Microsoft Entra · Capability

Microsoft Entra Identity and Access Management

Unified workflow for managing identity and access including users, groups, applications, and service principals in Microsoft Entra ID. Used by IT administrators and identity engineers.

Run with Naftiko Microsoft EntraIdentityAccess ManagementDirectory Management

What You Can Do

GET
List users — List all users in the directory.
/v1/users
POST
Create user — Create a new user.
/v1/users
GET
Get user — Get user details.
/v1/users/{id}
PATCH
Update user — Update user properties.
/v1/users/{id}
DELETE
Delete user — Delete a user.
/v1/users/{id}
GET
List user memberships — List user group memberships.
/v1/users/{id}/memberships
GET
List groups — List all groups.
/v1/groups
POST
Create group — Create a new group.
/v1/groups
GET
Get group — Get group details.
/v1/groups/{id}
PATCH
Update group — Update group properties.
/v1/groups/{id}
DELETE
Delete group — Delete a group.
/v1/groups/{id}
GET
List group members — List group members.
/v1/groups/{id}/members
POST
Add group member — Add a member to a group.
/v1/groups/{id}/members
GET
List applications — List all applications.
/v1/applications
POST
Create application — Register a new application.
/v1/applications
GET
Get application — Get application details.
/v1/applications/{id}
PATCH
Update application — Update application properties.
/v1/applications/{id}
DELETE
Delete application — Delete an application.
/v1/applications/{id}
GET
List service principals — List all service principals.
/v1/service-principals
POST
Create service principal — Create a new service principal.
/v1/service-principals
GET
Get service principal — Get service principal details.
/v1/service-principals/{id}
PATCH
Update service principal — Update service principal.
/v1/service-principals/{id}
DELETE
Delete service principal — Delete a service principal.
/v1/service-principals/{id}

MCP Tools

list-users

List all users in Microsoft Entra directory.

read-only
create-user

Create a new user in the directory.

get-user

Get user properties by ID.

read-only
update-user

Update user properties.

idempotent
delete-user

Delete a user from the directory.

idempotent
list-user-memberships

List groups and roles a user belongs to.

read-only
list-groups

List all groups in the directory.

read-only
create-group

Create a new group.

get-group

Get group details.

read-only
update-group

Update group properties.

idempotent
delete-group

Delete a group.

idempotent
list-group-members

List members of a group.

read-only
add-group-member

Add a member to a group.

remove-group-member

Remove a member from a group.

idempotent
list-applications

List all application registrations.

read-only
create-application

Register a new application.

get-application

Get application details.

read-only
update-application

Update application properties.

idempotent
delete-application

Delete an application registration.

idempotent
list-service-principals

List all service principals.

read-only
create-service-principal

Create a new service principal.

get-service-principal

Get service principal details.

read-only
update-service-principal

Update service principal properties.

idempotent
delete-service-principal

Delete a service principal.

idempotent

APIs Used

entra-graph