Select-​Azure​AD​Group​Ids​User​Is​Member​Of

Selects the groups that a user is a member of.

Syntax

Select-AzureADGroupIdsUserIsMemberOf
      -GroupIdsForMembershipCheck <GroupIdsForMembershipCheck>
      [-InformationAction <ActionPreference>]
      [-InformationVariable <String>]
      -ObjectId <String>
      [<CommonParameters>]

Description

The Select-AzureADGroupIdsUserIsMemberOf cmdlet selects the groups that a user is a member of in Azure Actve Directory (AD).

Examples

Example 1: Get the group membership of a group for a user

PS C:\> $Groups = New-Object Microsoft.Open.AzureAD.Model.GroupIdsForMembershipCheck
PS C:\> $Groups.GroupIds = (Get-AzureADGroup -Top 1).ObjectId
PS C:\> $UserID = (Get-AzureADUser -Top 1).ObjectId
PS C:\> Select-AzureADGroupIdsUserIsMemberOf  -ObjectId $UserId -GroupIdsForMembershipCheck $Groups

OdataMetadata                                                                                   Value
-------------                                                                                   -----
https://graph.windows.net/85b5ff1e-0402-400c-9e3c-0f9e965325d1/$metadata#Collection(Edm.String) {093fc0e2-1d6e-4a1b-9bf8-effa0196f1f7}

The first command creates a GroupIdsForMembershipCheck object, and then stores it in the $Groups variable.

The second command gets an ID for a group by using the Get-AzureADGroup cmdlet, and then stores it as a property of $Groups.

The third command gets the ID of a user by using the Get-AzureADUser cmdlet, and then stores it in the $UserId variable.

The final command gets the group membership of a group for a user identified by $UserId. This cmdlet returns an oData object. To find the groups this user is a member of, iterate through the Value attribute of the returned oData objects.

Required Parameters

-GroupIdsForMembershipCheck

Specifies an array of group object IDs.

Type:GroupIdsForMembershipCheck
Position:Named
Default value:None
Accept pipeline input:True (ByPropertyName, ByValue)
Accept wildcard characters:False
-ObjectId

Specifies the ID of a user (as a UPN or ObjectId) in Azure AD.

Type:String
Position:Named
Default value:None
Accept pipeline input:True (ByPropertyName, ByValue)
Accept wildcard characters:False

Optional Parameters

-InformationAction

Specifies how this cmdlet responds to an information event. The acceptable values for this parameter are:- Continue

  • Ignore
  • Inquire
  • SilentlyContinue
  • Stop
  • Suspend
Type:ActionPreference
Aliases:infa
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-InformationVariable

Specifies an information variable.

Type:String
Aliases:iv
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False