How to report or update extension attributes in Azure AD

Rick Angel 41 Reputation points
2023-03-13T21:07:12.9766667+00:00

I need to run a report to show the value in extensionAttribute1 for all guest users in Azure AD. A lot of the values are empty. I have not been able to query for an empty attribute using the Azure AD Users GUI. I was considering populating all currently empty values with "TBD". I don't know a way to mass update extensionAttribute1 but only for empty values. Note this is a GCC High tenant. Any suggestions for mass reporting or updating appreciated.

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,486 questions
PowerShell
PowerShell
A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
360 questions
Accepted answer
  1. Vasil Michev 66,171 Reputation points MVP
    2023-03-14T07:10:39.48+00:00

    If the idea is to filter the users with "empty" attribute values, it's much easier to use the Exchange cmdlets. For example:

    Get-MailUser -Filter {CustomAttribute1 -eq $null -and RecipientTypeDetails -eq "GuestMailUser"}

    You can then pass the output to the Set-MailUser cmdlet to populate the attribute values as needed.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest