This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 32%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBH%3C/text%3E%3C/svg%3E)
Hey Guys
I created a Script that should automatically assign a License to a specific User and then also enable MFA. Here is the sript:
# Install and import the required modules
<#Install-Module -Name Microsoft.Graph -Scope CurrentUser -AllowClobber
Install-Module -Name AzureAD -Scope CurrentUser
Import-Module Microsoft.Graph
Import-Module AzureAD
#>
# Connect to MSOlService
#Import-Module MSOnline
Connect-MsolService
# Connect to Microsoft Graph
Connect-MgGraph
# Connect to Azure Account
#Import-Module Az
Update-AzConfig -DefaultSubscriptionForLogin 8a7d513c-2bc5-42ac-a652-585171248245
Connect-AzAccount
# Tenant and Usernames
$tenantID = "TENANTID"
$username = read-host "Enter the username"
$usageLocation = "CH"
Set-MgUser -UserId $username -UsageLocation $usageLocation
# Get E3 SKU
$e3Sku = Get-MgSubscribedSku -All | Where-Object { $_.SkuPartNumber -eq 'ENTERPRISEPACK' }
# Assign the license to the user
$licenseSkuId = $e3Sku.SkuId
# Create an array of license objects
$licensesToAdd = @(
@{
"SkuId" = $licenseSkuId
}
)
# Convert to the required type
$licensesToAdd = $licensesToAdd | ForEach-Object {
$license = New-Object -TypeName Microsoft.Graph.PowerShell.Models.MicrosoftGraphAssignedLicense
$license.SkuId = $_.SkuId
$license
}
# Set the user license
Set-MgUserLicense -UserId $username -AddLicenses $licensesToAdd -RemoveLicenses @()
# Set Strong Authentication Requirement
$st = New-Object -TypeName PSObject
$st | Add-Member -MemberType NoteProperty -Name "RelyingParty" -Value "*"
$st | Add-Member -MemberType NoteProperty -Name "State" -Value "Enabled"
$st | Add-Member -MemberType NoteProperty -Name "RememberDevicesNotIssuedBefore" -Value (Get-Date)
# Ensure the AzureAD module is imported
Import-Module AzureAD
# Set Strong Authentication Requirements for the user
Set-AzureADUser -ObjectId $username -StrongAuthenticationRequirements @($st)
The issue is that I cannot connect to graph. I already uninstalled and reinstalled the module, I also tried it on a different device with a newly installed graph module and I also installed "Microsoft.Identity.Client". But i Still get this error:
new machine, this error. Why? Connect-MgGraph : InteractiveBrowserCredential authentication failed: Method not found: '!0 Microsoft.Identity.Client.AbstractAcquireTokenParameterBuilder`1.WithTenantIdFromAuthority(System.Uri)'. At C:\Users\AdmGBU101\Documents\Untitled1.ps1:12 char:1 + Connect-MgGraph + ~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (:) [Connect-MgGraph], AuthenticationFailedException + FullyQualifiedErrorId : Microsoft.Graph.PowerShell.Authentication.Cmdlets.ConnectMgGraph
Do you have an Idea what I could try to solve this?
Thank you for your help.
Kind regards,
Gabriel
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 54%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESL%3C/text%3E%3C/svg%3E)
I had to Install-Module Microsoft.Graph as an Administrator in Powershell, but it gave me this error because it could not start the browser for authentication as Administrator. For Connect-MgGraph I had to run in a non-Admin session.
