diff --git a/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-add.mdx b/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-add.mdx
index 92934c74d01..cb694ddd030 100644
--- a/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-add.mdx
+++ b/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-add.mdx
@@ -59,6 +59,20 @@ Creates an enterprise application for a registered Entra app with the specified
m365 entra enterpriseapp add --objectId b2307a39-e878-458b-bc90-03bc578531d6
```
+## Permissions
+
+
+ | Resource | Permissions |
+ |-----------------|---------------------------|
+ | Microsoft Graph | Application.ReadWrite.All |
+
+
+ | Resource | Permissions |
+ |-----------------|---------------------------|
+ | Microsoft Graph | Application.ReadWrite.All |
+
+
+
## Response
diff --git a/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-get.mdx b/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-get.mdx
index ec9269db708..0989d5d181d 100644
--- a/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-get.mdx
+++ b/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-get.mdx
@@ -57,6 +57,21 @@ Return details about the enterprise application with the specified ObjectId.
m365 entra enterpriseapp get --objectId b2307a39-e878-458b-bc90-03bc578531dd
```
+## Permissions
+
+
+
+ | Resource | Permissions |
+ |-----------------|----------------------|
+ | Microsoft Graph | Application.Read.All |
+
+
+ | Resource | Permissions |
+ |-----------------|----------------------|
+ | Microsoft Graph | Application.Read.All |
+
+
+
## Response
diff --git a/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-list.mdx b/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-list.mdx
index 9e23c259b46..2280790094c 100644
--- a/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-list.mdx
+++ b/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-list.mdx
@@ -44,6 +44,20 @@ Returns a list of all enterprise applications that comply with the specified dis
m365 entra enterpriseapp list --displayName "My custom enterprise application" --tag "WindowsAzureActiveDirectoryIntegratedApp"
```
+## Permissions
+
+
+ | Resource | Permissions |
+ |-----------------|----------------------|
+ | Microsoft Graph | Application.Read.All |
+
+
+ | Resource | Permissions |
+ |-----------------|----------------------|
+ | Microsoft Graph | Application.Read.All |
+
+
+
## Response
diff --git a/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-remove.mdx b/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-remove.mdx
index 413b55b11a6..75890087062 100644
--- a/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-remove.mdx
+++ b/docs/docs/cmd/entra/enterpriseapp/enterpriseapp-remove.mdx
@@ -56,6 +56,20 @@ Delete an enterprise application by object ID.
m365 entra enterpriseapp remove --objectId b2307a39-e878-458b-bc90-03bc578531dd
```
+## Permissions
+
+
+ | Resource | Permissions |
+ |-----------------|---------------------------|
+ | Microsoft Graph | Application.ReadWrite.All |
+
+
+ | Resource | Permissions |
+ |-----------------|---------------------------|
+ | Microsoft Graph | Application.ReadWrite.All |
+
+
+
## Response
The command won't return a response on success.
diff --git a/docs/docs/cmd/entra/user/user-add.mdx b/docs/docs/cmd/entra/user/user-add.mdx
index 6ac299830e4..a3c61962e9b 100644
--- a/docs/docs/cmd/entra/user/user-add.mdx
+++ b/docs/docs/cmd/entra/user/user-add.mdx
@@ -87,6 +87,15 @@ This command allows using unknown options. For a comprehensive list of user prop
If the specified option is not found, you will receive a `Resource 'xyz' does not exist or one of its queried reference-property objects are not present.` error.
+### Permissions
+
+The following permissions are required to run this command:
+
+| Permission Type | Permission | Description |
+|--------------------------------- |-------------------- |-----------------------------------|
+| Delegated (work or school account)| User.ReadWrite.All | Allows creating and updating users |
+| Application | User.ReadWrite.All | Allows creating and updating users |
+
## Examples
Create a user and let him/her update the password at first login.
diff --git a/docs/docs/cmd/entra/user/user-get.mdx b/docs/docs/cmd/entra/user/user-get.mdx
index 8fed3877102..2bc461a0a7a 100644
--- a/docs/docs/cmd/entra/user/user-get.mdx
+++ b/docs/docs/cmd/entra/user/user-get.mdx
@@ -39,6 +39,15 @@ You can retrieve information about a user, either by specifying that user's id,
If the user with the specified id, user name, or email doesn't exist, you will get a `Resource 'xyz' does not exist or one of its queried reference-property objects are not present.` error.
+### Permissions
+
+The following permissions are required to run this command:
+
+| Permission Type | Permission(s) | Description |
+|---------------------------------- |----------------|-------------------------------- |
+| Delegated (work or school account)| User.Read.All | Allows reading user information |
+| Application | User.Read.All | Allows reading user information |
+
## Examples
Get information about the user by id.
diff --git a/docs/docs/cmd/entra/user/user-hibp.mdx b/docs/docs/cmd/entra/user/user-hibp.mdx
index 569f897cb3a..7095e9da2d6 100644
--- a/docs/docs/cmd/entra/user/user-hibp.mdx
+++ b/docs/docs/cmd/entra/user/user-hibp.mdx
@@ -33,6 +33,12 @@ If the user with the specified user name doesn't involved in any breach, you wil
If `API Key` is invalid, you will get a `Required option apiKey not specified` error.
+### Permissions
+
+The following permissions are required to run this command.
+
+This command uses the Have I Been Pwned API. It does not call Microsoft Graph and therefore does not require Microsoft Graph permissions. It requires an API key for the Have I Been Pwned service (see `--apiKey`).
+
## Examples
Check if user with by a user name is in a data breach.
diff --git a/docs/docs/cmd/entra/user/user-list.mdx b/docs/docs/cmd/entra/user/user-list.mdx
index 745f86f21bc..53c8eb22a4f 100644
--- a/docs/docs/cmd/entra/user/user-list.mdx
+++ b/docs/docs/cmd/entra/user/user-list.mdx
@@ -34,6 +34,15 @@ To filter the list of users, include additional options that match the user prop
Certain properties cannot be returned within a user collection. The following properties are only supported when retrieving an single user using: `aboutMe`, `birthday`, `hireDate`, `interests`, `mySite`, `pastProjects`, `preferredName`, `responsibilities`, `schools`, `skills`, `mailboxSettings`.
+### Permissions
+
+The following permissions are required to run this command:
+
+| Permission Type | Permission(s) | Description |
+|---------------------------------- |---------------------------------- |---------------------------------------------|
+| Delegated (work or school account)| Directory.Read.All, User.Read.All | Allows reading directory data and user info |
+| Application | User.Read.All | Allows reading user info |
+
## Examples
List all users in the tenant.
diff --git a/docs/docs/cmd/entra/user/user-remove.mdx b/docs/docs/cmd/entra/user/user-remove.mdx
index e8aaeebdbc5..442e5f6a90b 100644
--- a/docs/docs/cmd/entra/user/user-remove.mdx
+++ b/docs/docs/cmd/entra/user/user-remove.mdx
@@ -45,6 +45,15 @@ After running this command, it may take a minute before the user is effectively
:::
+### Permissions
+
+The following permissions are required to run this command:
+
+| Permission Type | Permission(s) | Description |
+|---------------------------------- |------------------------|----------------------------------- |
+| Delegated (work or school account)| User.ReadWrite.All | Allows creating and updating users |
+| Application | User.ReadWrite.All | Allows creating and updating users |
+
## Examples
Removes a specific user by id.
diff --git a/docs/docs/cmd/entra/user/user-set.mdx b/docs/docs/cmd/entra/user/user-set.mdx
index 0064d82a674..96eae32fa2c 100644
--- a/docs/docs/cmd/entra/user/user-set.mdx
+++ b/docs/docs/cmd/entra/user/user-set.mdx
@@ -82,6 +82,15 @@ This command allows using unknown options. For a comprehensive list of user prop
If the user with the specified ID or username doesn't exist, or if the specified option is not found, you will receive a `Resource 'xyz' does not exist or one of its queried reference-property objects are not present.` error.
+### Permissions
+
+The following permissions are required to run this command:
+
+| Permission Type | Permission(s) | Description |
+|---------------------------------- |--------------------------------------- |------------------------------------------------------- |
+| Delegated (work or school account)| User.ReadWrite.All, Directory.Read.All | Allows creating/updating users and reading directory data |
+| Application | User.ReadWrite.All | Allows creating and updating users |
+
## Examples
Update specific property _department_ of user with id _1caf7dcd-7e83-4c3a-94f7-932a1299c844_