Jakob Schaefer

Hey #AAD & #microsoft365 #Identitiy Pro's,

does anybody have an idea how to change the Join-Policy for Security Groups in bulk?

The only way to change it officially is the MyGroups Mgmt Portal (https://account.activedirectory.windowsazure.com/r#/groups) which is not usable for bulk edits.

From reading the docs, it seems to be a design thing: https://learn.microsoft.com/en-us/azure/active-directory/enterprise-users/groups-self-service-management#group-settings

With F12 I see that the value for JoinPolicy changes when updating the Group from the Portal (check Screenshot)

I can't find any pendant for this setting in #MicrosoftGraph or #AAD #powershell

I recognized that updating the group within the portal also changes the Visibility:
https://learn.microsoft.com/en-us/graph/api/resources/group?view=graph-rest-1.0#group-visibility-options

But just changing this value, which is officially for #M365 Groups, does unfortunately not have impact on the JoinPolicy.

Sign in to your account

Jan 25, 2023 at 2:24pmWeb
Show threadJames CragleJan 25, 2023
@JakobS i dont know if this is what you are looking for exactly but there is a graph beta api action that might fit. https://learn.microsoft.com/en-us/graph/api/resources/deviceregistrationpolicy?view=graph-rest-beta
deviceRegistrationPolicy resource type - Microsoft Graph beta

Represents the policy scope that controls quota restrictions, additional authentication, and authorization policies for the Azure Active Directory tenant.

Show threadJakob SchaeferJan 25, 2023

Hi @jamescragle,
thank you for the idea, but unfortunately i also cannot find a value for this in the beta…

The beta is my default :)