Scan for Microsoft 365 Groups created with user's first or last name
Summary
We can use the group naming policy to enforce a consistent naming strategy for groups created by users in our organization. A naming policy can help us and our users identify the function of the group. We can use the policy to block specific words from being used in group names and aliases. But what if we need to find out the list of Microsoft 365 groups created with user’s givenName or surname as their mail?
This sample script scans the Microsoft 365 groups that may contain user’s first or last name as the group mail.
Note
The filter condition can be changed as per your requirement.
$groupsToFlag = @()
$users = m365 aad user list --properties 'displayName,givenName,surname' -o json | ConvertFrom-Json
$groups = m365 aad o365group list -o json | ConvertFrom-Json
foreach ($user in $users) {
$userGivenName = $user.givenName
$userSurname = $user.surname
if ($userGivenName -and $userSurname) {
$groupsMatch = $groups | Where-Object { $_.mail -like "*$userGivenName*" -or $_.mail -like "*$userSurname*" }
foreach ($group in $groupsMatch) {
$groupObject = New-Object -TypeName PSObject
$groupObject | Add-Member -MemberType NoteProperty -Name "groupId" -Value $group.id
$groupObject | Add-Member -MemberType NoteProperty -Name "groupMail" -Value $group.mail
$groupObject | Add-Member -MemberType NoteProperty -Name "userGivenName" -Value $userGivenName
$groupObject | Add-Member -MemberType NoteProperty -Name "userSurname" -Value $userSurname
$groupsToFlag += $groupObject
}
}
}
$groupsToFlag | Format-Table -AutoSize
Check out the CLI for Microsoft 365 to learn more at: https://aka.ms/cli-m365
Source Credit
Sample first appeared on Scan for Microsoft 365 Groups created with user's first or last name | CLI for Microsoft 365
Contributors
Author(s) |
---|
Joseph Velliah |
Disclaimer
THESE SAMPLES ARE PROVIDED AS IS WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING ANY IMPLIED WARRANTIES OF FITNESS FOR A PARTICULAR PURPOSE, MERCHANTABILITY, OR NON-INFRINGEMENT.