az ad user
Manage Azure Active Directory users and user authentication.
Commands
| az ad user create |
Create an Azure Active Directory user. |
| az ad user delete |
Delete Azure Active Directory user. |
| az ad user get-member-groups |
Get groups of which the user is a member. |
| az ad user list |
List Azure Active Directory users. |
| az ad user show |
Show details for a Azure Active Directory user. |
| az ad user update |
Update Azure Active Directory users. |
az ad user create
Create an Azure Active Directory user.
az ad user create --display-name
--password
--user-principal-name
[--force-change-password-next-sign-in {false, true}]
[--immutable-id]
[--mail-nickname]Examples
Create a user
az ad user create --display-name myuser --password password --user-principal-name myuser@contoso.comRequired Parameters
Object's display name or its prefix.
The password that should be assigned to the user for authentication.
The user principal name (someuser@contoso.com). It must contain one of the verified domains for the tenant.
Optional Parameters
Marks this user as needing to update their password the next time they authenticate. If omitted, false will be used.
This must be specified if you are using a federated domain for the user's userPrincipalName (UPN) property when creating a new user account. It is used to associate an on-premises Active Directory user account with their Azure AD user object.
Mail alias. Defaults to user principal name.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az ad user delete
Delete Azure Active Directory user.
az ad user delete --idExamples
Delete Azure Active Directory users.
az ad user delete --id myuser@contoso.comRequired Parameters
The object ID or principal name of the user for which to get information.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az ad user get-member-groups
Get groups of which the user is a member.
az ad user get-member-groups --id
[--security-enabled-only {false, true}]Examples
Get groups of which the user is a member
az ad user get-member-groups --id myuser@contoso.comRequired Parameters
The object ID or principal name of the user for which to get information.
Optional Parameters
True to specify that only security groups that the entity is a member of should be returned; false to specify that all groups and directory roles that the entity is a member of should be returned.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az ad user list
List Azure Active Directory users.
az ad user list [--display-name]
[--filter]
[--upn]Examples
List all the Azure Active Directory users
az ad user listOptional Parameters
Object's display name or its prefix.
OData filter, e.g. --filter "displayname eq 'test' and servicePrincipalType eq 'Application'".
User principal name, e.g. john.doe@contoso.com.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az ad user show
Show details for a Azure Active Directory user.
az ad user show --idExamples
Show Azure Active Directory user.
az ad user show --id myuser@contoso.comRequired Parameters
The object ID or principal name of the user for which to get information.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az ad user update
Update Azure Active Directory users.
az ad user update --id
[--account-enabled {false, true}]
[--display-name]
[--force-change-password-next-sign-in {false, true}]
[--mail-nickname]
[--password]Examples
Update Azure Active Directory users.
az ad user update --id myuser@contoso.com --display-name username2Required Parameters
The object ID or principal name of the user for which to get information.
Optional Parameters
Enable the user account.
Object's display name or its prefix.
If the user must change her password on the next login.
Mail alias. Defaults to user principal name.
User password.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
Feedback
Submit and view feedback for