ms365-tenant-manager
Microsoft 365 tenant administration for Global Administrators. Automate M365 tenant setup, Office 365 admin tasks, Azure AD user management, Exchange Online configuration, Teams administration, and security policies. Generate PowerShell scripts for bulk operations, Conditional Access policies, license management, and compliance reporting. Use for M365 tenant manager, Office 365 admin, Azure AD users, Global Administrator, tenant configuration, or Microsoft 365 automation.
Install
mkdir -p .claude/skills/ms365-tenant-manager && curl -L -o skill.zip "https://mcp.directory/api/skills/download/1167" && unzip -o skill.zip -d .claude/skills/ms365-tenant-manager && rm skill.zipInstalls to .claude/skills/ms365-tenant-manager
About this skill
Microsoft 365 Tenant Manager
Expert guidance and automation for Microsoft 365 Global Administrators managing tenant setup, user lifecycle, security policies, and organizational optimization.
Table of Contents
Trigger Phrases
Use this skill when you hear:
- "set up Microsoft 365 tenant"
- "create Office 365 users"
- "configure Azure AD"
- "generate PowerShell script for M365"
- "set up Conditional Access"
- "bulk user provisioning"
- "M365 security audit"
- "license management"
- "Exchange Online configuration"
- "Teams administration"
Quick Start
Generate Security Audit Script
python scripts/powershell_generator.py --action audit --output audit_script.ps1
Create Bulk User Provisioning Script
python scripts/user_management.py --action provision --csv users.csv --license E3
Configure Conditional Access Policy
python scripts/powershell_generator.py --action conditional-access --require-mfa --include-admins
Tools
powershell_generator.py
Generates ready-to-use PowerShell scripts for Microsoft 365 administration.
Usage:
# Generate security audit script
python scripts/powershell_generator.py --action audit
# Generate Conditional Access policy script
python scripts/powershell_generator.py --action conditional-access \
--policy-name "Require MFA for Admins" \
--require-mfa \
--include-users "All"
# Generate bulk license assignment script
python scripts/powershell_generator.py --action license \
--csv users.csv \
--sku "ENTERPRISEPACK"
Parameters:
| Parameter | Required | Description |
|---|---|---|
--action | Yes | Script type: audit, conditional-access, license, users |
--policy-name | No | Name for Conditional Access policy |
--require-mfa | No | Require MFA in policy |
--include-users | No | Users to include: All or specific UPNs |
--csv | No | CSV file path for bulk operations |
--sku | No | License SKU for assignment |
--output | No | Output file path (default: stdout) |
Output: Complete PowerShell scripts with error handling, logging, and best practices.
user_management.py
Automates user lifecycle operations and bulk provisioning.
Usage:
# Provision users from CSV
python scripts/user_management.py --action provision --csv new_users.csv
# Offboard user securely
python scripts/user_management.py --action offboard --user john.doe@company.com
# Generate inactive users report
python scripts/user_management.py --action report-inactive --days 90
Parameters:
| Parameter | Required | Description |
|---|---|---|
--action | Yes | Operation: provision, offboard, report-inactive, sync |
--csv | No | CSV file for bulk operations |
--user | No | Single user UPN |
--days | No | Days for inactivity threshold (default: 90) |
--license | No | License SKU to assign |
tenant_setup.py
Initial tenant configuration and service provisioning automation.
Usage:
# Generate tenant setup checklist
python scripts/tenant_setup.py --action checklist --company "Acme Inc" --users 50
# Generate DNS records configuration
python scripts/tenant_setup.py --action dns --domain acme.com
# Generate security baseline script
python scripts/tenant_setup.py --action security-baseline
Workflows
Workflow 1: New Tenant Setup
Step 1: Generate Setup Checklist
python scripts/tenant_setup.py --action checklist --company "Company Name" --users 100
Step 2: Configure DNS Records
python scripts/tenant_setup.py --action dns --domain company.com
Step 3: Apply Security Baseline
python scripts/powershell_generator.py --action audit > initial_audit.ps1
Step 4: Provision Users
python scripts/user_management.py --action provision --csv employees.csv --license E3
Workflow 2: Security Hardening
Step 1: Run Security Audit
python scripts/powershell_generator.py --action audit --output security_audit.ps1
Step 2: Create MFA Policy
python scripts/powershell_generator.py --action conditional-access \
--policy-name "Require MFA All Users" \
--require-mfa \
--include-users "All"
Step 3: Review Results
Execute generated scripts and review CSV reports in output directory.
Workflow 3: User Offboarding
Step 1: Generate Offboarding Script
python scripts/user_management.py --action offboard --user departing.user@company.com
Step 2: Execute Script with -WhatIf
.\offboard_user.ps1 -WhatIf
Step 3: Execute for Real
.\offboard_user.ps1 -Confirm:$false
Best Practices
Tenant Setup
- Enable MFA before adding users
- Configure named locations for Conditional Access
- Use separate admin accounts with PIM
- Verify custom domains before bulk user creation
- Apply Microsoft Secure Score recommendations
Security Operations
- Start Conditional Access policies in report-only mode
- Use
-WhatIfparameter before executing scripts - Never hardcode credentials in scripts
- Enable audit logging for all operations
- Regular quarterly security reviews
PowerShell Automation
- Prefer Microsoft Graph over legacy MSOnline modules
- Include try/catch blocks for error handling
- Implement logging for audit trails
- Use Azure Key Vault for credential management
- Test in non-production tenant first
Reference Guides
When to Use Each Reference
references/powershell-templates.md
- Ready-to-use script templates
- Conditional Access policy examples
- Bulk user provisioning scripts
- Security audit scripts
references/security-policies.md
- Conditional Access configuration
- MFA enforcement strategies
- DLP and retention policies
- Security baseline settings
references/troubleshooting.md
- Common error resolutions
- PowerShell module issues
- Permission troubleshooting
- DNS propagation problems
Limitations
| Constraint | Impact |
|---|---|
| Global Admin required | Full tenant setup needs highest privilege |
| API rate limits | Bulk operations may be throttled |
| License dependencies | E3/E5 required for advanced features |
| Hybrid scenarios | On-premises AD needs additional configuration |
| PowerShell prerequisites | Microsoft.Graph module required |
Required PowerShell Modules
Install-Module Microsoft.Graph -Scope CurrentUser
Install-Module ExchangeOnlineManagement -Scope CurrentUser
Install-Module MicrosoftTeams -Scope CurrentUser
Required Permissions
- Global Administrator - Full tenant setup
- User Administrator - User management
- Security Administrator - Security policies
- Exchange Administrator - Mailbox management
More by alirezarezvani
View all →You might also like
flutter-development
aj-geddes
Build beautiful cross-platform mobile apps with Flutter and Dart. Covers widgets, state management with Provider/BLoC, navigation, API integration, and material design.
drawio-diagrams-enhanced
jgtolentino
Create professional draw.io (diagrams.net) diagrams in XML format (.drawio files) with integrated PMP/PMBOK methodologies, extensive visual asset libraries, and industry-standard professional templates. Use this skill when users ask to create flowcharts, swimlane diagrams, cross-functional flowcharts, org charts, network diagrams, UML diagrams, BPMN, project management diagrams (WBS, Gantt, PERT, RACI), risk matrices, stakeholder maps, or any other visual diagram in draw.io format. This skill includes access to custom shape libraries for icons, clipart, and professional symbols.
godot
bfollington
This skill should be used when working on Godot Engine projects. It provides specialized knowledge of Godot's file formats (.gd, .tscn, .tres), architecture patterns (component-based, signal-driven, resource-based), common pitfalls, validation tools, code templates, and CLI workflows. The `godot` command is available for running the game, validating scripts, importing resources, and exporting builds. Use this skill for tasks involving Godot game development, debugging scene/resource files, implementing game systems, or creating new Godot components.
nano-banana-pro
garg-aayush
Generate and edit images using Google's Nano Banana Pro (Gemini 3 Pro Image) API. Use when the user asks to generate, create, edit, modify, change, alter, or update images. Also use when user references an existing image file and asks to modify it in any way (e.g., "modify this image", "change the background", "replace X with Y"). Supports both text-to-image generation and image-to-image editing with configurable resolution (1K default, 2K, or 4K for high resolution). DO NOT read the image file first - use this skill directly with the --input-image parameter.
ui-ux-pro-max
nextlevelbuilder
"UI/UX design intelligence. 50 styles, 21 palettes, 50 font pairings, 20 charts, 8 stacks (React, Next.js, Vue, Svelte, SwiftUI, React Native, Flutter, Tailwind). Actions: plan, build, create, design, implement, review, fix, improve, optimize, enhance, refactor, check UI/UX code. Projects: website, landing page, dashboard, admin panel, e-commerce, SaaS, portfolio, blog, mobile app, .html, .tsx, .vue, .svelte. Elements: button, modal, navbar, sidebar, card, table, form, chart. Styles: glassmorphism, claymorphism, minimalism, brutalism, neumorphism, bento grid, dark mode, responsive, skeuomorphism, flat design. Topics: color palette, accessibility, animation, layout, typography, font pairing, spacing, hover, shadow, gradient."
rust-coding-skill
UtakataKyosui
Guides Claude in writing idiomatic, efficient, well-structured Rust code using proper data modeling, traits, impl organization, macros, and build-speed best practices.
Stay ahead of the MCP ecosystem
Get weekly updates on new skills and servers.