Azure MCP Server

Exposes 40+ Azure services as callable tools through the Model Context Protocol (MCP), allowing AI agents and language models to interact with Azure resources via standardized tool schemas. The server implements three exposure modes (single, namespace, all) that control tool aggregation granularity, enabling agents to discover and invoke Azure operations through a unified MCP interface compatible with GitHub Copilot and other MCP-aware clients.

Allows selective exposure of Azure services through the `azureMcp.enabledServices` configuration array, organizing tools by service namespace (e.g., 'storage', 'keyvault'). The server filters which service namespaces are exposed to the agent, reducing cognitive load and token consumption by limiting tool discovery to relevant services. Configuration changes require server restart via the 'MCP: List Servers' command.

Provides a global `azureMcp.readOnly` boolean configuration that prevents mutating operations when enabled, allowing agents to query and read Azure resources without risk of accidental or malicious modifications. When set to true, the server intercepts write operations and blocks them before they reach Azure APIs. Default is false (mutations allowed), requiring explicit opt-in for read-only behavior.

Provides three distinct tool aggregation strategies via the `azureMcp.serverMode` configuration: 'single' collapses all Azure tools into one mega-tool, 'namespace' (default) groups tools by service namespace, and 'all' exposes every individual operation as a separate tool. This controls the granularity of tool discovery and invocation, optimizing for either simplicity (single), semantic organization (namespace), or maximum flexibility (all).

Supports authentication and resource access across Azure sovereign clouds (non-public Azure regions) in addition to the default Azure public cloud. The server integrates with VS Code's Azure extension authentication ecosystem to automatically detect and use the appropriate cloud environment. Specific configuration mechanism for sovereign cloud selection is not documented but likely uses Azure CLI or VS Code Azure extension settings.

Integrates with GitHub Copilot's agent mode to expose Azure tools as callable capabilities within Copilot's conversational interface. The server implements the MCP protocol to register tools with Copilot, enabling agents to discover, reason about, and invoke Azure operations through natural language prompts. Tools appear in Copilot's chat interface and can be manually refreshed via the tool list UI.

Provides VS Code command interface ('MCP: List Servers') for managing the Azure MCP server lifecycle, including starting, stopping, and restarting the server. Configuration changes require explicit server restart via this command interface. The server auto-starts based on VS Code's `chat.mcp.autostart` configuration (available in VS Code 1.103+), eliminating manual startup in most scenarios.

Automatically manages Azure authentication by integrating with VS Code's Azure extension credential store, eliminating the need for explicit API key or connection string configuration. The server inherits authentication context from VS Code's Azure extension, supporting multiple authentication methods (likely including interactive login, service principal, and managed identity). Specific authentication mechanism and supported credential types are not documented.

Implements the Model Context Protocol (MCP) specification to expose Azure tools with standardized, machine-readable schemas that enable AI agents to discover, reason about, and invoke operations. The server translates Azure service APIs into MCP-compliant tool definitions with input/output schemas, allowing any MCP-compatible client (GitHub Copilot, Claude, etc.) to interact with Azure resources through a unified interface. Tool schemas are automatically generated from Azure service definitions.