Skip to main content

Invoke-MsIdAgentIdInteractive

SYNOPSIS

Interactive cmdlet to create and configure an Agent ID.

SYNTAX

Invoke-MsIdAgentIdInteractive [-ProgressAction <ActionPreference>] [<CommonParameters>]

DESCRIPTION

Demonstrates the full workflow of creating and configuring an Agent Identity Blueprint, including creating Agent Identities and Agent Users as needed.

This interactive cmdlet guides you through the complete Agent Identity setup process with prompts at key decision points:

  • Blueprint creation with optional sponsors
  • Client secret generation for API authentication
  • Interactive agent scope configuration
  • Inheritable permissions setup
  • Service principal creation and permissions
  • Admin consent flow (when applicable)
  • Agent Identity and Agent User creation

The cmdlet maintains state between operations, automatically passing Blueprint IDs and other required values to subsequent operations. You can create multiple Agent Identities and Users in a single session.

EXAMPLES

EXAMPLE 1

Invoke-MsIdAgentIdInteractive

Starts the interactive Agent Identity configuration workflow. The cmdlet will prompt you for all required inputs and guide you through the complete setup process.

PARAMETERS

-ProgressAction

{{ Fill ProgressAction Description }}

Type: ActionPreference
Parameter Sets: (All)
Aliases: proga

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

INPUTS

OUTPUTS

NOTES

This cmdlet requires the following Microsoft Graph permissions:

  • AgentIdentityBlueprint.Create
  • AgentIdentityBlueprintPrincipal.Create
  • AppRoleAssignment.ReadWrite.All
  • Application.ReadWrite.All
  • User.ReadWrite.All

The cmdlet will automatically connect to Microsoft Graph with these permissions if not already connected.

https://learn.microsoft.com/entra/identity/app-proxy/overview-what-is-app-proxy