private/review/entra/identity/externalidentities/Invoke-ReviewEntraExternalCollaborationDomain.ps1
|
function Invoke-ReviewEntraExternalCollaborationDomain { <# .SYNOPSIS Check that collaboration invitations are sent to allowed domains only. .DESCRIPTION Returns review object. .EXAMPLE Invoke-ReviewEntraExternalCollaborationDomain; #> [cmdletbinding()] param ( ) BEGIN { # Write progress. Write-Progress -Activity $MyInvocation.MyCommand -Status 'Running' -CurrentOperation $MyInvocation.MyCommand.Name -PercentComplete -1 -SecondsRemaining -1; # Get the B2B policy. $policy = Get-EntraIdB2BPolicy; # Boolean for the settings is correct. [bool]$valid = $true; } PROCESS { # If the policy is not a allow list. if ($false -eq $policy.isAllowlist) { # Set bool. $valid = $false; } } END { # Bool for review flag. [bool]$reviewFlag = $false; # If review flag should be set. if ($false -eq $valid) { # Should be reviewed. $reviewFlag = $true; } # Create new review object to return. [Review]$review = [Review]::new(); # Add to object. $review.Id = '54848e5b-7bb0-4a70-aeb1-63a1e54562d6'; $review.Category = 'Microsoft Entra Admin Center'; $review.Subcategory = 'Identity'; $review.Title = 'Ensure that collaboration invitations are sent to allowed domains only'; $review.Data = $policy | Select-Object isAllowlist, @{ Name = 'targetedDomains'; Expression = { $_.targetedDomains -join ', ' } }; $review.Review = $reviewFlag; # Print result. $review.PrintResult(); # Return object. return $review; } } |