This MCP server, developed by DynamicEndpoints, implements CISA Binding Operational Directive 25-01 security controls for Microsoft 365. It integrates with Microsoft Graph API to enforce and manage security settings, including legacy authentication controls, risk-based access management, multi-factor authentication, application controls, password policies, and privileged role management. The server provides a standardized interface for AI assistants to configure and monitor M365 security settings, abstracting the complexities of Graph API interactions. It is particularly useful for government agencies, security teams, and IT administrators who need to ensure compliance with CISA directives, automate security policy enforcement, and maintain a robust security posture in their M365 environment.
Block legacy authentication methods.
Block users detected as high risk.
Enforce phishing-resistant MFA for all users.
Configure Global Administrator role assignments. Parameters: userIds (array of strings)
Get current status of all security policies.
No reviews yet. Be the first to review!
Sign in to join the conversation
Highlight AIOur bundler currently only supports TypeScript-based servers. Check back soon!