Microsoft Active Directory · Schema
User
A Microsoft Entra ID user account managed via Microsoft Graph
Active DirectoryAuthenticationAuthorizationDirectory ServicesIdentity ManagementMicrosoft EntraZero Trust
Properties
| Name | Type | Description |
|---|---|---|
| id | string | Unique identifier for the user (read-only) |
| displayName | string | Name displayed in the address book for the user |
| userPrincipalName | string | Principal name in UPN format (alias@domain) |
| stringnull | Primary SMTP address for the user | |
| givenName | stringnull | Given name (first name) of the user |
| surname | stringnull | Surname (family name or last name) of the user |
| jobTitle | stringnull | The user's job title |
| department | stringnull | Department name in which the user works |
| officeLocation | stringnull | Office location in the user's place of business |
| mobilePhone | stringnull | Primary cellular telephone number for the user |
| businessPhones | array | Telephone numbers for the user |
| accountEnabled | booleannull | True if the account is enabled; otherwise false |
| usageLocation | stringnull | Two-letter country code (ISO 3166) required for license assignment |
| preferredLanguage | stringnull | Preferred language for the user (ISO 639-1 Code, e.g. en-US) |
| createdDateTime | stringnull | Date and time the user was created |
| lastPasswordChangeDateTime | stringnull | Timestamp of the last password change |
| passwordPolicies | stringnull | Password policies enforced for the user |
| userType | stringnull | Whether the user is a member or guest in the tenant |
| assignedLicenses | array | Licenses assigned to the user |
| onPremisesSyncEnabled | booleannull | True if the user is synchronized from on-premises Active Directory |
| onPremisesDistinguishedName | stringnull | Distinguished name from on-premises Active Directory |
| externalUserState | stringnull | State of a guest/external user invited via Azure AD B2B |