Create Cloud User

Property is used to associate an on-premises Active Directory user account to their Azure Active Directory user object.

If you're using a federated domain for the user's userPrincipalName (UPN) property, then you must specify this property as you create a user account in the Graph.

true if the account is enabled; otherwise, false.

Name displayed in the address book for the user. This is usually the combination of the user's first name, middle initial, and family name.

true if the user must change their password on the next login; otherwise false.

Mail alias for the user.

Password for the user. Required when a user is created. It can be updated, but the user will be required to change the password on the next login.

The password must satisfy the minimum requirements as specified by the user's passwordPolicies property. By default, a strong password is required.

User principal name (UPN) of the user. The UPN is an Internet-style login name for the user based on the Internet standard RFC 822.

By convention, this should map to the user's email name. The general format is alias@domain, where the domain must be present in the tenant's collection of verified domains.

Age group of the user. Allowed values: null, minor, notAdult, and adult.

Licenses that are assigned to the user.

Telephone numbers for the user.

Although this is a string collection, only one number can be set for this property.

City in which the user is located.

Company name associated with the user.

Indicates whether consent has been obtained for minors.

Allowed values: null, granted, denied, and notRequired.

Country or region in which the user is located.

For example, US or UK.

Name for the department in which the user works.

Employee identifier assigned to the user by the organization.

Fax number of the user.

Given (first) name of the user.

true if the user is a resource account; otherwise, false.

null value should be considered false.

User's job title.

Primary cellular telephone number for the user.

Office location in the user's place of business.

List of other email addresses for the user.

Specifies password policies for the user.

This value is an enumeration with one possible value being DisableStrongPassword, which allows weaker passwords than the default policy to be specified. DisablePasswordExpiration can also be specified. The two may be specified together.

For example: DisablePasswordExpiration, DisableStrongPassword.

If true, at the next sign-in, the user must perform a multifactor authentication (MFA) before being forced to change their password.

The behavior is identical to forceChangePasswordNextSignIn except that the user is required to first perform a multifactor authentication before password change.

After a password change, this property will be automatically reset to false. If not set, the default is false.

The postal code for the user's postal address. The postal code is specific to the user's country or region.

In the United States of America, this attribute contains the ZIP code.

Preferred data location for the user.

Preferred language for the user. Should follow ISO 639-1 Code.

For example en-US.

true if the Outlook global address list should contain this user, otherwise false.

If not set, this is treated as true. For users invited through the invitation manager, this property is set to false.

State or province in the user's address.

Street address of the user's place of business.

User's surname (family name or last name).

Two letter country code (ISO standard 3166). Required when assigning licenses to users, due to legal requirement to check for availability of services in countries.

For examples include: US, JP, and GB.

A string value that can be used to classify user types in your directory, such as Member and Guest.

Extension attributes 1–15 for the user.

The individual extension attributes are neither selectable nor filterable.

For an onPremisesSyncEnabled user, this set of properties is on-premises-sourced and is read-only.

For a cloud-only user (where onPremisesSyncEnabled is false), these properties may be set during creation or update.

First customizable extension attribute.

Second customizable extension attribute.

Third customizable extension attribute.

Fourth customizable extension attribute.

Fifth customizable extension attribute.

Sixth customizable extension attribute.

Seventh customizable extension attribute.

Eighth customizable extension attribute.

Ninth customizable extension attribute.

Tenth customizable extension attribute.

Eleventh customizable extension attribute.

Twelfth customizable extension attribute.

Thirteenth customizable extension attribute.

Fourteenth customizable extension attribute.

Unique identifier for the user.

Telephone numbers for the user.

The name displayed in the address book for the user.

This is usually the combination of the user's first name, middle initial, and family name.

Given (first) name of the user.

User's job title.

SMTP address for the user.

For example, jeff@contoso.onmicrosoft.com.

Primary cellular telephone number for the user.

Office location in the user's place of business.

Preferred language for the user. Should follow ISO 639-1 Code.

For example en-US.

User's surname (family name or last name).