Set up Entra ID app registration, OAuth, permissions, and MSAL integration.
This skill appears to be prompt-style open-source guidance for Microsoft Entra app registration and OAuth configuration, with no declared secrets, remote endpoints, or local execution capabilities, so overall risk is low. Star count, maintenance visibility, and missing license details slightly limit confidence, but the source points to a Microsoft GitHub repository and no concrete red flags are evident.
The materials state that the skill itself requires no keys or environment variables. The README only discusses concepts such as client secrets and tenant IDs as part of Entra app registration, rather than indicating that the skill itself collects or stores credentials.
No remote endpoints or outbound data flows are declared. Combined with the 'prompt-only' classification, this appears to be a local prompt/documentation-style skill rather than a tool that sends user data to third-party services.
There is no indication of spawning local processes, running scripts, invoking system commands, or automatically modifying cloud resources. The content is mainly procedural guidance and references, not an actual code-executing capability.
The materials do not show that the skill can read local files, access account data, write configuration, or directly operate on an Azure tenant. Its role appears limited to providing Entra/OAuth configuration guidance, with no significant data access surface exposed.
The source is a GitHub repository associated with Microsoft and is open source, which materially lowers supply-chain risk through auditability. However, the missing license, low star count, and unknown maintenance status warrant a quick validation of repository activity and release practices before production use.
Copy the install command and let the AI configure it · recommended for beginners
Please install the "entra-app-registration" skill from askskill: 1. Download https://raw.githubusercontent.com/microsoft/GitHub-Copilot-for-Azure/main/plugin/skills/entra-app-registration/SKILL.md 2. Save it as ~/.claude/skills/entra-app-registration/SKILL.md 3. Reload skills and tell me it's ready
Guide me through creating a new app registration in Microsoft Entra ID for an internal web app sign-in. Explain the redirect URI, supported account types, and which key details I should save after creation.
A step-by-step app registration workflow with configuration notes and the client and tenant details to save.
I need my app to call Microsoft Graph to read basic user profile information. Tell me which API permissions to add, explain delegated vs application permissions, and how admin consent should be handled.
Clear permission setup guidance covering permission types, recommended scopes, and admin consent instructions.
Give me a C# console app example using MSAL to sign in a user and acquire an access token for Microsoft Graph. Include required packages, key configuration values, and the sample code structure.
A usable MSAL console sample plan with dependencies, configuration guidance, and the main code structure.
Microsoft Entra ID (formerly Azure Active Directory) is Microsoft's cloud-based identity and access management service. App registrations allow applications to authenticate users and access Azure resources securely.
| Concept | Description |
|---|---|
| App Registration | Configuration that allows an app to use Microsoft identity platform |
| Application (Client) ID | Unique identifier for your application |
| Tenant ID | Unique identifier for your Azure AD tenant/directory |
| Client Secret | Password for the application (confidential clients only) |
| Redirect URI | URL where authentication responses are sent |
| API Permissions | Access scopes your app requests |
| Service Principal | Identity created in your tenant when you register an app |
| Type | Use Case |
|---|---|
| Web Application | Server-side apps, APIs |
| Single Page App (SPA) | JavaScript/React/Angular apps |
| Mobile/Native App | Desktop, mobile apps |
| Daemon/Service | Background services, APIs |
Create an app registration in the Azure portal or using Azure CLI.
Portal Method:
CLI Method: See references/cli-commands.md IaC Method: See references/BICEP-EXAMPLE.bicep
It's highly recommended to use the IaC to manage Entra app registration if you already use IaC in your project, need a scalable solution for managing lots of app registrations or need fine-grained audit history of the configuration changes.
Set up authentication settings based on your application type.
http://localhost or custom URI schemeGrant your application permission to access Microsoft APIs or your own APIs.
Common Microsoft Graph Permissions:
User.Read - Read user profileUser.ReadWrite.All - Read and write all usersDirectory.Read.All - Read directory dataMail.Send - Send mail as a userDetails: See references/api-permissions.md
For confidential client applications (web apps, services), create a client secret, certificate or federated identity credential.
Client Secret:
Certificate: For production environments, use certificates instead of secrets for enhanced security. Upload certificate via "Certificates & secrets" section.
Federated Identity Credential: For dynamically authenticating the confidential client to Entra platform.
Integrate the OAuth flow into your application code.
See:
Walk user through their first app registration step-by-step.
Required Information:
Script: See references/first-app-registration.md
…
Analyze and compress Markdown to reduce tokens and improve AI efficiency.
Write, review, and standardize Agent Skills to match agentskills.io requirements.
Discover Azure OpenAI capacity, quotas, and best regions for deployment.
Create, validate, and run eval.yaml suites for agent skill evaluation.
Query and analyze logs, telemetry, and time-series data in Azure Data Explorer.
Assess AKS Automatic readiness and generate fixes for migration blockers.
Provision Entra agent identities, blueprints, and OAuth token exchange flows.
Search Microsoft Entra ID and Graph permissions plus first-party app details.
Find least-privilege Azure RBAC roles and generate assignment commands and Bicep.
Set up authentication, authorization, and identity providers for Power Pages sites.
Manage Entra ID users, access, devices, and security policies via Microsoft Graph.
Prepare Azure apps for deployment with infra, configs, and container setup.