![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 88%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMQ%3C/text%3E%3C/svg%3E)
Exchange | Exchange Server | Management
The administration and maintenance of Microsoft Exchange Server to ensure secure, reliable, and efficient email and collaboration services across an organization.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 80%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAL%3C/text%3E%3C/svg%3E)
If using the Search-AdminAuditLog cmdlet, use the -Cmdlets and -Parameters parameter to narrow the search to just the specific operations:
Search-AdminAuditLog -Cmdlets Set-UnifiedGroup -Parameters AcceptMessagesOnlyFromSendersOrMembers
You can also specify run the cmdlet to check against a specific group object, by using the -ObjectId parameter. Adding a time filter will of course also help.
If using the Search-UnifiedAuditLog cmdlet, the time/date filter is mandatory and you can further scope the result via -Operations parameter to include just the cmdlet in question, and by using the -FreeText parameter to specify the attribute changed.
Search-UnifiedAuditLog -StartDate 14-Jan-2022 -EndDate 19-Jun-2022 -Operations Set-UnifiedGroup -FreeText AcceptMessagesOnlyFromSendersOrMembers
Use the -ObjectId switch to narrow the results further.