0 votes

Is there a way to extend the Get-AdmGroupMember for easier cloud user management and better expressing the actual "user" object your working with?

https://www.adaxes.com/sdk/Get-AdmGroupMember/

Is there any extention available like -properties to extend the members with extra attributes to distinguish like "On-Premises Sync Enabled". Currently Azure groups can contain 4 types of "user" that can be member of a group:

  • a Service Principal this type isn't even returned as a member of the group by Get-AdmGroupMember.
    • Type: Service Principal
  • Office356 Guest account, invited external
    • Type: User
    • CreationType: Invitation
  • Hybrid account, hybrid sync
    • Type: User
    • onPremisesSyncEnabled: True
  • Cloud user, user created in Office365
    • Type: User

Get-AdmGroupMember everything looks the same.


DistinguishedName : CN=Guest\0AUID:141dd7c33dc0000000000000,OU=Users,DC=dummy,DC=onmicrosoft,DC=com

ObjectClass : user

Name : Guest

ObjectGUID : 4564644-3dc2-45f6-86f1-000000000000000

SID : S-1-15-00000000-337500099-1173765570-58978694-00000000


DistinguishedName : CN=Cloud User\0AUID:141dd7c33dc0000000000000,OU=Users,DC=dummy,DC=onmicrosoft,DC=com

ObjectClass : user

Name : cloud user

ObjectGUID : 141dd7c3-3dc2-45f6-86f1-000000000000000

SID : S-1-15-00000000-337500099-1173765570-58978694-00000000


DistinguishedName : CN=Hybrid User\0AUID:d7dc94fa60d849a000000000000,OU=Users,DC=dummy,DC=onmicrosoft,DC=com

ObjectClass : user

Name : Hybrid User

ObjectGUID : d7dc94fa-60d8-49a9-aebb-0000000000

SID : S-1-15-000000000000-3621557498-1235837144-3060644782-00000000000

by (40 points)

1 Answer

0 votes
by (272k points)

Hello Peter,

Unfortunately, there is no such possibility. However, thank you for the suggestion. We forwarded it to the corresponding department for consideration.

Related questions

0 votes
1 answer

Using this built in function: There is no option to change the domain on the user account, however this is not the domain we use for UPN. However after creating a user, you can change it but trying to avoid going back into the object.

asked Apr 14, 2023 by mightycabal (1.0k points)
0 votes
1 answer

I currently have a Custom Command that is configured for User objects, but I would like to perform actions against a Computer object in the same command. E.g. I have a ... Users, there's no Action Set to disable Computers. Is there a workaround here? Thanks!

asked Jul 28, 2020 by bavery (250 points)
0 votes
1 answer

Hi Is there a method to read the amount of returned objects from Get-AdmGroupMember cmdlet (and other) ? .Count does not work, nor does .Length. For example: $MembersList = ... Maybe I'm just fooling around in this modern object.hell.world ? :lol: - Thanks

asked Mar 16, 2017 by Boxx.dk (2.6k points)
0 votes
1 answer

Hi When reading the REST API documentation it does not mention working directly against Azure AD and Exchange Online. Will this be added? Thanks /Peter Sonander

asked Jan 26, 2023 by Sonander (40 points)
0 votes
1 answer

Hello, is there a way to automatically create a user after creating a user in a different domain? Let me explain: We have a Management Domain we own and a new ... be created automatically We got a adaxes service account in both domains. Thanks in advance!

asked May 14, 2019 by Redfruit (100 points)
3,346 questions
3,047 answers
7,782 comments
544,997 users