-
Notifications
You must be signed in to change notification settings - Fork 61
/
11_GroupOperations_tw.ps1
62 lines (44 loc) · 1.5 KB
/
11_GroupOperations_tw.ps1
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
Clear-Host
Set-Location c:\
#Log into Azure
Connect-AzureAD
#Get all the groups in Azure AD Tenant
Get-AzureADGroup
#Get the Information Technology Group
$group = Get-AzureADGroup -SearchString "Information Technology"
#Get all members and the owner
Get-AzureADGroupMember -ObjectId $group.ObjectId
Get-AzureADGroupOwner -ObjectId $group.ObjectId
#Create a new group
$group = @{
DisplayName = "Fred Group"
MailEnabled = $false
MailNickName = "FredGroup"
SecurityEnabled = $true
}
$newGroup = New-AzureADGroup @group
#Update the group description
Set-AzureADGroup -ObjectId $newGroup.ObjectId -Description "Group for Fred to use."
#Set Ford as the owner
$fred = Get-AzureADUser -Filter "DisplayName eq 'Fred Prefect'"
Add-AzureADGroupOwner -ObjectId $newGroup.ObjectId -RefObjectId $fred.ObjectId
#Add users to the group
$users = Get-AzureADUser -Filter "State eq 'SO'"
foreach($user in $users){
Add-AzureADGroupMember -ObjectId $newGroup.ObjectId -RefObjectId $user.ObjectId
}
$group = Get-AzureADGroup -SearchString "Fred Group"
#Get all members and the owner
Get-AzureADGroupMember -ObjectId $group.ObjectId
#AzureADPreview Only
$dynamicGroup = @{
DisplayName = "Marketing Group"
MailEnabled = $false
MailNickName = "MarketingGroup"
SecurityEnabled = $true
Description = "Dynamic group for Marketing"
GroupTypes = "DynamicMembership"
MembershipRule = "(user.department -contains ""Marketing"")"
MembershipRuleProcessingState = "On"
}
New-AzureADMSGroup @dynamicGroup