ComprehensiveMicrosoft Entra IDDocumentation
Automated documentation for Microsoft Entra ID configurations.Reduce manual documentation from 10+ hours to 3 minuteswhile ensuring compliance, audit readiness, and disaster recovery capability.
Join organizations worldwide automating their Entra ID documentation
Essential Entra ID Components
Comprehensive coverage of all critical Microsoft Entra ID configurations required for compliance, security, and operational excellence.
Privileged Access & Governance
Just-in-time privileged access, access certification, entitlement management, and terms of use agreements for compliance.
- PIM role and group eligibility
- Access reviews and certification
- Access packages and catalogs
- Terms of use agreements
Users & Groups
Complete user statistics, licensing data, privileged user tracking, group management, and critical group identification.
- User statistics and lifecycle tracking
- Licensed and unlicensed user counts
- Privileged user assignments
- Security and M365 groups
Security & Access Control
Zero Trust security with Conditional Access policies, named locations, risky user detection, and authentication method configuration.
- Conditional Access policies
- Named locations (IP and Country)
- Risky users and identity protection
External Collaboration
B2B guest access, cross-tenant partner configurations, identity providers, and detailed collaboration analytics.
- Guest user statistics and tracking
- Cross-tenant access partners
- Collaboration settings and permissions
- SAML/WS-Fed identity providers
Application Management
Enterprise applications, app registrations, SSO configurations, and comprehensive application policies.
- Enterprise applications
- App registrations and API permissions
- Service principals and authentication
- Token lifetime and SSO policies
License Management
Detailed license analytics, utilization tracking, assignment monitoring, and service plan consumption analysis.
- SKU inventory and utilization rates
- Direct vs group-based assignments
- Service plan assignment tracking
- License usage optimization insights
Tenant & Infrastructure
Tenant properties, custom domains, administrative units for delegated administration, and directory role assignments.
- Organization information
- Custom domain verification
- Administrative units and delegation
- Directory role assignments
Export & Documentation
Generate comprehensive PDF documentation with all configuration details, perfect for audits and disaster recovery.
- Detailed PDF reports
- Audit-ready documentation
- Configuration backup snapshots
- Compliance and disaster recovery
Transparent About Permissions
Here are all the Microsoft Graph API permissions and what they're used for.
Identity & Directory
Access user profiles, groups, and organization structure
- User.Read: Basic profile of signed-in user
- Directory.Read.All: User statistics, tenant properties
- Group.Read.All: Security and M365 groups
Security & Compliance
Security policies, Conditional Access, and audit logs
- Policy.Read.All: Conditional Access and security policies
- IdentityRiskyUser.Read.All: Identity Protection monitoring
- AuditLog.Read.All: PIM activation history
Privileged Access (PIM)
Monitor privileged role assignments and eligibility
- RoleEligibilitySchedule.Read: PIM role eligibility
- RoleAssignmentSchedule.Read: Active role assignments
- PrivilegedAccess.Read: PIM for Groups and Azure Resources
Application Management
App registrations, enterprise apps, and API permissions
- Application.Read.All: App registrations and service principals
- Policy.Read.PermissionGrant: OAuth2 grants and consent policies
Identity Governance
Access packages, access reviews, and terms of use
- EntitlementManagement.Read: Access packages and catalogs
- AccessReview.Read.All: Access certification tracking
- Agreement.Read.All: Terms of use agreements
External Collaboration
B2B identity providers and collaboration settings
- IdentityProvider.Read.All: SAML/WS-Fed identity providers
- Directory.Read.All: Guest user statistics and cross-tenant access
All permissions are read-only and require admin consent. Your data never leaves your Microsoft tenant and is processed entirely in your browser.
View Microsoft's Official Permission DocumentationComplete Your Microsoft 365 Documentation
Document your entire Microsoft endpoint management ecosystem with our complementary solution.
Complete coverage: Use both tools together to document your entire Microsoft identity and endpoint management infrastructure.
Why Automated Documentation Matters
Transform your identity governance with documentation that prevents costly failures and accelerates compliance.
Time Savings
Reduce manual documentation from 10+ hours to 3 minutes per tenant. For MSPs managing 30 clients, that's 1,680+ hours saved annually.
Compliance Ready
Meet SOC 2, ISO 27001, HIPAA, PCI DSS, and GDPR requirements with always-current, audit-ready documentation and evidence.
Built for IT Professionals
Designed to serve the diverse needs of everyone involved in identity and access management.
IT Administrators
Troubleshoot issues and manage configurations efficiently
MSPs
Manage multiple client tenants with baseline configurations
Security Teams
Monitor security posture and respond to incidents quickly
Compliance Officers
Demonstrate controls and maintain audit-ready evidence
Auditors
Verify comprehensive controls across all frameworks