private/tests/Test-St0018GuestShouldNotInviteGuests.ps1
|
<# .SYNOPSIS Checks that a guest user does not invite other guests. #> function Test-St0018GuestShouldNotInviteGuests{ [CmdletBinding()] param() $activity = "Checking guest authorization policy" Write-ZtProgress -Activity $activity -Status "Getting policy" $result = Invoke-ZtGraphRequest -RelativeUri "policies/authorizationPolicy" -ApiVersion v1.0 $passed = $result.allowInvitesFrom -eq "adminsAndGuestInviters" if ($passed) { $testResultMarkdown = "Tenant restricts who can invite guests:`n`n%TestResult%" } else { $testResultMarkdown = "Tenant allows any user (including other guests) to invite guests." } Add-ZtTestResultDetail -TestId 'ST0018' -Title "Guest can't invite other guests" -Impact High ` -Likelihood HighlyLikely -AppliesTo Entra -Tag ExternalCollaboration ` -Status $passed -Result $testResultMarkdown } |