This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
For the MFA enabled account I need to run the PowerShell scripts without any user intersection for the below connections
1.Connect-MsolService
2.Connect-SPOService
3.Connect-MicrosoftTeams
Please help to get the steps to connect.
hope this works for you
To connect to these services with an MFA-enabled account without user interaction, you can use the Connect-ExchangeOnline cmdlet with the -AppId and -CertificateThumbprint parameters. You'll need to create an Azure AD app registration, generate a self-signed certificate, and grant the required permissions.
Create an Azure AD app registration
Generate a self-signed certificate
New-SelfSignedCertificate -CertStoreLocation Cert:\CurrentUser\My -Subject "CN=YourAppRegistrationName" -KeySpec KeyExchange -NotAfter (Get-Date).AddYears(1)
Note down the certificate thumbprint
Export the certificate public key
open certlm.msc > Navigate to "Personal" > "Certificates" > export the certificate as a .cer file
Upload the certificate to the Azure AD app registration: a. Go back to the Azure portal and navigate to the app registration you created b. Go to "Certificates & secrets" > "Certificates" > "Upload certificate" c. Upload the exported .cer file
Grant the required permissions for the services: a. Go to "API permissions" > "Add a permission" b. Add the required permissions for each service:
Connect to the services using the Connect-ExchangeOnline cmdlet
$AppId = "<Your-App-Client-ID>"
$TenantId = "<Your-Tenant-ID>"
$CertificateThumbprint = "<Your-Certificate-Thumbprint>"
$Credential = New-Object -TypeName System.Management.Automation.PSCredential -ArgumentList $AppId, (Get-ChildItem -Path Cert:\CurrentUser\My\$CertificateThumbprint)
Connect-MsolService -Credential $Credential -TenantId $TenantId
Connect-SPOService -Url "https://yourtenantname-admin.sharepoint.com" -Credential $Credential
Connect-MicrosoftTeams -TenantId $TenantId -ApplicationId $AppId -CertificateThumbprint $CertificateThumbprint
Replace <Your-App-Client-ID>, <Your-Tenant-ID>, and <Your-Certificate-Thumbprint> with your specific values. After executing these commands, you will be connected to the specified services without user interaction.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 41%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
Thanks for you support I can able to connect to Microsoft teams but other 2 connections still having issue and not able to connect . Please help to advice what can we do to fix this
1.Connect-MsolService
2.Connect-SPOService
Thanks for you support!!!
I can able to connect to Microsoft teams but other 2 connections still having issue and not able to connect . Please help to advice what can we do to fix this
1.Connect-MsolService
2.Connect-SPOService
@Sedat SALMAN Thanks for you support!!!
I can able to connect to Microsoft teams but other 2 connections still having issue and not able to connect . Please help to advice what can we do to fix this
1.Connect-MsolService
2.Connect-SPOService
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 38%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
When I run the New-Object command for $Credentials I get an error "New-Object: Cannot find an overload for "PSCredential" and the argument count: "2"." Have you run in to this?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 30%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
I've got the same problem, can't seem to resolve it:
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 57.00000000000001%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJG%3C/text%3E%3C/svg%3E)
I tried this using Connect-MsolService and I received the error below. Do you have any suggestions? How did you get this to work?
New-Object : Cannot find an overload for "PSCredential" and the argument count: "2".
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 4%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZY%3C/text%3E%3C/svg%3E)
same problem i faced. New-Object : Cannot find an overload for "PSCredential" and the argument count: "2".
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 89%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EML%3C/text%3E%3C/svg%3E)
We have also the Problem with an Connect-MSOL if we use this How To. But we use now the Connect-MGGraph and it works. We have realized a script for Password expire as example:
# Connect to Microsoft Graph With ClientID = App Id registered in Azure
# Certificate in user Cert on Server
Connect-MgGraph -ClientID YourAppID -CertificateThumbprint YourThumbprint -TenantID YourTenantID
# Set the notification threshold - days before password expires
$NotificationThreshold = 21
$PasswordExpiryThreshold = 90 #By default 90 days Password expiry
#Path for Log File
$LogFilePath = "C:\yourPath.Log"
#Function to Add Content to a Log File
Function Write-Log {
[CmdletBinding()]
Param ([Parameter(Mandatory=$true)][string]$Message)
Process{
#Add Message to Log File with timestamp
"$([datetime]::Now) : $Message" | Out-File -FilePath $LogFilePath -append;
#Write the log message to the screen
Write-host $([datetime]::Now) $Message
}
}
# Get all users for Germany without exclude params
$users = Get-MgUser -All -Filter "(country eq 'Germany') or (country eq 'Deutschland') and accountEnabled eq true" -Property Id, DisplayName, UserPrincipalName,Mail,UserType, AccountEnabled,PasswordPolicies,lastPasswordChangeDateTime,JobTitle
$AllUsers = $users | Where-Object { ($_.DisplayName -notlike "DE_*") -and ($_.DisplayName -notlike "*EXTERN*") -and ($_.DisplayName -notlike "*STANDARD*") }
# Iterate through each user
ForEach ($User in $AllUsers)
{
# Skip disabled accounts and users with Password never Expire flag
If (!$User.AccountEnabled -or $User.PasswordPolicies -contains "xDisablePasswordExpiration" -or $User.userType -eq "Guest") {
continue
}
# Get user's password Expiry Date
$PasswordExpiryDate = $User.lastPasswordChangeDateTime.AddDays($PasswordExpiryThreshold)
# Calculate the remaining days
$RemainingDays = ($PasswordExpiryDate - (Get-Date)).Days
# Check if the remaining days are within the notification threshold
If ($RemainingDays -le $NotificationThreshold) {
# Check job title for 'Test'
if ($User.JobTitle -eq 'Test') {
# Send an email notification specific to 'Test'
$EmailBody = "
Hallo $($User.DisplayName),
<br/><br/>
Please change Password
<br/><br/>
Follow this Steps<br/>
<ol>
<li>Sign on Office.com (https://www.office.com)</li>
<li>xxxxxxxTextxxxxxxxxxxxx</li>
<li>xxxxxxxTextxxxxxxxxxxxx</li>
<li>xxxxxxxTextxxxxxxxxxxxx</li>
<li>xxxxxxxTextxxxxxxxxxxxx</li>
<br/><br/>
</ol>
<br/>
<br/>
<strong>xxxxxxxTextxxxxxxxxxxxx:</strong>
<ol>
<li>xxxxxxxTextxxxxxxxxxxxx</li>
<li>xxxxxxxTextxxxxxxxxxxxx</li>
<li><strong>xxxxxxxTextxxxxxxxxxxxx</strong>: xxxxxxxTextxxxxxxxxxxxx</li>
<li><strong>xxxxxxxTextxxxxxxxxxxxx</strong>: xxxxxxxTextxxxxxxxxxxxx</li>
</ol>
vielen Dank,<br/>
TxxxxxxxTextxxxxxxxxxxxx
"
}
else {
# Send a generic email notification for other job titles
$EmailBody = "
Hallo $($User.DisplayName),
<br/><br/>
Please change Password.
<br/><br/>
Please change Password<br/>
xxxxxxxTextxxxxxxxxxxxx<br/>
<br/>
<strong>xxxxxxxTextxxxxxxxxxxxx:</strong>
<ol>
<li>xxxxxxxTextxxxxxxxxxxxx</li>
<li>xxxxxxxTextxxxxxxxxxxxx</li>
<li><strong>xxxxxxxTextxxxxxxxxxxxx</strong>:xxxxxxxTextxxxxxxxxxxxx</li>
<li><strong>xxxxxxxTextxxxxxxxxxxxxt</strong>: xxxxxxxTextxxxxxxxxxxxx</li>
</ol>
xxxxxxxTextxxxxxxxxxxxx,<br/>
xxxxxxxTextxxxxxxxxxxxx
"
}
$MailParams = @{
Message = @{
Subject = "Your Password expires"
Importance = "High"
Body = @{
ContentType = "html"
Content = $EmailBody
}
ToRecipients = @(
@{
EmailAddress = @{
Address = $User.Mail
}
}
)
}
}
# Send the email using Microsoft Graph
Send-MgUserMail -UserId $User.Mail -BodyParameter $MailParams
#Write to Log File
Write-Log "Password Expiration Notification sent to user $($User.Mail) - Password Expires on $PasswordExpiryDate"
}
}