I am unable to edit the following settings in the Adaxes admin site for an M365 Group/Team

image.png

It throws this error

image.png

However, I can set this via Graph PS myself. I am trying to construct my script to just be run by Adaxes and am stuck. Here is what I have so far. Can you take a look and let me know where I have it wrong? First time I am doing this for Entra groups.

image.png

Thanks!

ago by (880 points)

1 Answer

ago by (306k points)
0 votes

Hello,

The behavior is by design. It is described in the following FAQ article: https://www.adaxes.com/questions/12879/certain-azure-ad-group-properties-cannot-be-updated?show=12879#q12879.

ago by (880 points)
0

Thank you. I did assume that was expected behavior.

What about the second part of my question in terms of my script. Will that not run in Adaxes at all as well?

ago by (306k points)
0

Hello,

Unfortunately, that is not something we can actually comment on for sure. The script is using the same credentials (those of Microsoft Entra app specified for your domain or tenant in Adaxes), but since it is using a different approach, the script might work. At the same time, the question is about Microsoft functionality, not Adaxes.

ago by (880 points)
0

Understood.

I have tested and it works natively in Graph. What I need assistance in is whether or not I have the correct syntax (in Adaxes land) in lines 1-9.

Lines 10-14 work just fine when connnected to the tenant via Graph natively in PS.

ago by (306k points)
0

Hello,

Lines 1-9 of the script look correct. However, the $GroupUPN variable is not used anywhere after obtaining. It means that lines 8 and 9 can be removed.

ago by (880 points)
0

Thanks, I hadn't updated it to include the variable yet.

Appreciate the help.

ago by (880 points)
0

Not sure why I wouldn't have permissions, the API permissions are set up properly with Group.ReadWrite.All

Are there other permissions that would be necessary for this?

image.png

image.png

ago by (306k points)
0

Hello,

As it was mentioned above, that is not something we cannot comment as it is not a question about Adaxes. We recommend you to check with Microsoft support as we were unable to find any related documentation.

Related questions

We have a cloud app which can not use nested groups, and apparently doesn't like the Dynamic rules in Azure either. So I'd like to build the groups in AD and sync ... , or should they be combined? Just overall looking for best way to keep them updated.

asked Nov 25, 2024 by rurbaniak (1.5k points)
0 votes
1 answer

Maybe there is a better way to accomplish this, so I'm open to suggestion. We are in a hybrid setup between onprem and M365. When we create a new user, they are ... command in the previous step, right? If needed, I can provide the full script. Thanks!

asked Nov 2, 2023 by AndrewMeyer (20 points)
0 votes
1 answer

We have a primary domain / tenant in addition to a secondary tenant. Only a subset of users have accounts on the secondary tenant and the account names dont map cleanly ... 's account, and click "provision secondary tenant account" or reset MFA / whatever.

asked Jun 5, 2024 by ZoomGhost (280 points)
0 votes
1 answer

I have found the script to force membership updates for all rule based groups, but is there a script to force update a specific rule based group? I am looking to add a ... I would like to trigger a rule based group that adds members of the manual group. Thanks

asked Jul 9 by msheppard (880 points)
0 votes
1 answer

I am trying to build a custom command to add a specific user to a rule based group in adaxes and I am curious if it is something we can use the API to complete?

asked Mar 7 by Brian (40 points)
0 votes
1 answer