使用 Azure Active Directory 建立基本群組並新增成員Create a basic group and add members using Azure Active Directory

您可以使用 Azure Active Directory (Azure AD) 入口網站建立基本群組。You can create a basic group using the Azure Active Directory (Azure AD) portal. 基於此文章的目的,一個基本的群組會由資源擁有者 (系統管理員) 新增到單一資源,並包含需要存取該資源的特定成員 (員工)。For the purposes of this article, a basic group is added to a single resource by the resource owner (administrator) and includes specific members (employees) that need to access that resource. 如需更複雜的案例,包括動態成員資格和規則建立,請參閱Azure Active Directory 使用者管理文件For more complex scenarios, including dynamic memberships and rule creation, see the Azure Active Directory user management documentation.

建立基本群組並新增成員Create a basic group and add members

您可以同時建立基本群組並新增成員。You can create a basic group and add your members at the same time.

建立基本群組並新增成員To create a basic group and add members

  1. 使用目錄的全域系統管理員帳戶登入 Azure 入口網站Sign in to the Azure portal using a Global administrator account for the directory.

  2. 選取 [Azure Active Directory] 、[群組] ,然後選取 [新增群組] 。Select Azure Active Directory, Groups, and then select New group.

    顯示 [群組] 的 Azure AD 頁面

  3. 在 [群組] 頁面中,填妥必要資訊。In the Group page, fill out the required information.

    已填入範例資訊的 [新增群組] 頁面

    • 群組類型 (必要)Group type (required). 選取預先定義的群組類型。Select a pre-defined group type. 其中包括:This includes:

      • 安全性Security. 用來管理成員和電腦對使用者群組所共用之資源的存取權。Used to manage member and computer access to shared resources for a group of users. 例如,您可以針對特定安全性原則建立安全性群組。For example, you can create a security group for a specific security policy. 透過這麼做,您可以將一組權限同時授與所有成員,而不必個別為每個成員新增權限。By doing it this way, you can give a set of permissions to all the members at once, instead of having to add permissions to each member individually. 如需管理資源存取權的詳細資訊,請參閱使用 Azure Active Directory 群組來管理資源的存取權For more info about managing access to resources, see Manage access to resources with Azure Active Directory groups.

      • Office 365Office 365. 透過將共用信箱、行事曆、檔案、SharePoint 網站等的存取權授與成員,來提供共同作業的機會。Provides collaboration opportunities by giving members access to a shared mailbox, calendar, files, SharePoint site, and more. 此選項也可讓您將群組的存取權授與組織外的人員。This option also lets you give people outside of your organization access to the group. 如需 Office 365 群組的詳細資訊,請參閱了解 Office 365 群組 (機器翻譯)。For more info about Office 365 Groups, see Learn about Office 365 Groups.

    • 群組名稱 (必要)Group name (required). 為群組新增名稱,請使用易記且合理的名稱。Add a name for the group, something that you'll remember and that makes sense. 系統會執行檢查,以確認名稱是否已用於其他群組。A check will be performed to determine if the name is already used for another group. 如果名稱已在使用中,為了避免重複命名,系統會要求您修改群組名稱。If the name is already in use, to avoid duplicate naming, you'll be asked to modify the name of your group.

    • 群組描述。Group description. 為群組新增選擇性的描述。Add an optional description to your group.

    • 成員資格類型 (必要)Membership type (required). 選取預先定義的成員資格類型。Select a pre-defined membership type. 其中包括:This includes:

      • 已指派Assigned. 讓您將特定使用者新增為此群組的成員並具有唯一權限。Lets you add specific users to be members of this group and to have unique permissions. 基於此文章的目的,我們會使用此選項。For the purposes of this article, we're using this option.

      • 動態使用者Dynamic user. 讓您使用動態成員資格規則來自動新增及移除成員。Lets you use dynamic membership rules to automatically add and remove members. 如果成員的屬性出現變化,系統會查看您針對目錄所設定的動態群組規則,以判斷該成員是否仍符合規則需求 (並新增該成員),或已不再符合規則需求 (並移除該成員)。If a member's attributes change, the system looks at your dynamic group rules for the directory to see if the member meets the rule requirements (is added) or no longer meets the rules requirements (is removed).

      • 動態裝置Dynamic device. 讓您使用動態群組規則來自動新增及移除裝置。Lets you use dynamic group rules to automatically add and remove devices. 如果裝置的屬性出現變化,系統會查看您針對目錄所設定的動態群組規則,以判斷該裝置是否仍符合規則需求 (並新增該裝置),或已不再符合規則需求 (並移除該裝置)。If a device's attributes change, the system looks at your dynamic group rules for the directory to see if the device meets the rule requirements (is added) or no longer meets the rules requirements (is removed).

        重要

        您可以針對裝置或使用者建立動態群組,但不能同時建立。You can create a dynamic group for either devices or users, but not for both. 您也無法根據裝置擁有者的屬性來建立裝置群組。You also can't create a device group based on the device owners' attributes. 裝置成員資格規則只能參考裝置屬性。Device membership rules can only reference device attributions. 如需針對使用者及裝置建立動態群組的詳細資訊,請參閱建立動態群組並檢查狀態For more info about creating a dynamic group for users and devices, see Create a dynamic group and check status.

  4. 選取 [建立] 。Select Create.

    您的群組已建立,並已可以新增成員。Your group is created and ready for you to add members.

  5. 選取 [群組] 頁面中的 [成員] 區域,然後從 [選取成員] 頁面開始搜尋要新增至群組的成員。Select the Members area from the Group page, and then begin searching for the members to add to your group from the Select members page.

    在群組建立程序期間選取群組成員

  6. 完成新增成員之後,請選擇 [選取] 。When you're done adding members, choose Select.

    [群組概觀] 頁面會更新,以顯示已新增至群組的成員數目。The Group Overview page updates to show the number of members who are now added to the group.

    醒目提示成員數目的 [群組概觀] 頁面

開啟或關閉歡迎電子郵件Turn on or off welcome email

任何新建立的 Office 365 群組,其成員資格無論為動態或靜態,都會向新增至群組的所有使用者傳送歡迎通知。When any new Office 365 group is created, whether with dynamic or static membership, a welcome notification is sent to all users who are added to the group. 當使用者或裝置的任何屬性變更時,就會處理組織中的所有動態群組規則,以因應潛在的成員資格變更。When any attributes of a user or device change, all dynamic group rules in the organization are processed for potential membership changes. 新增的使用者隨後也會收到歡迎通知。Users who are added then also receive the welcome notification. 您可以在 Exchange PowerShell 中關閉此行為。You can turn this behavior off in Exchange PowerShell.

後續步驟Next steps

在建立群組並具有至少一個使用者之後,您便可以:Now that you've added a group and at least one user, you can: