We are excited to introduce Microsoft Entra PowerShell v1.2.0, a major update that delivers full support for Agent Identity Blueprints, expanded application configuration capabilities, and modernized invitation APIs aligned with Microsoft Graph models. This release consolidates functionality into the main module, introduces new cmdlets and parameters, and enhances automation scenarios across Microsoft Entra ID.
Changes introduced in v1.2.0
1. Agent Identity Blueprint Management
This release introduces a comprehensive, production‑ready command set for creating and operating Agent Identity Blueprints and Agent Identities directly from Microsoft Entra PowerShell.
Core Blueprint Commands
New‑EntraBetaAgentIdentityBlueprint: Creates a new Agent Identity Blueprint including sponsors and owners, persists the blueprint identifier for dependent operations, provisions the blueprint’s Service Principal, assigns permissions, and returns full metadata.
Security & Permission Configuration
Add‑EntraBetaClientSecretToAgentIdentityBlueprint: Adds a 90‑day client secret with automatic retry logic for reliable secret creation.Add‑EntraBetaInheritablePermissionsToAgentIdentityBlueprint: Configures inheritable Microsoft Graph permissions for delegated and custom application scopes and can launch admin‑consent flows.Add‑EntraBetaScopeToAgentIdentityBlueprint: Adds OAuth2 permission scopes, including display names, descriptions, and identifier URIs.Add‑EntraBetaRedirectURIToAgentIdentityBlueprint: Adds web redirect URIs for authentication callbacks.
Agent Identity & User Provisioning
New‑EntraBetaAgentIdForAgentIdentityBlueprint: Creates Agent Identities using stored Blueprint credentials.New‑EntraBetaAgentIdUserForAgentId: Creates Agent Identity–parented users with automatically generatedmailNicknameandUPNvalues.
Token Acquisition
Get‑EntraBetaAgentIdentityToken: Acquires access tokens for AutonomousApp, AutonomousUser, and On‑Behalf‑Of (OBO) authentication modes.
Interactive Setup
Invoke‑EntraBetaAgentIdInteractive: A seven‑phase interactive wizard supporting complete Agent Identity Blueprint setup, secret creation, redirect URI configuration, and identity provisioning.
2. Improved Application Configuration
The Set‑EntraBetaApplication command now supports the -PreAuthorizedApplications parameter, enabling administrators to configure pre‑authorized clients and their delegated permission scopes directly from PowerShell. This streamlines application‑to‑application authorization management and removes the need for manual Graph updates.
3. Updated Invitation APIs with Modern Microsoft Graph Models
Invitation cmdlets now align with the Microsoft Graph Beta PowerShell Models. Updated parameter types include:
- InvitedUser →
Microsoft.Graph.Beta.PowerShell.Models.IMicrosoftGraphUser - InvitedUserMessageInfo →
Microsoft.Graph.Beta.PowerShell.Models.IMicrosoftGraphInvitedUserMessageInfo
These updates apply to both New‑EntraBetaInvitation and New‑EntraInvitation, improving compatibility, ensuring type safety, and making B2B invitation automation more consistent.
Installation
Install the Entra module:
Install-Module -Name Microsoft.Entra -RequiredVersion 1.2.0 -Repository PSGallery -Force -AllowClobber
Install the Entra Beta module:
Install-Module -Name Microsoft.Entra.Beta -RequiredVersion 1.2.0 -Repository PSGallery -Force -AllowClobber
Feedback
Version 1.2.0 is one of our biggest updates yet, bringing robust Agent Identity tooling, richer application configuration capabilities, and improved interoperability with Microsoft Graph. If you’re using Agent Identities or building secure multi‑tenant apps, this is the release you’ve been waiting for.
Let us know what you think and keep the feedback coming on GitHub!
0 comments
Be the first to start the discussion.