Microsoft 365 tenant administration for Global Administrators. Automate M365 tenant setup, Office 365 admin tasks, Azure AD user management, Exchange Online configuration, Teams administration, and security policies. Generate PowerShell scripts for bulk operations, Conditional Access policies, license management, and compliance reporting. Use for M365 tenant manager, Office 365 admin, Azure AD users, Global Administrator, tenant configuration, or Microsoft 365 automation.
Expert guidance and automation for Microsoft 365 Global Administrators managing tenant setup, user lifecycle, security policies, and organizational optimization.
Use this skill when you hear:
python scripts/powershell_generator.py --action audit --output audit_script.ps1
python scripts/user_management.py --action provision --csv users.csv --license E3
python scripts/powershell_generator.py --action conditional-access --require-mfa --include-admins
Generates ready-to-use PowerShell scripts for Microsoft 365 administration.
Usage:
# Generate security audit script
python scripts/powershell_generator.py --action audit
# Generate Conditional Access policy script
python scripts/powershell_generator.py --action conditional-access \
--policy-name "Require MFA for Admins" \
--require-mfa \
--include-users "All"
# Generate bulk license assignment script
python scripts/powershell_generator.py --action license \
--csv users.csv \
--sku "ENTERPRISEPACK"
Parameters:
| Parameter | Required | Description |
|---|---|---|
--action | Yes | Script type: audit, conditional-access, license, users |
--policy-name | No | Name for Conditional Access policy |
--require-mfa | No | Require MFA in policy |
--include-users | No | Users to include: All or specific UPNs |
--csv | No | CSV file path for bulk operations |
--sku | No | License SKU for assignment |
--output | No | Output file path (default: stdout) |
Output: Complete PowerShell scripts with error handling, logging, and best practices.
Automates user lifecycle operations and bulk provisioning.
Usage:
# Provision users from CSV
python scripts/user_management.py --action provision --csv new_users.csv
# Offboard user securely
python scripts/user_management.py --action offboard --user [email protected]
# Generate inactive users report
python scripts/user_management.py --action report-inactive --days 90
Parameters:
| Parameter | Required | Description |
|---|---|---|
--action | Yes | Operation: provision, offboard, report-inactive, sync |
--csv | No | CSV file for bulk operations |
--user | No | Single user UPN |
--days | No | Days for inactivity threshold (default: 90) |
--license | No | License SKU to assign |
Initial tenant configuration and service provisioning automation.
Usage:
# Generate tenant setup checklist
python scripts/tenant_setup.py --action checklist --company "Acme Inc" --users 50
# Generate DNS records configuration
python scripts/tenant_setup.py --action dns --domain acme.com
# Generate security baseline script
python scripts/tenant_setup.py --action security-baseline
Step 1: Generate Setup Checklist
python scripts/tenant_setup.py --action checklist --company "Company Name" --users 100
Step 2: Configure DNS Records
python scripts/tenant_setup.py --action dns --domain company.com
Step 3: Apply Security Baseline
python scripts/powershell_generator.py --action audit > initial_audit.ps1
Step 4: Provision Users
python scripts/user_management.py --action provision --csv employees.csv --license E3
Step 1: Run Security Audit
python scripts/powershell_generator.py --action audit --output security_audit.ps1
Step 2: Create MFA Policy
python scripts/powershell_generator.py --action conditional-access \
--policy-name "Require MFA All Users" \
--require-mfa \
--include-users "All"
Step 3: Review Results
Execute generated scripts and review CSV reports in output directory.
Step 1: Generate Offboarding Script
python scripts/user_management.py --action offboard --user [email protected]
Step 2: Execute Script with -WhatIf
.\offboard_user.ps1 -WhatIf
Step 3: Execute for Real
.\offboard_user.ps1 -Confirm:$false
-WhatIf parameter before executing scriptsreferences/powershell-templates.md
references/security-policies.md
references/troubleshooting.md
| Constraint | Impact |
|---|---|
| Global Admin required | Full tenant setup needs highest privilege |
| API rate limits | Bulk operations may be throttled |
| License dependencies | E3/E5 required for advanced features |
| Hybrid scenarios | On-premises AD needs additional configuration |
| PowerShell prerequisites | Microsoft.Graph module required |
Install-Module Microsoft.Graph -Scope CurrentUser
Install-Module ExchangeOnlineManagement -Scope CurrentUser
Install-Module MicrosoftTeams -Scope CurrentUser