Microsoft 365 Groups and Teams | Assign Owners
Rule description
This rule queries Microsoft 365 Groups and Teams according to the specified query criteria and then assigns an owner to the Groups and Teams and notifies an owner about it.
When to use this rule
NOTE: Microsoft 365 connection account is always excluded from owners list for any validation.
Use this rule to get a list of Microsoft 365 Groups and Teams and assign them a new owner. You can filter to get Microsoft 365 Groups and Teams that have no owners or all owners are disabled. As a new owner you can select to assign:
Random enabled member except for guests.
Any random member. In this case, even disabled users can be added to owners.
Microsoft 365 connection account.
Rule settings
Query section
| Setting name | Description |
|---|---|
Limit scope to this Azure AD Administrative Unit |
This setting defines the search query scope. To improve query performance, limit the scope to a specific Entra ID administrative unit. IMPORTANT: To test the rule configuration, limit the rule scope to an administrative unit that contains test accounts or objects. |
Query criteria |
Query criteria are sent with the query and may improve query performance. TIP: For additional information on the criteria builder, see the How to use Query Builder dialog for Query Criteria and Filter rule settings. |
Filter by owners |
You can filter Groups and Teams by:
|
Statistics properties to display |
Specify statistics properties to display for each object in the rule scope. |
Other Query Settings | |
Properties to display |
Each object property defined in this setting matches the column that will be displayed in the Web Portal for this web query. To display additional columns, add the required properties to the Properties to display list. |
System properties |
List of properties required for this rule to be executed correctly. |
Post-query filter |
To hide unwanted data based on criteria, not supported by the Microsoft 365 query criteria above, set the filtering conditions here. TIP: For optimal performance, use the Query criteria above to filter objects whenever possible. |
Sort by |
Sort result object list. |
Limit result set |
This setting is used to optimize performance by limiting the number of objects returned by the Microsoft Graph API. Unlike query criteria, any post-filters on the returned objects are applied after they are returned, which means that the final set of returned objects could be less than the number configured here despite these objects existing in the source system. |
MS Graph query condition (OData) |
By default, Query criteria are used. But when the MS Graph query condition is specified, it overrides the Query criteria setting. See this article for examples: How to use Query Builder dialog for Query Criteria and Filter rule settings. |
Initialization script |
Usually, rules use query criteria to limit the query search scope. It improves the performance of the executed rule. Due to the PowerShell limitations, it is not possible to use calculated expressions in query criteria. That is the point where the initialization script can help. You can initialize a global variable in this setting and then use it in query criteria. IMPORTANT: To use a variable, declared in the initialization script, in the query scope, it must be global: Example: Update AD users, created in the last ten days.
|
Microsoft Graph advanced queries |
Enables consistency level eventual which uses an index that might not be up-to-date with recent changes to the object. |
Action section
| Setting name | Description |
|---|---|
Assign owner |
Specify the owner you want to assign: Random enabled member except for guests (default).Any random member.Microsoft 365 service connection account. |
Notify owner | |
| Notify owner | Specify whether you want to notify the Group or Team owner when he\she is added to a Group or Team owners. |
| Additional to | Additional email can be sent to Default Notify & Alert Email Address - usually, this is the administrator's email address. |
| CC, BCC | Email address where the copy will be sent. |
| From | Users can receive emails from default SMTP from address. |
| Subject |
Email subject. TIP: It is possible to customize email subjects by using different tokens, see Customizing an automation rule or web action output email. |
| Message |
Message text. TIP: It is possible to customize email messages by using different tokens, see Customizing an automation rule or web action output email. |
| Limit the number of emails sent per minute |
An integer value that represents the number of emails sent per minute by this rule. To change the default value, navigate to Configuration > Settings > Email Settings (SMTP). The default limit for Microsoft 365 SMTP gate is 30 emails per minute. |
Output section
This section defines the output format of this rule.
To get more information about this section, please see the Rule Output section article.
Enforce/Schedule section
This section defines the schedule for how often to run the rule.
To get more information about this section, please see the Rule Enforce/Schedule section article.
Comments
0 comments
Please sign in to leave a comment.