Automated-BOD-25-01-CISA-Microsoft-Policies-MCP
2
The CISA M365 MCP Server is an MCP server designed to implement CISA's Binding Operational Directive 25-01 for security controls in Microsoft 365 environments. It offers comprehensive tools for managing security settings like legacy authentication controls, multi-factor authentication, and privilege management, enhancing compliance and security posture.
CISA M365 MCP Server
A Model Context Protocol (MCP) server implementing CISA Binding Operational Directive 25-01 security controls for Microsoft 365 (Azure AD/Entra ID).
Key Features
- Legacy authentication controls
- Risk-based access controls
- Multi-factor authentication management
- Application registration and consent controls
- Password policy management
- Privileged role management
- Cloud-only account enforcement
- PAM system integration
- Comprehensive compliance reporting
- Token-based authentication
- Type-safe argument validation
- Detailed error handling and logging
Usage
Available Tools
- block_legacy_auth: Block legacy authentication methods.
- block_high_risk_users: Block users detected as high risk.
- enforce_phishing_resistant_mfa: Enforce phishing-resistant MFA for all users.
- configure_global_admins: Configure Global Administrator role assignments.
- get_policy_status: Get current status of all security policies.