AzureAD
The Azure Active Directory PowerShell for Graph module can be downloaded and installed from the PowerShell Gallery, www.powershellgallery.com. The gallery uses the PowerShellGet module. The PowerShellGet module requires PowerShell 3.0 or newer and requires one of the following operating systems:
Windows 10 Windows 8.1 Pro Windows 8.1 Enterprise Windows 7 SP1 Windows Server 2016 TP5 Windows Server 2012 R2 Windows Server 2008 R2 SP1
PowerShellGet also requires .NET Framework 4.5 or above. You can install .NET Framework 4.5 or above from here. For more information, please refer to this link For more detailed info on installation of the AzureAD cmdlets please see: Azure Active Directory PowerShell for Graph.
These are the cmdlets in the Azure Active Directory PowerShell for Graph module.
Administrative Units
Set-Azure |
Updates an administrative unit. |
Application Proxy Application Management
Get-Azure |
Retrieve one or more Application Proxy applications |
Get-Azure |
Retrieve the Application Proxy connector group for an Application Proxy application |
New-Azure |
Create a new Application Proxy Application |
Remove-Azure |
Remove an Application Proxy Application |
Remove-Azure |
Remove the Application Proxy Connector group from an Application Proxy Application |
Set-Azure |
Set the properties of an Application Proxy Application |
Set-Azure |
Set the custom domain certificate for an Application Proxy Application |
Set-Azure |
Set the single sign-on properties for an Application Proxy Application |
Application Proxy Connector Management
Get-Azure |
Retrieve an Application Proxy connector |
Get-Azure |
Retrieve an Application Proxy connector group |
Get-Azure |
Retrieve the Application Proxy connector group an Application Proxy application is a member of |
New-Azure |
Create a new Application Proxy Connector group |
Remove-Azure |
Remove an Application Proxy Connector group |
Set-Azure |
Set the properties of an Application Proxy Application Connector group |
Set-Azure |
Set the properties for an Application Proxy Connector |
Set-Azure |
Set the properties for an Application Proxy Connector group |
Applications
Add-Azure |
Adds an owner to an application. |
Get-Azure |
Gets an application. |
Get-Azure |
Gets application extension properties. |
Get-Azure |
Gets the key credentials for an application. |
Get-Azure |
Retrieve the logo of an application |
Get-Azure |
Gets the owner of an application. |
Get-Azure |
Gets the password credential for an application. |
Get-Azure |
Retrieve the service endpoint of an application |
Get-Azure |
Retrieve the deleted applications in the directory |
New-Azure |
Creates an application. |
New-Azure |
Creates an application extension property. |
New-Azure |
Creates a key credential for an application. |
New-Azure |
Creates a password credential for an application. |
Remove-Azure |
Delete an application by objectId. |
Remove-Azure |
Removes an application extension property. |
Remove-Azure |
Removes a key credential from an application. |
Remove-Azure |
Removes an owner from an application. |
Remove-Azure |
Removes a password credential from an application. |
Set-Azure |
Updates an application. |
Set-Azure |
Sets the logo for an Application |
AzureAD
Add-Azure |
Adds an administrative unit member. |
Add-Azure |
Adds an application policy. |
Add-Azure |
Adds a scoped role membership to an administrative unit. |
Add-Azure |
Adds a service principal policy. |
Get-Azure |
Gets an administrative unit. |
Get-Azure |
Gets a member of an administrative unit. |
Get-Azure |
Gets an application policy. |
Get-Azure |
Gets a directory setting. |
Get-Azure |
Gets a directory setting template. |
Get-Azure |
Gets an object setting. |
Get-Azure |
Gets a policy. |
Get-Azure |
Get the objects to which a policy is applied |
Get-Azure |
Gets a scoped role membership from an administrative unit. |
Get-Azure |
Get the service principal policy |
New-Azure |
Creates an administrative unit. |
New-Azure |
Creates a directory settings object. |
New-Azure |
Creates a settings object. |
New-Azure |
Creates a policy. |
Remove-Azure |
Removes an administrative unit. |
Remove-Azure |
Removes an administrative unit member. |
Remove-Azure |
Deletes a directory setting in Azure Active Directory. |
Remove-Azure |
Deletes settings in Azure Active Directory. |
Remove-Azure |
Removes a policy. |
Remove-Azure |
Removes a scoped role membership. |
Set-Azure |
Updates a directory setting in Azure Active Directory. |
Set-Azure |
Updates object settings. |
Set-Azure |
Updates a policy. |
s |
Retrieve the members of an Application Proxy connector group |
Certificate Authorities
Get-Azure |
Gets the trusted certificate authority. |
New-Azure |
Creates a trusted certificate authority. |
Remove-Azure |
Removes a trusted certificate authority. |
Set-Azure |
Updates a trusted certificate authority. |
Connect to your directory
Connect-AzureAD | Connects with an authenticated account to use Active Directory cmdlet requests. |
Disconnect-AzureAD | Disconnects the current session from an Azure Active Directory tenant. |
Contacts
Get-Azure |
Gets a contact from Azure Active Directory. |
Get-Azure |
Get the direct reports for a contact. |
Get-Azure |
Gets the manager of a contact. |
Get-Azure |
Get a contact membership. |
Get-Azure |
Retrieves the thumbnail photo of a contact |
Remove-Azure |
Removes a contact. |
Remove-Azure |
Removes a contact's manager. |
Select-Azure |
Get groups in which a contact is a member. |
Contracts
Get-Azure |
Gets a contract. |
Deleted Objects
Restore-Azure |
Restores a previously deleted application |
Devices
Add-Azure |
Adds a registered owner for a device. |
Add-Azure |
Adds a registered user for a device. |
Get-Azure |
Gets a device from Active Directory. |
Get-Azure |
This cmdlet retrieves the device configuration object |
Get-Azure |
Gets the registered owner of a device. |
Get-Azure |
Gets a registered user. |
New-Azure |
Creates a device. |
Remove-Azure |
Deletes a device. |
Remove-Azure |
Removes the registered owner of a device. |
Remove-Azure |
Removes a registered user from a device. |
Set-Azure |
Updates a device. |
Directory
Get-Azure |
Gets subscribed SKUs to Microsoft services. |
Get-Azure |
Gets the details of a tenant. |
Set-Azure |
Set contact details for a tenant |
Directory Objects
Get-Azure |
Retrieves the object(s) specified by the objectIds parameter |
Directory Roles
Add-Azure |
Adds a member to a directory role. |
Enable-Azure |
Activates an existing directory role in Azure Active Directory. |
Get-Azure |
Gets a directory role. |
Get-Azure |
Gets members of a directory role. |
Get-Azure |
Gets directory role templates. |
Remove-Azure |
Removes a member of a directory role. |
Domains
Confirm-Azure |
Validate the ownership of a domain. |
Get-Azure |
Gets a domain. |
Get-Azure |
This cmdlet retrieves the objects that are referenced by a given domain name |
Get-Azure |
Gets the domain's service configuration records from the serviceConfigurationRecords navigation property. |
Get-Azure |
Retrieve the domain verification DNS record for a domain |
New-Azure |
Creates a domain. |
Remove-Azure |
Removes a domain. |
Set-Azure |
Updates a domain. |
Extension Properties
Get-Azure |
Gets extension properties registered with Azure AD. |
Groups
Add-Azure |
Adds a member to a group. |
Add-Azure |
Adds an owner to a group. |
Add-Azure |
This cmdlet is used to add a new lifecycle policy to a group |
Get-Azure |
Gets a group. |
Get-Azure |
Gets a group application role assignment. |
Get-Azure |
Gets a member of a group. |
Get-Azure |
Gets an owner of a group. |
Get-Azure |
Gets information about groups in Azure AD. |
Get-Azure |
This cmdlet returns information about one or more groups |
Get-Azure |
This cmdlet is used to retrieve the lifecycle policy of a group |
Get-Azure |
This cmdlet is used to retrieve the lifecycle policy for a group. |
New-Azure |
Creates a group. |
New-Azure |
Assign a group of users to an application role. |
New-Azure |
This cmdlet is used to create a new group |
New-Azure |
Creates an Azure AD group. |
New-Azure |
This cmdlet can be used to create a new lifecycle policy for a group |
Remove-Azure |
Removes a group. |
Remove-Azure |
Delete a group application role assignment. |
Remove-Azure |
Removes a member from a group. |
Remove-Azure |
Removes an owner from a group. |
Remove-Azure |
This cmdlet is used to remove an existing group |
Remove-Azure |
Removes an Azure AD group. |
Remove-Azure |
This cmdlet can be used to remove a lifecycle policy for a group |
Remove-Azure |
This cmdlet can be used to remove a lifecycle policy from a group |
Reset-Azure |
This cmdlet is used to reset the lifecycle of a group |
Select-Azure |
Gets group IDs that a group is a member of. |
Set-Azure |
Updates a specific group in Azure Active Directory |
Set-Azure |
This cmdlet is used to update group information |
Set-Azure |
Changes attribute values on an Azure AD group. |
OAuth2
Get-Azure |
Gets OAuth2PermissionGrant entities. |
Remove-Azure |
Removes an oAuth2PermissionGrant. |
Service Principals
Add-Azure |
Adds an owner to a service principal. |
Get-Azure |
Gets a service principal application role assignment. |
Get-Azure |
Gets a service principal. |
Get-Azure |
Get objects created by a service principal. |
Get-Azure |
Get key credentials for a service principal. |
Get-Azure |
Get a service principal membership. |
Get-Azure |
Gets an oAuth2PermissionGrant for a service principal. |
Get-Azure |
Gets an object owned by a service principal. |
Get-Azure |
Get the owner of a service principal. |
Get-Azure |
Get credentials for a service principal. |
New-Azure |
Assigns a service principal to an application role. |
New-Azure |
Creates a service principal. |
New-Azure |
Create a new key credential for a service principal |
New-Azure |
Creates a password credential for a service principal. |
Remove-Azure |
Removes a service principal application role assignment. |
Remove-Azure |
Removes a service principal. |
Remove-Azure |
Removes a key credential from a service principal. |
Remove-Azure |
Removes an owner from a service principal. |
Remove-Azure |
Removes a password credential from a service principal. |
Select-Azure |
Selects the groups in which a service principal is a member. |
Set-Azure |
Updates a service principal. |
Users
Get-Azure |
Gets a user. |
Get-Azure |
Get a user application role assignment. |
Get-Azure |
Get objects created by the user. |
Get-Azure |
Get the user's direct reports. |
Get-Azure |
Gets a user extension. |
Get-Azure |
Retrieves license details for a user |
Get-Azure |
Gets the manager of a user. |
Get-Azure |
Get user memberships. |
Get-Azure |
Gets an oAuth2PermissionGrant object for a user |
Get-Azure |
Get registered devices owned by a user. |
Get-Azure |
Get objects owned by a user. |
Get-Azure |
Get devices registered by a user. |
Get-Azure |
Retrieve the thumbnail photo of a user |
New-Azure |
This cmdlet is used to invite a new external user to your directory |
New-Azure |
Creates an AD user. |
New-Azure |
Assigns a user to an application role. |
Remove-Azure |
Removes a user. |
Remove-Azure |
Removes a user application role assignment. |
Remove-Azure |
Removes a user extension. |
Remove-Azure |
Removes a user's manager. |
Revoke-Azure |
Invalidates the refresh tokens issued to applications for the current user. |
Revoke-Azure |
Invalidates the refresh tokens issued to applications for a user. |
Select-Azure |
Selects the groups that a user is a member of. |
Set-Azure |
Updates a user. |
Set-Azure |
Sets a user extension. |
Set-Azure |
Adds or removes licenses for a Microsoft online service to the list of assigned licenses for a user. |
Set-Azure |
Updates a user's manager. |
Set-Azure |
Sets the password of a user. |
Set-Azure |
Set the thumbnail photo for a user |
Update-Azure |
Updates the password for the signed-in user. |