Edit

Share via

Set-AzureADMSAuthorizationPolicy

Module:
AzureAD Module

Updates an authorization policy, which represents a policy that can control Azure Active Directory authorization settings.

Syntax

Default (Default) 

Set-AzureADMSAuthorizationPolicy
    [-AllowedToSignUpEmailBasedSubscriptions <Boolean>]
    [-AllowedToUseSSPR <Boolean>]
    [-AllowEmailVerifiedUsersToJoinOrganization <Boolean>]
    [-BlockMsolPowerShell <Boolean>]
    [-DefaultUserRolePermissions <DefaultUserRolePermissions>]
    [-Description <String>]
    [-DisplayName <String>]
    [<CommonParameters>]

Description

The Set-AzureADMSAuthorizationPolicy cmdlet updates an Azure Active Directory authorization policy.

Examples

Example 1: Update an authorization policy

PS C:\>Set-AzureADMSAuthorizationPolicy -DisplayName "updated displayname" -Description "updated description" -DefaultUserRolePermissions @{ AllowedToCreateApps = $false }

This command updates the specified parameters of the authorization policy.

Parameters

-AllowedToSignUpEmailBasedSubscriptions

Specifies whether users can sign up for email based subscriptions. The initial default value is true.

Parameter properties

Type:Boolean
Default value:None
Supports wildcards:False
DontShow:False

Parameter sets

(All)
Position:Named
Mandatory:False
Value from pipeline:False
Value from pipeline by property name:False
Value from remaining arguments:False

-AllowedToUseSSPR

Specifies whether the Self-Serve Password Reset feature can be used by users on the tenant. The initial default value is true.

Parameter properties

Type:Boolean
Default value:None
Supports wildcards:False
DontShow:False

Parameter sets

(All)
Position:Named
Mandatory:False
Value from pipeline:False
Value from pipeline by property name:False
Value from remaining arguments:False

-AllowEmailVerifiedUsersToJoinOrganization

Specifies whether a user can join the tenant by email validation. The initial default value is true.

Parameter properties

Type:Boolean
Default value:None
Supports wildcards:False
DontShow:False

Parameter sets

(All)
Position:Named
Mandatory:False
Value from pipeline:False
Value from pipeline by property name:False
Value from remaining arguments:False

-BlockMsolPowerShell

Specifies whether the user-based access to the legacy service endpoint used by MSOL PowerShell is blocked or not.

Parameter properties

Type:Boolean
Default value:None
Supports wildcards:False
DontShow:False

Parameter sets

(All)
Position:Named
Mandatory:False
Value from pipeline:False
Value from pipeline by property name:False
Value from remaining arguments:False

-DefaultUserRolePermissions

Contains various customizable default user role permissions.

Parameter properties

Type:DefaultUserRolePermissions
Default value:None
Supports wildcards:False
DontShow:False

Parameter sets

(All)
Position:Named
Mandatory:False
Value from pipeline:False
Value from pipeline by property name:False
Value from remaining arguments:False

-Description

Specifies the description of the authorization policy.

Parameter properties

Type:String
Default value:None
Supports wildcards:False
DontShow:False

Parameter sets

(All)
Position:Named
Mandatory:False
Value from pipeline:False
Value from pipeline by property name:False
Value from remaining arguments:False

-DisplayName

Specifies the display name of the authorization policy.

Parameter properties

Type:String
Default value:None
Supports wildcards:False
DontShow:False

Parameter sets

(All)
Position:Named
Mandatory:False
Value from pipeline:False
Value from pipeline by property name:False
Value from remaining arguments:False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutBuffer, -OutVariable, -PipelineVariable, -ProgressAction, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

Inputs

Microsoft.Open.MSGraph.Model.DefaultUserRolePermissions

Notes

See the migration guide for Set-AzureADMSAuthorizationPolicy to the Microsoft Graph PowerShell.