Entra Adds Facet Claims For Agent Identification

Microsoft Entra introduces new "facet" claims in Agent ID tokens that add identity context without changing core claims like tid, sub, and azp. The multivalued claims (xms_tnt_fct, xms_sub_fct, xms_act_fct and xms_par_app_azp) help distinguish tenant, subject, and acting app or agent for logging, auditing, and SOC investigations, while guidance warns against using them for authorization.