Data Model
The CData MCP Server for Azure Active Directory models Azure Active Directory as an easy-to-use SQL database with tables, views, and stored procedures. Live connectivity to these objects means that any changes to your Azure Active Directory account are immediately reflected in the server.
Tables
The Tables section, which details standard SQL tables, and the Views section, which lists read-only SQL tables, contain samples of what you might have access to in your Azure Active Directory account.
Common tables include:
| Table | Description |
| Users | Lists all Azure AD users, including their profile and directory information, within the authenticated permissions. |
| Groups | Lists all Azure AD groups, including Office 365 and security groups, accessible to the authenticated user. |
| Applications | Contains details of all registered applications within the organization for the authenticated user, including app-specific configurations. |
| Devices | Lists all devices registered within the organization that the authenticated user has access to, including device details. |
| DirectoryRoles | Contains a list of directory roles, detailing roles assigned to users and groups within the organization. |
| DirectoryRoleMembers | Identifies the members assigned to specific directory roles within the Azure AD environment. |
| GroupMembers | Provides a detailed view of group memberships, listing all members of each group within the organization. |
| SignIns | Tracks and lists all user sign-in activities for audit and monitoring purposes. |
| DirectoryAudits | Tracks and lists all directory audit events accessible to the authenticated user for compliance and monitoring. |
| Organization | Contains metadata and details about the organization accessible to the authenticated user. |
| RoleAssignments | Displays all role assignments configured within the Azure AD environment. |
| RoleDefinitions | Provides definitions for roles available in Azure AD, detailing their permissions and scope. |
| DeviceRegisteredOwners | Maps device objects to their registered owners for tracking and management purposes. |
| DeviceRegisteredUsers | Associates device objects with their registered users, facilitating detailed user-device relationship analysis. |
| AdministrativeUnits | Displays a comprehensive list of administrative units accessible to the authenticated user, enabling management of organizational structure. |
| AdministrativeUnitMembers | Lists all members of administrative units available to the authenticated user, providing details on their membership relationships. |
| Domains | Displays all domains registered and verified within the organization, along with their configurations. |
| PhoneAuthenticationMethods | Lists phone-based authentication methods configured for users within the organization. |
| UserManagers | Maps users to their assigned managers within the organization for reporting and hierarchy management. |
| SubscribedSKUs | Lists service subscriptions (SKUs) the organization is subscribed to, including details of usage and availability. |
Stored Procedures
Stored Procedures are actions that are invoked via SQL queries. They perform tasks beyond standard CRUD operations, such as retrieving and refreshing OAuth access tokens, and managing groups.