Adds members to an existing Azure group that is managed by DRA.
Add-AzureDRAGroupMembers -Tenant <String> [-Contacts <String[]>] [-Groups <String[]>] [-Users <String[]>] [-AzureContacts <String[]>] [-AzureGroups <String[]>] [-AzureUsers <String[]>] -Identifier <String> [-DRARestServer <String>] [-DRARestPort <Int32>] [-IgnoreCertificateErrors <SwitchParameter>] [-Force <SwitchParameter>] [-Timeout <Int32>] [<CommonParameters>]
The Add-AzureDRAGroupMembers cmdlet adds objects to an Azure group managed by DRA. The requesting user must have the Add Object to Azure Group power or a custom power with the necessary powers for the requested attributes. The command accepts arrays of identifiers for each of the supported object types that can be members of a group. An identifier and at least one member must be specified.
Attribute / Description |
Values |
||||
---|---|---|---|---|---|
Required |
Position |
Default Value |
Accept Pipeline input? |
Accept wildcard characters? |
|
Contacts [<String[]>] An array of existing Active Directory contact identifiers to add to the Azure group. An identifier can be a distinguished name. |
false |
named |
|
true (ByPropertyName) |
false |
Groups [<String[]>] An array of existing Active Directory group identifiers to add to the Azure group. An identifier can be a distinguished name. |
false |
named |
|
true (ByPropertyName) |
false |
Users [<String[]>] An array of existing Active Directory user identifiers to add to the Azure group. An identifier can be a distinguished name. |
false |
named |
|
true (ByPropertyName) |
false |
AzureContacts [<String[]>] An array of existing Azure contact identifiers to add to the Azure group. An identifier is a distinguished name. An identifier is a distinguished name, for example, CN=CB58BFCE-1E49-4FA5-AF0A-E2B5068F8073,AZ=corp", and multiple distinguished names can be comma separated. "CN=CB58BFCE-1E49-4FA5-AF0A-E2B5068F8073,AZ=corp", "CN=C503F54F-6357-4831-A74A-B2EA06ED6806,AZ=corp" |
false |
named |
|
true (ByPropertyName) |
false |
AzureGroups [<String[]>] An array of existing Azure group identifiers to add to the Azure group.An identifier is a distinguished name, for example, "CN=CB58BFCE-1E49-4FA5-AF0A-E2B5068F8073,az=corp", and multiple distinguished names can be comma separated:"CN=CB58BFCE-1E49-4FA5-AF0A-E2B5068F8073,az=corp", "CN=C503F54F-6357-4831-A74A-B2EA06ED6806,az=corp" |
false |
named |
|
true (ByPropertyName) |
false |
AzureUsers [<String[]>] An array of existing Azure user identifiers to add to the Azure group.An identifier is a distinguished name, for example, "CN=7939934-425325-35353-35235B,az=corp", and multiple distinguished names can be comma separated:"CN=7939934-425325-35353-35235B,az=corp", "CN=A30226EA-6A55-43C1-B7AF-E694BDF97836,az=corp" |
false |
named |
|
true (ByPropertyName) |
false |
Identifier <String> The GUID of the Azure group. For example: 3FB3B182-FAA2-476A-9843-5F77B245DD03 |
true |
named |
|
true (ByPropertyName) |
false |
Tenant <String> The Tenant ID of the object in GUID or displayname format. For example: b201dhg8-087e-5n9d-9986-c4d987bfa0b1 or MyTenant |
true |
named |
|
true (ByPropertyName) |
false |
DRARestServer [<String>] The name of the computer running the DRA REST Service. The requested DRA operation will execute on this server. If the parameter is not specified, the value defaults to 'localhost'. |
false |
named |
true (ByPropertyName) |
false |
|
DRARestPort [<Int32>] The port where the DRA REST Service listens for requests. This parameter is used only when the DRARestServer parameter is also specified. If the parameter is not specified, the value defaults to 8755. |
false |
named |
8755 |
true (ByPropertyName) |
false |
IgnoreCertificateErrors [<SwitchParameter>] Allows the request to bypass any SSL certificate errors, such as the InvalidOperation error that occurs when the REST Service is bound to a self-signed certificate. |
false |
named |
false |
false |
|
Force [<SwitchParameter>] Suppresses any request for user input and supplies a 'yes' response. For example: -Force with a delete request will perform the delete without presenting the confirmation request to the user. |
false |
named |
false |
false |
|
Timeout [<Int32>] The wait time in seconds before the request to the DRA REST server times out. To specify an infinite timeout, you can set this parameter to -1. |
false |
named |
100 seconds |
true (ByPropertyName) |
false |
<CommonParameters> Verbose, Debug, ErrorAction, ErrorVariable, WarningAction, WarningVariable, OutBuffer, PipelineVariable, and OutVariable. For more information, see About CommonParameters. |
|
|
|
|
|
NOTE:For more information, type "Get-Help Add-AzureDRAGroupMembers -detailed". For technical information, type "Get-Help Add-AzureDRAGroupMembers -full".
Example 3-1 1
PS C:\>Add-AzureDRAGroupMembers -Tenant MyTenant -Identifier 23225bb1-5ac0-4b4c-a23c-beb7fad44b65 -Contact "CN=My Contact,OU=ABC,OU=ABC-Parent,DC=MYDOMAIN,DC=corp" -Groups "CN=My Group,OU=Accounting,DC=MYDOMAIN,DC=corp" "-Users "CN=My User,OU=Users,OU=ABC,OU=ABC-Parent,DC=MYDOMAIN,DC=corp" -AzureContacts "CN=299b52d3-79be-4748-ab0f-e2374f0aa7b4,AZ=MyTenant" -AzureGroups "CN=7939934-425325-35353-35235B,AZ=MyTenant" -AzureUsers "CN=CB58BFCE-1E49-4FA5-AF0A-E2B5068F8073,AZ=MyTenant"
This example adds an Azure contact, an Azure group, an Azure user, a contact, a group, and a user to the Azure group identified by the GUID 23225bb1-5ac0-4b4c-a23c-beb7fad44b65 in the Azure tenant named MyTenant. Multiple Azure objects of any type can be added by using a comma to separate the members.
Example 3-2 2
PS C:\>Add-AzureDRAGroupMembers -Tenant MyTenant -Identifier 23225bb1-5ac0-4b4c-a23c-beb7fad44b65 -Groups "CN=MyGroup,OU=Accounting,DC=MYDOMAIN,DC=corp" -Users "CN=My User,OU=Users,OU=ABC,OU=ABC-Parent,DC=MYDOMAIN,DC=corp" -AzureGroups "CN=7939934-425325-35353-35235B,az=MyTenant" -AzureUsers "CN=CB58BFCE-1E49-4FA5-AF0A-E2B5068F8073,az=MyTenant","CN=09A8BFCE-1E93-0AA5-990A-A8C0579FB128,az=MyTenant"
This example adds an Azure group, two Azure users, a group, and a user to an Azure group in the Azure Tenant. Multiple Azure objects of any type can be added by using a comma to separate the members.