Why do you think so? Is it, because you got the The requested resource requires user authentication: https://oriflame.vsaex.visualstudio.com/_apis/UserEntitlements?top= 100 ? This is unfortunatelly a false error, see some similar issue here: Auth documentation could be improved · Issue #670 · Azure/azure-devops-cli-extension · GitHub
The correct error would be insufficient rights…
In case you create a PAT token with full access it will work
and then following works
$token = Read-Host
$token | az devops login --org https://dev.azure.com/xxxxx
az devops user list --organization https://dev.azure.com/xxxxxx --output json
Ofc the “full” scope is not ideal so would be great to figure out the exact permission needed to list the users…
Hope this helps and you would be able to implement the integration with Azure AD asap…would be very helpfull for us.
Or do you have any APIs on your side for user creation/rights assignment etc?