Azure AD - How can i add Change Notification Email through PowerShell?

Question

Azure AD - How can i add Change Notification Email through PowerShell?

Personal CAD SINGAMR3 N 1

![250949-image.png ]1

Harpreet Singh Matharoo 8,366 Reputation points Microsoft Employee

2022-10-17T08:45:28.417+00:00

Hello @Personal CAD SINGAMR3 N

Thank you for reaching out. I assume you want to update Notification email on SAML SSO configuration page on Azure AD Enterprise Application blade. Allow me some time, I would test this in my lab and get back to you with an answer on this one.
Harpreet Singh Matharoo 8,366 Reputation points Microsoft Employee

2022-10-31T04:01:05.223+00:00

Hello @Personal CAD SINGAMR3 N

I just wanted to follow up and confirm if the answer provided below helped. If yes, then would request you to please "Accept the answer" if the information helped you. This will help us and others in the community as well.

1 answer

Your answer

Harpreet Singh Matharoo 8,366 Reputation points Microsoft Employee

2022-10-17T08:45:28.417+00:00

Hello @Personal CAD SINGAMR3 N

Thank you for reaching out. I assume you want to update Notification email on SAML SSO configuration page on Azure AD Enterprise Application blade. Allow me some time, I would test this in my lab and get back to you with an answer on this one.
Harpreet Singh Matharoo 8,366 Reputation points Microsoft Employee

2022-10-31T04:01:05.223+00:00

Hello @Personal CAD SINGAMR3 N

I just wanted to follow up and confirm if the answer provided below helped. If yes, then would request you to please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Answer 1

Harpreet Singh Matharoo 8,366 Microsoft Employee

Hello @Personal CAD SINGAMR3 N

You can either use Microsoft Graph PowerShell as detailed below to set "notificationEmailAddresses" for Enterprise application SAML Signing Certificate.

Detailed steps:

Sign-in:
Use the Connect-MgGraph command to sign in with the required scopes. Example: Connect-MgGraph -Scopes "Directory.AccessAsUser.All Directory.Read.All Directory.ReadWrite.All"
Call Microsoft Graph:
Use the Get-MgServicePrincipal command to get a list of enterprise application's NotificationEmailAddresses, and then create a custom script using your own logic to change email addresses based on conditions in the loop section using 'if' or 'foreach' conditions.
Here are a few examples for your reference:

List all Enterprise applications with NotificationEmailAddresses:
Get-MgServicePrincipal -All |select Id, DisplayName, NotificationEmailAddresses

To update NotificationEmailAddresses on a Single Enterprise Application:
Update-MgServicePrincipal -ServicePrincipalId 25dbe63f-2356-4dca-9911-5eb3e8e966e9 -NotificationEmailAddresses ******@contoso.onmicrosoft.com

To update new NotificationEmailAddresses on all Enterprise applications
Get-MgServicePrincipal -all |% {Update-MgServicePrincipal -ServicePrincipalId $_.id -NotificationEmailAddresses ******@contoso.onmicrosoft.com}

(Note: The cmdlet above replaces all current email addresses for all applications.)

I hope this helps.

----------

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Singampalli,R,RamaKrishna,QGE R 26 Reputation points

2022-11-18T07:22:20.53+00:00

Can some one help with same requiremnet of adding additonal notifcation email address
Harpreet Singh Matharoo 8,366 Reputation points Microsoft Employee

2022-11-21T04:43:43.773+00:00

Hello @Singampalli,R,RamaKrishna,QGE R

The command to add notification email is shared in the previous post. However, you can refer following QnA post for a script to update/add notification address to SAML apps in bulk for more details: https://learn.microsoft.com/en-us/answers/questions/813551/azure-ad-application-change-notification-email-thr.html

I hope this helps.

----------

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Santhosh Durgam 0

The above mentioned answer directs to the same commands that are in the initial answer. Can you please let me know how do I append the email addresses instead of replacing the emails.

I've tried the below; however, it adds to the existing notification email but not on separate notification email field in Azure.

User's image

$ServicePrincipalIDs = Get-Content C:\temp\spIds.txt
Foreach($ServicePrincipalID in $ServicePrincipalIDs)

    {

        $SP1 = Get-MgServicePrincipal -ServicePrincipalId "$ServicePrincipalID" 
        $SPDisplayName = $SP1.AppDisplayName
        
       
     
        $SP1NotificationDetails = $SP1.NotificationEmailAddresses += "******@xyz.com"
    

        Update-MgServicePrincipal -ServicePrincipalId "$ServicePrincipalID" -NotificationEmailAddresses "$SP1NotificationDetails"

Antoine Hauck 0

To add multiple notification email addresses you can pass a simple string array:

[System.String[]]$NotificationEMailAddress = @("john.doe@example.com", "jane.smith@example.com", "bob.jones@example.com")

Connect-MgGraph -Scopes "Directory.AccessAsUser.All Directory.Read.All Directory.ReadWrite.All"
[System.Collections.Generic.List[PSObject]]$samlApplicationsArray = @() $samlApplications = Get-MgServicePrincipal -Filter "PreferredSingleSignOnMode eq 'saml'"
foreach ($samlApp in $samlApplications) {
	Update-MgServicePrincipal -ServicePrincipalId $($samlApp.Id) -NotificationEmailAddresses $NotificationEMailAddress
} 
Disconnect-MgGraph

It took me almost an hour to figure out what was wrong :-D

LopezKevin-6891 0 Reputation points

2024-04-11T18:51:32.1233333+00:00

How would one go about adding a notification email address to the enterprise app without replacing the current one?

Edit: My apologies... I didn't see the above answer to this already.

Share via

Azure AD - How can i add Change Notification Email through PowerShell?

1 answer

Your answer