Microsoft.Graph.Entra
This module contains cmdlets that designed to work with Microsoft.Graph.Entra.
Microsoft.Graph.Entra
| Add-EntraAdministrativeUnitMember |
Adds an administrative unit member. |
| Add-EntraApplicationOwner |
Adds an owner to an application. |
| Add-EntraDeviceRegisteredOwner |
Adds a registered owner for a device. |
| Add-EntraDeviceRegisteredUser |
Adds a registered user for a device. |
| Add-EntraDirectoryRoleMember |
Adds a member to a directory role. |
| Add-EntraEnvironment |
Adds Microsoft Entra environment to the settings file. |
| Add-EntraGroupOwner |
Adds an owner to a group. |
| Add-EntraLifecyclePolicyGroup |
Adds a group to a lifecycle policy |
| Add-EntraScopedRoleMembership |
Adds a scoped role membership to an administrative unit. |
| Add-EntraServicePrincipalDelegatedPermissionClassification |
Add a classification for a delegated permission. |
| Add-EntraServicePrincipalOwner |
Adds an owner to a service principal. |
| Confirm-EntraDomain |
Validate the ownership of a domain. |
| Connect-Entra |
Connect to Microsoft Entra ID with an authenticated account. |
| Convert-EntraFederatedUser |
Updates a user in a domain that was recently converted from single sign-on (also known as identity federation) to standard authentication type. |
| Enable-EntraDirectoryRole |
Activates an existing directory role in Microsoft Entra ID. |
| Find-EntraPermission |
Helps users determine the necessary permissions for resources and identify the appropriate permissions required for various commands. |
| Get-CrossCloudVerificationCode |
Gets the verification code used to validate the ownership of the domain in another connected cloud. Important: Only applies to a verified domain. |
| Get-EntraAccountSku |
Retrieves all the SKUs for a company. |
| Get-EntraAdministrativeUnit |
Gets an administrative unit. |
| Get-EntraAdministrativeUnitMember |
Gets a member of an administrative unit. |
| Get-EntraApplicationExtensionProperty |
Gets application extension properties. |
| Get-EntraApplicationKeyCredential |
Gets the key credentials for an application. |
| Get-EntraApplicationLogo |
Retrieve the logo of an application. |
| Get-EntraApplicationPasswordCredential |
Gets the password credential for an application. |
| Get-EntraApplicationProxyApplication |
The Get-EntraApplicationProxyApplication cmdlet retrieves an application configured for Application Proxy in Microsoft Entra ID. |
| Get-EntraApplicationProxyConnectorGroup |
The Get-EntraApplicationProxyConnectorGroup cmdlet retrieves a list of all connector groups, or if specified, details of a specific connector group. |
| Get-EntraApplicationProxyConnectorGroupMembers |
The Get-EntraApplicationProxyConnectorGroupMembers get all the Application Proxy connectors associated with the given connector group. |
| Get-EntraAuthorizationPolicy |
Gets an authorization policy, which represents a policy that can control Microsoft Entra ID authorization settings. |
| Get-EntraConditionalAccessPolicy |
Gets a Microsoft Entra ID conditional access policy. |
| Get-EntraContact |
Gets a contact from Microsoft Entra ID. |
| Get-EntraContactDirectReport |
Get the direct reports for a contact. |
| Get-EntraContactManager |
Gets the manager of a contact. |
| Get-EntraContactMembership |
Get a contact membership. |
| Get-EntraContactThumbnailPhoto |
Retrieves the thumbnail photo of a contact. |
| Get-EntraContract |
Gets a contract. |
| Get-EntraDeletedApplication |
Retrieves the list of previously deleted applications. |
| Get-EntraDeletedDirectoryObject |
This cmdlet is used to retrieve a soft deleted directory object from the directory. |
| Get-EntraDeletedGroup |
This cmdlet is used to retrieve the soft deleted groups in a directory. |
| Get-EntraDeviceRegisteredOwner |
Gets the registered owner of a device. |
| Get-EntraDirectoryRole |
Gets a directory role. |
| Get-EntraDirectoryRoleTemplate |
Gets directory role templates. |
| Get-EntraDirSyncConfiguration |
Gets the directory synchronization settings. |
| Get-EntraDirSyncfeature |
Used to check the status of identity synchronization features for a tenant. |
| Get-EntraDomain |
Gets a domain. |
| Get-EntraDomainFederationSettings |
Gets key settings for a federated domain. |
| Get-EntraDomainNameReference |
This cmdlet retrieves the objects that are referenced with a given domain name. |
| Get-EntraEnvironment |
Gets global public Environments. |
| Get-EntraFederationProperty |
Displays the properties of the Microsoft Entra ID Federation Services 2.0 server and Microsoft Online. |
| Get-EntraGroupAppRoleAssignment |
Gets a group application role assignment. |
| Get-EntraHasObjectsWithDirSyncProvisioningError |
Returns whether Microsoft Entra ID has objects with DirSync provisioning error. |
| Get-EntraIdentityProvider |
This cmdlet is used to retrieve the configured identity providers in the directory. |
| Get-EntraNamedLocationPolicy |
Gets a Microsoft Entra ID named location policy. |
| Get-EntraPartnerInformation |
Retrieves company-level information for partners. |
| Get-EntraPasswordPolicy |
Retrieves the current password policy for the tenant or the specified domain. |
| Get-EntraPermissionGrantConditionSet |
Get a Microsoft Entra ID permission grant condition set by id. |
| Get-EntraPermissionGrantPolicy |
Gets a permission grant policy. |
| Get-EntraRoleAssignment |
Get a Microsoft Entra ID roleAssignment. |
| Get-EntraRoleDefinition |
Gets information about role definitions in Microsoft Entra ID. |
| Get-EntraScopedRoleMembership |
Gets a scoped role membership from an administrative unit. |
| Get-EntraServicePrincipal |
Gets a service principal. |
| Get-EntraServicePrincipalDelegatedPermissionClassification |
Retrieve the delegated permission classification objects on a service principal. |
| Get-EntraServicePrincipalOwner |
Get the owner of a service principal. |
| Get-EntraTrustedCertificateAuthority |
Gets the trusted certificate authority. |
| Get-EntraUnsupportedCommand |
{{ Fill in the Synopsis }} |
| Get-EntraUser |
Gets a user. |
| Get-EntraUserOAuth2PermissionGrant |
Gets an oAuth2PermissionGrant object. |
| Get-EntraUserOwnedDevice |
Get registered devices owned by a user. |
| Get-EntraUserOwnedObject |
Get objects owned by a user. |
| New-EntraAdministrativeUnit |
Creates an administrative unit. |
| New-EntraApplication |
Creates (registers) a new application object. |
| New-EntraApplicationExtensionProperty |
Creates an application extension property. |
| New-EntraApplicationKey |
Adds a new key to an application. |
| New-EntraApplicationKeyCredential |
Creates a key credential for an application. |
| New-EntraApplicationPassword |
Adds a strong password to an application. |
| New-EntraApplicationPasswordCredential |
Creates a password credential for an application. |
| New-EntraApplicationProxyApplication |
The New-EntraApplicationProxyApplication cmdlet creates a new application configured for Application Proxy in Microsoft Entra ID. |
| New-EntraConditionalAccessPolicy |
Creates a new conditional access policy in Microsoft Entra ID. |
| New-EntraDevice |
Creates a device. |
| New-EntraIdentityProvider |
This cmdlet is used to configure a new identity provider in the directory. |
| New-EntraNamedLocationPolicy |
Creates a new named location policy in Microsoft Entra ID. |
| New-EntraOauth2PermissionGrant |
Create a delegated permission grant using an oAuth2PermissionGrant object. This grant allows a client service principal to access a resource service principal on behalf of a signed-in user, with access restricted to the specified delegated permissions. |
| New-EntraPermissionGrantConditionSet |
Create a new Microsoft Entra ID permission grant condition set in a given policy. |
| New-EntraPermissionGrantPolicy |
Creates a permission grant policy. |
| New-EntraRoleAssignment |
Create a new Microsoft Entra ID roleAssignment. |
| New-EntraRoleDefinition |
Create a new Microsoft Entra ID roleDefinition. |
| New-EntraTrustedCertificateAuthority |
Creates a trusted certificate authority. |
| New-EntraUser |
Creates a Microsoft Entra ID user. |
| Remove-EntraAdministrativeUnitMember |
Removes an administrative unit member. |
| Remove-EntraApplication |
Delete an application by ObjectId. |
| Remove-EntraApplicationOwner |
Removes an owner from an application. |
| Remove-EntraApplicationProxyApplication |
Deletes an Application Proxy application. |
| Remove-EntraApplicationProxyApplicationConnectorGroup |
The Remove-EntraApplicationProxyApplicationConnectorGroup cmdlet sets the connector group assigned for the specified application to 'Default' and removes the current assignment. |
| Remove-EntraContact |
Removes a contact. |
| Remove-EntraDevice |
Deletes a device. |
| Remove-EntraDeviceRegisteredOwner |
Removes the registered owner of a device. |
| Remove-EntraDirectoryRoleMember |
Removes a member of a directory role. |
| Remove-EntraGroup |
Removes a group. |
| Remove-EntraGroupAppRoleAssignment |
Delete a group application role assignment. |
| Remove-EntraGroupLifecyclePolicy |
Deletes a groupLifecyclePolicies object |
| Remove-EntraGroupOwner |
Removes an owner from a group. |
| Remove-EntraLifecyclePolicyGroup |
Removes a group from a lifecycle policy. |
| Remove-EntraOAuth2PermissionGrant |
Removes an oAuth2PermissionGrant. |
| Remove-EntraRoleAssignment |
Delete a Microsoft Entra ID roleAssignment. |
| Remove-EntraRoleDefinition |
Delete a Microsoft Entra ID roleDefinition by ObjectId. |
| Remove-EntraTrustedCertificateAuthority |
Removes a trusted certificate authority. |
| Remove-EntraUser |
Removes a user. |
| Restore-EntraDeletedApplication |
Restores a previously deleted application |
| Restore-EntraDeletedDirectoryObject |
This cmdlet is used to restore a previously deleted object. |
| Select-EntraGroupIdsContactIsMemberOf |
Get groups in which a contact is a member. |
| Select-EntraGroupIdsGroupIsMemberOf |
Gets group IDs that a group is a member of. |
| Set-EntraAdministrativeUnit |
Updates an administrative unit. |
| Set-EntraApplication |
Updates the properties of an application object. |
| Set-EntraApplicationLogo |
Sets the logo for an Application |
| Set-EntraApplicationProxyApplication |
The Set-EntraApplicationProxyApplication allows you to modify and set configurations for an application in Microsoft Entra ID configured to use ApplicationProxy. |
| Set-EntraApplicationProxyApplicationCustomDomainCertificate |
The Set-EntraApplicationProxyApplicationCustomDomainCertificate cmdlet assigns a certificate to an application configured for Application Proxy in Microsoft Entra ID. This uploads the certificate and allows the application to use Custom Domains. |
| Set-EntraApplicationProxyApplicationSingleSignOn |
The Set-EntraApplicationProxyApplicationSingleSignOn cmdlet allows you to set and modify single sign-on (SSO) settings for an application configured for Application Proxy in Microsoft Entra ID. |
| Set-EntraApplicationProxyConnector |
The Set-EntraApplicationProxyConnector cmdlet allows reassignment of the connector to another connector group. |
| Set-EntraApplicationProxyConnectorGroup |
The Set-EntraApplicationProxyConnectorGroup cmdlet allows you to change the name of a given Application Proxy connector group. |
| Set-EntraApplicationVerifiedPublisher |
Sets the verified publisher of an application to a verified Microsoft Partner Network (MPN) identifier. |
| Set-EntraConditionalAccessPolicy |
Updates a conditional access policy in Microsoft Entra ID by Id. |
| Set-EntraDirSyncConfiguration |
Modifies the directory synchronization settings. |
| Set-EntraDirSyncFeature |
Used to set identity synchronization features for a tenant. |
| Set-EntraDomainFederationSettings |
Updates settings for a federated domain. |
| Set-EntraIdentityProvider |
This cmdlet is used to update the properties of an existing identity provider configured in the directory. |
| Set-EntraNamedLocationPolicy |
Updates a named location policy in Microsoft Entra ID by PolicyId. |
| Set-EntraPartnerInformation |
Sets company information for partners. |
| Set-EntraPermissionGrantConditionSet |
Update an existing Microsoft Entra ID permission grant condition set. |
| Set-EntraPermissionGrantPolicy |
Updates a permission grant policy. |
| Set-EntraTrustedCertificateAuthority |
Updates a trusted certificate authority. |
| Set-EntraUserLicense |
Adds or removes licenses for a Microsoft online service to the list of assigned licenses for a user. |
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for