-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathAzureADGroup.ps1
103 lines (39 loc) · 1.4 KB
/
AzureADGroup.ps1
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
#Log into Azure
Connect-AzureAD
#Get all the groups in Azure AD Tenant
Get-AzureADGroup
#Get the Information Technology Group
$group = Get-AzureADGroup -SearchString "Information Technology"
#Get all members and the owner
Get-AzureADGroupMember -ObjectId $group.ObjectId
Get-AzureADGroupOwner -ObjectId $group.ObjectId
#Create a new group
$group = @{
DisplayName = "Champ Group"
MailEnabled = $false
MailNickName = "ChampGroup"
SecurityEnabled = $true
}
$newGroup = New-AzureADGroup @group
#Update the group description
Set-AzureADGroup -ObjectId $newGroup.ObjectId -Description "Group for Champ to use."
#Set Ford as the owner
$haydar = Get-AzureADUser -Filter "DisplayName eq 'Haydar Pasa'"
Add-AzureADGroupOwner -ObjectId $newGroup.ObjectId -RefObjectId $haydar.ObjectId
#Add users to the group
$users = Get-AzureADUser -Filter "City eq 'Istanbul'"
foreach($user in $users){
Add-AzureADGroupMember -ObjectId $newGroup.ObjectId -RefObjectId $user.ObjectId
}
#AzureADPreview Only
$dynamicGroup = @{
DisplayName = "Marketing Group"
MailEnabled = $false
MailNickName = "MarketingGroup"
SecurityEnabled = $true
Description = "Dynamic group for Marketing"
GroupTypes = "DynamicMembership"
MembershipRule = "(user.department -contains ""Marketing"")"
MembershipRuleProcessingState = "On"
}
New-AzureADMSGroup @dynamicGroup