Chat with your
Microsoft Tenant.

PosturePrompt is an open-source AI engine that maps, queries, and secures your Entra ID and Intune environments using natural language.

Get Started Locally Read the Docs
postureprompt-cli
Admin > Show me all guest users accessing financial SharePoint sites from unmanaged devices.
Scanning Entra ID & Intune configurations... Done (1.2s).
Found 3 high-risk guest configurations:
- j.doe@vendor.com -> Belongs to 'Finance Data' group -> Device: Unmanaged Windows PC
- s.smith@contractor.com -> Belongs to 'Q3 Earnings' -> Device: Unmanaged iOS

Recommendation: Generate Conditional Access Policy to enforce compliant devices for 'Finance Data' group? (y/n)

Security Posture, Simplified.

Stop clicking through 15 different Entra ID menus. Uncover hidden risks instantly.

Zero-Trust Mapping

Automatically map relationships between identities, nested groups, app roles, and device compliance statuses.

Bring Your Own Key

Your data never leaves your environment. PosturePrompt connects locally using a least-privilege App Registration.

Agentic Remediation

Don't just find the problem. Let the AI generate the exact JSON payloads to deploy fixes safely via Graph API.

How it Works

A privacy-first architecture. Your tenant data stays strictly within your own perimeter.

1

Connect via API

Run our open-source PowerShell script to generate a least-privilege Entra ID App Registration.

2

Local Ingestion

Tenant data is pulled directly into a local Neo4j graph database. No external cloud servers are used.

3

AI Orchestration

Connect your Azure OpenAI or local Ollama instance to translate natural language into Cypher queries.