Server Configuration
Describes the environment variables required to run the server.
| Name | Required | Description | Default |
|---|---|---|---|
| PORT | No | Port for HTTP server if needed | 3000 |
| USE_HTTP | No | Set to 'true' to use HTTP transport instead of stdio | false |
| LOG_LEVEL | No | Logging level: debug, info, warn, error | info |
| STATELESS | No | Set to 'true' to use stateless HTTP mode (no session management) | false |
| MS_CLIENT_ID | Yes | Your Microsoft Azure AD application (client) ID | |
| MS_TENANT_ID | Yes | Your Microsoft Azure AD tenant ID | |
| MS_CLIENT_SECRET | Yes | Your Microsoft Azure AD application client secret |
Tools
Functions exposed to the LLM to take actions
| Name | Description |
|---|---|
| manage_distribution_lists | Manage Exchange distribution lists including creation, updates, member management, and settings configuration. |
| manage_security_groups | Manage Azure AD security groups for access control, including group creation, membership, and security settings. |
| manage_m365_groups | Manage Microsoft 365 groups for team collaboration with shared resources like mailbox, calendar, and files. |
| manage_exchange_settings | Manage Exchange Online settings including mailbox configuration, transport rules, and organization policies. |
| manage_user_settings | Manage user account settings including profile information, mailbox settings, licenses, and authentication methods. |
| manage_offboarding | Automate user offboarding processes including account disablement, license removal, data backup, and access revocation. |
| manage_sharepoint_sites | Manage SharePoint sites including creation, configuration, permissions, and site collection administration. |
| manage_sharepoint_lists | Manage SharePoint lists and libraries including schema definition, items, views, and permissions. |
| manage_azure_ad_roles | Manage Azure AD administrative roles including role assignments, custom roles, and privilege escalation controls. |
| manage_azure_ad_apps | Manage Azure AD application registrations including app permissions, credentials, and OAuth configurations. |
| manage_azure_ad_devices | Manage devices registered in Azure AD including device compliance, BitLocker keys, and device actions. |
| manage_service_principals | Manage service principals for application access including permissions, credentials, and enterprise applications. |
| call_microsoft_api | Make direct calls to any Microsoft Graph or Azure Resource Management API endpoint with full control over HTTP methods and parameters. |
| search_audit_log | Search and analyze Azure AD unified audit logs for security events, user activities, and compliance monitoring. |
| manage_alerts | Manage security alerts from Microsoft Defender and other security products including investigation and remediation. |
| manage_dlp_policies | Manage Data Loss Prevention policies to protect sensitive data across Exchange, SharePoint, OneDrive, and Teams. |
| manage_dlp_incidents | Investigate and manage DLP policy violations and incidents including user notifications and remediation actions. |
| manage_intune_macos_devices | Manage macOS devices in Intune including enrollment, compliance policies, device actions, and inventory management. |
| manage_intune_macos_policies | Manage macOS configuration profiles and compliance policies for device security and management settings. |
| manage_intune_macos_apps | Manage macOS application deployment including app assignments, updates, and installation requirements. |
| manage_intune_macos_compliance | Assess macOS device compliance status and generate reports on policy adherence and security posture. |
| manage_intune_windows_devices | Manage Windows devices in Intune including enrollment, autopilot deployment, device actions, and health monitoring. |
| manage_intune_windows_policies | Manage Windows configuration profiles and compliance policies including security baselines and update rings. |
| manage_intune_windows_apps | Manage Windows application deployment including Win32 apps, Microsoft Store apps, and Office 365 assignments. |
| manage_intune_windows_compliance | Assess Windows device compliance status including BitLocker encryption, antivirus status, and security configurations. |
| manage_compliance_frameworks | Manage compliance frameworks and standards including HIPAA, GDPR, SOX, PCI-DSS, ISO 27001, and NIST configurations. |
| manage_compliance_assessments | Conduct compliance assessments and generate detailed reports on regulatory adherence and security controls. |
| manage_compliance_monitoring | Monitor ongoing compliance status with real-time alerts for policy violations and regulatory changes. |
| manage_evidence_collection | Collect and preserve compliance evidence including audit logs, configuration snapshots, and attestation records. |
| manage_gap_analysis | Perform gap analysis to identify compliance deficiencies and generate remediation recommendations. |
| generate_audit_reports | Generate comprehensive audit reports for compliance frameworks with evidence documentation and findings. |
| manage_cis_compliance | Manage CIS (Center for Internet Security) benchmark compliance including assessment and remediation tracking. |
| manage_retention_policies | Manage retention policies for content across Exchange, SharePoint, OneDrive, and Teams with lifecycle rules. |
| manage_sensitivity_labels | Manage sensitivity labels for information protection including encryption, content marking, and classification policies. |
| manage_information_protection_policies | Manage Azure Information Protection policies for data classification, encryption, and rights management. |
| manage_conditional_access_policies | Manage Azure AD conditional access policies for zero-trust security including MFA, device compliance, and location-based controls. |
| manage_defender_policies | Manage Microsoft Defender for Office 365 policies including Safe Attachments, Safe Links, anti-phishing, and anti-malware. |
| manage_teams_policies | Manage Microsoft Teams policies for messaging, meetings, calling, apps, and live events across the organization. |
| manage_exchange_policies | Manage Exchange Online policies including mail flow rules, mobile device access, and organization-wide settings. |
| manage_sharepoint_governance_policies | Manage SharePoint governance policies including sharing controls, access restrictions, and site lifecycle management. |
| manage_security_alert_policies | Manage security alert policies for monitoring threats, suspicious activities, and compliance violations across Microsoft 365. |
| generate_powerpoint_presentation | Create professional PowerPoint presentations with custom slides, charts, tables, and themes from Microsoft 365 data. |
| generate_word_document | Create professional Word documents with formatted sections, tables, charts, and table of contents from analysis data. |
| generate_html_report | Create interactive HTML reports and dashboards with responsive design, charts, and filtering capabilities. |
| generate_professional_report | Generate comprehensive professional reports in multiple formats (PowerPoint, Word, HTML, PDF) from Microsoft 365 data. |
| oauth_authorize | Manage OAuth 2.0 authorization for user-delegated access to OneDrive and SharePoint files with secure token handling. |
| execute_graph_batch | Execute multiple Microsoft Graph API requests in a single batch operation for improved performance and efficiency. |
| execute_delta_query | Track incremental changes to Microsoft Graph resources using delta queries for efficient synchronization. |
| manage_graph_subscriptions | Manage webhook subscriptions for real-time change notifications from Microsoft Graph resources. |
| execute_graph_search | Execute advanced search queries across Microsoft 365 content including emails, files, messages, and calendar events. |
Prompts
Interactive templates invoked by user choice
| Name | Description |
|---|---|
| security_assessment | Comprehensive security posture analysis with recommendations for Microsoft 365 environment |
| compliance_review | Framework-specific compliance gap analysis for SOC2, ISO27001, NIST, GDPR, HIPAA, or CIS |
| user_access_review | Individual or organization-wide access rights analysis and recommendations |
| device_compliance_analysis | Intune device management and compliance assessment with remediation guidance |
| collaboration_governance | Microsoft Teams and SharePoint governance analysis with policy recommendations |
| generate_client_report | Generate a comprehensive professional report for clients based on Microsoft 365 data analysis |
| policy_management_guide | Comprehensive guide for managing Microsoft 365 policies across security, compliance, and governance |
| intune_policy_wizard | Interactive wizard to guide creation of Intune policies with correct structure and settings |
| intune_policy_troubleshoot | Troubleshoot common Intune policy creation and deployment issues |
Resources
Contextual data attached and managed by the client
| Name | Description |
|---|---|
| Security Alerts | |
| Security Incidents | |
| Conditional Access Policies | |
| Identity Protection | |
| Threat Assessment | |
| Compliance Policies | |
| Audit Log Summary | |
| Sensitivity Labels | |
| Device Overview | |
| Device Compliance Status | |
| Intune Policies | |
| Managed Applications | |
| User Directory | |
| License Assignment | |
| Privileged Users | |
| All Groups | |
| Microsoft Teams | |
| SharePoint Sites | |
| SharePoint Permissions | |
| Exchange Mailboxes | |
| Exchange Transport Rules | |
| Teams Activity | |
| OneDrive Usage | |
| Application Registrations | |
| Service Principals | |
| Application Consent | |
| Access Reviews | |
| Entitlement Management | |
| Organization Information | |
| Verified Domains | |
| Subscriptions | |
| PowerPoint Presentations | |
| Word Documents | |
| Generated Reports | |
| Document Templates | |
| Conditional Access Policies | |
| Retention Policies | |
| Information Protection Policies | |
| Defender Policies | |
| Teams Policies | |
| Exchange Policies | |
| SharePoint Governance Policies | |
| Security Alert Policies | |
| Policy Overview |