This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
A customer has the follow problem. A employee has left the company and the account is removed. That`s fine no problem. the only problem is the user was a site admin. Now the user is removed and we found out that we cannot remove the user with powershell only by hand and the user was also owner of all Onedrive sites :-( (not good I know, I just fined this out myself)
How can we remove this "unknow" user from existing sites?
$OneDriveSiteURL = "https://SITE-my.sharepoint.com/personal/user_com"
$UserAccount = "unknowuser@keyman .com"
$Site = Get-SPOSite $OneDriveSiteURL
Set-SPOUser -Site $Site -LoginName $UserAccount -IsSiteCollectionAdmin $False
error message
Set-SPOUser : The user does not exist or is not unique.
Hi Emily,
I found the reason why this user had all these permissions. The customer was using the tool ShareGate. There is an rather scary option in ShareGate (IMO) to gain automatically Site Collection admin permissions.
The user did not removed his permission.
I was able to get an license and reproduce this. I removed the user with the same tool. So I would thank you for your help. I will certainly use you part of the PS script if needed.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 51%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EED%3C/text%3E%3C/svg%3E)
Congratulations on solving this issue and thanks for sharing your solution.
Please remember to accept your solution as answer.
It will do great help to those who meet the similar question in this forum.
Thanks again for your contribution.
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
You could run following PowerShell to remove orphaned OneDrive secondary site collection administrator.
$SiteURL = "https://SITE-my.sharepoint.com/personal/user_com"
$UserID="i:0#.f|membership|******@domain.com"
Connect-PnPOnline -Url $SiteURL -credential (Get-Credential)
Remove-PnPUser -Identity $UserID -Force
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Thank you for your response
This imposes another problem? witch user can do this with enough permissions in Onedrive? Other then the user itself? That's not an option.
The powershell option you provided works. I tested this with one Onedrive (test) user?
Per my test, the user who is the administrator of OneDrive site collection can run the PowerShell successfully.
As a workaround, you could add a specific user as site collection administrator to all OneDrive site collections through following PowerShell. Then use the specific user to run the PowerShell provided by first answer.
$AdminSiteURL="https://tenant-admin.sharepoint.com"
$SiteCollAdmin="******@domain.com"
$Cred = Get-Credential
Connect-SPOService -Url $AdminSiteURL –credential $Cred
$OneDriveSites = Get-SPOSite -Template "SPSPERS" -Limit ALL -IncludePersonalSite $True
Write-Host -f Yellow "Total Number of OneDrive Sites Found: "$OneDriveSites.count
Foreach($Site in $OneDriveSites)
{
Write-Host -f Yellow "Adding Site Collection Admin to: "$Site.URL
Set-SPOUser -Site $Site.Url -LoginName $SiteCollAdmin -IsSiteCollectionAdmin $True
}
Write-Host "Site Collection Admin Added to All OneDrive Sites Successfully!" -f Green
I’m checking how the things are going on about this issue. Whether the answer helps you?
If there is any problem with this issue, feel free to let me know.
Hi,
Ill going to test this. Ill will get back in a few days. Hopefully this works.