All about Microsoft 365
A short article on how to use the Graph API methods or the corresponding Graph SDK for PowerShell cmdlets to hard-match on-premises user object against their Entra ID counterparts. …
Continue readingHow to hard-match Entra ID users via the Graph API or the Graph SDK for PowerShell
In this article, we will detail how to manage delegate permissions (OAuth2PermissionGrant) for any Entra ID integrated application on a per-user basis via the Graph API or the Graph SDK for PowerShell. With this knowledge at hand, you should never have to add tenant-wide consents again! …
Continue readingHow to manage Entra ID delegate permissions for specific users
A PowerShell script to remove user, or a set of users, from all groups they are a member of by using the Graph API methods. You can leverage the additional parameters of the script in order to also remove any directory role assignments, ownership assignments and delegate permission grants. The script supports Microsoft 365 Groups, Entra Security Groups, Exchange Distribution Groups and Mail-Enabled security groups. …
Recently, we’ve noticed that calling the Set-UnifiedGroup cmdlet with certain parameters no longer generates events within the Exchange Online Admin audit log. A more detailed investigations confirms those observations and highlights additional oddities. Most importantly, it looks like we can no longer obtain the actor’s IP address information. …
Continue readingChanges in Set-UnifiedGroup result in lack of proper audit trail
A quick and dirty exploration of the new Graph API endpoint that exposes Entra License Utilization Insights data, now available in public preview. As none of this is currently documented by Microsoft, we cannot provide the full details, but we can still get sufficient data to built our own report! …
Continue readingObtaining Entra license utilization insights data via the Graph API