Adds minimal permission for entra user commands. Closes #6955

Author: SmitaNachan

docs/docs/cmd/entra/user/user-groupmembership-list.mdx

@@ -30,6 +30,25 @@ m365 entra user groupmembership list [options]
 
 <Global />
 
+## Permissions
+
+<Tabs>
+  <TabItem value="Delegated">
+
+  | Resource        | Permissions                              |
+  |-----------------|------------------------------------------|
+  | Microsoft Graph | User.ReadBasic.All, GroupMember.Read.All |
+
+  </TabItem>
+  <TabItem value="Application">
+
+  | Resource        | Permissions                              |
+  |-----------------|------------------------------------------|
+  | Microsoft Graph | User.ReadBasic.All, GroupMember.Read.All |
+
+  </TabItem>
+</Tabs>
+
 ## Examples
 
 Retrieves groups that the user is a member of

docs/docs/cmd/entra/user/user-guest-add.mdx

@@ -39,6 +39,25 @@ m365 entra user guest add [options]
 
 <Global />
 
+## Permissions
+
+<Tabs>
+  <TabItem value="Delegated">
+
+  | Resource        | Permissions     |
+  |-----------------|-----------------|
+  | Microsoft Graph | User.Invite.All |
+
+  </TabItem>
+  <TabItem value="Application">
+
+  | Resource        | Permissions     |
+  |-----------------|-----------------|
+  | Microsoft Graph | User.Invite.All |
+
+  </TabItem>
+</Tabs>
+
 ## Examples
 
 Invite a user via email and set the display name.

docs/docs/cmd/entra/user/user-password-validate.mdx

@@ -29,6 +29,18 @@ This command is based on an API that is currently in preview and is subject to c
 
 :::
 
+## Permissions
+
+<Tabs>
+  <TabItem value="Delegated">
+
+  | Resource        | Permissions    |
+  |-----------------|----------------|
+  | Microsoft Graph | User.ReadWrite |
+
+  </TabItem>
+</Tabs>
+
 ## Examples
 
 Validate password _cli365P@ssW0rd_ against the organization's password validation policy.

docs/docs/cmd/entra/user/user-registrationdetails-list.mdx

@@ -77,6 +77,25 @@ When multiple values are specified for `--registeredMethods` option, the command
 
 :::
 
+## Permissions
+
+<Tabs>
+  <TabItem value="Delegated">
+
+  | Resource        | Permissions       |
+  |-----------------|-------------------|
+  | Microsoft Graph | AuditLog.Read.All |
+
+  </TabItem>
+  <TabItem value="Application">
+
+  | Resource        | Permissions       |
+  |-----------------|-------------------|
+  | Microsoft Graph | AuditLog.Read.All |
+
+  </TabItem>
+</Tabs>
+
 ## Examples
 
 Retrieve registration details for all users.

docs/docs/cmd/entra/user/user-session-revoke.mdx

@@ -1,4 +1,6 @@
 import Global from '../../_global.mdx';
+import Tabs from '@theme/Tabs';
+import TabItem from '@theme/TabItem';
 
 # entra user session revoke
 
@@ -40,6 +42,25 @@ This API doesn't revoke sign-in sessions for external users, because external us
 
 :::
 
+## Permissions
+
+<Tabs>
+  <TabItem value="Delegated">
+
+  | Resource        | Permissions             |
+  |-----------------|-------------------------|
+  | Microsoft Graph | User.RevokeSessions.All |
+
+  </TabItem>
+  <TabItem value="Application">
+
+  | Resource        | Permissions             |
+  |-----------------|-------------------------|
+  | Microsoft Graph | User.RevokeSessions.All |
+
+  </TabItem>
+</Tabs>
+
 ## Examples
 
 Revoke sign-in sessions of a user specified by id

docs/docs/cmd/entra/user/user-signin-list.mdx

@@ -30,6 +30,25 @@ m365 entra user signin list [options]
 
 <Global />
 
+## Permissions
+
+<Tabs>
+  <TabItem value="Delegated">
+
+  | Resource        | Permissions       |
+  |-----------------|-------------------|
+  | Microsoft Graph | AuditLog.Read.All |
+
+  </TabItem>
+  <TabItem value="Application">
+
+  | Resource        | Permissions       |
+  |-----------------|-------------------|
+  | Microsoft Graph | AuditLog.Read.All |
+
+  </TabItem>
+</Tabs>
+
 ## Examples
 
 Get all user's sign-ins in your tenant.