Entra ID - Blog

Entra ID, Graph API, Microsoft 365, PowerShell

How to manage Entra ID’s banned password list via the Graph SDK for PowerShell

June 9, 2025 Vasil Michev

Entra ID’s password protection feature was introduced back in 2018, adding support for a banned password list, the smart lockout controls and integration with on-premises AD. Programmatic access to the feature was enabled via directory settings templates, which at the time were exposed via the Azure AD Preview PowerShell module, …

Continue readingHow to manage Entra ID’s banned password list via the Graph SDK for PowerShell

Entra ID, Graph API, Microsoft 365

Using the estimateAccess method to determine permissions on Entra objects

May 20, 2025 Vasil Michev

In this article, we take a look at the undocumented estimateAccess Graph API method, which can be used to determine what permissions a given user or application has against any directory object. This in turn can help you troubleshoot permission related issues, such as those where a given app throws an unexpected 403 error. …

Continue readingUsing the estimateAccess method to determine permissions on Entra objects

Entra ID, Graph API, Microsoft 365

Graph-based What If Conditional Access tool

May 2, 2025May 2, 2025 Vasil Michev

Microsoft released new Graph API based implementation of the What If tool. In this article, we will take a look at how to leverage the new What If experience in the UI as well as how the underlying Graph API endpoints work. It is great to finally have a supported method to test your Conditional Access policies! …

Continue readingGraph-based What If Conditional Access tool

Graph API, Entra ID, Microsoft 365

First look at the Graph API usage report

April 23, 2025 Vasil Michev

Microsoft recently introduced the Graph API usage report. In this article, we will take a quick look at the new endpoints and the data we can obtain via them. Spoiler alert, there are some rough edges, but that’s to be expected from a /beta release. …

Continue readingFirst look at the Graph API usage report

Entra ID, Azure AD, Graph API, Microsoft 365, Office 365, PowerShell

Working with custom attributes via the Graph SDK for PowerShell and the Entra module

April 9, 2025 Vasil Michev

In this article, we will examine how to work with Exchange custom attributes (also known as extension attributes) via the Graph SDK for PowerShell. The examples include retrieving and modifying values for the set of extensionAttribute1-15, generating a report of all the values, bulk scenarios and more. We are also including some examples for the Entra PowerShell module, which does improve the experience a bit. Read on …

Continue readingWorking with custom attributes via the Graph SDK for PowerShell and the Entra module