Script repository

Set user photo from Microsoft 365 to AD account

February 12, 2024 Views: 2193
Microsoft 365 (Office 365) User Accounts

The script gets a user photo from Microsoft 365 and sets it into the AD account of the user. To run the script, create a custom command or scheduled task configured for the User object type.

Edit Remove
PowerShell
# Get user ID in Microsoft 365
$azureID = $Context.TargetObject.AzureID
if ($NULL -eq $azureID)
{
    $Context.LogMessage("The user does not have a Microsoft 365 account", "Warning")
    return
}

# Connect to Microsoft Graph PowerShell
$accessToken = $Context.CloudServices.GetAzureAuthAccessToken()
$accessToken | out-file c:\token.txt
Connect-MgGraph -AccessToken ($accessToken | ConvertTo-SecureString -AsPlainText -Force)

# Get temp file path
$tempFodlerPath = [System.IO.path]::GetTempPath()
$tempFilePath = "$tempFodlerPath\photo.tmp"

# Download user photo
try
{
    Get-MgUserPhotoContent -UserId $azureID -OutFile $tempFilePath
}
catch
{
    $Context.LogMessage("The user has no photo", "Warning")
}

$photoBytes = [System.IO.File]::ReadAllBytes($tempFilePath)
if ($NULL -ne $photoBytes)
{
    # Update user photo in AD
    $user = $Context.BindToObjectEx($Context.TargetObject.AdsPath, $True)
    $user.Put("thumbnailPhoto", $photoBytes)
    $user.SetInfo()
}

# Remove temp file
Remove-Item $tempFilePath -Force -Confirm:$False
Comments 9
avatar
A Aug 31, 2021
I have this setup but is there a way to do a bulk import from 365 for all users
Reply
avatar
Support Sep 01, 2021
Hello,

What exactly do you mean? Could you, please, describe the desired behavior in all the possible details with live examples?
Reply
avatar
Trent Jul 11, 2023
We would like to do this for all users, is that possible?
Reply
avatar
Support Jul 12, 2023
Hello Trent,

As it is mentioned in the script description, it can be executed in a scheduled task or custom command. As such, the easiest option is to create a one-time task executing the script and add All objects to the Activity Scope.
Reply
avatar
Kevin Apr 08, 2024
Hi,

Microsoft annouched they will stop the get-userphoto cmdlet from Exchange Online. Will you be upgrading the script to the Microsoft Graph PowerShell ((Updated) ExchangePowerShell: retirement of tenant admin cmdlets to Get, Set, and Remove UserPhotos)?
Reply
avatar
Support Apr 08, 2024
Hello Kevin,

The script uses the Get-MgUserPhotoContent cmdlet from the Microsoft.Graph PowerShell module to get the photo. Please, note that for the script to work, the module must be installed on the computer where the Adaxes service runs. If you have multiple Adaxes services sharing a common configuration, the module must be installed on each computer where the Adaxes service runs.
Reply
avatar
Kevin Apr 10, 2024
Awesome then we don't have to fix anything for the upcomming update of the powershell cmdlets for Exchange.
Reply
avatar
Andrew Baker Mar 12, 2025
Hi,

I've just tried to run this on my tenant and got the following error?

Is there a particular version of the Graph modules required?

---------------------------
Run Script - User McUser
---------------------------
[UnknownError] : Stack trace: at Get-MgUserPhotoContent<Process>, C:\Program Files\WindowsPowerShell\Modules\Microsoft.Graph.Users\2.26.1\exports\ProxyCmdletDefinitions.ps1: line 12253
at <ScriptBlock>, <No file>: line 21
---------------------------
Reply
avatar
Support Mar 12, 2025
Hello Andrew,

> I've just tried to run this on my tenant and got the following error?

How exactly did you execute the script? Was it in Windows PowerShell?

For troubleshooting purposes, please, send us (support@adaxes.com) a screenshot of the error you are facing.

>Is there a particular version of the Graph modules required?

It is only required to have a version of the module compatible with PowerShell 5. As of now, Adaxes does not support PowerShell 7.
Reply
Leave a comment
Related Scripts

Got questions?

Support Questions & Answers