Microsoft Entra ID MCP server
Query users, groups, devices, and licenses across Microsoft Entra ID using natural language over Microsoft Graph.
About
Connect Tracecat to Microsoft Entra ID to investigate identity, access, and license data for SOC analysts and IAM admins working across Microsoft 365 and Azure. You can ask natural-language questions like which admins lack MFA or which users are inactive, and get Microsoft Graph results back. From there, pivot through groups, devices, and audit logs, inspect Graph schema, and run governance reviews with confidence.
Setup
- 1
Sign in with OAuth
You'll authorize Tracecat to access Microsoft Entra ID on your behalf. No API keys to manage.
- 2
Select the
Microsoft Entra IDtile in the Tracecat MCP catalogOpen the
MCP catalogin your workspace, select theMicrosoft Entra IDtile, and complete the OAuth flow. - 3
Enable
Microsoft Entra IDin your agentIn your
ai.agentaction orAgents→toolstab, selectMicrosoft Entra IDfrom theMCP integrationsdropdown.
Tools
microsoft_graph_suggest_queries | Find candidate Microsoft Graph queries that match the user's intent using semantic search. |
microsoft_graph_get | Run a read-only Microsoft Graph API call honoring user roles and granted scopes. |
microsoft_graph_list_properties | Retrieve the schema and relationships for Microsoft Graph entities. |