized, prioritized task list to identify and act on what matters most (preview)
  • Maintenance Windows: Unified way to schedule updates and minimize disruption (preview January 2026)
  • Deployments with Pause/Resume: Control options to reduce risk (preview January 2026)
  • Expanded Copilot Support: Natural language exploration of Autopilot, Endpoint Privilege Management, and Advanced Analytics (generally available)

Discussed in: BRK341

Windows Update & Autopatch

Autopatch Update Readiness

A significant innovation marking a shift from reactive troubleshooting to proactive management:

  • Real-time visibility into entire device estate showing which devices are ready for updates
  • Actionable insights with clear remediation guidance
  • Prevents issues before they disrupt work
  • Unified dashboard in Microsoft Intune to identify failing devices, understand why, and remediate within Windows Autopatch
  • Early flagging of compliance issues and policy conflicts
  • Now in preview

Discussed in: BRK1741

Artificial Intelligence & Copilot

Microsoft Agent 365

The control plane for agents - extends infrastructure for managing users to agents, helping organizations govern agents responsibly at scale. Available now in Microsoft 365 admin center with the Frontier program.

  • Registry: Complete view of all agents including shadow agents
  • Access Control: Bring agents under management and limit access with risk-based conditional access
  • Visualization: Explore connections between agents, people, and data
  • Interoperability: Equip agents with apps and data to simplify workflows
  • Security: Protect agents from threats with Microsoft Defender, Entra, and Purview integration

Discussed in: KEY01, BRK1710, BRK1700

Word, Excel, and PowerPoint Agents

Dedicated agents in Microsoft 365 Copilot that create high-quality Office content directly from Copilot Chat:

  • Excel Agent: Turns data into charts, summaries, and insights using formulas and logic
  • Word Agent: Organizes complex information into clear, well-written documents
  • PowerPoint Agent: Builds presentations with storytelling and visual structure
  • Grounded in web data with Work IQ for organizational knowledge
  • Available through Frontier program

Discussed in: BRK1710, BRK1700

Agent Mode in PowerPoint, Excel, and Word

Enables iterative co-creation directly within Office apps:

  • PowerPoint: Update existing decks, create slides, format text, add images (Frontier preview)
  • Excel: Integrated web search, choice between Anthropic and OpenAI reasoning models (Frontier preview)
  • Word: Work IQ integration for relevant sources from files, emails, meetings (generally available)

Discussed in: BRK1710

Model Context Protocol (MCP) on Windows

Native support for MCP on Windows enables AI agents to connect with line-of-business apps and automate tasks:

  • File Explorer Connector: Secure access to local files with natural language search
  • System Settings Connector: Handle complex setting operations (Bluetooth, network, etc.)
  • Agent Workspace: Isolated, policy-controlled environment where agents interact with software (private preview)
  • Enterprise-grade security and governance with IT admin management via Intune, Entra, and Group Policy

Discussed in: BRK332, BRK1700, BRK344

Azure Arc & Hybrid Infrastructure

Azure Arc Overview

Extends Azure management to hybrid and multi-cloud environments:

  • Unified management plane for resources across Azure, on-premises, and other clouds
  • Consistent deployment, management, and governance
  • Microsoft Entra ID authentication for SQL Server via Azure Arc
  • Improved credential management and reduced vulnerabilities

Discussed in: BRK183

Azure Migrate

AI-assisted insights and cloud transformation capabilities:

  • AI-powered assessment and recommendations for cloud migration
  • Right-sizing recommendations for cost optimization
  • Dependency mapping and application grouping

Discussed in: BRK139

Windows Server & Virtualization

Windows Admin Center - Virtualization Mode

A new appliance-based experience that simplifies Hyper-V management:

  • Simplified Hyper-V management with streamlined interface
  • VM migration tools for easier workload movement
  • Integrated disaster recovery via Hyper-V Replica
  • Improved hybrid management capabilities
  • Enhanced integration with Azure Arc for unified cloud experiences

Discussed in: BRK142

Windows Server 2025

Advanced features for modern infrastructure:

  • Hot patching (HotPatch) capabilities for reduced downtime and no reboots required for security updates
  • Extended security updates for continued protection
  • Improved hybrid management with Azure Arc integration
  • Enhanced Hyper-V performance and capabilities

Discussed in: BRK142

Database & Analytics

SQL Server 2025

Now generally available with built-in AI and developer-first enhancements:

  • Access AI models locally or in the cloud using familiar T-SQL language
  • Simplified data processing with native JSON support and built-in REST APIs
  • Near real-time analytics via database mirroring to Microsoft OneLake in Fabric
  • GitHub Copilot integration in VS Code and SSMS 22
  • New Microsoft Python driver for SQL Server (mssql-python)

Azure HorizonDB for PostgreSQL

New PostgreSQL cloud database service now in private preview:

  • Transactions and vector search up to 3x faster than open-source PostgreSQL
  • Scale-out compute to 15 replicas with 192 vCores each
  • Auto-scaling storage up to 128 TB
  • Advanced DiskANN vector indexing for AI workloads
  • AI-readiness with pre-provisioned models

Windows Recovery & Resilience

Point-in-Time Restore (PITR)

Comprehensive rollback capability for devices or groups of devices (preview H1 2026):

  • Restore to exact state before a problem emerged
  • Restores OS, apps, settings, and local files
  • Recovery within minutes without technical expertise

Cloud Rebuild

Complete PC rebuild capability (preview H1 2026):

  • Reinstall completely new Windows 11 OS with appropriate drivers
  • Works with Intune, Windows Autopilot, Windows Backup, and OneDrive
  • Restores data, apps, and PC settings

Discussed in: BRK345

Security Enhancements

Post Quantum Cryptography (PQC) API

Now generally available - allows use of cryptographic algorithms secured against quantum computer attacks:

  • Compliance with Commercial National Security Algorithm Suite
  • Reduces exposure to "harvest now, decrypt later" threats

Discussed in: BRK258

Hardware-Accelerated BitLocker

Now generally available in new devices with supported hardware:

  • Offloads cryptographic operations to dedicated crypto engine
  • Hardware-protected keys reduce exposure to CPU/memory issues
  • Improved performance and enhanced security

Discussed in: BRK346, BRK258

Passkey Integration with Windows Hello

Passkey manager integration now generally available:

  • Select passkey manager of choice
  • Multifactor authentication for web
  • Simple, quick, and secure sign-in

Discussed in: BRK346, BRK258

Pre-Recorded Vendor Sessions

Several vendor and Microsoft-sponsored sessions provided valuable insights:

Endpoint Management Modernization

  • ODSP1488 (Nerdio): Cloud desktop and endpoint management modernization strategies
  • ODSP1513 (OneDeploy): Unified approach for deploying ARM and Intel Copilot+ PCs
  • ODSP1521 (Robopack): Standardizing Intune app packaging and updates at scale

Application Management

  • ODSP1481 (Rimo3): Moving from app anxiety to automation confidence
  • ODSP1435 (Recast Software): Streamline ConfigMgr, Intune, and AVD Management with Right Click Tools

Identity & Zero Trust

  • ODSP1406 (Infoblox): Enable modern Zero Trust architecture
  • ODSP1466 (Liquidware): Replacing Group Policy Preferences with ProfileUnity in Entra ID environments

AI & Sustainability

  • ODSP1401 (WNS Vuram): Innovation with AI & Azure Agents
  • OD1319 (Microsoft): Windows & Intune enabling the Sustainable Enterprise of the Future

This summary was compiled from information presented at Microsoft Ignite 2025 and the official Book of News. For complete details on any announcement, please refer to the official Microsoft documentation and session recordings.