### Start-MgApplicationSynchronizationJob Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Starts an existing synchronization job for an application. If the job is paused, it resumes from where it left off. If in quarantine, the status is cleared. Use only when the job is paused or quarantined to avoid service disruption. Beta version available. ```APIDOC Start-MgApplicationSynchronizationJob Start an existing synchronization job. If the job is in a paused state, it continues processing changes from the point where it was paused. If the job is in quarantine, the quarantine status is cleared. Don't create scripts to call the start job continuously while it's running because that can cause the service to stop running. Use the start job only when the job is currently paused or in quarantine. Note: To view the beta release of this cmdlet, view Start-MgBetaApplicationSynchronizationJob. Parameters: (No specific parameters listed in the provided text, but implies job ID or context) Returns: (Not specified in the provided text) ``` -------------------------------- ### Create Synchronization Job Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Creates a new synchronization job with a default synchronization schema. The job is created in a disabled state and must be started explicitly. ```APIDOC New-MgServicePrincipalSynchronizationJob: Creates a new synchronization job with a default synchronization schema. The job is created in a disabled state. Call Start job to start synchronization. Parameters: - ServicePrincipalId: The unique identifier of a servicePrincipal. - Body: New value for the synchronizationJob. Returns: The created synchronization job. Related Cmdlets: Get-MgServicePrincipalSynchronizationJob, Start-MgServicePrincipalSynchronizationJob ``` -------------------------------- ### Get Microsoft Graph Application Template Cmdlets Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves properties of applicationTemplate objects in Microsoft Graph. Includes cmdlets for getting individual templates and their counts. Notes indicate the availability of beta versions. ```PowerShell Get-MgApplicationTemplate - Description: Retrieve the properties of an applicationTemplate object. - Note: To view the beta release, use Get-MgBetaApplicationTemplate. Get-MgApplicationTemplateCount - Description: Get the number of the resource. - Note: To view the beta release, use Get-MgBetaApplicationTemplateCount. ``` -------------------------------- ### Start-MgServicePrincipalSynchronizationJob Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Starts an existing synchronization job for a service principal. Resumes paused jobs or clears quarantine status. Avoid continuous calls while running to prevent service issues. Use only for paused or quarantined jobs. Beta version available. ```APIDOC Start-MgServicePrincipalSynchronizationJob Start an existing synchronization job. If the job is in a paused state, it continues processing changes from the point where it was paused. If the job is in quarantine, the quarantine status is cleared. Don't create scripts to call the start job continuously while it's running because that can cause the service to stop running. Use the start job only when the job is currently paused or in quarantine. Note: To view the beta release of this cmdlet, view Start-MgBetaServicePrincipalSynchronizationJob. Parameters: (No specific parameters listed in the provided text, but implies job ID or context) Returns: (Not specified in the provided text) ``` -------------------------------- ### Get Microsoft Graph Application Synchronization Template Cmdlets Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Manages preconfigured synchronization settings for applications in Microsoft Graph. Includes cmdlets for retrieving synchronization templates, their counts, and their schema definitions, including directory information. Notes indicate the availability of beta versions. ```PowerShell Get-MgApplicationSynchronizationTemplate - Description: Preconfigured synchronization settings for a particular application. - Note: To view the beta release, use Get-MgBetaApplicationSynchronizationTemplate. Get-MgApplicationSynchronizationTemplateCount - Description: Get the number of the resource. - Note: To view the beta release, use Get-MgBetaApplicationSynchronizationTemplateCount. Get-MgApplicationSynchronizationTemplateSchema - Description: Default synchronization schema for the jobs based on this template. - Note: To view the beta release, use Get-MgBetaApplicationSynchronizationTemplateSchema. Get-MgApplicationSynchronizationTemplateSchemaDirectory - Description: Contains the collection of directories and all of their objects. - Note: To view the beta release, use Get-MgBetaApplicationSynchronizationTemplateSchemaDirectory. Get-MgApplicationSynchronizationTemplateSchemaDirectoryCount - Description: Get the number of the resource. - Note: To view the beta release, use Get-MgBetaApplicationSynchronizationTemplateSchemaDirectoryCount. ``` -------------------------------- ### Get Microsoft Graph Application Synchronization Job Schema Directory Cmdlets Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves information about directories and their objects within Microsoft Graph application synchronization jobs. Includes cmdlets for getting the schema directory and its count. Notes indicate the availability of beta versions. ```PowerShell Get-MgApplicationSynchronizationJobSchemaDirectory - Description: Contains the collection of directories and all of their objects. - Note: To view the beta release, use Get-MgBetaApplicationSynchronizationJobSchemaDirectory. Get-MgApplicationSynchronizationJobSchemaDirectoryCount - Description: Get the number of the resource. - Note: To view the beta release, use Get-MgBetaApplicationSynchronizationJobSchemaDirectoryCount. ``` -------------------------------- ### Get Microsoft Graph Application Details Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves specific details about Microsoft Graph applications. This includes fetching home realm discovery policies, application counts, and application logos. Note that beta versions of these cmdlets are available. ```APIDOC Get-MgApplicationHomeRealmDiscoveryPolicy - Retrieves homeRealmDiscoveryPolicies from applications. - Note: Beta version available via Get-MgBetaApplicationHomeRealmDiscoveryPolicy. Get-MgApplicationHomeRealmDiscoveryPolicyCount - Retrieves the number of application homeRealmDiscoveryPolicies. - Note: Beta version available via Get-MgBetaApplicationHomeRealmDiscoveryPolicyCount. Get-MgApplicationLogo - Retrieves the main logo for an application. The logo is not nullable. - Note: Beta version available via Get-MgBetaApplicationLogo. ``` -------------------------------- ### Get Service Principal OAuth2 Permission Grants Cmdlets Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves OAuth2 permission grants that authorize a service principal to access an API on behalf of a signed-in user. This includes cmdlets for listing grants and getting the count of grants. These are read-only operations. ```APIDOC Get-MgServicePrincipalOauth2PermissionGrant -ServicePrincipalId -Filter -Search -Orderby -Select -Expand -CountVariable -ConsistencyLevel -Top -Skip -Count Description: Retrieves delegated permission grants authorizing this service principal to access an API on behalf of a signed-in user. Read-only. Nullable. Supports $expand. Parameters: ServicePrincipalId: The unique identifier of the service principal. Filter: OData filter expression. Search: OData search expression. Orderby: OData orderby expression. Select: OData select expression. Expand: OData expand expression. CountVariable: Variable to store the count of items. ConsistencyLevel: Specifies the consistency level for the request. Top: The number of items to return. Skip: The number of items to skip. Count: Include count of items in the response. Returns: A collection of OAuth2 permission grant objects. Get-MgServicePrincipalOauth2PermissionGrantCount -ServicePrincipalId -Filter -Search -ConsistencyLevel Description: Gets the number of OAuth2 permission grants for the service principal. Parameters: ServicePrincipalId: The unique identifier of the service principal. Filter: OData filter expression. Search: OData search expression. ConsistencyLevel: Specifies the consistency level for the request. Returns: The count of OAuth2 permission grants. ``` -------------------------------- ### Get Microsoft Graph Application Token Issuance Policy Cmdlets Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Manages token issuance policies assigned to applications in Microsoft Graph. Includes cmdlets for listing policies and listing policies by reference. Notes indicate the availability of beta versions. ```PowerShell Get-MgApplicationTokenIssuancePolicy - Description: List the tokenIssuancePolicy objects that are assigned to an application. - Note: To view the beta release, use Get-MgBetaApplicationTokenIssuancePolicy. Get-MgApplicationTokenIssuancePolicyByRef - Description: List the tokenIssuancePolicy objects that are assigned to an application. - Note: To view the beta release, use Get-MgBetaApplicationTokenIssuancePolicyByRef. ``` -------------------------------- ### Suspend-MgApplicationSynchronizationJob Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Temporarily stops a running application synchronization job. Progress and state are persisted, allowing the job to resume from where it left off upon a subsequent start command. Beta version is available. ```APIDOC Suspend-MgApplicationSynchronizationJob Temporarily stop a running synchronization job. All the progress, including job state, is persisted, and the job will continue from where it left off when a start call is made. Note: To view the beta release of this cmdlet, view Suspend-MgBetaApplicationSynchronizationJob. Parameters: (No specific parameters listed in the provided text, but implies job ID or context) Returns: (Not specified in the provided text) ``` -------------------------------- ### Get User App Role Assignments Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves the app roles that a user is granted for a specific application. This cmdlet is useful for understanding user permissions and access within applications managed by Microsoft Graph. ```APIDOC Get-MgUserAppRoleAssignment -UserId -AppRoleId -Filter -Search -Skip -Top -Count -ConsistencyLevel -Select -Expand Description: Represents the app roles a user is granted for an application. Supports $expand. Parameters: -UserId: The unique identifier of the user. -AppRoleId: The ID of the app role assignment. -Filter: OData filter expression to apply to the query. -Search: Search query to apply to the query. -Skip: Number of items to skip from the beginning of the result set. -Top: Maximum number of items to return. -Count: Include the total count of items in the response. -ConsistencyLevel: Specifies the consistency level for the query (e.g., '1' or 'eventual'). -Select: Specifies the properties to return in the response. -Expand: Specifies related resources to expand in the response. Returns: A collection of app role assignment objects for the specified user. ``` -------------------------------- ### Get Microsoft Graph Application Counts Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves the number of application resources within the Microsoft Graph. Includes cmdlets for counting all applications and specific types like app management policies or extension properties. ```APIDOC Get-MgApplicationAppManagementPolicyCount - Description: Get the number of app management policy resources. - Parameters: - (None specified in snippet) - Returns: - (Number of resources) Get-MgApplicationCount - Description: Get the number of application resources. - Parameters: - (None specified in snippet) - Returns: - (Number of resources) Get-MgApplicationExtensionPropertyCount - Description: Get the number of application extension property resources. - Parameters: - (None specified in snippet) - Returns: - (Number of resources) Get-MgApplicationFederatedIdentityCredentialCount - Description: Get the number of federated identity credential resources associated with an application. - Parameters: - (None specified in snippet) - Returns: - (Number of resources) ``` -------------------------------- ### Get Service Principal Owners and Related Objects (Microsoft Graph PowerShell) Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves directory objects that are owners of a service principal. Supports filtering and selecting nested properties. Includes cmdlets to get owners as specific Microsoft Graph object types like AppRoleAssignment, Endpoint, ServicePrincipal, and User. Also includes methods to get owners by reference and count the number of owners. ```APIDOC Get-MgServicePrincipalOwner Description: Directory objects that are owners of this servicePrincipal. The owners are a set of nonadmin users or servicePrincipals who are allowed to modify this object. Supports $expand, $filter (/$count eq 0, /$count ne 0, /$count eq 1, /$count ne 1), and $select nested in $expand. Note: To view the beta release of this cmdlet, view Get-MgBetaServicePrincipalOwner. Get-MgServicePrincipalOwnerAsAppRoleAssignment Description: Get the item of type microsoft.graph.directoryObject as microsoft.graph.appRoleAssignment. Note: To view the beta release of this cmdlet, view Get-MgBetaServicePrincipalOwnerAsAppRoleAssignment. Get-MgServicePrincipalOwnerAsEndpoint Description: Get the item of type microsoft.graph.directoryObject as microsoft.graph.endpoint. Note: To view the beta release of this cmdlet, view Get-MgBetaServicePrincipalOwnerAsEndpoint. Get-MgServicePrincipalOwnerAsServicePrincipal Description: Get the item of type microsoft.graph.directoryObject as microsoft.graph.servicePrincipal. Note: To view the beta release of this cmdlet, view Get-MgBetaServicePrincipalOwnerAsServicePrincipal. Get-MgServicePrincipalOwnerAsUser Description: Get the item of type microsoft.graph.directoryObject as microsoft.graph.user. Note: To view the beta release of this cmdlet, view Get-MgBetaServicePrincipalOwnerAsUser. Get-MgServicePrincipalOwnerByRef Description: Directory objects that are owners of this servicePrincipal. The owners are a set of nonadmin users or servicePrincipals who are allowed to modify this object. Supports $expand, $filter (/$count eq 0, /$count ne 0, /$count eq 1, /$count ne 1), and $select nested in $expand. Note: To view the beta release of this cmdlet, view Get-MgBetaServicePrincipalOwnerByRef. Get-MgServicePrincipalOwnerCount Description: Get the number of the resource. Note: To view the beta release of this cmdlet, view Get-MgBetaServicePrincipalOwnerCount. Get-MgServicePrincipalOwnerCountAsAppRoleAssignment Description: Get the number of the resource. Note: To view the beta release of this cmdlet, view Get-MgBetaServicePrincipalOwnerCountAsAppRoleAssignment. Get-MgServicePrincipalOwnerCountAsEndpoint Description: Get the number of the resource. Note: To view the beta release of this cmdlet, view Get-MgBetaServicePrincipalOwnerCountAsEndpoint. Get-MgServicePrincipalOwnerCountAsServicePrincipal Description: Get the number of the resource. Note: To view the beta release of this cmdlet, view Get-MgBetaServicePrincipalOwnerCountAsServicePrincipal. Get-MgServicePrincipalOwnerCountAsUser Description: Get the number of the resource. Note: To view the beta release of this cmdlet, view Get-MgBetaServicePrincipalOwnerCountAsUser. ``` -------------------------------- ### New-MgServicePrincipalSynchronizationJobSchemaDirectory Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Creates a new navigation property to directories for service principals. ```APIDOC New-MgServicePrincipalSynchronizationJobSchemaDirectory Create new navigation property to directories for servicePrincipals. Parameters: (No explicit parameters listed in source, implies context-based or implicit) Returns: (Not specified in source) Notes: - To view the beta release, see New-MgBetaServicePrincipalSynchronizationJobSchemaDirectory. ``` -------------------------------- ### New-MgServicePrincipalSynchronizationTemplateSchemaDirectory Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Creates a new navigation property to directories for service principals. ```APIDOC New-MgServicePrincipalSynchronizationTemplateSchemaDirectory Create new navigation property to directories for servicePrincipals. Parameters: (No explicit parameters listed in source, implies context-based or implicit) Returns: (Not specified in source) Notes: - To view the beta release, see New-MgBetaServicePrincipalSynchronizationTemplateSchemaDirectory. ``` -------------------------------- ### Get Microsoft Graph Application Synchronization Secret Cmdlets Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves the count of secrets for Microsoft Graph application synchronization. Includes cmdlets for getting the number of secrets. Notes indicate the availability of beta versions. ```PowerShell Get-MgApplicationSynchronizationSecretCount - Description: Get the number of the resource. - Note: To view the beta release, use Get-MgBetaApplicationSynchronizationSecretCount. ``` -------------------------------- ### Set-MgApplicationSynchronizationJobBulkUploadContent Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Manages the bulk upload operation for a synchronization job. This cmdlet is used to provide content for bulk synchronization tasks for applications. Consult beta documentation for the latest features. ```APIDOC Set-MgApplicationSynchronizationJobBulkUploadContent The bulk upload operation for the job. Note: To view the beta release of this cmdlet, view Set-MgBetaApplicationSynchronizationJobBulkUploadContent. Parameters: (No specific parameters listed in the provided text, but implies job and content context) Returns: (Not specified in the provided text) ``` -------------------------------- ### Invoke Microsoft Graph Instantiate Application Template Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Adds an instance of an application from the Microsoft Entra application gallery into your directory. For non-gallery apps, it configures single sign-on (SSO) modes like SAML SSO and password-based SSO using application templates. ```powershell Invoke-MgInstantiateApplicationTemplate ``` -------------------------------- ### Get Service Principal Member Of Cmdlets Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves the roles or groups a service principal is a member of. This includes cmdlets for getting direct members, members as specific object types (administrative units, directory roles, groups), and counts of members. These cmdlets are read-only and may support query parameters like $expand. ```APIDOC Get-MgServicePrincipalMemberOf -ServicePrincipalId -Filter -Search -Orderby -Select -Expand -CountVariable -ConsistencyLevel -Top -Skip -Count Description: Retrieves roles that this service principal is a member of. Supports $expand. Read-only. Nullable. Parameters: ServicePrincipalId: The unique identifier of the service principal. Filter: OData filter expression. Search: OData search expression. Orderby: OData orderby expression. Select: OData select expression. Expand: OData expand expression. CountVariable: Variable to store the count of items. ConsistencyLevel: Specifies the consistency level for the request. Top: The number of items to return. Skip: The number of items to skip. Count: Include count of items in the response. Returns: A collection of directory objects representing the roles or groups the service principal is a member of. Get-MgServicePrincipalMemberOfAsAdministrativeUnit -ServicePrincipalId -Filter -Search -Orderby -Select -Expand -CountVariable -ConsistencyLevel -Top -Skip -Count Description: Gets the item of type microsoft.graph.directoryObject as microsoft.graph.administrativeUnit. Parameters: ServicePrincipalId: The unique identifier of the service principal. Filter: OData filter expression. Search: OData search expression. Orderby: OData orderby expression. Select: OData select expression. Expand: OData expand expression. CountVariable: Variable to store the count of items. ConsistencyLevel: Specifies the consistency level for the request. Top: The number of items to return. Skip: The number of items to skip. Count: Include count of items in the response. Returns: An administrative unit object. Get-MgServicePrincipalMemberOfAsDirectoryRole -ServicePrincipalId -Filter -Search -Orderby -Select -Expand -CountVariable -ConsistencyLevel -Top -Skip -Count Description: Gets the item of type microsoft.graph.directoryObject as microsoft.graph.directoryRole. Parameters: ServicePrincipalId: The unique identifier of the service principal. Filter: OData filter expression. Search: OData search expression. Orderby: OData orderby expression. Select: OData select expression. Expand: OData expand expression. CountVariable: Variable to store the count of items. ConsistencyLevel: Specifies the consistency level for the request. Top: The number of items to return. Skip: The number of items to skip. Count: Include count of items in the response. Returns: A directory role object. Get-MgServicePrincipalMemberOfAsGroup -ServicePrincipalId -Filter -Search -Orderby -Select -Expand -CountVariable -ConsistencyLevel -Top -Skip -Count Description: Gets the item of type microsoft.graph.directoryObject as microsoft.graph.group. Parameters: ServicePrincipalId: The unique identifier of the service principal. Filter: OData filter expression. Search: OData search expression. Orderby: OData orderby expression. Select: OData select expression. Expand: OData expand expression. CountVariable: Variable to store the count of items. ConsistencyLevel: Specifies the consistency level for the request. Top: The number of items to return. Skip: The number of items to skip. Count: Include count of items in the response. Returns: A group object. Get-MgServicePrincipalMemberOfCount -ServicePrincipalId -Filter -Search -ConsistencyLevel Description: Gets the number of the resource (members). Parameters: ServicePrincipalId: The unique identifier of the service principal. Filter: OData filter expression. Search: OData search expression. ConsistencyLevel: Specifies the consistency level for the request. Returns: The count of members. Get-MgServicePrincipalMemberOfCountAsAdministrativeUnit -ServicePrincipalId -Filter -Search -ConsistencyLevel Description: Gets the number of administrative units associated with the service principal. Parameters: ServicePrincipalId: The unique identifier of the service principal. Filter: OData filter expression. Search: OData search expression. ConsistencyLevel: Specifies the consistency level for the request. Returns: The count of administrative units. Get-MgServicePrincipalMemberOfCountAsDirectoryRole -ServicePrincipalId -Filter -Search -ConsistencyLevel Description: Gets the number of directory roles associated with the service principal. Parameters: ServicePrincipalId: The unique identifier of the service principal. Filter: OData filter expression. Search: OData search expression. ConsistencyLevel: Specifies the consistency level for the request. Returns: The count of directory roles. Get-MgServicePrincipalMemberOfCountAsGroup -ServicePrincipalId -Filter -Search -ConsistencyLevel Description: Gets the number of groups associated with the service principal. Parameters: ServicePrincipalId: The unique identifier of the service principal. Filter: OData filter expression. Search: OData search expression. ConsistencyLevel: Specifies the consistency level for the request. Returns: The count of groups. ``` -------------------------------- ### New-MgServicePrincipalSynchronizationTemplate Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Creates a new navigation property to templates for service principals. ```APIDOC New-MgServicePrincipalSynchronizationTemplate Create new navigation property to templates for servicePrincipals. Parameters: (No explicit parameters listed in source, implies context-based or implicit) Returns: (Not specified in source) Notes: - To view the beta release, see New-MgBetaServicePrincipalSynchronizationTemplate. ``` -------------------------------- ### Find-MgApplication and ServicePrincipal Synchronization Job Schemas Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph These cmdlets are used to discover the latest schema definition for provisioning to an application. They allow retrieval of schema details for both application synchronization jobs and service principal synchronization jobs. ```APIDOC Find-MgApplicationSynchronizationJobSchemaDirectory Purpose: Discover the latest schema definition for provisioning to an application. Note: Also see Find-MgBetaApplicationSynchronizationJobSchemaDirectory for beta release. Find-MgApplicationSynchronizationTemplateSchemaDirectory Purpose: Discover the latest schema definition for provisioning to an application. Note: Also see Find-MgBetaApplicationSynchronizationTemplateSchemaDirectory for beta release. Find-MgServicePrincipalSynchronizationJobSchemaDirectory Purpose: Discover the latest schema definition for provisioning to an application. Note: Also see Find-MgBetaServicePrincipalSynchronizationJobSchemaDirectory for beta release. Find-MgServicePrincipalSynchronizationTemplateSchemaDirectory Purpose: Discover the latest schema definition for provisioning to an application. Note: Also see Find-MgBetaServicePrincipalSynchronizationTemplateSchemaDirectory for beta release. ``` -------------------------------- ### Get Service Principal Owned Objects Cmdlet Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves directory objects that a service principal owns. This is a read-only operation that supports filtering and expanding nested properties. ```APIDOC Get-MgServicePrincipalOwnedObject -ServicePrincipalId -Filter -Search -Orderby -Select -Expand -CountVariable -ConsistencyLevel -Top -Skip -Count Description: Retrieves directory objects that this service principal owns. Read-only. Nullable. Supports $expand, $select nested in $expand, and $filter (/$count eq 0, /$count ne 0, /$count eq 1, /$count ne 1). Parameters: ServicePrincipalId: The unique identifier of the service principal. Filter: OData filter expression. Search: OData search expression. Orderby: OData orderby expression. Select: OData select expression. Expand: OData expand expression. CountVariable: Variable to store the count of items. ConsistencyLevel: Specifies the consistency level for the request. Top: The number of items to return. Skip: The number of items to skip. Count: Include count of items in the response. Returns: A collection of directory objects owned by the service principal. ``` -------------------------------- ### Configure Target Device Group for Remote Desktop Security Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Creates a new targetDeviceGroup object for the remoteDesktopSecurityConfiguration object on the servicePrincipal. A maximum of 10 target device groups can be configured. ```APIDOC New-MgServicePrincipalRemoteDesktopSecurityConfigurationTargetDeviceGroup: Creates a new targetDeviceGroup object for the remoteDesktopSecurityConfiguration object on the servicePrincipal. You can configure a maximum of 10 target device groups. Parameters: - ServicePrincipalId: The unique identifier of a servicePrincipal. - Body: New value for the targetDeviceGroup. Returns: The created targetDeviceGroup. Related Cmdlets: Get-MgServicePrincipalRemoteDesktopSecurityConfiguration ``` -------------------------------- ### Get Microsoft Graph Application Delta Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Efficiently track changes to application resources without performing a full read of the entire collection. This cmdlet is useful for synchronizing application data. ```APIDOC Get-MgApplicationDelta - Description: Get newly created, updated, or deleted applications without performing a full read of the entire resource collection. For more information, see Use delta query to track changes in Microsoft Graph data. - Parameters: - (None specified in snippet, typically requires a delta link from a previous query) - Returns: - (Collection of changed application objects) ``` -------------------------------- ### Get-MgApplication Cmdlets Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph These cmdlets retrieve information about application objects within Microsoft Graph. This includes fetching the properties and relationships of an application, as well as its associated app management policies. ```APIDOC Get-MgApplication Purpose: Get the properties and relationships of an application object. Note: Also see Get-MgBetaApplication for beta release. Get-MgApplicationAppManagementPolicy Purpose: Retrieves the appManagementPolicy applied to a specific application. Note: Also see Get-MgBetaApplicationAppManagementPolicy for beta release. Get-MgApplicationAppManagementPolicyByRef Purpose: Retrieves a reference to the appManagementPolicy applied to a specific application. Note: Also see Get-MgBetaApplicationAppManagementPolicyByRef for beta release. ``` -------------------------------- ### Get Service Principal Transitive Memberships Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves the transitive memberships of a service principal, allowing retrieval of members through direct and indirect group memberships. Supports filtering by specific object types. ```APIDOC Get-MgServicePrincipalTransitiveMemberOf -ServicePrincipalId -Filter -Search -Skip -Top -Count -ConsistencyLevel -Select -Expand Description: Retrieves the transitive memberOf relationships for a service principal. Parameters: -ServicePrincipalId: The unique identifier of the service principal. -Filter: OData filter expression to apply to the query. -Search: Search query to apply to the query. -Skip: Number of items to skip from the beginning of the result set. -Top: Maximum number of items to return. -Count: Include the total count of items in the response. -ConsistencyLevel: Specifies the consistency level for the query (e.g., '1' or 'eventual'). -Select: Specifies the properties to return in the response. -Expand: Specifies related resources to expand in the response. Returns: A collection of directory objects that the service principal is transitively a member of. ``` ```APIDOC Get-MgServicePrincipalTransitiveMemberOfAsAdministrativeUnit -ServicePrincipalId -Filter -Search -Skip -Top -Count -ConsistencyLevel -Select -Expand Description: Retrieves the transitive memberships of a service principal, specifically as Administrative Units. Parameters: -ServicePrincipalId: The unique identifier of the service principal. -Filter: OData filter expression to apply to the query. -Search: Search query to apply to the query. -Skip: Number of items to skip from the beginning of the result set. -Top: Maximum number of items to return. -Count: Include the total count of items in the response. -ConsistencyLevel: Specifies the consistency level for the query (e.g., '1' or 'eventual'). -Select: Specifies the properties to return in the response. -Expand: Specifies related resources to expand in the response. Returns: A collection of administrative unit objects that the service principal is transitively a member of. ``` ```APIDOC Get-MgServicePrincipalTransitiveMemberOfAsDirectoryRole -ServicePrincipalId -Filter -Search -Skip -Top -Count -ConsistencyLevel -Select -Expand Description: Retrieves the transitive memberships of a service principal, specifically as Directory Roles. Parameters: -ServicePrincipalId: The unique identifier of the service principal. -Filter: OData filter expression to apply to the query. -Search: Search query to apply to the query. -Skip: Number of items to skip from the beginning of the result set. -Top: Maximum number of items to return. -Count: Include the total count of items in the response. -ConsistencyLevel: Specifies the consistency level for the query (e.g., '1' or 'eventual'). -Select: Specifies the properties to return in the response. -Expand: Specifies related resources to expand in the response. Returns: A collection of directory role objects that the service principal is transitively a member of. ``` ```APIDOC Get-MgServicePrincipalTransitiveMemberOfAsGroup -ServicePrincipalId -Filter -Search -Skip -Top -Count -ConsistencyLevel -Select -Expand Description: Retrieves the transitive memberships of a service principal, specifically as Groups. Parameters: -ServicePrincipalId: The unique identifier of the service principal. -Filter: OData filter expression to apply to the query. -Search: Search query to apply to the query. -Skip: Number of items to skip from the beginning of the result set. -Top: Maximum number of items to return. -Count: Include the total count of items in the response. -ConsistencyLevel: Specifies the consistency level for the query (e.g., '1' or 'eventual'). -Select: Specifies the properties to return in the response. -Expand: Specifies related resources to expand in the response. Returns: A collection of group objects that the service principal is transitively a member of. ``` ```APIDOC Get-MgServicePrincipalTransitiveMemberOfCount -ServicePrincipalId -Filter -Search -ConsistencyLevel Description: Gets the total number of transitive memberships for a service principal. Parameters: -ServicePrincipalId: The unique identifier of the service principal. -Filter: OData filter expression to apply to the query. -Search: Search query to apply to the query. -ConsistencyLevel: Specifies the consistency level for the query (e.g., '1' or 'eventual'). Returns: An integer representing the count of transitive memberships. ``` ```APIDOC Get-MgServicePrincipalTransitiveMemberOfCountAsAdministrativeUnit -ServicePrincipalId -Filter -Search -ConsistencyLevel Description: Gets the count of transitive memberships of a service principal, specifically as Administrative Units. Parameters: -ServicePrincipalId: The unique identifier of the service principal. -Filter: OData filter expression to apply to the query. -Search: Search query to apply to the query. -ConsistencyLevel: Specifies the consistency level for the query (e.g., '1' or 'eventual'). Returns: An integer representing the count of transitive memberships as Administrative Units. ``` ```APIDOC Get-MgServicePrincipalTransitiveMemberOfCountAsDirectoryRole -ServicePrincipalId -Filter -Search -ConsistencyLevel Description: Gets the count of transitive memberships of a service principal, specifically as Directory Roles. Parameters: -ServicePrincipalId: The unique identifier of the service principal. -Filter: OData filter expression to apply to the query. -Search: Search query to apply to the query. -ConsistencyLevel: Specifies the consistency level for the query (e.g., '1' or 'eventual'). Returns: An integer representing the count of transitive memberships as Directory Roles. ``` ```APIDOC Get-MgServicePrincipalTransitiveMemberOfCountAsGroup -ServicePrincipalId -Filter -Search -ConsistencyLevel Description: Gets the count of transitive memberships of a service principal, specifically as Groups. Parameters: -ServicePrincipalId: The unique identifier of the service principal. -Filter: OData filter expression to apply to the query. -Search: Search query to apply to the query. -ConsistencyLevel: Specifies the consistency level for the query (e.g., '1' or 'eventual'). Returns: An integer representing the count of transitive memberships as Groups. ``` -------------------------------- ### Get Microsoft Graph Application Details Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves specific application objects or their properties from Microsoft Graph. Supports fetching by application ID, unique name, or federated identity credential name. ```APIDOC Get-MgApplicationByAppId - Description: Get the properties and relationships of an application object using its application ID. - Parameters: - AppId: The unique identifier for the application. - Returns: - (Application object properties) Get-MgApplicationById - Description: Return directory objects specified by a list of IDs. Only a subset of user properties are returned by default in v1.0. - Parameters: - Id: The unique identifier for the directory object (application). - Returns: - (Directory object properties) Get-MgApplicationByUniqueName - Description: Get the properties and relationships of an application object using its unique name. - Parameters: - UniqueName: The unique name of the application. - Returns: - (Application object properties) Get-MgApplicationFederatedIdentityCredential - Description: Read the properties and relationships of a federated identity credential object. - Parameters: - (None specified in snippet, likely requires context like Application ID) - Returns: - (Federated identity credential object properties) Get-MgApplicationFederatedIdentityCredentialByName - Description: Read the properties and relationships of a federated identity credential object by name. - Parameters: - (None specified in snippet, likely requires context like Application ID and credential name) - Returns: - (Federated identity credential object properties) Get-MgApplicationExtensionProperty - Description: Read a directory extension definition represented by an extensionProperty object. - Parameters: - (None specified in snippet, likely requires context like Application ID and Extension Property ID) - Returns: - (Extension property object properties) Get-MgApplicationCreatedOnBehalfOf - Description: Retrieves information about the application created on behalf of another entity. Supports filtering by count. - Parameters: - (None specified in snippet, likely requires context like Application ID) - Returns: - (Information about the 'createdOnBehalfOf' relationship) ``` -------------------------------- ### New-MgServicePrincipalSynchronizationJobOnDemand Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Provisions a user account on-demand for a service principal synchronization job. Note: The rate limit for this API is 5 requests per 10 seconds. ```APIDOC New-MgServicePrincipalSynchronizationJobOnDemand Select a user and provision the account on-demand. Parameters: (No explicit parameters listed in source, implies context-based or implicit) Returns: (Not specified in source) Notes: - The rate limit for this API is 5 requests per 10 seconds. - To view the beta release, see New-MgBetaServicePrincipalSynchronizationJobOnDemand. ``` -------------------------------- ### Get Microsoft Graph User App Role Assignment Count Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves the count of app role assignments for a specified user in Microsoft Graph. This cmdlet is part of the Microsoft Graph PowerShell SDK. ```powershell Get-MgUserAppRoleAssignmentCount ``` -------------------------------- ### New-MgUserAppRoleAssignment Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Assigns an app role to a user, creating an appRoleAssignment object. Requires three identifiers to grant the assignment. ```APIDOC New-MgUserAppRoleAssignment Assign an app role to a user, creating an appRoleAssignment object. Parameters: (Requires three identifiers: user, app, and role) Returns: (Not specified in source) Notes: - To view the beta release, see New-MgBetaUserAppRoleAssignment. ``` -------------------------------- ### Get Service Principal Token Lifetime Policies Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Retrieves token lifetime policies assigned to a service principal. This cmdlet is part of the Microsoft Graph PowerShell SDK for managing Azure AD resources. ```APIDOC Get-MgServicePrincipalTokenLifetimePolicy -ServicePrincipalId -Filter -Search -Skip -Top -Count -ConsistencyLevel -Select -Expand Description: Retrieves the token lifetime policies assigned to a service principal. Parameters: -ServicePrincipalId: The unique identifier of the service principal. -Filter: OData filter expression to apply to the query. -Search: Search query to apply to the query. -Skip: Number of items to skip from the beginning of the result set. -Top: Maximum number of items to return. -Count: Include the total count of items in the response. -ConsistencyLevel: Specifies the consistency level for the query (e.g., '1' or 'eventual'). -Select: Specifies the properties to return in the response. -Expand: Specifies related resources to expand in the response. Returns: A collection of token lifetime policy objects assigned to the service principal. ``` ```APIDOC Get-MgServicePrincipalTokenLifetimePolicyCount -ServicePrincipalId -Filter -Search -ConsistencyLevel Description: Gets the number of token lifetime policies assigned to a service principal. Parameters: -ServicePrincipalId: The unique identifier of the service principal. -Filter: OData filter expression to apply to the query. -Search: Search query to apply to the query. -ConsistencyLevel: Specifies the consistency level for the query (e.g., '1' or 'eventual'). Returns: An integer representing the count of token lifetime policies. ``` -------------------------------- ### Create Application Synchronization Template - Microsoft Graph PowerShell Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Creates a new navigation property to templates for applications. This cmdlet is used to define synchronization templates for applications. ```APIDOC New-MgApplicationSynchronizationTemplate Creates a new navigation property to templates for applications. Parameters: -InputObject: The object to create. (Type: Microsoft.Graph.Models.IMicrosoftGraphSynchronizationTemplate) -ApplicationId: The unique identifier for the application. (Type: System.String) Returns: The created synchronization template object. Note: To view the beta release, use New-MgBetaApplicationSynchronizationTemplate. ``` -------------------------------- ### Create Microsoft Graph Application Objects Source: https://learn.microsoft.com/en-us/powershell/module/?view=graph-powershell-1.0/microsoft.graph Cmdlets for creating new application-related objects within Microsoft Graph. This includes creating new application objects, assigning policies, defining extension properties, and managing federated identity credentials. ```APIDOC New-MgApplication Creates a new application object. Parameters: - BodyParameter: The application object to create. Returns: - The created application object. New-MgApplicationAppManagementPolicyByRef Assigns an appManagementPolicy policy object to an application or service principal. The application or service principal adopts this policy over the tenant-wide setting. Parameters: - ApplicationId: The ID of the application or service principal. - BodyParameter: The reference to the policy object. Returns: - An empty response or status indicating success. New-MgApplicationExtensionProperty Creates a new directory extension definition, represented by an extensionProperty object. Parameters: - ApplicationId: The ID of the application to add the extension property to. - BodyParameter: The extension property object to create. Returns: - The created extension property object. New-MgApplicationFederatedIdentityCredential Creates a new federatedIdentityCredential object for an application. Allows configuring trust relationships for authentication. Maximum of 20 objects can be added per application. Parameters: - ApplicationId: The ID of the application. - BodyParameter: The federated identity credential object to create. Returns: - The created federated identity credential object. Related Information: - Beta versions available via Microsoft.Graph.Beta.Applications module. ```