microsoft · sellakumaran · Mar 6, 2026 · Mar 7, 2026 · Mar 7, 2026 · Copilot
@@ -6,8 +6,10 @@
 using Microsoft.Extensions.Logging;
 using Microsoft.Agents.A365.DevTools.Cli.Constants;
 using Microsoft.Agents.A365.DevTools.Cli.Services.Helpers;
+using Microsoft.Agents.A365.DevTools.Cli.Exceptions;
 using Microsoft.Agents.A365.DevTools.Cli.Services;
 using Microsoft.Agents.A365.DevTools.Cli.Services.Internal;
+using Microsoft.Agents.A365.DevTools.Cli.Services.Requirements.RequirementChecks;
 using Microsoft.Agents.A365.DevTools.Cli.Models;
 
 namespace Microsoft.Agents.A365.DevTools.Cli.Commands;
@@ -24,7 +26,9 @@ public static Command CreateCommand(
         CommandExecutor executor,
         AgentBlueprintService agentBlueprintService,
         IConfirmationProvider confirmationProvider,
-        FederatedCredentialService federatedCredentialService)
+        FederatedCredentialService federatedCredentialService,
+        IPrerequisiteRunner prerequisiteRunner,
+        AzureAuthValidator authValidator)
     {
         var cleanupCommand = new Command("cleanup", "Clean up ALL resources (blueprint, instance, Azure) - use subcommands for granular cleanup");
 
@@ -55,7 +59,7 @@ public static Command CreateCommand(
 
         // Add subcommands for granular control
         cleanupCommand.AddCommand(CreateBlueprintCleanupCommand(logger, configService, botConfigurator, executor, agentBlueprintService, confirmationProvider, federatedCredentialService));
-        cleanupCommand.AddCommand(CreateAzureCleanupCommand(logger, configService, executor));
+        cleanupCommand.AddCommand(CreateAzureCleanupCommand(logger, configService, executor, prerequisiteRunner, authValidator));
         cleanupCommand.AddCommand(CreateInstanceCleanupCommand(logger, configService, executor));
 
         return cleanupCommand;
@@ -304,7 +308,9 @@ private static Command CreateBlueprintCleanupCommand(
     private static Command CreateAzureCleanupCommand(
         ILogger<CleanupCommand> logger,
         IConfigService configService,
-        CommandExecutor executor)
+        CommandExecutor executor,
+        IPrerequisiteRunner prerequisiteRunner,
+        AzureAuthValidator authValidator)
     {
         var command = new Command("azure", "Remove Azure resources (App Service, App Service Plan)");
 
@@ -331,6 +337,10 @@ private static Command CreateAzureCleanupCommand(
                 var config = await LoadConfigAsync(configFile, logger, configService);
                 if (config == null) return;
 
+                var authChecks = new List<Services.Requirements.IRequirementCheck> { new AzureAuthRequirementCheck(authValidator) };
+                if (!await prerequisiteRunner.RunAsync(authChecks, config, logger, CancellationToken.None))
+                    return;
-                if (!await prerequisiteRunner.RunAsync(authChecks, config, logger, CancellationToken.None))
-                    return;
+                if (!await prerequisiteRunner.RunAsync(authChecks, config, logger, CancellationToken.None))
+                {
+                    ExceptionHandler.ExitWithCleanup(1);
+                    return;
+                }
-                if (!await prerequisiteRunner.RunAsync(authChecks, config, logger, CancellationToken.None))
-                    return;
+                if (!await prerequisiteRunner.RunAsync(authChecks, config, logger, CancellationToken.None))
+                {
+                    System.Environment.ExitCode = 1;
+                    return;
+                }
-                if (!await prerequisiteRunner.RunAsync(authChecks, config, logger, CancellationToken.None))
-                    return;
+                if (!await prerequisiteRunner.RunAsync(authChecks, config, logger, CancellationToken.None))
+                {
+                    ExceptionHandler.ExitWithCleanup(1);
+                    return;
+                }
-                if (!await prerequisiteRunner.RunAsync(authChecks, config, logger, CancellationToken.None))
-                    return;
+                if (!await prerequisiteRunner.RunAsync(authChecks, config, logger, CancellationToken.None))
+                {
+                    System.Environment.ExitCode = 1;
+                    return;
+                }
+
                 logger.LogInformation("");
                 logger.LogInformation("Azure Cleanup Preview:");
                 logger.LogInformation("=========================");
@@ -962,9 +972,9 @@ private static void PrintOrphanSummary(
             logger.LogInformation("Loaded configuration successfully from {ConfigFile}", configPath);
             return config;
         }
-        catch (FileNotFoundException ex)
+        catch (ConfigFileNotFoundException ex)
         {
-            logger.LogError("Configuration file not found: {Message}", ex.Message);
+            logger.LogError("Configuration file not found: {Message}", ex.IssueDescription);
             return null;
         }
         catch (Exception ex)

@@ -4,6 +4,7 @@
 using Microsoft.Agents.A365.DevTools.Cli.Constants;
 using Microsoft.Agents.A365.DevTools.Cli.Helpers;
 using Microsoft.Agents.A365.DevTools.Cli.Models;
+using Microsoft.Agents.A365.DevTools.Cli.Exceptions;
 using Microsoft.Agents.A365.DevTools.Cli.Services;
 using Microsoft.Agents.A365.DevTools.Cli.Services.Helpers;
 using Microsoft.Extensions.Logging;
@@ -18,7 +19,7 @@ namespace Microsoft.Agents.A365.DevTools.Cli.Commands;
 public class CreateInstanceCommand
 {
     public static Command CreateCommand(ILogger<CreateInstanceCommand> logger, IConfigService configService, CommandExecutor executor,
-        IBotConfigurator botConfigurator, GraphApiService graphApiService, IAzureValidator azureValidator)
+        IBotConfigurator botConfigurator, GraphApiService graphApiService)
     {
         // Command description - deprecated
         // Old: Create and configure agent user identities with appropriate
@@ -75,12 +76,6 @@ public static Command CreateCommand(ILogger<CreateInstanceCommand> logger, IConf
                 var instanceConfig = await LoadConfigAsync(logger, configService, config.FullName);
                 if (instanceConfig == null) Environment.Exit(1);
 
-                // Validate Azure CLI authentication, subscription, and environment
-                if (!await azureValidator.ValidateAllAsync(instanceConfig.SubscriptionId))
-                {
-                    logger.LogError("Instance creation cannot proceed without proper Azure CLI authentication and subscription");
-                    Environment.Exit(1);
-                }
                 logger.LogInformation("");
 
                 // Step 1-3: Identity, Licenses, and MCP Registration
@@ -505,16 +500,9 @@ private static Command CreateLicensesSubcommand(
                 : await configService.LoadAsync();
             return config;
         }
-        catch (FileNotFoundException ex)
+        catch (ConfigFileNotFoundException ex)
         {
-            logger.LogError("Configuration file not found: {Message}", ex.Message);
-            logger.LogInformation("");
-            logger.LogInformation("To get started:");
-            logger.LogInformation("  1. Copy a365.config.example.json to a365.config.json");
-            logger.LogInformation("  2. Edit a365.config.json with your Azure tenant and subscription details");
-            logger.LogInformation("  3. Run 'a365 setup' to initialize your environment first");
-            logger.LogInformation("  4. Then run 'a365 createinstance' to create agent instances");
-            logger.LogInformation("");
+            logger.LogError("Configuration file not found: {Message}", ex.IssueDescription);
             return null;
         }
         catch (Exception ex)

@@ -7,6 +7,7 @@
 using Microsoft.Agents.A365.DevTools.Cli.Models;
 using Microsoft.Agents.A365.DevTools.Cli.Services;
 using Microsoft.Agents.A365.DevTools.Cli.Services.Helpers;
+using Microsoft.Agents.A365.DevTools.Cli.Services.Requirements.RequirementChecks;
 using Microsoft.Extensions.Logging;
 using System.CommandLine;
 
@@ -19,7 +20,8 @@ public static Command CreateCommand(
         IConfigService configService,
         CommandExecutor executor,
         DeploymentService deploymentService,
-        IAzureValidator azureValidator,
+        IPrerequisiteRunner prerequisiteRunner,
+        AzureAuthValidator authValidator,
         GraphApiService graphApiService,
         AgentBlueprintService blueprintService)
     {
@@ -53,7 +55,7 @@ public static Command CreateCommand(
         command.AddOption(restartOption);
 
         // Add subcommands
-        command.AddCommand(CreateAppSubcommand(logger, configService, executor, deploymentService, azureValidator));
+        command.AddCommand(CreateAppSubcommand(logger, configService, executor, deploymentService, prerequisiteRunner, authValidator));
         command.AddCommand(CreateMcpSubcommand(logger, configService, executor, graphApiService, blueprintService));
 
         // Single handler for the deploy command - runs only the application deployment flow
@@ -82,7 +84,7 @@ public static Command CreateCommand(
                 }
 
                 var validatedConfig = await ValidateDeploymentPrerequisitesAsync(
-                    config.FullName, configService, azureValidator, executor, logger);
+                    config.FullName, configService, prerequisiteRunner, authValidator, executor, logger);
                 if (validatedConfig == null) return;
-                if (validatedConfig == null) return;
+                if (validatedConfig == null)
+                {
+                    System.Environment.ExitCode = 1;
+                    return;
+                }
-                if (validatedConfig == null) return;
+                if (validatedConfig == null)
+                {
+                    System.Environment.ExitCode = 1;
+                    return;
+                }
 
                 await DeployApplicationAsync(validatedConfig, deploymentService, verbose, inspect, restart, logger);
@@ -101,7 +103,8 @@ private static Command CreateAppSubcommand(
         IConfigService configService,
         CommandExecutor executor,
         DeploymentService deploymentService,
-        IAzureValidator azureValidator)
+        IPrerequisiteRunner prerequisiteRunner,
+        AzureAuthValidator authValidator)
     {
         var command = new Command("app", "Deploy Microsoft Agent 365 application binaries to the configured Azure App Service");
 
@@ -157,7 +160,7 @@ private static Command CreateAppSubcommand(
                 }
 
                 var validatedConfig = await ValidateDeploymentPrerequisitesAsync(
-                    config.FullName, configService, azureValidator, executor, logger);
+                    config.FullName, configService, prerequisiteRunner, authValidator, executor, logger);
                 if (validatedConfig == null) return;
 
                 await DeployApplicationAsync(validatedConfig, deploymentService, verbose, inspect, restart, logger);
@@ -218,6 +221,18 @@ private static Command CreateMcpSubcommand(
                 var updateConfig = await configService.LoadAsync(config.FullName);
                 if (updateConfig == null) Environment.Exit(1);
 
+                // Early validation: fail before any network calls
+                if (string.IsNullOrWhiteSpace(updateConfig.AgentBlueprintId))
+                {
+                    logger.LogError("agentBlueprintId is not configured. Run 'a365 setup all' to create the agent blueprint.");
+                    return;
+                }
+                if (string.IsNullOrWhiteSpace(updateConfig.AgenticAppId))
+                {
+                    logger.LogError("agenticAppId is not configured. Run 'a365 setup all' to complete setup.");
+                    return;
-                    return;
-                }
-                if (string.IsNullOrWhiteSpace(updateConfig.AgenticAppId))
-                {
-                    logger.LogError("agenticAppId is not configured. Run 'a365 setup all' to complete setup.");
-                    return;
+                    Environment.Exit(1);
+                }
+                if (string.IsNullOrWhiteSpace(updateConfig.AgenticAppId))
+                {
+                    logger.LogError("agenticAppId is not configured. Run 'a365 setup all' to complete setup.");
+                    Environment.Exit(1);
-                    return;
-                }
-                if (string.IsNullOrWhiteSpace(updateConfig.AgenticAppId))
-                {
-                    logger.LogError("agenticAppId is not configured. Run 'a365 setup all' to complete setup.");
-                    return;
+                    Environment.Exit(1);
+                }
+                if (string.IsNullOrWhiteSpace(updateConfig.AgenticAppId))
+                {
+                    logger.LogError("agenticAppId is not configured. Run 'a365 setup all' to complete setup.");
+                    Environment.Exit(1);
-                    return;
-                }
-                if (string.IsNullOrWhiteSpace(updateConfig.AgenticAppId))
-                {
-                    logger.LogError("agenticAppId is not configured. Run 'a365 setup all' to complete setup.");
-                    return;
+                    Environment.Exit(1);
+                }
+                if (string.IsNullOrWhiteSpace(updateConfig.AgenticAppId))
+                {
+                    logger.LogError("agenticAppId is not configured. Run 'a365 setup all' to complete setup.");
+                    Environment.Exit(1);
-                    return;
-                }
-                if (string.IsNullOrWhiteSpace(updateConfig.AgenticAppId))
-                {
-                    logger.LogError("agenticAppId is not configured. Run 'a365 setup all' to complete setup.");
-                    return;
+                    Environment.Exit(1);
+                }
+                if (string.IsNullOrWhiteSpace(updateConfig.AgenticAppId))
+                {
+                    logger.LogError("agenticAppId is not configured. Run 'a365 setup all' to complete setup.");
+                    Environment.Exit(1);
+                }
+
                 // Configure GraphApiService with custom client app ID if available
                 if (!string.IsNullOrWhiteSpace(updateConfig.ClientAppId))
                 {
@@ -246,7 +261,8 @@ private static Command CreateMcpSubcommand(
     private static async Task<Agent365Config?> ValidateDeploymentPrerequisitesAsync(
         string configPath,
         IConfigService configService,
-        IAzureValidator azureValidator,
+        IPrerequisiteRunner prerequisiteRunner,
+        AzureAuthValidator authValidator,
         CommandExecutor executor,
         ILogger logger)
     {
@@ -255,7 +271,11 @@ private static Command CreateMcpSubcommand(
         if (configData == null) return null;
 
         // Validate Azure CLI authentication, subscription, and environment
-        if (!await azureValidator.ValidateAllAsync(configData.SubscriptionId))
+        var checks = new List<Services.Requirements.IRequirementCheck>
+        {
+            new AzureAuthRequirementCheck(authValidator)
+        };
+        if (!await prerequisiteRunner.RunAsync(checks, configData, logger))
         {
             logger.LogError("Deployment cannot proceed without proper Azure CLI authentication and the correct subscription context");
             return null;

@@ -20,7 +20,9 @@ public static Command CreateCommand(
             CommandExecutor executor,
             DeploymentService deploymentService,
             IBotConfigurator botConfigurator,
-            IAzureValidator azureValidator,
+            IPrerequisiteRunner prerequisiteRunner,
+            AzureAuthValidator authValidator,
+            IAzureEnvironmentValidator environmentValidator,
             AzureWebAppCreator webAppCreator,
             PlatformDetector platformDetector,
             GraphApiService graphApiService,
@@ -29,7 +31,7 @@ public static Command CreateCommand(
             FederatedCredentialService federatedCredentialService,
             IClientAppValidator clientAppValidator)
         {
-            var command = new Command("setup", 
+            var command = new Command("setup",
                 "Set up your Agent 365 environment with granular control over each step\n\n" +
                 "Recommended execution order:\n" +
                 "  0. a365 setup requirements           # Check prerequisites (optional)\n" +
@@ -43,19 +45,19 @@ public static Command CreateCommand(
 
             // Add subcommands
             command.AddCommand(RequirementsSubcommand.CreateCommand(
-                logger, configService, clientAppValidator));
+                logger, configService, authValidator, clientAppValidator));
 
             command.AddCommand(InfrastructureSubcommand.CreateCommand(
-                logger, configService, azureValidator, webAppCreator, platformDetector, executor));
+                logger, configService, prerequisiteRunner, authValidator, webAppCreator, platformDetector, executor));
 
             command.AddCommand(BlueprintSubcommand.CreateCommand(
-                logger, configService, executor, azureValidator, webAppCreator, platformDetector, botConfigurator, graphApiService, blueprintService, clientAppValidator, blueprintLookupService, federatedCredentialService));
+                logger, configService, executor, prerequisiteRunner, authValidator, webAppCreator, platformDetector, botConfigurator, graphApiService, blueprintService, clientAppValidator, blueprintLookupService, federatedCredentialService));
 
             command.AddCommand(PermissionsSubcommand.CreateCommand(
                 logger, configService, executor, graphApiService, blueprintService));
 
             command.AddCommand(AllSubcommand.CreateCommand(
-                logger, configService, executor, botConfigurator, azureValidator, webAppCreator, platformDetector, graphApiService, blueprintService, clientAppValidator, blueprintLookupService, federatedCredentialService));
+                logger, configService, executor, botConfigurator, prerequisiteRunner, authValidator, environmentValidator, webAppCreator, platformDetector, graphApiService, blueprintService, clientAppValidator, blueprintLookupService, federatedCredentialService));
 
             return command;
         }