diff --git a/.github/workflows/dev_cippb2p4g.yml b/.github/workflows/dev_cippb2p4g.yml new file mode 100644 index 000000000000..e82ec8c1ba86 --- /dev/null +++ b/.github/workflows/dev_cippb2p4g.yml @@ -0,0 +1,29 @@ +# Docs for the Azure Web Apps Deploy action: https://github.com/azure/functions-action +# More GitHub Actions for Azure: https://github.com/Azure/actions + +name: Build and deploy Powershell project to Azure Function App - cippb2p4g + +on: + push: + branches: + - dev + workflow_dispatch: + +env: + AZURE_FUNCTIONAPP_PACKAGE_PATH: '.' # set this to the path to your web app project, defaults to the repository root + +jobs: + build-and-deploy: + runs-on: windows-latest + steps: + - name: 'Checkout GitHub Action' + uses: actions/checkout@v4 + + - name: 'Run Azure Functions Action' + uses: Azure/functions-action@v1 + id: fa + with: + app-name: 'cippb2p4g' + slot-name: 'Production' + package: ${{ env.AZURE_FUNCTIONAPP_PACKAGE_PATH }} + publish-profile: ${{ secrets.AZUREAPPSERVICE_PUBLISHPROFILE_C106B398356B4EFCB81F779ED5806A0D }} diff --git a/.github/workflows/dev_cipppwrro.yml b/.github/workflows/dev_cipppwrro.yml index 726d88d3e287..ad786fd522fe 100644 --- a/.github/workflows/dev_cipppwrro.yml +++ b/.github/workflows/dev_cipppwrro.yml @@ -26,4 +26,4 @@ jobs: app-name: 'cipppwrro' slot-name: 'Production' package: ${{ env.AZURE_FUNCTIONAPP_PACKAGE_PATH }} - publish-profile: ${{ secrets.AZUREAPPSERVICE_PUBLISHPROFILE_7CFCA05390754624B5492AF7ECD3D826 }} + publish-profile: ${{ secrets.AZUREAPPSERVICE_PUBLISHPROFILE_9E109464904540339CA94F283ACE1312 }} diff --git a/Activity_AddOrUpdateTableRows/run.ps1 b/Activity_AddOrUpdateTableRows/run.ps1 index e76491df8f29..6bb7e218b987 100644 --- a/Activity_AddOrUpdateTableRows/run.ps1 +++ b/Activity_AddOrUpdateTableRows/run.ps1 @@ -5,7 +5,7 @@ $Table = Get-CippTable -tablename $TableName foreach ($param in $TableParams.Entity) { try { #Sending each item indivually, if it fails, log an error. - Add-AzDataTableEntity @Table -Entity $param -Force + Add-CIPPAzDataTableEntity @Table -Entity $param -Force } catch { Write-LogMessage -API 'Activity_AddOrUpdateTableRows' -message "Unable to write to '$($TableParams.TableName)' Using RowKey $($param.RowKey) table: $($_.Exception.Message)" -sev error diff --git a/Activity_GetAllTableRows/run.ps1 b/Activity_GetAllTableRows/run.ps1 index 77eae52833be..db63ea61a8cb 100644 --- a/Activity_GetAllTableRows/run.ps1 +++ b/Activity_GetAllTableRows/run.ps1 @@ -1,6 +1,6 @@ param($name) $Table = Get-CippTable -tablename $name -$Rows = Get-AzDataTableEntity @Table +$Rows = Get-CIPPAzDataTableEntity @Table Write-Output $Rows \ No newline at end of file diff --git a/AddAPDevice/run.ps1 b/AddAPDevice/run.ps1 index 3108368b2086..7f689191c4c5 100644 --- a/AddAPDevice/run.ps1 +++ b/AddAPDevice/run.ps1 @@ -19,8 +19,10 @@ $Result = try { if ($groupname -in $CurrentStatus.items.id) { throw "This device batch name already exists. Please try with another name." } $body = '{"batchId":"' + $($GroupName) + '","devices":' + $Devices + '}' $GraphRequest = (New-GraphPostRequest -uri "https://api.partnercenter.microsoft.com/v1/customers/$TenantFilter/DeviceBatches" -body $body -scope 'https://api.partnercenter.microsoft.com/user_impersonation') + Write-Host ($GraphRequest | ConvertTo-Json) Start-Sleep 5 $NewStatus = New-GraphgetRequest -uri "https://api.partnercenter.microsoft.com/v1/customers/$tenantfilter/DeviceBatches" -scope 'https://api.partnercenter.microsoft.com/user_impersonation' + Write-Host $($Newstatus | ConvertTo-Json) if ($Newstatus.totalcount -eq $CurrentStatus.totalcount) { throw "We could not find the new autopilot device. Please check if your input is correct." } Write-Host $CurrentStatus.Items Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APIName -tenant $($Request.body.TenantFilter) -message "Created Autopilot devices group. Group ID is $GroupName" -Sev "Info" diff --git a/AddAlert/function.json b/AddAlert/function.json index 3bd167116eae..1de186148741 100644 --- a/AddAlert/function.json +++ b/AddAlert/function.json @@ -5,10 +5,7 @@ "type": "httpTrigger", "direction": "in", "name": "Request", - "methods": [ - "get", - "post" - ] + "methods": ["get", "post"] }, { "type": "http", @@ -16,9 +13,10 @@ "name": "Response" }, { - "name": "starter", - "direction": "in", - "type": "durableClient" + "type": "queue", + "direction": "out", + "name": "Subscription", + "queueName": "AlertSubscriptions" } ] -} \ No newline at end of file +} diff --git a/AddAlert/run.ps1 b/AddAlert/run.ps1 index 7499c4ec7a51..13e890b456d7 100644 --- a/AddAlert/run.ps1 +++ b/AddAlert/run.ps1 @@ -43,7 +43,7 @@ $Results = foreach ($Tenant in $tenants) { } $Table = get-cipptable -TableName 'SchedulerConfig' - Add-AzDataTableEntity @Table -Entity $CompleteObject -Force + Add-CIPPAzDataTableEntity @Table -Entity $CompleteObject -Force } $URL = ($request.headers.'x-ms-original-url').split('/api') | Select-Object -First 1 if ($Tenant -eq 'AllTenants') { @@ -58,7 +58,7 @@ $Results = foreach ($Tenant in $tenants) { EventType = $eventType ExecutingUser = $Request.headers.'x-ms-client-principal' } - New-CIPPGraphSubscription @params + Push-OutputBinding -Name Subscription -Value $Params } } } diff --git a/AddAlertSubscription_Queue/function.json b/AddAlertSubscription_Queue/function.json new file mode 100644 index 000000000000..12e3dfc77c46 --- /dev/null +++ b/AddAlertSubscription_Queue/function.json @@ -0,0 +1,12 @@ +{ + "scriptFile": "../Modules/CippEntryPoints/CippEntryPoints.psm1", + "entryPoint": "Receive-CippQueueTrigger", + "bindings": [ + { + "name": "QueueItem", + "type": "queueTrigger", + "direction": "in", + "queueName": "AlertSubscriptions" + } + ] +} diff --git a/AddCATemplate/run.ps1 b/AddCATemplate/run.ps1 index 19d45859c879..f5d1010676d5 100644 --- a/AddCATemplate/run.ps1 +++ b/AddCATemplate/run.ps1 @@ -42,7 +42,7 @@ try { $JSON = ($JSON | ConvertTo-Json -Depth 100) $Table = Get-CippTable -tablename 'templates' $Table.Force = $true - Add-AzDataTableEntity @Table -Entity @{ + Add-CIPPAzDataTableEntity @Table -Entity @{ JSON = "$JSON" RowKey = "$GUID" PartitionKey = "CATemplate" diff --git a/AddChocoApp/Choco.app.json b/AddChocoApp/Choco.app.json index b7229ef3ccf8..7ef3f82d640f 100644 --- a/AddChocoApp/Choco.app.json +++ b/AddChocoApp/Choco.app.json @@ -1,5 +1,4 @@ { - "displayName": "", "installCommandLine": "", "uninstallCommandLine": "", @@ -11,7 +10,7 @@ "fileName": "IntunePackage.intunewin", "@odata.type": "#microsoft.graph.win32LobApp", "applicableArchitectures": "x86, x64", - + "installExperience": { "runAsAccount": "user", "deviceRestartBehavior": "allow", @@ -19,39 +18,40 @@ }, "detectionRules": [ { - "@odata.type": "#microsoft.graph.win32LobAppFileSystemDetection", - "path": "%programfiles%\\7-zip", - "fileOrFolderName": "7z.exe", - "check32BitOn64System": false, - "detectionType": "exists" } + "@odata.type": "#microsoft.graph.win32LobAppFileSystemDetection", + "path": "%programfiles%\\7-zip", + "fileOrFolderName": "7z.exe", + "check32BitOn64System": false, + "detectionType": "exists" + } + ], + "returncode": [ + { + "returnCode": 0, + "type": "success", + "@odata.type": "#microsoft.graph.win32LobAppReturnCode" + }, + { + "returnCode": 1707, + "type": "Success", + "@odata.type": "#microsoft.graph.win32LobAppReturnCode" + }, + { + "returnCode": 1641, + "type": "hardReboot", + "@odata.type": "#microsoft.graph.win32LobAppReturnCode" + }, + { + "returnCode": 1618, + "type": "retry", + "@odata.type": "#microsoft.graph.win32LobAppReturnCode" + }, + { + "returnCode": 3010, + "type": "softReboot", + "@odata.type": "#microsoft.graph.win32LobAppReturnCode" + } ], - "returncode": [ - { - "returnCode": 0, - "type": "success", - "@odata.type": "#microsoft.graph.win32LobAppReturnCode" - }, - { - "returnCode": 1707, - "type": "Success", - "@odata.type": "#microsoft.graph.win32LobAppReturnCode" - }, - { - "returnCode": 1641, - "type": "hardReboot", - "@odata.type": "#microsoft.graph.win32LobAppReturnCode" - }, - { - "returnCode": 1618, - "type": "retry", - "@odata.type": "#microsoft.graph.win32LobAppReturnCode" - }, - { - "returnCode": 3010, - "type": "softReboot", - "@odata.type": "#microsoft.graph.win32LobAppReturnCode" - } - ], "minimumNumberOfProcessors": "1", "minimumFreeDiskSpaceInMB": "8", "minimumCpuSpeedInMHz": "4", @@ -60,7 +60,6 @@ "v10_1607": true }, "notes": "CIPP Uploaded application", - "minimumMemoryInMB": "1" - - -} \ No newline at end of file + "minimumMemoryInMB": "1", + "setupFilePath": "install.ps1" +} diff --git a/AddChocoApp/run.ps1 b/AddChocoApp/run.ps1 index 0fd154b27dab..13fced9492e5 100644 --- a/AddChocoApp/run.ps1 +++ b/AddChocoApp/run.ps1 @@ -35,7 +35,7 @@ $Results = foreach ($Tenant in $tenants) { } | ConvertTo-Json -Depth 15 $Table = Get-CippTable -tablename 'apps' $Table.Force = $true - Add-AzDataTableEntity @Table -Entity @{ + Add-CIPPAzDataTableEntity @Table -Entity @{ JSON = "$CompleteObject" RowKey = "$((New-Guid).GUID)" PartitionKey = "apps" diff --git a/AddExConnectorTemplate/run.ps1 b/AddExConnectorTemplate/run.ps1 index ebb8e46f83b6..6f00ce655732 100644 --- a/AddExConnectorTemplate/run.ps1 +++ b/AddExConnectorTemplate/run.ps1 @@ -27,7 +27,7 @@ try { $JSON = ($JSON | Select-Object @{n = 'name'; e = { $_.name } }, * | ConvertTo-Json -Depth 10) $Table = Get-CippTable -tablename 'templates' $Table.Force = $true - Add-AzDataTableEntity @Table -Entity @{ + Add-CIPPAzDataTableEntity @Table -Entity @{ JSON = "$json" RowKey = "$GUID" direction = $request.body.cippconnectortype diff --git a/AddGroupTemplate/run.ps1 b/AddGroupTemplate/run.ps1 index 81ac1e992d35..bf53245a4d57 100644 --- a/AddGroupTemplate/run.ps1 +++ b/AddGroupTemplate/run.ps1 @@ -21,7 +21,7 @@ try { } | ConvertTo-Json $Table = Get-CippTable -tablename 'templates' $Table.Force = $true - Add-AzDataTableEntity @Table -Entity @{ + Add-CIPPAzDataTableEntity @Table -Entity @{ JSON = "$object" RowKey = "$GUID" PartitionKey = "GroupTemplate" diff --git a/AddIntuneTemplate/run.ps1 b/AddIntuneTemplate/run.ps1 index 52bbbcc13094..1d5810379230 100644 --- a/AddIntuneTemplate/run.ps1 +++ b/AddIntuneTemplate/run.ps1 @@ -22,7 +22,7 @@ try { } | ConvertTo-Json $Table = Get-CippTable -tablename 'templates' $Table.Force = $true - Add-AzDataTableEntity @Table -Entity @{ + Add-CIPPAzDataTableEntity @Table -Entity @{ JSON = "$object" RowKey = "$GUID" PartitionKey = "IntuneTemplate" @@ -99,7 +99,7 @@ try { } | ConvertTo-Json $Table = Get-CippTable -tablename 'templates' $Table.Force = $true - Add-AzDataTableEntity @Table -Entity @{ + Add-CIPPAzDataTableEntity @Table -Entity @{ JSON = "$object" RowKey = "$GUID" PartitionKey = "IntuneTemplate" diff --git a/AddMSPApp/Immybot.app.json b/AddMSPApp/Immybot.app.json index f41df4601b6a..8be12d944925 100644 --- a/AddMSPApp/Immybot.app.json +++ b/AddMSPApp/Immybot.app.json @@ -60,5 +60,6 @@ "v10_1607": true }, "notes": "CIPP Uploaded application", - "minimumMemoryInMB": "1" + "minimumMemoryInMB": "1", + "setupFilePath": "install.ps1" } diff --git a/AddMSPApp/automate.app.json b/AddMSPApp/automate.app.json index 145947b741b0..0c3fa83967b8 100644 --- a/AddMSPApp/automate.app.json +++ b/AddMSPApp/automate.app.json @@ -59,5 +59,6 @@ "v10_1607": true }, "notes": "CIPP Uploaded application", - "minimumMemoryInMB": "1" + "minimumMemoryInMB": "1", + "setupFilePath": "install.ps1" } diff --git a/AddMSPApp/cwcommand.app.json b/AddMSPApp/cwcommand.app.json index 876235d1e840..2d032177b625 100644 --- a/AddMSPApp/cwcommand.app.json +++ b/AddMSPApp/cwcommand.app.json @@ -60,5 +60,6 @@ "v10_1607": true }, "notes": "CIPP Uploaded application", - "minimumMemoryInMB": "1" + "minimumMemoryInMB": "1", + "setupFilePath": "install.ps1" } diff --git a/AddMSPApp/datto.app.json b/AddMSPApp/datto.app.json index 25c470f0aa44..cdd10dfd8aeb 100644 --- a/AddMSPApp/datto.app.json +++ b/AddMSPApp/datto.app.json @@ -60,5 +60,6 @@ "v10_1607": true }, "notes": "CIPP Uploaded application", - "minimumMemoryInMB": "1" + "minimumMemoryInMB": "1", + "setupFilePath": "install.ps1" } diff --git a/AddMSPApp/huntress.app.json b/AddMSPApp/huntress.app.json index 0c8081d644c8..46c8a22057ae 100644 --- a/AddMSPApp/huntress.app.json +++ b/AddMSPApp/huntress.app.json @@ -60,5 +60,6 @@ "v10_1607": true }, "notes": "CIPP Uploaded application", - "minimumMemoryInMB": "1" + "minimumMemoryInMB": "1", + "setupFilePath": "install.ps1" } diff --git a/AddMSPApp/run.ps1 b/AddMSPApp/run.ps1 index 22cfb69a8cd3..133a12ed7974 100644 --- a/AddMSPApp/run.ps1 +++ b/AddMSPApp/run.ps1 @@ -67,7 +67,7 @@ $Results = foreach ($Tenant in $tenants) { } | ConvertTo-Json -Depth 15 $Table = Get-CippTable -tablename 'apps' $Table.Force = $true - Add-AzDataTableEntity @Table -Entity @{ + Add-CIPPAzDataTableEntity @Table -Entity @{ JSON = "$CompleteObject" RowKey = "$((New-Guid).GUID)" PartitionKey = "apps" diff --git a/AddMSPApp/syncro.app.json b/AddMSPApp/syncro.app.json index 6eb781fda8bd..1d5f0e01fb4b 100644 --- a/AddMSPApp/syncro.app.json +++ b/AddMSPApp/syncro.app.json @@ -60,5 +60,6 @@ "v10_1607": true }, "notes": "CIPP Uploaded application", - "minimumMemoryInMB": "1" + "minimumMemoryInMB": "1", + "setupFilePath": "install.ps1" } diff --git a/AddPolicy/run.ps1 b/AddPolicy/run.ps1 index 8d5833839be2..e3fdeb1b12d6 100644 --- a/AddPolicy/run.ps1 +++ b/AddPolicy/run.ps1 @@ -54,9 +54,7 @@ $results = foreach ($Tenant in $tenants) { } Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $($Tenant) -message "Added policy $($Displayname)" -Sev "Error" if ($AssignTo) { - $AssignBody = if ($AssignTo -ne "AllDevicesAndUsers") { '{"assignments":[{"id":"","target":{"@odata.type":"#microsoft.graph.' + $($AssignTo) + 'AssignmentTarget"}}]}' } else { '{"assignments":[{"id":"","target":{"@odata.type":"#microsoft.graph.allDevicesAssignmentTarget"}},{"id":"","target":{"@odata.type":"#microsoft.graph.allLicensedUsersAssignmentTarget"}}]}' } - $assign = New-GraphPOSTRequest -uri "https://graph.microsoft.com/beta/deviceManagement/$TemplateTypeURL('$($CreateRequest.id)')/assign" -tenantid $tenant -type POST -body $AssignBody - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $($Tenant) -message "Assigned policy $($Displayname) to $AssignTo" -Sev "Info" + Set-CIPPAssignedPolicy -GroupName $AssignTo -PolicyId $CreateRequest.id -Type $TemplateTypeURL -TenantFilter $tenant } "Successfully added policy for $($Tenant)" } diff --git a/AddScheduledItems/function.json b/AddScheduledItem/function.json similarity index 94% rename from AddScheduledItems/function.json rename to AddScheduledItem/function.json index 925eab5aeae1..b0ca1676cc0b 100644 --- a/AddScheduledItems/function.json +++ b/AddScheduledItem/function.json @@ -1,19 +1,19 @@ -{ - "bindings": [ - { - "authLevel": "anonymous", - "type": "httpTrigger", - "direction": "in", - "name": "Request", - "methods": [ - "get", - "post" - ] - }, - { - "type": "http", - "direction": "out", - "name": "Response" - } - ] +{ + "bindings": [ + { + "authLevel": "anonymous", + "type": "httpTrigger", + "direction": "in", + "name": "Request", + "methods": [ + "get", + "post" + ] + }, + { + "type": "http", + "direction": "out", + "name": "Response" + } + ] } \ No newline at end of file diff --git a/AddScheduledItem/run.ps1 b/AddScheduledItem/run.ps1 new file mode 100644 index 000000000000..71d8c5bde9c2 --- /dev/null +++ b/AddScheduledItem/run.ps1 @@ -0,0 +1,55 @@ +using namespace System.Net +param($Request, $TriggerMetadata) +$APIName = $TriggerMetadata.FunctionName +Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug' +$task = $Request.Body +$Table = Get-CIPPTable -TableName 'ScheduledTasks' + +$propertiesToCheck = @('Webhook', 'Email', 'PSA') +$PostExecution = ($propertiesToCheck | Where-Object { $task.PostExecution.$_ -eq $true }) -join ',' + +$Parameters = [System.Collections.Hashtable]@{} +foreach ($Key in $task.Parameters.Keys) { + $Param = $task.Parameters.$Key + if ($Param.Key) { + $ht = @{} + foreach ($p in $Param) { + Write-Host $p.Key + $ht[$p.Key] = $p.Value + } + $Parameters[$Key] = [PSCustomObject]$ht + } else { + $Parameters[$Key] = $Param + } +} + +$Parameters = ($Parameters | ConvertTo-Json -Compress) + +$AdditionalProperties = [System.Collections.Hashtable]@{} +foreach ($Prop in $task.AdditionalProperties) { + $AdditionalProperties[$Prop.Key] = $Prop.Value +} +$AdditionalProperties = ([PSCustomObject]$AdditionalProperties | ConvertTo-Json -Compress) + + +if ($Parameters -eq 'null') { $Parameters = '' } +$entity = @{ + PartitionKey = [string]'ScheduledTask' + TaskState = [string]'Planned' + RowKey = [string]"$(New-Guid)" + Tenant = [string]$task.TenantFilter + Name = [string]$task.Name + Command = [string]$task.Command.value + Parameters = [string]$Parameters + ScheduledTime = [string]$task.ScheduledTime + Recurrence = [string]$task.Recurrence.value + PostExecution = [string]$PostExecution + AdditionalProperties = [string]$AdditionalProperties + Results = 'Planned' +} +Write-Host "entity: $($entity | ConvertTo-Json)" +Add-CIPPAzDataTableEntity @Table -Entity $entity +Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ + StatusCode = [HttpStatusCode]::OK + Body = @{ Results = 'Task added successfully.' } + }) \ No newline at end of file diff --git a/AddScheduledItems/run.ps1 b/AddScheduledItems/run.ps1 deleted file mode 100644 index b8dbc7843324..000000000000 --- a/AddScheduledItems/run.ps1 +++ /dev/null @@ -1,20 +0,0 @@ -using namespace System.Net -param($Request, $TriggerMetadata) -$APIName = $TriggerMetadata.FunctionName -Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug' -$task = $Request.Body | ConvertFrom-Json -$Table = Get-CIPPTable -TableName 'ScheduledTasks' -Add-AzDataTableEntity @Table -Entity @{ - PartitionKey = 'ScheduledTask' - TaskState = 'Scheduled' - RowKey = $task.TaskID - Command = $task.Command - Parameters = $task.Parameters - ScheduledTime = $task.ScheduledTime - Results = 'Not Executed' - # add more properties here based on what properties your tasks have -} -Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ - StatusCode = [HttpStatusCode]::OK - Body = 'Task added successfully.' -}) \ No newline at end of file diff --git a/AddSpamFilterTemplate/run.ps1 b/AddSpamFilterTemplate/run.ps1 index 4cddc09437af..e8a6175b4cf8 100644 --- a/AddSpamFilterTemplate/run.ps1 +++ b/AddSpamFilterTemplate/run.ps1 @@ -22,7 +22,7 @@ try { $JSON = ($JSON | Select-Object @{n = 'name'; e = { $_.name } }, @{n = 'comments'; e = { $_.comments } }, * | ConvertTo-Json -Depth 10) $Table = Get-CippTable -tablename 'templates' $Table.Force = $true - Add-AzDataTableEntity @Table -Entity @{ + Add-CIPPAzDataTableEntity @Table -Entity @{ JSON = "$json" RowKey = "$GUID" PartitionKey = "SpamfilterTemplate" diff --git a/AddStandardsDeploy/run.ps1 b/AddStandardsDeploy/run.ps1 index 62588c27ed1c..a62ed9102df7 100644 --- a/AddStandardsDeploy/run.ps1 +++ b/AddStandardsDeploy/run.ps1 @@ -22,7 +22,7 @@ try { } | ConvertTo-Json -Depth 10 $Table = Get-CippTable -tablename 'standards' $Table.Force = $true - Add-AzDataTableEntity @Table -Entity @{ + Add-CIPPAzDataTableEntity @Table -Entity @{ JSON = "$object" RowKey = "$Tenant" PartitionKey = "standards" diff --git a/AddTransportTemplate/run.ps1 b/AddTransportTemplate/run.ps1 index 1d88071d2fa9..551074fd1761 100644 --- a/AddTransportTemplate/run.ps1 +++ b/AddTransportTemplate/run.ps1 @@ -22,7 +22,7 @@ try { $JSON = ($JSON | Select-Object @{n = 'name'; e = { $_.name } }, @{n = 'comments'; e = { $_.comments } }, * | ConvertTo-Json -Depth 10) $Table = Get-CippTable -tablename 'templates' $Table.Force = $true - Add-AzDataTableEntity @Table -Entity @{ + Add-CIPPAzDataTableEntity @Table -Entity @{ JSON = "$json" RowKey = "$GUID" PartitionKey = "TransportTemplate" diff --git a/AddUser/run.ps1 b/AddUser/run.ps1 index 12e321b2f93b..f2bac94e00f6 100644 --- a/AddUser/run.ps1 +++ b/AddUser/run.ps1 @@ -36,6 +36,14 @@ try { } } if ($userobj.businessPhone) { $bodytoShip | Add-Member -NotePropertyName businessPhones -NotePropertyValue @($userobj.businessPhone) } + if ($userobj.addedAttributes) { + Write-Host "Found added attribute" + Write-Host "Added attributes: $($userobj.addedAttributes | ConvertTo-Json)" + $userobj.addedAttributes.getenumerator() | ForEach-Object { + $results.add("Added property $($_.Key) with value $($_.value)") + $bodytoShip | Add-Member -NotePropertyName $_.Key -NotePropertyValue $_.Value + } + } $bodyToShip = ConvertTo-Json -Depth 10 -InputObject $BodyToship -Compress $GraphRequest = New-GraphPostRequest -uri "https://graph.microsoft.com/beta/users" -tenantid $Userobj.tenantid -type POST -body $BodyToship -verbose Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $($userobj.tenantid) -message "Created user $($userobj.displayname) with id $($GraphRequest.id) " -Sev "Info" diff --git a/AddWinGetApp/run.ps1 b/AddWinGetApp/run.ps1 index 39799e321ff4..a84e5ac41b03 100644 --- a/AddWinGetApp/run.ps1 +++ b/AddWinGetApp/run.ps1 @@ -35,7 +35,7 @@ $Results = foreach ($Tenant in $tenants) { } | ConvertTo-Json -Depth 15 $Table = Get-CippTable -tablename 'apps' $Table.Force = $true - Add-AzDataTableEntity @Table -Entity @{ + Add-CIPPAzDataTableEntity @Table -Entity @{ JSON = "$CompleteObject" RowKey = "$((New-Guid).GUID)" PartitionKey = "apps" diff --git a/Applications_GetQueue/run.ps1 b/Applications_GetQueue/run.ps1 index 7fc27d177c98..44940eed384b 100644 --- a/Applications_GetQueue/run.ps1 +++ b/Applications_GetQueue/run.ps1 @@ -2,5 +2,5 @@ param($name) $Table = Get-CippTable -tablename 'apps' -$Object = (Get-AzDataTableEntity @Table).RowKey +$Object = (Get-CIPPAzDataTableEntity @Table).RowKey $object \ No newline at end of file diff --git a/Applications_Upload/run.ps1 b/Applications_Upload/run.ps1 index 31566b015b8d..c5cabfdcc96e 100644 --- a/Applications_Upload/run.ps1 +++ b/Applications_Upload/run.ps1 @@ -2,7 +2,7 @@ param($name) $Table = Get-CippTable -tablename 'apps' $Filter = "PartitionKey eq 'apps' and RowKey eq '$name'" Set-Location (Get-Item $PSScriptRoot).Parent.FullName -$ChocoApp = (Get-AzDataTableEntity @Table -filter $Filter).JSON | ConvertFrom-Json +$ChocoApp = (Get-CIPPAzDataTableEntity @Table -filter $Filter).JSON | ConvertFrom-Json $intuneBody = $ChocoApp.IntuneBody $tenants = if ($chocoapp.Tenant -eq "AllTenants") { (Get-tenants).defaultDomainName @@ -28,13 +28,13 @@ $ContentBody = ConvertTo-Json @{ size = [int64]$intunexml.ApplicationInfo.UnencryptedContentSize sizeEncrypted = [int64]($intunewinFilesize).length } -$ClearRow = Get-AzDataTableEntity @Table -Filter $Filter +$ClearRow = Get-CIPPAzDataTableEntity @Table -Filter $Filter $RemoveCacheFile = if ($chocoapp.Tenant -ne "AllTenants") { Remove-AzDataTableEntity @Table -Entity $clearRow } else { $Table.Force = $true - Add-AzDataTableEntity @Table -Entity @{ + Add-CIPPAzDataTableEntity @Table -Entity @{ JSON = "$($ChocoApp | ConvertTo-Json)" RowKey = "$($ClearRow.RowKey)" PartitionKey = "apps" @@ -69,9 +69,7 @@ foreach ($tenant in $tenants) { Write-LogMessage -api "AppUpload" -tenant $($Tenant) -message "$($ChocoApp.ApplicationName) uploaded as WinGet app." -Sev "Info" if ($AssignTo -ne "On") { $intent = if ($AssignToIntent) { 'Uninstall' } else { 'Required' } - $AssignBody = if ($AssignTo -ne "AllDevicesAndUsers") { '{"mobileAppAssignments":[{"@odata.type":"#microsoft.graph.mobileAppAssignment","target":{"@odata.type":"#microsoft.graph.' + $($AssignTo) + 'AssignmentTarget"},"intent":"' + $($intent) + '","settings":{"@odata.type":"#microsoft.graph.winGetAppAssignmentSettings","notifications":"hideAll","installTimeSettings":null,"restartSettings":null}}]}' } else { '{"mobileAppAssignments":[{"@odata.type":"#microsoft.graph.mobileAppAssignment","target":{"@odata.type":"#microsoft.graph.allDevicesAssignmentTarget"},"intent":"' + $($intent) + '","settings":{"@odata.type":"#microsoft.graph.winGetAppAssignmentSettings","notifications":"hideAll","installTimeSettings":null,"restartSettings":null}},{"@odata.type":"#microsoft.graph.mobileAppAssignment","target":{"@odata.type":"#microsoft.graph.allLicensedUsersAssignmentTarget"},"intent":"' + $($intent) + '","settings":{"@odata.type":"#microsoft.graph.winGetAppAssignmentSettings","notifications":"hideAll","installTimeSettings":null,"restartSettings":null}}]}' } - $assign = New-GraphPOSTRequest -uri "https://graph.microsoft.com/beta/deviceAppManagement/mobileApps/$($NewApp.id)/assign" -tenantid $tenant -type POST -body $AssignBody - Write-LogMessage -api "AppUpload" -tenant $($Tenant) -message "Assigned application $($chocoApp.ApplicationName) to $AssignTo" -Sev "Info" + Set-CIPPAssignedApplication -ApplicationId $NewApp.Id -Intent $intent -TenantFilter $tenant -groupName "$AssignTo" -AppType "WinGet" } Write-LogMessage -api "AppUpload" -tenant $($Tenant) -message "$($ChocoApp.ApplicationName) Successfully created" -Sev "Info" exit 0 @@ -108,9 +106,8 @@ foreach ($tenant in $tenants) { Write-LogMessage -api "AppUpload" -tenant $($Tenant) -message "Added Application $($chocoApp.ApplicationName)" -Sev "Info" if ($AssignTo -ne "On") { $intent = if ($AssignToIntent) { 'Uninstall' } else { 'Required' } - $AssignBody = if ($AssignTo -ne "AllDevicesAndUsers") { '{"mobileAppAssignments":[{"@odata.type":"#microsoft.graph.mobileAppAssignment","target":{"@odata.type":"#microsoft.graph.' + $($AssignTo) + 'AssignmentTarget"},"intent":"' + $($intent) + '","settings":{"@odata.type":"#microsoft.graph.win32LobAppAssignmentSettings","notifications":"hideAll","installTimeSettings":null,"restartSettings":null,"deliveryOptimizationPriority":"notConfigured"}}]}' } else { '{"mobileAppAssignments":[{"@odata.type":"#microsoft.graph.mobileAppAssignment","target":{"@odata.type":"#microsoft.graph.allDevicesAssignmentTarget"},"intent":"' + $($intent) + '","settings":{"@odata.type":"#microsoft.graph.win32LobAppAssignmentSettings","notifications":"hideAll","installTimeSettings":null,"restartSettings":null,"deliveryOptimizationPriority":"notConfigured"}},{"@odata.type":"#microsoft.graph.mobileAppAssignment","target":{"@odata.type":"#microsoft.graph.allLicensedUsersAssignmentTarget"},"intent":"' + $($intent) + '","settings":{"@odata.type":"#microsoft.graph.win32LobAppAssignmentSettings","notifications":"hideAll","installTimeSettings":null,"restartSettings":null,"deliveryOptimizationPriority":"notConfigured"}}]}' } - $assign = New-GraphPOSTRequest -uri "https://graph.microsoft.com/beta/deviceAppManagement/mobileApps/$($NewApp.id)/assign" -tenantid $tenant -type POST -body $AssignBody - Write-LogMessage -api "AppUpload" -tenant $($Tenant) -message "Assigned application $($chocoApp.ApplicationName) to $AssignTo" -Sev "Info" + Set-CIPPAssignedApplication -ApplicationId $NewApp.Id -Intent $intent -TenantFilter $tenant -groupName "$AssignTo" -AppType "Win32Lob" + } Write-LogMessage -api "AppUpload" -tenant $($Tenant) -message "Successfully added Application" -Sev "Info" } diff --git a/BestPracticeAnalyser_All/run.ps1 b/BestPracticeAnalyser_All/run.ps1 index dffb59e46639..71b679a9c66a 100644 --- a/BestPracticeAnalyser_All/run.ps1 +++ b/BestPracticeAnalyser_All/run.ps1 @@ -102,7 +102,7 @@ $AddRow = foreach ($Template in $templates) { if ($Result) { try { - Add-AzDataTableEntity @Table -Entity $Result -Force + Add-CIPPAzDataTableEntity @Table -Entity $Result -Force } catch { Write-LogMessage -API 'BPA' -tenant $tenant -message "Error getting saving data for $($template.Name) - $($TenantName.customerId). Error: $($_.Exception.Message)" -sev Error diff --git a/BestPracticeAnalyser_List/run.ps1 b/BestPracticeAnalyser_List/run.ps1 index 9675e2b51e4b..dd27bc04a93b 100644 --- a/BestPracticeAnalyser_List/run.ps1 +++ b/BestPracticeAnalyser_List/run.ps1 @@ -8,7 +8,7 @@ Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME - $Tenants = Get-Tenants $Table = get-cipptable 'cachebpa' -$Results = (Get-AzDataTableEntity @Table) | ForEach-Object { +$Results = (Get-CIPPAzDataTableEntity @Table) | ForEach-Object { $_.UnusedLicenseList = @(ConvertFrom-Json -ErrorAction silentlycontinue -InputObject $_.UnusedLicenseList) $_ } diff --git a/Cache_SAMSetup/PermissionsTranslator.json b/Cache_SAMSetup/PermissionsTranslator.json index fdb6b61d88a0..27c5a7e6463f 100644 --- a/Cache_SAMSetup/PermissionsTranslator.json +++ b/Cache_SAMSetup/PermissionsTranslator.json @@ -2986,7 +2986,7 @@ "description": "Read activity data for your organization", "displayName": "Allows the application to read activity data for your organization.", "id": "594c1fb6-4f81-4475-ae41-0c394909246c", - "Origin": "Delegated", + "Origin": "Delegated (Office 365 Management)", "userConsentDescription": "Read activity data for your organization", "userConsentDisplayName": "Allows the application to read activity data for your organization.", "value": "ActivityFeed.Read" diff --git a/Cache_SAMSetup/SAMManifest.json b/Cache_SAMSetup/SAMManifest.json index ef0dfd36758c..68d8c403a42e 100644 --- a/Cache_SAMSetup/SAMManifest.json +++ b/Cache_SAMSetup/SAMManifest.json @@ -150,6 +150,7 @@ { "id": "338163d7-f101-4c92-94ba-ca46fe52447c", "type": "Role" }, { "id": "cac88765-0581-4025-9725-5ebc13f729ee", "type": "Role" }, { "id": "75359482-378d-4052-8f01-80520e7db3cd", "type": "Role" }, + { "id": "19dbc75e-c2e2-444c-a770-ec69d8559fc7", "type": "Role" }, { "id": "b27a61ec-b99c-4d6a-b126-c4375d08ae30", "type": "Scope" }, { "id": "84bccea3-f856-4a8a-967b-dbe0a3d53a64", "type": "Scope" }, { "id": "280b3b69-0437-44b1-bc20-3b2fca1ee3e9", "type": "Scope" }, diff --git a/DomainAnalyser_All/run.ps1 b/DomainAnalyser_All/run.ps1 index b9b1d1264375..0317848a5a23 100644 --- a/DomainAnalyser_All/run.ps1 +++ b/DomainAnalyser_All/run.ps1 @@ -5,7 +5,7 @@ Import-Module DNSHealth try { $ConfigTable = Get-CippTable -tablename Config $Filter = "PartitionKey eq 'Domains' and RowKey eq 'Domains'" - $Config = Get-AzDataTableEntity @ConfigTable -Filter $Filter + $Config = Get-CIPPAzDataTableEntity @ConfigTable -Filter $Filter $ValidResolvers = @('Google', 'CloudFlare', 'Quad9') if ($ValidResolvers -contains $Config.Resolver) { @@ -18,7 +18,7 @@ try { RowKey = 'Domains' Resolver = $Resolver } - Add-AzDataTableEntity @ConfigTable -Entity $Config -Force + Add-CIPPAzDataTableEntity @ConfigTable -Entity $Config -Force } } catch { diff --git a/DomainAnalyser_GetTenantDomains/run.ps1 b/DomainAnalyser_GetTenantDomains/run.ps1 index 333d50847e0a..2c805c5a0046 100644 --- a/DomainAnalyser_GetTenantDomains/run.ps1 +++ b/DomainAnalyser_GetTenantDomains/run.ps1 @@ -31,7 +31,7 @@ $TenantDomains = $Tenants | ForEach-Object -Parallel { # Cleanup domains from tenants with errors, skip domains with manually set selectors or mail providers foreach ($Exclude in $ExcludedTenants) { $Filter = "PartitionKey eq 'TenantDomains' and TenantId eq '{0}'" -f $Exclude.defaultDomainName - $CleanupRows = Get-AzDataTableEntity @DomainTable -Filter $Filter + $CleanupRows = Get-CIPPAzDataTableEntity @DomainTable -Filter $Filter $CleanupCount = ($CleanupRows | Measure-Object).Count if ($CleanupCount -gt 0) { Write-LogMessage -API 'DomainAnalyser' -tenant $Exclude.defaultDomainName -message "Cleaning up $CleanupCount domain(s) for excluded tenant" -sev Info @@ -48,14 +48,14 @@ if ($TenantCount -gt 0) { $TenantDomainObjects = foreach ($Tenant in $TenantDomains) { $TenantDetails = ($Tenant | ConvertTo-Json -Compress).ToString() $Filter = "PartitionKey eq '{0}' and RowKey eq '{1}'" -f $Tenant.Tenant, $Tenant.Domain - $OldDomain = Get-AzDataTableEntity @DomainTable -Filter $Filter + $OldDomain = Get-CIPPAzDataTableEntity @DomainTable -Filter $Filter if ($OldDomain) { Remove-AzDataTableEntity @DomainTable -Entity $OldDomain | Out-Null } $Filter = "PartitionKey eq 'TenantDomains' and RowKey eq '{0}'" -f $Tenant.Domain - $Domain = Get-AzDataTableEntity @DomainTable -Filter $Filter + $Domain = Get-CIPPAzDataTableEntity @DomainTable -Filter $Filter if (!$Domain) { $DomainObject = [pscustomobject]@{ @@ -86,7 +86,7 @@ if ($TenantCount -gt 0) { # Batch insert all tenant domains try { - Add-AzDataTableEntity @DomainTable -Entity $TenantDomainObjects -Force + Add-CIPPAzDataTableEntity @DomainTable -Entity $TenantDomainObjects -Force } catch { Write-LogMessage -API 'DomainAnalyser' -message "Domain Analyser GetTenantDomains Error $($_.Exception.Message)" -sev info } } catch { Write-LogMessage -API 'DomainAnalyser' -message "GetTenantDomains loop exception: $($_.Exception.Message) line $($_.InvocationInfo.ScriptLineNumber)" -sev 'Error' } } diff --git a/DomainAnalyser_List/run.ps1 b/DomainAnalyser_List/run.ps1 index 477e715ca071..70a5bd281942 100644 --- a/DomainAnalyser_List/run.ps1 +++ b/DomainAnalyser_List/run.ps1 @@ -19,7 +19,7 @@ if ($Request.Query.tenantFilter -ne 'AllTenants') { try { # Extract json from table results - $Results = foreach ($DomainAnalyserResult in (Get-AzDataTableEntity @DomainTable).DomainAnalyser) { + $Results = foreach ($DomainAnalyserResult in (Get-CIPPAzDataTableEntity @DomainTable).DomainAnalyser) { try { if (![string]::IsNullOrEmpty($DomainAnalyserResult)) { $Object = $DomainAnalyserResult | ConvertFrom-Json diff --git a/Durable_BECRun/run.ps1 b/Durable_BECRun/run.ps1 index 24d495bf71bd..0476b1e9db00 100644 --- a/Durable_BECRun/run.ps1 +++ b/Durable_BECRun/run.ps1 @@ -134,7 +134,7 @@ catch { $Table = Get-CippTable -tablename 'cachebec' $Table.Force = $true -Add-AzDataTableEntity @Table -Entity @{ +Add-CIPPAzDataTableEntity @Table -Entity @{ UserId = $Context.input.userid Results = "$($results | ConvertTo-Json -Depth 10)" RowKey = $Context.input.userid diff --git a/EditGroup/run.ps1 b/EditGroup/run.ps1 index d03055ceecd3..ed3f3afa4f7d 100644 --- a/EditGroup/run.ps1 +++ b/EditGroup/run.ps1 @@ -18,7 +18,8 @@ if ($AddMembers) { $AddMembers | ForEach-Object { try { $member = $_ - $MemberIDs = "https://graph.microsoft.com/v1.0/directoryObjects/" + (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/users/$($_)" -tenantid $Userobj.tenantid).id + if ($member -like '*#EXT#*') { $member = [System.Web.HttpUtility]::UrlEncode($member) } + $MemberIDs = "https://graph.microsoft.com/v1.0/directoryObjects/" + (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/users/$($member)" -tenantid $Userobj.tenantid).id $addmemberbody = "{ `"members@odata.bind`": $(ConvertTo-Json @($MemberIDs)) }" if ($userobj.groupType -eq "Distribution list" -or $userobj.groupType -eq "Mail-Enabled Security") { $Params = @{ Identity = $userobj.groupid; Member = $member; BypassSecurityGroupManagerCheck = $true } @@ -27,11 +28,11 @@ if ($AddMembers) { else { New-GraphPostRequest -uri "https://graph.microsoft.com/beta/groups/$($userobj.groupid)" -tenantid $Userobj.tenantid -type patch -body $addmemberbody -Verbose } - Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Added $member to $($userobj.groupid) group" -Sev "Info" + Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Added $member to $($userobj.groupName) group" -Sev "Info" $body = $results.add("Success. $member has been added") } catch { - $body = $results.add("Failed to add member $member to $($userobj.Groupid): $($_.Exception.Message)") + $body = $results.add("Failed to add member $member to $($userobj.groupName): $($_.Exception.Message)") } } @@ -45,15 +46,16 @@ if ($AddContacts) { if ($userobj.groupType -eq "Distribution list" -or $userobj.groupType -eq "Mail-Enabled Security") { $Params = @{ Identity = $userobj.groupid; Member = $member; BypassSecurityGroupManagerCheck = $true } New-ExoRequest -tenantid $Userobj.tenantid -cmdlet "Add-DistributionGroupMember" -cmdParams $params -UseSystemMailbox $true - Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Added $member to $($userobj.groupid) group" -Sev "Info" + Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Added $member to $($userobj.groupName) group" -Sev "Info" $body = $results.add("Success. $member has been added") - } else { - Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "You cannot add a contact to a security group" -Sev "Error" - $body = $results.add("You cannot add a contact to a security group") + } + else { + Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "You cannot add a contact to a security group" -Sev "Error" + $body = $results.add("You cannot add a contact to a security group") + } } - } catch { - $body = $results.add("Failed to add member $member to $($userobj.Groupid): $($_.Exception.Message)") + $body = $results.add("Failed to add member $member to $($userobj.groupName): $($_.Exception.Message)") } } @@ -72,14 +74,14 @@ try { $MemberInfo = (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/users/$($_)" -tenantid $Userobj.tenantid) New-GraphPostRequest -uri "https://graph.microsoft.com/beta/groups/$($userobj.groupid)/members/$($MemberInfo.id)/`$ref" -tenantid $Userobj.tenantid -type DELETE } - Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Removed $member from $($userobj.groupid) group" -Sev "Info" + Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Removed $member from $($userobj.groupName) group" -Sev "Info" $body = $results.add("Success. Member $member has been removed") } } } catch { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $Userobj.tenantid -message "Add member API failed. $($_.Exception.Message)" -Sev "Error" - $body = $results.add("Could not remove $RemoveMembers from $($userobj.Groupid). $($_.Exception.Message)") + $body = $results.add("Could not remove $RemoveMembers from $($userobj.groupName). $($_.Exception.Message)") } $AddOwners = $userobj.Addowner.value @@ -90,11 +92,11 @@ try { $ID = "https://graph.microsoft.com/beta/users/" + (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/users/$($_)" -tenantid $Userobj.tenantid).id Write-Host $ID $AddOwner = New-GraphPostRequest -uri "https://graph.microsoft.com/beta/groups/$($userobj.groupid)/owners/`$ref" -tenantid $Userobj.tenantid -type POST -body ('{"@odata.id": "' + $ID + '"}') - Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Added owner $_ to $($userobj.groupid) group" -Sev "Info" + Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Added owner $_ to $($userobj.groupName) group" -Sev "Info" $body = $results.add("Success. $_ has been added") } catch { - $body = $results.add("Failed to add owner $_ to $($userobj.Groupid): $($_.Exception.Message)") + $body = $results.add("Failed to add owner $_ to $($userobj.groupName): $($_.Exception.Message)") } } @@ -113,17 +115,17 @@ try { $MemberInfo = (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/users/$($_)" -tenantid $Userobj.tenantid) New-GraphPostRequest -uri "https://graph.microsoft.com/beta/groups/$($userobj.groupid)/owners/$($MemberInfo.id)/`$ref" -tenantid $Userobj.tenantid -type DELETE Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Removed $($MemberInfo.UserPrincipalname) from $($userobj.displayname) group" -Sev "Info" - $body = $results.add("Success. Member $_ has been removed from $($userobj.Groupid)") + $body = $results.add("Success. Member $_ has been removed from $($userobj.groupName)") } catch { - $body = $results.add("Failed to remove $_ from $($userobj.Groupid): $($_.Exception.Message)") + $body = $results.add("Failed to remove $_ from $($userobj.groupName): $($_.Exception.Message)") } } } } catch { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $Userobj.tenantid -message "Add member API failed. $($_.Exception.Message)" -Sev "Error" - $body = $results.add("Could not remove $RemoveMembers from $($userobj.Groupid). $($_.Exception.Message)") + $body = $results.add("Could not remove $RemoveMembers from $($userobj.groupName). $($_.Exception.Message)") } if ($userobj.allowExternal -eq 'true') { @@ -136,29 +138,29 @@ if ($userobj.allowExternal -eq 'true') { $Params = @{ Identity = $userobj.groupid; RequireSenderAuthenticationEnabled = $false } New-ExoRequest -tenantid $Userobj.tenantid -cmdlet "Set-UnifiedGroup" -cmdParams $params } - $body = $results.add("Allowed external senders to send to $($userobj.Groupid).") - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $Userobj.tenantid -message "Allowed external senders to send to $($userobj.Groupid)" -Sev "Error" + $body = $results.add("Allowed external senders to send to $($userobj.groupName).") + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $Userobj.tenantid -message "Allowed external senders to send to $($userobj.groupName)" -Sev "Error" } catch { - $body = $results.add("Failed to allow external senders to send to $($userobj.Groupid).") - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $Userobj.tenantid -message "Failed to allow external senders for $($userobj.Groupid). $($_.Exception.Message)" -Sev "Error" + $body = $results.add("Failed to allow external senders to send to $($userobj.groupName).") + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $Userobj.tenantid -message "Failed to allow external senders for $($userobj.groupName). $($_.Exception.Message)" -Sev "Error" } } if ($userobj.sendCopies -eq 'true') { try { - $Params = @{ Identity = $userobj.Groupid; subscriptionEnabled = $true; AutoSubscribeNewMembers = $true } - New-ExoRequest -tenantid $Userobj.tenantid -cmdlet "Set-UnifiedGroup" -cmdParams $params -useSystemMailbox $true + $Params = @{ Identity = $userobj.Groupid; subscriptionEnabled = $true; AutoSubscribeNewMembers = $true } + New-ExoRequest -tenantid $Userobj.tenantid -cmdlet "Set-UnifiedGroup" -cmdParams $params -useSystemMailbox $true - $MemberParams = @{ Identity = $userobj.Groupid; LinkType = "members" } - $Members = New-ExoRequest -tenantid $Userobj.tenantid -cmdlet "Get-UnifiedGrouplinks" -cmdParams $MemberParams + $MemberParams = @{ Identity = $userobj.Groupid; LinkType = "members" } + $Members = New-ExoRequest -tenantid $Userobj.tenantid -cmdlet "Get-UnifiedGrouplinks" -cmdParams $MemberParams - $MemberSmtpAddresses = $Members | ForEach-Object { $_.PrimarySmtpAddress } + $MemberSmtpAddresses = $Members | ForEach-Object { $_.PrimarySmtpAddress } - $subscriberParams = @{ Identity = $userobj.Groupid; LinkType = "subscribers"; Links = @($MemberSmtpAddresses) } - New-ExoRequest -tenantid $Userobj.tenantid -cmdlet "Add-UnifiedGrouplinks" -cmdParams $subscriberParams -Anchor $userobj.mail + $subscriberParams = @{ Identity = $userobj.Groupid; LinkType = "subscribers"; Links = @($MemberSmtpAddresses) } + New-ExoRequest -tenantid $Userobj.tenantid -cmdlet "Add-UnifiedGrouplinks" -cmdParams $subscriberParams -Anchor $userobj.mail $body = $results.add("Send Copies of team emails and events to team members inboxes for $($userobj.mail) enabled.") diff --git a/EditTenant/run.ps1 b/EditTenant/run.ps1 index c4c113433c59..8a0427aaf662 100644 --- a/EditTenant/run.ps1 +++ b/EditTenant/run.ps1 @@ -29,7 +29,7 @@ if ($tenantObjectId) { $Filter = "PartitionKey eq 'Tenants' and defaultDomainName eq '{0}'" -f $tenantDefaultDomainName try { $TenantsTable = Get-CippTable -tablename Tenants - $Tenant = Get-AzDataTableEntity @TenantsTable -Filter $Filter + $Tenant = Get-CIPPAzDataTableEntity @TenantsTable -Filter $Filter $Tenant.displayName = $tenantDisplayName Update-AzDataTableEntity @TenantsTable -Entity $Tenant } diff --git a/ExecAccessChecks/run.ps1 b/ExecAccessChecks/run.ps1 index 3516ae88709d..9e569ce565d6 100644 --- a/ExecAccessChecks/run.ps1 +++ b/ExecAccessChecks/run.ps1 @@ -46,23 +46,20 @@ if ($Request.query.Permissions -eq 'true') { $Messages.Add('Your refresh token does not match key vault, clear your cache or wait 30 minutes.') | Out-Null $Links.Add([PSCustomObject]@{ Text = 'Clear Token Cache' - Href = 'https://cipp.app/docs/general/troubleshooting/#clear-token-cache' + Href = 'https://docs.cipp.app/setup/installation/cleartokencache' } ) | Out-Null - } - else { + } else { $Messages.Add('Your refresh token matches key vault.') | Out-Null } - } - catch { + } catch { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $tenant -message "Key vault exception: $($_) " -Sev 'Error' } } try { $AccessTokenDetails = Read-JwtAccessDetails -Token $GraphToken.access_token -erroraction SilentlyContinue - } - catch { + } catch { $AccessTokenDetails = [PSCustomObject]@{ Name = '' AuthMethods = @() @@ -70,27 +67,25 @@ if ($Request.query.Permissions -eq 'true') { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $tenant -message "Token exception: $($_) " -Sev 'Error' $Success = $false } - + if ($AccessTokenDetails.Name -eq '') { $Messages.Add('Your refresh token is invalid, check for line breaks or missing characters.') | Out-Null $Success = $false - } - else { + } else { if ($AccessTokenDetails.AuthMethods -contains 'mfa') { $Messages.Add('Your access token contains the MFA claim.') | Out-Null - } - else { + } else { $Messages.Add('Your access token does not contain the MFA claim, Refresh your SAM tokens.') | Out-Null $Success = $false $Links.Add([PSCustomObject]@{ Text = 'MFA Troubleshooting' - Href = 'https://cipp.app/docs/general/troubleshooting/#multi-factor-authentication-troubleshooting' + Href = 'https://docs.cipp.app/troubleshooting/troubleshooting#multi-factor-authentication-troubleshooting' } ) | Out-Null } } - - $MissingPermissions = $ExpectedPermissions.requiredResourceAccess.ResourceAccess.id | Where-Object { $_ -notin $GraphPermissions.requiredResourceAccess.ResourceAccess.id } + + $MissingPermissions = $ExpectedPermissions.requiredResourceAccess.ResourceAccess.id | Where-Object { $_ -notin $GraphPermissions.requiredResourceAccess.ResourceAccess.id } if ($MissingPermissions) { $Translator = Get-Content '.\Cache_SAMSetup\PermissionsTranslator.json' | ConvertFrom-Json $TranslatedPermissions = $Translator | Where-Object id -In $MissingPermissions | ForEach-Object { "$($_.value) - $($_.Origin)" } @@ -98,15 +93,52 @@ if ($Request.query.Permissions -eq 'true') { $Success = $false $Links.Add([PSCustomObject]@{ Text = 'Permissions' - Href = 'https://cipp.app/docs/user/gettingstarted/postinstall/permissions/' + Href = 'https://docs.cipp.app/setup/installation/permissions' } ) | Out-Null - } - else { + } else { $Messages.Add('Your Secure Application Model has all required permissions') | Out-Null } - } - catch { + $CIPPGroupCount = New-GraphGetRequest -uri "https://graph.microsoft.com/beta/groups/`$count?`$filter=startsWith(displayName,'M365 GDAP')" -NoAuthCheck $true -ComplexFilter + $SAMUserMemberships = New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/me/memberOf?$select=id,displayName,isAssignableToRole' -NoAuthCheck $true + $ExpectedGroups = @( + 'AdminAgents', + 'M365 GDAP Application Administrator', + 'M365 GDAP User Administrator', + 'M365 GDAP Intune Administrator', + 'M365 GDAP Exchange Administrator', + 'M365 GDAP Security Administrator', + 'M365 GDAP Cloud App Security Administrator', + 'M365 GDAP Cloud Device Administrator', + 'M365 GDAP Teams Administrator', + 'M365 GDAP Sharepoint Administrator', + 'M365 GDAP Authentication Policy Administrator', + 'M365 GDAP Privileged Role Administrator', + 'M365 GDAP Privileged Authentication Administrator' + ) + $RoleAssignableGroups = $SAMUserMemberships | Where-Object { $_.isAssignableToRole } + $NestedGroups = foreach ($Group in $RoleAssignableGroups) { + New-GraphGetRequest -uri "https://graph.microsoft.com/beta/groups/$($Group.id)/memberOf?`$select=id,displayName" -NoAuthCheck $true + } + + $MissingGroups = [System.Collections.Generic.List[string]]::new() + foreach ($Group in $ExpectedGroups) { + $GroupFound = $false + foreach ($Membership in ($SAMUserMemberships + $NestedGroups)) { + if ($Membership.displayName -match $Group -and (($CIPPGroupCount -gt 0 -and $Group -match 'M365 GDAP') -or $Group -notmatch 'M365 GDAP')) { + $GroupFound = $true + } + } + if (-not $GroupFound) { + $MissingGroups.Add($Group) + } + } + if (($MissingGroups | Measure-Object).Count -eq 0) { + $Messages.Add('The SAM user has all the required groups') + } else { + $Success = $false + } + } catch { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Permissions check failed: $($_) " -Sev 'Error' $Messages.Add("We could not connect to the API to retrieve the permissions. There might be a problem with the secure application model configuration. The returned error is: $(Get-NormalizedError -message $_)") | Out-Null $Success = $false @@ -116,57 +148,92 @@ if ($Request.query.Permissions -eq 'true') { AccessTokenDetails = $AccessTokenDetails Messages = @($Messages) MissingPermissions = @($MissingPermissions) + MissingGroups = @($MissingGroups) + Memberships = @($SAMUserMemberships) + CIPPGroupCount = $CIPPGroupCount Links = @($Links) Success = $Success } } if ($Request.query.Tenants -eq 'true') { + $ExpectedRoles = @( + @{ Name = 'Application Administrator'; Id = '9b895d92-2cd3-44c7-9d02-a6ac2d5ea5c3' }, + @{ Name = 'User Administrator'; Id = 'fe930be7-5e62-47db-91af-98c3a49a38b1' }, + @{ Name = 'Intune Administrator'; Id = '3a2c62db-5318-420d-8d74-23affee5d9d5' }, + @{ Name = 'Exchange Administrator'; Id = '29232cdf-9323-42fd-ade2-1d097af3e4de' }, + @{ Name = 'Security Administrator'; Id = '194ae4cb-b126-40b2-bd5b-6091b380977d' }, + @{ Name = 'Cloud App Security Administrator'; Id = '892c5842-a9a6-463a-8041-72aa08ca3cf6' }, + @{ Name = 'Cloud Device Administrator'; Id = '7698a772-787b-4ac8-901f-60d6b08affd2' }, + @{ Name = 'Teams Administrator'; Id = '69091246-20e8-4a56-aa4d-066075b2a7a8' }, + @{ Name = 'Sharepoint Administrator'; Id = 'f28a1f50-f6e7-4571-818b-6a12f2af6b6c' }, + @{ Name = 'Authentication Policy Administrator'; Id = '0526716b-113d-4c15-b2c8-68e3c22b9f80' }, + @{ Name = 'Privileged Role Administrator'; Id = 'e8611ab8-c189-46e8-94e1-60213ab1f814' }, + @{ Name = 'Privileged Authentication Administrator'; Id = '7be44c8a-adaf-4e2a-84d6-ab2649e08a13' } + ) $Tenants = ($Request.body.tenantid).split(',') if (!$Tenants) { $results = 'Could not load the tenants list from cache. Please run permissions check first, or visit the tenants page.' } + $TenantList = Get-Tenants + $TenantIds = foreach ($Tenant in $Tenants) { + ($TenantList | Where-Object { $_.defaultDomainName -eq $Tenant }).customerId + } + $MyRoles = New-GraphGetRequest -uri "https://graph.microsoft.com/beta/tenantRelationships/managedTenants/myRoles?`$filter=tenantId in ('$($TenantIds -join "','")')" $results = foreach ($tenant in $Tenants) { + $AddedText = '' try { - $ExpectedRoles = @( - @{ Name = "Application Administrator"; Id = "9b895d92-2cd3-44c7-9d02-a6ac2d5ea5c3" }, - @{ Name = "User Administrator"; Id = "fe930be7-5e62-47db-91af-98c3a49a38b1" }, - @{ Name = "Intune Administrator"; Id = "3a2c62db-5318-420d-8d74-23affee5d9d5" }, - @{ Name = "Exchange Administrator"; Id = "29232cdf-9323-42fd-ade2-1d097af3e4de" }, - @{ Name = "Security Administrator"; Id = "194ae4cb-b126-40b2-bd5b-6091b380977d" }, - @{ Name = "Cloud App Security Administrator"; Id = "892c5842-a9a6-463a-8041-72aa08ca3cf6" }, - @{ Name = "Cloud Device Administrator"; Id = "7698a772-787b-4ac8-901f-60d6b08affd2" }, - @{ Name = "Teams Administrator"; Id = "69091246-20e8-4a56-aa4d-066075b2a7a8" }, - @{ Name = "Sharepoint Administrator"; Id = "f28a1f50-f6e7-4571-818b-6a12f2af6b6c" }, - @{ Name = "Authentication Policy Administrator"; Id = "0526716b-113d-4c15-b2c8-68e3c22b9f80" }, - @{ Name = "Privileged Role Administrator"; Id = "e8611ab8-c189-46e8-94e1-60213ab1f814" }, - @{ Name = "Privileged Authentication Administrator"; Id = "7be44c8a-adaf-4e2a-84d6-ab2649e08a13" } - ) + $TenantId = ($TenantList | Where-Object { $_.defaultDomainName -eq $tenant }).customerId + $Assignments = ($MyRoles | Where-Object { $_.tenantId -eq $TenantId }).assignments + $SAMUserRoles = ($Assignments | Where-Object { $_.assignmentType -eq 'granularDelegatedAdminPrivileges' }).roles + $BulkRequests = $ExpectedRoles | ForEach-Object { @( @{ id = "roleManagement_$($_.id)" method = 'GET' - url = "roleManagement/directory/roleAssignments?`$filter=roleDefinitionId eq '$($_.id)'&`$expand=principal" + url = "roleManagement/directory/roleAssignments?`$filter=roleDefinitionId eq '$($_.id)'&`$expand=principal" } ) } $GDAPRolesGraph = New-GraphBulkRequest -tenantid $tenant -Requests $BulkRequests - $GDAPRoles = foreach ($RoleId in $ExpectedRoles) { + $GDAPRoles = [System.Collections.Generic.List[object]]::new() + $MissingRoles = [System.Collections.Generic.List[object]]::new() + foreach ($RoleId in $ExpectedRoles) { $GraphRole = $GDAPRolesGraph.body.value | Where-Object -Property roleDefinitionId -EQ $RoleId.Id $Role = $GraphRole.principal | Where-Object -Property organizationId -EQ $ENV:tenantid - if (!$role) { - "$($RoleId.Name), " - $AddedText = "but potentially missing GDAP roles" + $SAMRole = $SAMUserRoles | Where-Object -Property templateId -EQ $RoleId.Id + if (!$Role) { + $MissingRoles.Add( + [PSCustomObject]@{ + Name = $RoleId.Name + Type = 'Tenant' + } + ) + $AddedText = 'but missing GDAP roles' + } else { + $GDAPRoles.Add([PSCustomObject]$RoleId) } + if (!$SAMRole) { + $MissingRoles.Add( + [PSCustomObject]@{ + Name = $RoleId.Name + Type = 'SAM User' + } + ) + $AddedText = 'but missing GDAP roles' + } + } + if (!($MissingRoles | Measure-Object).Count -gt 0) { + $MissingRoles = $true } - @{ - TenantName = "$($Tenant)" - Status = "Successfully connected $($AddedText)" - GDAP = $GDAPRoles + TenantName = "$($Tenant)" + Status = "Successfully connected $($AddedText)" + GDAPRoles = $GDAPRoles + MissingRoles = $MissingRoles + SAMUserRoles = $SAMUserRoles } Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $tenant -message 'Tenant access check executed successfully' -Sev 'Info' - } - catch { + } catch { @{ TenantName = "$($tenant)" Status = "Failed to connect: $(Get-NormalizedError -message $_.Exception.Message)" @@ -178,19 +245,18 @@ if ($Request.query.Tenants -eq 'true') { try { $GraphRequest = New-ExoRequest -tenantid $Tenant -cmdlet 'Get-OrganizationConfig' -ErrorAction Stop - @{ + @{ TenantName = "$($Tenant)" Status = 'Successfully connected to Exchange' } - } - catch { + } catch { $ReportedError = ($_.ErrorDetails | ConvertFrom-Json -ErrorAction SilentlyContinue) $Message = if ($ReportedError.error.details.message) { $ReportedError.error.details.message } else { $ReportedError.error.innererror.internalException.message } if ($null -eq $Message) { $Message = $($_.Exception.Message) } @{ TenantName = "$($Tenant)" - Status = "Failed to connect to Exchange: $(Get-NormalizedError -message $Message)" + Status = "Failed to connect to Exchange: $(Get-NormalizedError -message $Message)" } Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -tenant $tenant -message "Tenant access check for Exchange failed: $(Get-NormalizedError -message $Message) " -Sev 'Error' } diff --git a/ExecAddGDAPRole/run.ps1 b/ExecAddGDAPRole/run.ps1 index 827fc4712156..a78d130486a7 100644 --- a/ExecAddGDAPRole/run.ps1 +++ b/ExecAddGDAPRole/run.ps1 @@ -52,7 +52,7 @@ $RoleMappings = foreach ($group in $Groups) { } } -Add-AzDataTableEntity @Table -Entity $RoleMappings -Force +Add-CIPPAzDataTableEntity @Table -Entity $RoleMappings -Force $body = @{Results = @($Results) } # Associate values to output bindings by calling 'Push-OutputBinding'. diff --git a/ExecAddMultiTenantApp/function.json b/ExecAddMultiTenantApp/function.json new file mode 100644 index 000000000000..bf6c3ef0c49a --- /dev/null +++ b/ExecAddMultiTenantApp/function.json @@ -0,0 +1,18 @@ +{ + "scriptFile": "../Modules/CippEntryPoints/CippEntryPoints.psm1", + "entryPoint": "Receive-CippHttpTrigger", + "bindings": [ + { + "authLevel": "anonymous", + "type": "httpTrigger", + "direction": "in", + "name": "Request", + "methods": ["get", "post"] + }, + { + "type": "http", + "direction": "out", + "name": "Response" + } + ] +} diff --git a/ExecAlertsList/run.ps1 b/ExecAlertsList/run.ps1 index a51609a8896b..7fad1371efbf 100644 --- a/ExecAlertsList/run.ps1 +++ b/ExecAlertsList/run.ps1 @@ -53,7 +53,7 @@ try { else { $Table = Get-CIPPTable -TableName cachealertsandincidents $Filter = "PartitionKey eq 'alert'" - $Rows = Get-AzDataTableEntity @Table -filter $Filter | Where-Object -Property Timestamp -GT (Get-Date).AddMinutes(-10) + $Rows = Get-CIPPAzDataTableEntity @Table -filter $Filter | Where-Object -Property Timestamp -GT (Get-Date).AddMinutes(-10) if (!$Rows) { Push-OutputBinding -Name Msg -Value (Get-Date).ToString() [PSCustomObject]@{ diff --git a/ExecAlertsListAllTenants/run.ps1 b/ExecAlertsListAllTenants/run.ps1 index 1c94d9d27f49..bf31544adb5d 100644 --- a/ExecAlertsListAllTenants/run.ps1 +++ b/ExecAlertsListAllTenants/run.ps1 @@ -20,7 +20,7 @@ Get-Tenants | ForEach-Object -Parallel { Tenant = $domainName PartitionKey = 'alert' } - Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null } @@ -46,7 +46,7 @@ Get-Tenants | ForEach-Object -Parallel { PartitionKey = 'alert' Tenant = $domainName } - Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null } diff --git a/ExecAutoExtendGDAP/function.json b/ExecAutoExtendGDAP/function.json new file mode 100644 index 000000000000..306b0c51e560 --- /dev/null +++ b/ExecAutoExtendGDAP/function.json @@ -0,0 +1,19 @@ +{ + "bindings": [ + { + "authLevel": "anonymous", + "type": "httpTrigger", + "direction": "in", + "name": "Request", + "methods": [ + "get", + "post" + ] + }, + { + "type": "http", + "direction": "out", + "name": "Response" + } + ] +} \ No newline at end of file diff --git a/ExecAutoExtendGDAP/run.ps1 b/ExecAutoExtendGDAP/run.ps1 new file mode 100644 index 000000000000..8106ae4db6d1 --- /dev/null +++ b/ExecAutoExtendGDAP/run.ps1 @@ -0,0 +1,16 @@ +using namespace System.Net + +# Input bindings are passed in via param block. +param($Request, $TriggerMetadata) + +$APIName = $TriggerMetadata.FunctionName +Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Accessed this API" -Sev "Debug" + +# Interact with query parameters or the body of the request. +$Results = Set-CIPPGDAPAutoExtend -RelationShipid $Request.query.ID + +# Associate values to output bindings by calling 'Push-OutputBinding'. +Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ + StatusCode = [HttpStatusCode]::OK + Body = @{ Results = $Results } + }) \ No newline at end of file diff --git a/ExecBECCheck/run.ps1 b/ExecBECCheck/run.ps1 index 7f2f86fda675..87b7175980f1 100644 --- a/ExecBECCheck/run.ps1 +++ b/ExecBECCheck/run.ps1 @@ -6,7 +6,7 @@ param($Request, $TriggerMetadata) $body = if ($request.query.GUID) { $Table = Get-CippTable -tablename 'cachebec' $Filter = "PartitionKey eq 'bec' and RowKey eq '$($request.query.GUID)'" - $JSONOutput = Get-AzDataTableEntity @Table -Filter $Filter + $JSONOutput = Get-CIPPAzDataTableEntity @Table -Filter $Filter if (!$JSONOutput) { @{ Waiting = $true } } diff --git a/ExecBECRemediate/run.ps1 b/ExecBECRemediate/run.ps1 index 10e0e33de695..c47647d1c5ab 100644 --- a/ExecBECRemediate/run.ps1 +++ b/ExecBECRemediate/run.ps1 @@ -20,8 +20,8 @@ try { $GraphRequest = New-GraphPostRequest -uri "https://graph.microsoft.com/v1.0/users/$SuspectUser" -tenantid $TenantFilter -type PATCH -body $passwordProfile -verbose $GraphRequest = New-GraphPostRequest -uri "https://graph.microsoft.com/v1.0/users/$SuspectUser" -tenantid $TenantFilter -type PATCH -body '{"accountEnabled":"false"}' -verbose $GraphRequest = New-GraphPostRequest -uri "https://graph.microsoft.com/v1.0/users/$SuspectUser/revokeSignInSessions" -tenantid $TenantFilter -type POST -body '{}' -verbose - $Mailboxes = New-ExoRequest -tenantid $TenantFilter -cmdlet "get-inboxrule" -cmdParams @{Mailbox = $SuspectUser } -anchor $SuspectUser | ForEach-Object { - New-ExoRequest -tenantid $TenantFilter -cmdlet "Disable-InboxRule" -cmdParams @{Confirm = $false; Identity = $_.Identity } -anchor $SuspectUser + $Mailboxes = New-ExoRequest -anchor $SuspectUser -tenantid $TenantFilter -cmdlet "get-inboxrule" -cmdParams @{Mailbox = $SuspectUser } | ForEach-Object { + New-ExoRequest -anchor $SuspectUser -tenantid $TenantFilter -cmdlet "Disable-InboxRule" -cmdParams @{Confirm = $false; Identity = $_.Identity } } $results = [pscustomobject]@{"Results" = "Executed Remediation for $SuspectUser and tenant $($TenantFilter). The temporary password is $password and must be changed at next logon." } Write-LogMessage -API "BECRemediate" -tenant $tenantfilter -message "Executed Remediation for $SuspectUser" -sev "Info" diff --git a/ExecCPVPermissions/run.ps1 b/ExecCPVPermissions/run.ps1 index 8f7b9a920aee..2801c3f1fca4 100644 --- a/ExecCPVPermissions/run.ps1 +++ b/ExecCPVPermissions/run.ps1 @@ -9,93 +9,17 @@ Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME - # Write to the Azure Functions log stream. Write-Host "PowerShell HTTP trigger function processed a request." - -# Interact with query parameters or the body of the request. -$TenantFilter = $Request.Query.TenantFilter -Set-Location (Get-Item $PSScriptRoot).Parent.FullName - -$Translator = Get-Content '.\Cache_SAMSetup\PermissionsTranslator.json' | ConvertFrom-Json -$ExpectedPermissions = Get-Content '.\Cache_SAMSetup\SAMManifest.json' | ConvertFrom-Json -try { - $DeleteOldPermissions = New-GraphpostRequest -Type DELETE -noauthcheck $true -uri "https://api.partnercenter.microsoft.com/v1/customers/$($TenantFilter)/applicationconsents/$($env:ApplicationID)" -scope "https://api.partnercenter.microsoft.com/.default" -tenantid $env:TenantID - -} -catch { - "no old permissions to delete, moving on" -} - -$GraphRequest = $ExpectedPermissions.requiredResourceAccess | ForEach-Object { - try { - $Resource = $_ - $Permissionsname = switch ($Resource.ResourceAppId) { - '00000002-0000-0ff1-ce00-000000000000' { 'Office 365 Exchange Online' } - '00000003-0000-0000-c000-000000000000' { "Graph API" } - 'fc780465-2017-40d4-a0c5-307022471b92' { 'WindowsDefenderATP' } - '00000003-0000-0ff1-ce00-000000000000' { 'Sharepoint' } - '48ac35b8-9aa8-4d74-927d-1f4a14a0b239' { 'Skype and Teams Tenant Admin API' } - 'c5393580-f805-4401-95e8-94b7a6ef2fc2' { 'Office 365 Management API' } - - } - $Scope = ($Translator | Where-Object { $_.id -in $Resource.ResourceAccess.id } | Where-Object { $_.value -notin 'profile', 'openid', 'offline_access' }).value -join ', ' - if ($Scope) { - $RequiredCPVPerms = [PSCustomObject]@{ - EnterpriseApplicationId = $_.ResourceAppId - Scope = "$Scope" - } - $AppBody = @" -{ - "ApplicationGrants":[ $(ConvertTo-Json -InputObject $RequiredCPVPerms -Compress -Depth 10)], - "ApplicationId": "$($env:ApplicationID)"} -"@ - $CPVConsent = New-GraphpostRequest -body $AppBody -Type POST -noauthcheck $true -uri "https://api.partnercenter.microsoft.com/v1/customers/$($TenantFilter)/applicationconsents" -scope "https://api.partnercenter.microsoft.com/.default" -tenantid $env:TenantID - "Succesfully set CPV permissions for $Permissionsname" - - } - } - catch { - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Could not set CPV permissions for $PermissionsName. Does the Tenant have a license for this API. error: $($_.Exception.message)" -Sev "Error" - "Could not set CPV permissions for $PermissionsName. Does the Tenant have a license for this API? Error: $($_.Exception.message)" - } -} - -try { - $ourSVCPrincipal = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/servicePrincipals(appId='$($ENV:applicationid)')" -tenantid $Tenantfilter - $CurrentRoles = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/servicePrincipals/$($ourSVCPrincipal.id)/appRoleAssignments" -tenantid $tenantfilter - +$TenantFilter = (get-tenants -IncludeAll -IncludeErrors | Where-Object -Property customerId -EQ $Request.query.Tenantfilter).defaultDomainName +Write-Host "Our Tenantfilter is $TenantFilter" +$GraphRequest = try { + Set-CIPPCPVConsent -Tenantfilter $TenantFilter + Add-CIPPApplicationPermission -RequiredResourceAccess "CippDefaults" -ApplicationId $ENV:ApplicationID -tenantfilter $TenantFilter + Add-CIPPDelegatedPermission -RequiredResourceAccess "CippDefaults" -ApplicationId $ENV:ApplicationID -tenantfilter $TenantFilter } catch { - #this try catch exists because of 500 errors when the app principal does not exist. :) -} -# if the app svc principal exists, consent app permissions -$apps = $ExpectedPermissions -#get current roles -#If -$Grants = foreach ($App in $apps.requiredResourceAccess) { - try { - $svcPrincipalId = New-GraphGETRequest -uri "https://graph.microsoft.com/v1.0/servicePrincipals(appId='$($app.resourceAppId)')" -tenantid $tenantfilter - } - catch { - continue - } - foreach ($SingleResource in $app.ResourceAccess | Where-Object -Property Type -EQ "Role") { - if ($singleresource.id -In $currentroles.appRoleId) { continue } - [pscustomobject]@{ - principalId = $($ourSVCPrincipal.id) - resourceId = $($svcPrincipalId.id) - appRoleId = "$($SingleResource.Id)" - } - } -} -foreach ($Grant in $grants) { - try { - $SettingsRequest = New-GraphPOSTRequest -body ($grant | ConvertTo-Json) -uri "https://graph.microsoft.com/beta/servicePrincipals/$($ourSVCPrincipal.id)/appRoleAssignedTo" -tenantid $tenantfilter -type POST - } - catch { - "Failed to grant $($grant.appRoleId) to $($grant.resourceId): $($_.Exception.Message). " - } + "Failed to update permissions for $($TenantFilter): $($_.Exception.Message)" } - # Associate values to output bindings by calling 'Push-OutputBinding'. Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ StatusCode = [HttpStatusCode]::OK diff --git a/ExecDeleteGDAPRoleMapping/run.ps1 b/ExecDeleteGDAPRoleMapping/run.ps1 index 949087e6257a..d94e2964a3a4 100644 --- a/ExecDeleteGDAPRoleMapping/run.ps1 +++ b/ExecDeleteGDAPRoleMapping/run.ps1 @@ -10,7 +10,7 @@ $Table = Get-CIPPTable -TableName 'GDAPRoles' Write-Host $Table try { $Filter = "PartitionKey eq 'Roles' and RowKey eq '{0}'" -f $Request.Query.GroupId - $Entity = Get-AzDataTableEntity @Table -Filter $Filter + $Entity = Get-CIPPAzDataTableEntity @Table -Filter $Filter Remove-AzDataTableEntity @Table -Entity $Entity $Results = [pscustomobject]@{'Results' = 'Success. GDAP relationship mapping deleted' } Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "GDAP relationship mapping deleted for $($Request.Query.GroupId)" -Sev 'Info' diff --git a/ExecDnsConfig/run.ps1 b/ExecDnsConfig/run.ps1 index fc76d2772178..697a3ac14930 100644 --- a/ExecDnsConfig/run.ps1 +++ b/ExecDnsConfig/run.ps1 @@ -20,7 +20,7 @@ $StatusCode = [HttpStatusCode]::OK try { $ConfigTable = Get-CippTable -tablename Config $Filter = "PartitionKey eq 'Domains' and RowKey eq 'Domains'" - $Config = Get-AzDataTableEntity @ConfigTable -Filter $Filter + $Config = Get-CIPPAzDataTableEntity @ConfigTable -Filter $Filter $DomainTable = Get-CippTable -tablename 'Domains' @@ -30,7 +30,7 @@ try { RowKey = 'Domains' Resolver = 'Google' } - Add-AzDataTableEntity @ConfigTable -Entity $Config -Force + Add-CIPPAzDataTableEntity @ConfigTable -Entity $Config -Force } $updated = $false @@ -51,7 +51,7 @@ try { } } if ($updated) { - Add-AzDataTableEntity @ConfigTable -Entity $Config -Force + Add-CIPPAzDataTableEntity @ConfigTable -Entity $Config -Force Write-LogMessage -API $APINAME -tenant 'Global' -user $request.headers.'x-ms-client-principal' -message 'DNS configuration updated' -Sev 'Info' $body = [pscustomobject]@{'Results' = 'Success: DNS configuration updated.' } } else { @@ -64,7 +64,7 @@ try { $Selector = ($Request.Query.Selector).trim() -split '\s*,\s*' $DomainTable = Get-CIPPTable -Table 'Domains' $Filter = "RowKey eq '{0}'" -f $Domain - $DomainInfo = Get-AzDataTableEntity @DomainTable -Filter $Filter + $DomainInfo = Get-CIPPAzDataTableEntity @DomainTable -Filter $Filter $DkimSelectors = [string]($Selector | ConvertTo-Json -Compress) if ($DomainInfo) { $DomainInfo.DkimSelectors = $DkimSelectors @@ -79,7 +79,7 @@ try { 'DkimSelectors' = $DkimSelectors } } - Add-AzDataTableEntity @DomainTable -Entity $DomainInfo -Force + Add-CIPPAzDataTableEntity @DomainTable -Entity $DomainInfo -Force } 'GetConfig' { $body = [pscustomobject]$Config @@ -87,7 +87,7 @@ try { } 'RemoveDomain' { $Filter = "RowKey eq '{0}'" -f $Request.Query.Domain - $DomainRow = Get-AzDataTableEntity @DomainTable -Filter $Filter + $DomainRow = Get-CIPPAzDataTableEntity @DomainTable -Filter $Filter Remove-AzDataTableEntity @DomainTable -Entity $DomainRow Write-LogMessage -API $APINAME -tenant 'Global' -user $request.headers.'x-ms-client-principal' -message "Removed Domain - $($Request.Query.Domain) " -Sev 'Info' $body = [pscustomobject]@{ 'Results' = "Domain removed - $($Request.Query.Domain)" } diff --git a/ExecEditMailboxPermissions/run.ps1 b/ExecEditMailboxPermissions/run.ps1 index 601a7f0c0070..0b72530ce29a 100644 --- a/ExecEditMailboxPermissions/run.ps1 +++ b/ExecEditMailboxPermissions/run.ps1 @@ -20,7 +20,7 @@ foreach ($RemoveUser in $RemoveFullAccess) { } catch { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Could not remove mailbox permissions for $($removeuser) on $($username)" -Sev "Error" -tenant $TenantFilter - $results.add("Could not remove shared mailbox permissions for $($username). Error: $($_.Exception.Message)") + $results.add("Could not remove $($removeuser) shared mailbox permissions for $($username). Error: $($_.Exception.Message)") } } $AddFullAccess = ($Request.body.AddFullAccess).value @@ -28,13 +28,13 @@ $AddFullAccess = ($Request.body.AddFullAccess).value foreach ($UserAutomap in $AddFullAccess) { try { $MailboxPerms = New-ExoRequest -Anchor $username -tenantid $Tenantfilter -cmdlet "Add-MailboxPermission" -cmdParams @{Identity = $userid; user = $UserAutomap; accessRights = @("FullAccess"); automapping = $true } - $results.add( "added $($UserAutomap) to $($username) Mailbox with automapping") - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Gave full permissions to $($UserAutomap) on $($username)" -Sev "Info" -tenant $TenantFilter + $results.add( "Granted $($UserAutomap) access to $($username) Mailbox with automapping") + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Granted $($UserAutomap) access to $($username) Mailbox with automapping" -Sev "Info" -tenant $TenantFilter } catch { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Could not add mailbox permissions for $($UserAutomap) on $($username)" -Sev "Error" -tenant $TenantFilter - $results.add( "Could not add shared mailbox permissions for $($username). Error: $($_.Exception.Message)") + $results.add( "Could not add $($UserAutomap) shared mailbox permissions for $($username). Error: $($_.Exception.Message)") } } $AddFullAccessNoAutoMap = ($Request.body.AddFullAccessNoAutoMap).value @@ -42,12 +42,12 @@ $AddFullAccessNoAutoMap = ($Request.body.AddFullAccessNoAutoMap).value foreach ($UserNoAutomap in $AddFullAccessNoAutoMap) { try { $MailboxPerms = New-ExoRequest -Anchor $username -tenantid $Tenantfilter -cmdlet "Add-MailboxPermission" -cmdParams @{Identity = $userid; user = $UserNoAutomap; accessRights = @("FullAccess"); automapping = $false } - $results.add( "added $UserNoAutomap to $($username) Mailbox without automapping") - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Gave full permissions to $($UserNoAutomap) on $($username)" -Sev "Info" -tenant $TenantFilter + $results.add( "Granted $UserNoAutomap access to $($username) Mailbox without automapping") + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Granted $UserNoAutomap access to $($username) Mailbox without automapping" -Sev "Info" -tenant $TenantFilter } catch { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Could not add mailbox permissions for $($UserNoAutomap) on $($username)" -Sev "Error" -tenant $TenantFilter - $results.add("Could not add shared mailbox permissions for $($username). Error: $($_.Exception.Message)") + $results.add("Could not add $($UserNoAutomap) shared mailbox permissions for $($username). Error: $($_.Exception.Message)") } } @@ -56,12 +56,12 @@ $AddSendAS = ($Request.body.AddSendAs).value foreach ($UserSendAs in $AddSendAS) { try { $MailboxPerms = New-ExoRequest -Anchor $username -tenantid $Tenantfilter -cmdlet "Add-RecipientPermission" -cmdParams @{Identity = $userid; Trustee = $UserSendAs; accessRights = @("SendAs") } - $results.add( "added $UserSendAs to $($username) with Send As permissions") - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Gave sendas permissions to $($UserSendAs) on $($username)" -Sev "Info" -tenant $TenantFilter + $results.add( "Granted $UserSendAs access to $($username) with Send As permissions") + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Granted $UserSendAs access to $($username) with Send As permissions" -Sev "Info" -tenant $TenantFilter } catch { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Could not add mailbox permissions for $($UserSendAs) on $($username)" -Sev "Error" -tenant $TenantFilter - $results.add("Could not add send-as permissions for $($username). Error: $($_.Exception.Message)") + $results.add("Could not add $($UserSendAs) send-as permissions for $($username). Error: $($_.Exception.Message)") } } @@ -71,11 +71,11 @@ foreach ($UserSendAs in $RemoveSendAs) { try { $MailboxPerms = New-ExoRequest -Anchor $username -tenantid $Tenantfilter -cmdlet "Remove-RecipientPermission" -cmdParams @{Identity = $userid; Trustee = $UserSendAs; accessRights = @("SendAs") } $results.add( "Removed $UserSendAs from $($username) with Send As permissions") - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Remove sendas permissions to $($UserSendAs) on $($username)" -Sev "Info" -tenant $TenantFilter + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Removed $UserSendAs from $($username) with Send As permissions" -Sev "Info" -tenant $TenantFilter } catch { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Could not remove mailbox permissions for $($UserSendAs) on $($username)" -Sev "Error" -tenant $TenantFilter - $results.add("Could not remove send-as permissions for $($username). Error: $($_.Exception.Message)") + $results.add("Could not remove $($UserSendAs) send-as permissions for $($username). Error: $($_.Exception.Message)") } } @@ -84,12 +84,12 @@ $AddSendOnBehalf = ($Request.body.AddSendOnBehalf).value foreach ($UserSendOnBehalf in $AddSendOnBehalf) { try { $MailboxPerms = New-ExoRequest -Anchor $username -tenantid $Tenantfilter -cmdlet "Set-Mailbox" -cmdParams @{Identity = $userid; GrantSendonBehalfTo = @{'@odata.type' = '#Exchange.GenericHashTable'; add = $UserSendOnBehalf}; } - $results.add( "added $UserSendOnBehalf to $($username) with Send On Behalf Permissions") - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Gave send on behalf permissions to $($UserSendOnBehalf) on $($username)" -Sev "Info" -tenant $TenantFilter + $results.add( "Granted $UserSendOnBehalf access to $($username) with Send On Behalf Permissions") + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Granted $UserSendOnBehalf access to $($username) with Send On Behalf Permissions" -Sev "Info" -tenant $TenantFilter } catch { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Could not add send on behalf permissions for $($UserSendOnBehalf) on $($username)" -Sev "Error" -tenant $TenantFilter - $results.add("Could not add send on behalf permissions for $($username). Error: $($_.Exception.Message)") + $results.add("Could not add $($UserSendOnBehalf) send on behalf permissions for $($username). Error: $($_.Exception.Message)") } } @@ -98,12 +98,12 @@ $RemoveSendOnBehalf = ($Request.body.RemoveSendOnBehalf).value foreach ($UserSendOnBehalf in $RemoveSendOnBehalf) { try { $MailboxPerms = New-ExoRequest -Anchor $username -tenantid $Tenantfilter -cmdlet "Set-Mailbox" -cmdParams @{Identity = $userid; GrantSendonBehalfTo = @{'@odata.type' = '#Exchange.GenericHashTable'; remove = $UserSendOnBehalf}; } - $results.add( "Removed Send On Behalf Permissions $UserSendOnBehalf on $($username)") - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Removed Send On Behalf Permissions to $($UserSendOnBehalf) on $($username)" -Sev "Info" -tenant $TenantFilter + $results.add( "Removed $UserSendOnBehalf from $($username) Send on Behalf Permissions") + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Removed $UserSendOnBehalf from $($username) Send on Behalf Permissions" -Sev "Info" -tenant $TenantFilter } catch { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME-message "Could not Remove send on behalf permissions for $($UserSendOnBehalf) on $($username)" -Sev "Error" -tenant $TenantFilter - $results.add("Could not remove send on behalf permissions for $($username). Error: $($_.Exception.Message)") + $results.add("Could not remove $($UserSendOnBehalf) send on behalf permissions for $($username). Error: $($_.Exception.Message)") } } diff --git a/ExecEditTemplate/run.ps1 b/ExecEditTemplate/run.ps1 index 54c3cc33635f..fe8139e089e4 100644 --- a/ExecEditTemplate/run.ps1 +++ b/ExecEditTemplate/run.ps1 @@ -12,13 +12,22 @@ try { $guid = $request.body.guid $JSON = $request.body | Select-Object * -ExcludeProperty GUID | ConvertTo-Json $Type = $request.Query.Type - Add-AzDataTableEntity @Table -Entity @{ - JSON = "$JSON" - RowKey = "$GUID" - PartitionKey = "$Type" - GUID = "$GUID" + + if ($Type -eq "IntuneTemplate") { + write-host "Intune Template" + write-host "" + $RawJSON = $request.body | Select-Object * -ExcludeProperty displayName, description, type, GUID | ConvertTo-Json -Depth 10 -Compress + Set-CIPPIntuneTemplate -RawJSON $RawJSON -GUID $GUID -DisplayName $Request.body.displayName -Description $Request.body.description -templateType $Request.body.type + } + else { + Add-CIPPAzDataTableEntity @Table -Entity @{ + JSON = "$JSON" + RowKey = "$GUID" + PartitionKey = "$Type" + GUID = "$GUID" + } + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Edited template $($Request.body.name) with GUID $GUID" -Sev "Debug" } - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Edited template $($Request.body.name) with GUID $GUID" -Sev "Debug" $body = [pscustomobject]@{ "Results" = "Successfully saved the template" } } diff --git a/ExecExcludeLicenses/run.ps1 b/ExecExcludeLicenses/run.ps1 index 9eab038dce6f..9db35ec5b002 100644 --- a/ExecExcludeLicenses/run.ps1 +++ b/ExecExcludeLicenses/run.ps1 @@ -13,17 +13,17 @@ $Table = Get-CIPPTable -TableName ExcludedLicenses try { if ($Request.Query.List) { - $Rows = Get-AzDataTableEntity @Table + $Rows = Get-CIPPAzDataTableEntity @Table if ($Rows.Count -lt 1) { $TableBaseData = '[{"GUID":"16ddbbfc-09ea-4de2-b1d7-312db6112d70","Product_Display_Name":"MICROSOFT TEAMS (FREE)"},{"GUID":"1f2f344a-700d-42c9-9427-5cea1d5d7ba6","Product_Display_Name":"MICROSOFT STREAM"},{"GUID":"338148b6-1b11-4102-afb9-f92b6cdc0f8d","Product_Display_Name":"DYNAMICS 365 P1 TRIAL FOR INFORMATION WORKERS"},{"GUID":"606b54a9-78d8-4298-ad8b-df6ef4481c80","Product_Display_Name":"Power Virtual Agents Viral Trial"},{"GUID":"61e6bd70-fbdb-4deb-82ea-912842f39431","Product_Display_Name":"Dynamics 365 Customer Service Insights Trial"},{"GUID":"6470687e-a428-4b7a-bef2-8a291ad947c9","Product_Display_Name":"WINDOWS STORE FOR BUSINESS"},{"GUID":"710779e8-3d4a-4c88-adb9-386c958d1fdf","Product_Display_Name":"MICROSOFT TEAMS EXPLORATORY"},{"GUID":"74fbf1bb-47c6-4796-9623-77dc7371723b","Product_Display_Name":"Microsoft Teams Trial"},{"GUID":"90d8b3f8-712e-4f7b-aa1e-62e7ae6cbe96","Product_Display_Name":"Business Apps (free)"},{"GUID":"a403ebcc-fae0-4ca2-8c8c-7a907fd6c235","Product_Display_Name":"Power BI (free)"},{"GUID":"bc946dac-7877-4271-b2f7-99d2db13cd2c","Product_Display_Name":"Dynamics 365 Customer Voice Trial"},{"GUID":"dcb1a3ae-b33f-4487-846a-a640262fadf4","Product_Display_Name":"Microsoft Power Apps Plan 2 Trial"},{"GUID":"f30db892-07e9-47e9-837c-80727f46fd3d","Product_Display_Name":"MICROSOFT FLOW FREE"},{"GUID":"fcecd1f9-a91e-488d-a918-a96cdb6ce2b0","Product_Display_Name":"Microsoft Dynamics AX7 User Trial"}]' | ConvertFrom-Json -AsHashtable -Depth 10 $TableRows = foreach ($Row in $TableBaseData) { $Row.PartitionKey = 'License' $Row.RowKey = $Row.GUID - Add-AzDataTableEntity @Table -Entity ([pscustomobject]$Row) -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity ([pscustomobject]$Row) -Force | Out-Null } - $Rows = Get-AzDataTableEntity @Table + $Rows = Get-CIPPAzDataTableEntity @Table Write-LogMessage -API $APINAME -user $request.headers.'x-ms-client-principal' -message 'got excluded licenses list' -Sev 'Info' } @@ -39,7 +39,7 @@ try { 'GUID' = $Request.body.GUID 'Product_Display_Name' = $request.body.SKUName } - Add-AzDataTableEntity @Table -Entity $AddObject -Force + Add-CIPPAzDataTableEntity @Table -Entity $AddObject -Force Write-LogMessage -API $APINAME -user $request.headers.'x-ms-client-principal' -message "Added exclusion $($request.body.SKUName)" -Sev 'Info' $body = [pscustomobject]@{'Results' = "Success. We've added $($request.body.SKUName) to the excluded list." } @@ -47,7 +47,7 @@ try { if ($Request.Query.RemoveExclusion) { $Filter = "RowKey eq '{0}' and PartitionKey eq 'License'" -f $Request.Query.Guid - $Entity = Get-AzDataTableEntity @Table -Filter $Filter + $Entity = Get-CIPPAzDataTableEntity @Table -Filter $Filter Remove-AzDataTableEntity @Table -Entity $Entity Write-LogMessage -API $APINAME -user $request.headers.'x-ms-client-principal' -message "Removed exclusion $($Request.Query.GUID)" -Sev 'Info' $body = [pscustomobject]@{'Results' = "Success. We've removed $($Request.query.guid) from the excluded list." } diff --git a/ExecExcludeTenant/run.ps1 b/ExecExcludeTenant/run.ps1 index 0a451139b8ff..f01c0873bd8d 100644 --- a/ExecExcludeTenant/run.ps1 +++ b/ExecExcludeTenant/run.ps1 @@ -13,12 +13,12 @@ $TenantsTable = Get-CippTable -tablename Tenants if ($Request.Query.List) { $ExcludedFilter = "PartitionKey eq 'Tenants' and Excluded eq true" - $ExcludedTenants = Get-AzDataTableEntity @TenantsTable -Filter $ExcludedFilter + $ExcludedTenants = Get-CIPPAzDataTableEntity @TenantsTable -Filter $ExcludedFilter Write-LogMessage -API $APINAME -user $request.headers.'x-ms-client-principal' -message 'got excluded tenants list' -Sev 'Info' $body = @($ExcludedTenants) } elseif ($Request.query.ListAll) { - $ExcludedTenants = Get-AzDataTableEntity @TenantsTable -filter "PartitionKey eq 'Tenants'" + $ExcludedTenants = Get-CIPPAzDataTableEntity @TenantsTable -filter "PartitionKey eq 'Tenants'" Write-LogMessage -API $APINAME -user $request.headers.'x-ms-client-principal' -message 'got excluded tenants list' -Sev 'Info' $body = @($ExcludedTenants) } @@ -43,7 +43,7 @@ try { if ($Request.Query.RemoveExclusion) { $Filter = "PartitionKey eq 'Tenants' and defaultDomainName eq '{0}'" -f $name - $Tenant = Get-AzDataTableEntity @TenantsTable -Filter $Filter + $Tenant = Get-CIPPAzDataTableEntity @TenantsTable -Filter $Filter $Tenant.Excluded = $false $Tenant.ExcludeUser = '' $Tenant.ExcludeDate = '' diff --git a/ExecExtensionMapping/run.ps1 b/ExecExtensionMapping/run.ps1 index ee0efb835ef7..6804924416e5 100644 --- a/ExecExtensionMapping/run.ps1 +++ b/ExecExtensionMapping/run.ps1 @@ -23,6 +23,7 @@ if ($Request.Query.List) { 'NinjaFields' { $Body = Get-NinjaOneFieldMapping -CIPPMapping $Table + } } } @@ -57,6 +58,7 @@ try { $Body = [pscustomobject]@{'Results' = 'Automapping Request has been queued. Exact name matches will appear first and matches on device names and serials will take longer.' } } + } } } diff --git a/ExecExtensionSync/run.ps1 b/ExecExtensionSync/run.ps1 index 37672069a8bf..215298a5d488 100644 --- a/ExecExtensionSync/run.ps1 +++ b/ExecExtensionSync/run.ps1 @@ -10,7 +10,7 @@ Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -m try { Write-LogMessage -API "Scheduler_Billing" -tenant "none" -message "Starting billing processing." -sev Info $Table = Get-CIPPTable -TableName Extensionsconfig - $Configuration = (Get-AzDataTableEntity @Table).config | ConvertFrom-Json -Depth 10 + $Configuration = (Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json -Depth 10 foreach ($ConfigItem in $Configuration.psobject.properties.name) { switch ($ConfigItem) { "Gradient" { diff --git a/ExecExtensionTest/run.ps1 b/ExecExtensionTest/run.ps1 index 82edb418cf46..32ed9300eb52 100644 --- a/ExecExtensionTest/run.ps1 +++ b/ExecExtensionTest/run.ps1 @@ -6,7 +6,7 @@ param($Request, $TriggerMetadata) $APIName = $TriggerMetadata.FunctionName Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Accessed this API" -Sev "Debug" $Table = Get-CIPPTable -TableName Extensionsconfig -$Configuration = ((Get-AzDataTableEntity @Table).config | ConvertFrom-Json) +$Configuration = ((Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json) # Interact with query parameters or the body of the request. try { switch ($Request.query.extensionName) { diff --git a/ExecExtensionsConfig/run.ps1 b/ExecExtensionsConfig/run.ps1 index 54ddde3e3c63..3e2291063751 100644 --- a/ExecExtensionsConfig/run.ps1 +++ b/ExecExtensionsConfig/run.ps1 @@ -36,7 +36,7 @@ $results = try { 'config' = [string]$body } - Add-AzDataTableEntity @Table -Entity $Config -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $Config -Force | Out-Null "Successfully set the configuration. $AddedText" } catch { diff --git a/ExecGDAPInvite/run.ps1 b/ExecGDAPInvite/run.ps1 index 71e522a4c198..ff966b6e8a75 100644 --- a/ExecGDAPInvite/run.ps1 +++ b/ExecGDAPInvite/run.ps1 @@ -47,7 +47,7 @@ try { 'InviteUrl' = $InviteUrl 'RoleMappings' = [string](@($RoleMappings) | ConvertTo-Json -Depth 10) } - Add-AzDataTableEntity @Table -Entity $InviteEntity + Add-CIPPAzDataTableEntity @Table -Entity $InviteEntity $Results.add("Relationship created - Invite URL: $InviteUrl") } else { diff --git a/ExecGDAPInviteQueue/run.ps1 b/ExecGDAPInviteQueue/run.ps1 index 57fd1918a6e9..3d9fd22c68b6 100644 --- a/ExecGDAPInviteQueue/run.ps1 +++ b/ExecGDAPInviteQueue/run.ps1 @@ -6,7 +6,7 @@ Write-Host "PowerShell queue trigger function processed work item: $QueueItem" #$TenantFilter = $env:TenantID $Table = Get-CIPPTable -TableName 'GDAPInvites' -$Invite = Get-AzDataTableEntity @Table -Filter "RowKey eq '$QueueItem'" +$Invite = Get-CIPPAzDataTableEntity @Table -Filter "RowKey eq '$QueueItem'" $RoleMappings = $Invite.RoleMappings | ConvertFrom-Json Write-Host ($Invite | ConvertTo-Json -Compress) diff --git a/ExecGDAPMigrationQueue/run.ps1 b/ExecGDAPMigrationQueue/run.ps1 index 9e96f540d1ed..a76f06393028 100644 --- a/ExecGDAPMigrationQueue/run.ps1 +++ b/ExecGDAPMigrationQueue/run.ps1 @@ -16,15 +16,15 @@ $logRequest = @{ startAt = "$((Get-Date).ToString('s'))" } -Add-AzDataTableEntity @Table -Entity $logRequest -Force | Out-Null +Add-CIPPAzDataTableEntity @Table -Entity $logRequest -Force | Out-Null if ($RoleMappings) { $LogRequest['status'] = 'Step 2: Roles selected, creating new GDAP relationship.' - Add-AzDataTableEntity @Table -Entity $logRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $logRequest -Force | Out-Null } else { $LogRequest['status'] = 'Migration failed at Step 2: No role mappings created.' - Add-AzDataTableEntity @Table -Entity $logRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $logRequest -Force | Out-Null exit 1 } try { @@ -53,13 +53,13 @@ try { } catch { $LogRequest['status'] = "Migration Failed. Could not create relationship: $($_.Exception.Message)" - Add-AzDataTableEntity @Table -Entity $logRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $logRequest -Force | Out-Null } if ($CheckActive.status -eq 'Active') { $LogRequest['status'] = 'Step 3: GDAP Relationship active. Mapping groups.' - Add-AzDataTableEntity @Table -Entity $logRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $logRequest -Force | Out-Null foreach ($role in $RoleMappings) { try { $Mappingbody = ConvertTo-Json -Depth 10 -InputObject @{ @@ -76,17 +76,17 @@ if ($CheckActive.status -eq 'Active') { $RoleActiveID = New-GraphPostRequest -NoAuthCheck $True -uri "https://traf-pcsvcadmin-prod.trafficmanager.net/CustomerServiceAdminApi/Web//v1/delegatedAdminRelationships/$($MigrateRequest.id)/accessAssignments" -tenantid $env:TenantID -type POST -body $MappingBody -verbose -scope 'https://api.partnercustomeradministration.microsoft.com/.default' Start-Sleep -Milliseconds 400 $LogRequest['status'] = "Step 3: GDAP Relationship active. Mapping group: $($Role.GroupId)" - Add-AzDataTableEntity @Table -Entity $logRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $logRequest -Force | Out-Null } catch { $LogRequest['status'] = "Migration Failed. Could not create group mapping for group $($role.GroupId): $($_.Exception.Message)" - Add-AzDataTableEntity @Table -Entity $logRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $logRequest -Force | Out-Null exit 1 } #$CheckActiveRole = New-GraphGetRequest -NoAuthCheck $True -uri "https://traf-pcsvcadmin-prod.trafficmanager.net/CustomerServiceAdminApi/Web//v1/delegatedAdminRelationships/$($MigrateRequest.id)/accessAssignments/$($RoleActiveID.id)" -tenantid $env:TenantId -scope 'https://api.partnercustomeradministration.microsoft.com/.default' } $LogRequest['status'] = 'Migration Complete' - Add-AzDataTableEntity @Table -Entity $logRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $logRequest -Force | Out-Null } diff --git a/ExecIncidentsList/run.ps1 b/ExecIncidentsList/run.ps1 index 29e5b8b17c57..0a043bba2d03 100644 --- a/ExecIncidentsList/run.ps1 +++ b/ExecIncidentsList/run.ps1 @@ -33,7 +33,7 @@ try { else { $Table = Get-CIPPTable -TableName cachealertsandincidents $Filter = "PartitionKey eq 'Incident'" - $Rows = Get-AzDataTableEntity @Table -filter $Filter | Where-Object -Property Timestamp -GT (Get-Date).AddMinutes(-10) + $Rows = Get-CIPPAzDataTableEntity @Table -filter $Filter | Where-Object -Property Timestamp -GT (Get-Date).AddMinutes(-10) if (!$Rows) { Push-OutputBinding -Name Msg -Value (Get-Date).ToString() [PSCustomObject]@{ diff --git a/ExecIncidentsListAllTenants/run.ps1 b/ExecIncidentsListAllTenants/run.ps1 index cf0b7b1d7d70..c7222556a39b 100644 --- a/ExecIncidentsListAllTenants/run.ps1 +++ b/ExecIncidentsListAllTenants/run.ps1 @@ -19,7 +19,7 @@ Get-Tenants | ForEach-Object -Parallel { PartitionKey = "Incident" Tenant = [string]$domainName } - Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null } } @@ -43,7 +43,7 @@ Get-Tenants | ForEach-Object -Parallel { PartitionKey = 'Incident' Tenant = [string]$domainName } - Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null } diff --git a/ExecMaintenanceScripts/run.ps1 b/ExecMaintenanceScripts/run.ps1 index 48ed4131dc6d..e83bd46c96b1 100644 --- a/ExecMaintenanceScripts/run.ps1 +++ b/ExecMaintenanceScripts/run.ps1 @@ -57,7 +57,7 @@ try { 'PartitionKey' = 'Maintenance' 'ScriptContent' = $ScriptContent } - Add-AzDataTableEntity @Table -Entity $MaintenanceScriptRow -Force + Add-CIPPAzDataTableEntity @Table -Entity $MaintenanceScriptRow -Force $Body = @{ Link = "/api/PublicScripts?guid=$LinkGuid" } } diff --git a/ExecNotificationConfig/run.ps1 b/ExecNotificationConfig/run.ps1 index 959818c8b535..1d5238a72c59 100644 --- a/ExecNotificationConfig/run.ps1 +++ b/ExecNotificationConfig/run.ps1 @@ -22,6 +22,7 @@ $results = try { 'webhook' = "$($Request.Body.Webhook)" 'onePerTenant' = [boolean]$Request.Body.onePerTenant 'sendtoIntegration' = [boolean]$Request.Body.sendtoIntegration + 'includeTenantId' = [boolean]$Request.Body.includeTenantId 'PartitionKey' = 'CippNotifications' 'RowKey' = 'CippNotifications' } @@ -29,7 +30,7 @@ $results = try { $SchedulerConfig[([pscustomobject]$logvalue.value)] = $true } - Add-AzDataTableEntity @Table -Entity $SchedulerConfig -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $SchedulerConfig -Force | Out-Null 'Successfully set the configuration' } catch { diff --git a/ExecOffboardUser/function.json b/ExecOffboardUser/function.json index 306b0c51e560..f7988840965c 100644 --- a/ExecOffboardUser/function.json +++ b/ExecOffboardUser/function.json @@ -5,15 +5,18 @@ "type": "httpTrigger", "direction": "in", "name": "Request", - "methods": [ - "get", - "post" - ] + "methods": ["get", "post"] }, { "type": "http", "direction": "out", "name": "Response" + }, + { + "type": "queue", + "direction": "out", + "name": "Msg", + "queueName": "offboardingmailbox" } ] -} \ No newline at end of file +} diff --git a/ExecOffboardUser/run.ps1 b/ExecOffboardUser/run.ps1 index 745b714d2b63..5e701c996166 100644 --- a/ExecOffboardUser/run.ps1 +++ b/ExecOffboardUser/run.ps1 @@ -38,14 +38,14 @@ try { } { $_."AccessNoAutomap" -ne "" } { - $request.body.AccessNoAutomap | ForEach-Object { Set-CIPPMailboxAccess -tenantFilter $tenantFilter -userid $username -AccessUser $_.value -Automap $true -AccessRights @("FullAccess") -ExecutingUser $request.headers.'x-ms-client-principal' -APIName "ExecOffboardUser" } + $request.body.AccessNoAutomap | ForEach-Object { Set-CIPPMailboxAccess -tenantFilter $tenantFilter -userid $username -AccessUser $_.value -Automap $false -AccessRights @("FullAccess") -ExecutingUser $request.headers.'x-ms-client-principal' -APIName "ExecOffboardUser" } } { $_."AccessAutomap" -ne "" } { - $request.body.AccessNoAutomap | ForEach-Object { Set-CIPPMailboxAccess -tenantFilter $tenantFilter -userid $username -AccessUser $_.value -Automap $false -AccessRights @("FullAccess") -ExecutingUser $request.headers.'x-ms-client-principal' -APIName "ExecOffboardUser" } + $request.body.AccessAutomap | ForEach-Object { Set-CIPPMailboxAccess -tenantFilter $tenantFilter -userid $username -AccessUser $_.value -Automap $true -AccessRights @("FullAccess") -ExecutingUser $request.headers.'x-ms-client-principal' -APIName "ExecOffboardUser" } } { $_."OOO" -ne "" } { - Set-CIPPOutOfOffice -tenantFilter $tenantFilter -userid $username -OOO $request.body.OOO -ExecutingUser $request.headers.'x-ms-client-principal' -APIName "ExecOffboardUser" + Set-CIPPOutOfOffice -tenantFilter $tenantFilter -userid $username -InternalMessage $request.body.OOO -ExternalMessage $request.body.OOO -ExecutingUser $request.headers.'x-ms-client-principal' -APIName "ExecOffboardUser" } { $_."forward" -ne "" } { Set-CIPPForwarding -userid $userid -username $username -tenantFilter $Tenantfilter -Forward $request.body.forward -KeepCopy [bool]$request.body.keepCopy -ExecutingUser $request.headers.'x-ms-client-principal' -APIName "ExecOffboardUser" @@ -65,6 +65,15 @@ try { { $_."RemoveMobile" -eq 'true' } { Remove-CIPPMobileDevice -userid $userid -username $Username -tenantFilter $Tenantfilter -ExecutingUser $request.headers.'x-ms-client-principal' -APIName "ExecOffboardUser" } + { $_."RemovePermissions" } { + $object = [PSCustomObject]@{ + TenantFilter = $tenantFilter + User = $username + executingUser = $request.headers.'x-ms-client-principal' + } + Push-OutputBinding -Name Msg -Value $object + "Removal of permissions queued. This task will run in the background and send it's results to the logbook." + } } $StatusCode = [HttpStatusCode]::OK diff --git a/ExecOffboard_Mailboxpermissions/function.json b/ExecOffboard_Mailboxpermissions/function.json new file mode 100644 index 000000000000..bc64eceb6904 --- /dev/null +++ b/ExecOffboard_Mailboxpermissions/function.json @@ -0,0 +1,10 @@ +{ + "bindings": [ + { + "name": "QueueItem", + "type": "queueTrigger", + "direction": "in", + "queueName": "offboardingmailbox" + } + ] +} diff --git a/ExecOffboard_Mailboxpermissions/run.ps1 b/ExecOffboard_Mailboxpermissions/run.ps1 new file mode 100644 index 000000000000..755133d6586e --- /dev/null +++ b/ExecOffboard_Mailboxpermissions/run.ps1 @@ -0,0 +1,8 @@ +# Input bindings are passed in via param block. +param( $QueueItem, $TriggerMetadata) +$APIName = $TriggerMetadata.FunctionName + +$Mailboxes = New-ExoRequest -tenantid $QueueItem.TenantFilter -cmdlet "get-mailbox" +foreach ($Mailbox in $Mailboxes) { + Remove-CIPPMailboxPermissions -PermissionsLevel @("FullAccess", "SendAs", "SendOnBehalf") -userid $Mailbox.UserPrincipalName -AccessUser $QueueItem.User -TenantFilter $QueueItem.TenantFilter -APIName $APINAME -ExecutingUser $QueueItem.ExecutingUser +} \ No newline at end of file diff --git a/ExecPasswordConfig/run.ps1 b/ExecPasswordConfig/run.ps1 index e5403eb726f4..104b9eaf1f7f 100644 --- a/ExecPasswordConfig/run.ps1 +++ b/ExecPasswordConfig/run.ps1 @@ -7,7 +7,7 @@ $APIName = $TriggerMetadata.FunctionName Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug' $Table = Get-CIPPTable -TableName Settings -$PasswordType = (Get-AzDataTableEntity @Table) +$PasswordType = (Get-CIPPAzDataTableEntity @Table) # Write to the Azure Functions log stream. Write-Host 'PowerShell HTTP trigger function processed a request.' @@ -23,7 +23,7 @@ $results = try { 'RowKey' = 'settings' } - Add-AzDataTableEntity @Table -Entity $SchedulerConfig -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $SchedulerConfig -Force | Out-Null 'Successfully set the configuration' } } diff --git a/ExecRestoreBackup/run.ps1 b/ExecRestoreBackup/run.ps1 index 58f343cf6c21..1b0a39db9893 100644 --- a/ExecRestoreBackup/run.ps1 +++ b/ExecRestoreBackup/run.ps1 @@ -12,7 +12,7 @@ try { $ht2 = @{} $line.psobject.properties | ForEach-Object { $ht2[$_.Name] = [string]$_.Value } $Table.Entity = $ht2 - Add-AzDataTableEntity @Table -Force + Add-CIPPAzDataTableEntity @Table -Force } Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Created backup" -Sev "Debug" diff --git a/ExecRunBackup/run.ps1 b/ExecRunBackup/run.ps1 index ca0054e879e1..32e6c1025d77 100644 --- a/ExecRunBackup/run.ps1 +++ b/ExecRunBackup/run.ps1 @@ -22,7 +22,7 @@ try { } $CSVfile = foreach ($CSVTable in $BackupTables) { $Table = Get-CippTable -tablename $CSVTable - Get-AzDataTableEntity @Table | Select-Object *, @{l = 'table'; e = { $CSVTable } } + Get-CIPPAzDataTableEntity @Table | Select-Object *, @{l = 'table'; e = { $CSVTable } } } Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Created backup" -Sev "Debug" diff --git a/ExecSAMSetup/run.ps1 b/ExecSAMSetup/run.ps1 index c7a15b0f9a1e..898f4cd7c44d 100644 --- a/ExecSAMSetup/run.ps1 +++ b/ExecSAMSetup/run.ps1 @@ -35,7 +35,7 @@ if (!$ENV:SetFromProfile) { $KV = $ENV:WEBSITE_DEPLOYMENT_ID $Table = Get-CIPPTable -TableName SAMWizard -$Rows = Get-AzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddMinutes(-10) +$Rows = Get-CIPPAzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddMinutes(-10) try { if ($Request.query.count -lt 1 ) { $Results = "No authentication code found. Please go back to the wizard." } @@ -62,7 +62,7 @@ try { $Results = "Authentication is now complete. You may now close this window." try { $SetupPhase = $rows.validated = $true - Add-AzDataTableEntity @Table -Entity $Rows -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $Rows -Force | Out-Null } catch { #no need. @@ -82,17 +82,17 @@ try { appid = "NotStarted" tenantid = "NotStarted" } - Add-AzDataTableEntity @Table -Entity $Rows -Force | Out-Null - $Rows = Get-AzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddMinutes(-10) + Add-CIPPAzDataTableEntity @Table -Entity $Rows -Force | Out-Null + $Rows = Get-CIPPAzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddMinutes(-10) if ($Request.query.partnersetup) { $SetupPhase = $Rows.partnersetup = $true - Add-AzDataTableEntity @Table -Entity $Rows -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $Rows -Force | Out-Null } $step = 1 $DeviceLogon = New-DeviceLogin -clientid "1b730954-1685-4b74-9bfd-dac224a7b894" -Scope 'https://graph.microsoft.com/.default' -FirstLogon $SetupPhase = $rows.SamSetup = [string]($DeviceLogon | ConvertTo-Json) - Add-AzDataTableEntity @Table -Entity $Rows -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $Rows -Force | Out-Null $Results = @{ message = "Your code is $($DeviceLogon.user_code). Enter the code" ; step = $step; url = $DeviceLogon.verification_uri } } if ($Request.query.CheckSetupProcess -and $request.query.step -eq 1) { @@ -104,14 +104,14 @@ try { $PartnerSetup = $Rows.partnersetup $TenantId = (Invoke-RestMethod "https://graph.microsoft.com/v1.0/organization" -Headers @{ authorization = "Bearer $($Token.Access_Token)" } -Method GET -ContentType 'application/json').value.id $SetupPhase = $rows.tenantid = [string]($TenantId) - Add-AzDataTableEntity @Table -Entity $Rows -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $Rows -Force | Out-Null if ($PartnerSetup) { $app = Get-Content '.\Cache_SAMSetup\SAMManifest.json' | ConvertFrom-Json $App.web.redirectUris = @($App.web.redirectUris + $URL) $app = $app | ConvertTo-Json -Depth 15 $AppId = (Invoke-RestMethod "https://graph.microsoft.com/v1.0/applications" -Headers @{ authorization = "Bearer $($Token.Access_Token)" } -Method POST -Body $app -ContentType 'application/json') $rows.appid = [string]($AppId.appId) - Add-AzDataTableEntity @Table -Entity $Rows -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $Rows -Force | Out-Null $attempt = 0 do { try { @@ -144,7 +144,7 @@ try { $app = Get-Content '.\Cache_SAMSetup\SAMManifestNoPartner.json' $AppId = (Invoke-RestMethod "https://graph.microsoft.com/v1.0/applications" -Headers @{ authorization = "Bearer $($Token.Access_Token)" } -Method POST -Body $app -ContentType 'application/json') $rows.appid = [string]($AppId.appId) - Add-AzDataTableEntity @Table -Entity $Rows -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $Rows -Force | Out-Null } $AppPassword = (Invoke-RestMethod "https://graph.microsoft.com/v1.0/applications/$($AppID.id)/addPassword" -Headers @{ authorization = "Bearer $($Token.Access_Token)" } -Method POST -Body '{"passwordCredential":{"displayName":"CIPPInstall"}}' -ContentType 'application/json').secretText Set-AzKeyVaultSecret -VaultName $kv -Name 'tenantid' -SecretValue (ConvertTo-SecureString -String $TenantId -AsPlainText -Force) @@ -165,7 +165,7 @@ try { $AppID = $rows.appid $PartnerSetup = $Rows.partnersetup $SetupPhase = $rows.SamSetup = [string]($FirstLogonRefreshtoken | ConvertTo-Json) - Add-AzDataTableEntity @Table -Entity $Rows -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $Rows -Force | Out-Null $URL = ($Request.headers.'x-ms-original-url').split('?') | Select-Object -First 1 $Validated = $Rows.validated if ($Validated) { $step = 3 } diff --git a/ExecScheduledCommand/function.json b/ExecScheduledCommand/function.json new file mode 100644 index 000000000000..e4c27b23b985 --- /dev/null +++ b/ExecScheduledCommand/function.json @@ -0,0 +1,10 @@ +{ + "bindings": [ + { + "name": "QueueItem", + "type": "queueTrigger", + "direction": "in", + "queueName": "scheduledcommandprocessor" + } + ] +} diff --git a/ExecScheduledCommand/run.ps1 b/ExecScheduledCommand/run.ps1 new file mode 100644 index 000000000000..fed27bba1579 --- /dev/null +++ b/ExecScheduledCommand/run.ps1 @@ -0,0 +1,78 @@ +# Input bindings are passed in via param block. +param($QueueItem, $TriggerMetadata) + +$Table = Get-CippTable -tablename 'ScheduledTasks' +$task = $QueueItem.TaskInfo +$commandParameters = $QueueItem.Parameters + +$tenant = $QueueItem.Parameters['TenantFilter'] +Write-Host 'started task' +try { + try { + $results = & $QueueItem.command @commandParameters + } catch { + $results = "Task Failed: $($_.Exception.Message)" + + } + + Write-Host 'ran the command' + if ($results.GetType() -eq [String]) { + $results = @{ Results = $results } + } + $results = $results | Select-Object * -ExcludeProperty RowKey, PartitionKey + + $StoredResults = $results | ConvertTo-Json -Compress -Depth 20 | Out-String + if ($StoredResults.Length -gt 64000 -or $task.Tenant -eq 'AllTenants') { + $StoredResults = @{ Results = 'The results for this query are too long to store in this table, or the query was meant for All Tenants. Please use the options to send the results to another target to be able to view the results. ' } | ConvertTo-Json -Compress + } +} catch { + $errorMessage = $_.Exception.Message + if ($task.Recurrence -gt 0) { $State = 'Failed - Planned' } else { $State = 'Failed' } + Update-AzDataTableEntity @Table -Entity @{ + PartitionKey = $task.PartitionKey + RowKey = $task.RowKey + Results = "$errorMessage" + TaskState = $State + } + Write-LogMessage -API 'Scheduler_UserTasks' -tenant $tenant -message "Failed to execute task $($task.Name): $errorMessage" -sev Error +} + + +$TableDesign = '' +$HTML = ($results | Select-Object * -ExcludeProperty RowKey, PartitionKey | ConvertTo-Html -Fragment) -replace '', "$TableDesign
" | Out-String +$title = "Scheduled Task $($task.Name) - $($task.ExpectedRunTime)" +Write-Host $title +switch -wildcard ($task.PostExecution) { + '*psa*' { Send-CIPPAlert -Type 'psa' -Title $title -HTMLContent $HTML } + '*email*' { Send-CIPPAlert -Type 'email' -Title $title -HTMLContent $HTML } + '*webhook*' { + $Webhook = [PSCustomObject]@{ + 'Tenant' = $tenant + 'TaskInfo' = $QueueItem.TaskInfo + 'Results' = $Results + } + Send-CIPPAlert -Type 'webhook' -Title $title -JSONContent $($Webhook | ConvertTo-Json -Depth 20) + } +} + +Write-Host 'ran the command' + +if ($task.Recurrence -le '0' -or $task.Recurrence -eq $null) { + Update-AzDataTableEntity @Table -Entity @{ + PartitionKey = $task.PartitionKey + RowKey = $task.RowKey + Results = "$StoredResults" + TaskState = 'Completed' + } +} else { + $nextRun = (Get-Date).AddDays($task.Recurrence) + $nextRunUnixTime = [int64]($nextRun - (Get-Date '1/1/1970')).TotalSeconds + Update-AzDataTableEntity @Table -Entity @{ + PartitionKey = $task.PartitionKey + RowKey = $task.RowKey + Results = "$StoredResults" + TaskState = 'Planned' + ScheduledTime = "$nextRunUnixTime" + } +} +Write-LogMessage -API 'Scheduler_UserTasks' -tenant $tenant -message "Successfully executed task: $($task.name)" -sev Info \ No newline at end of file diff --git a/ExecSchedulerBillingRun/run.ps1 b/ExecSchedulerBillingRun/run.ps1 index f26872d59c04..ff93986817b2 100644 --- a/ExecSchedulerBillingRun/run.ps1 +++ b/ExecSchedulerBillingRun/run.ps1 @@ -6,7 +6,7 @@ try { Write-LogMessage -API "Scheduler_Billing" -tenant "none" -message "Starting billing processing." -sev Info $Table = Get-CIPPTable -TableName Extensionsconfig - $Configuration = (Get-AzDataTableEntity @Table).config | ConvertFrom-Json -Depth 10 + $Configuration = (Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json -Depth 10 foreach ($ConfigItem in $Configuration.psobject.properties.name) { switch ($ConfigItem) { "Gradient" { diff --git a/ExecSetOoO/run.ps1 b/ExecSetOoO/run.ps1 index fee185b88269..bb34c7069454 100644 --- a/ExecSetOoO/run.ps1 +++ b/ExecSetOoO/run.ps1 @@ -7,16 +7,24 @@ try { Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Accessed this API" -Sev "Debug" $Username = $request.body.user $Tenantfilter = $request.body.tenantfilter - $message = $Request.body.input - #$userid = (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/users/$($username)" -tenantid $Tenantfilter).id + if ($Request.body.input) { + $InternalMessage = $Request.body.input + $ExternalMessage = $Request.body.input + } + else { + $InternalMessage = $Request.body.InternalMessage + $ExternalMessage = $Request.body.ExternalMessage + } + $StartTime = $Request.body.StartTime + $EndTime = $Request.body.EndTime + $Results = try { - if (!$Request.Body.Disable) { - Set-CIPPOutOfOffice -userid $Request.body.user -tenantFilter $TenantFilter -APIName $APINAME -ExecutingUser $request.headers.'x-ms-client-principal' -OOO $message -State "Enabled" + if ($Request.Body.AutoReplyState -ne "Scheduled") { + Set-CIPPOutOfOffice -userid $Request.body.user -tenantFilter $TenantFilter -APIName $APINAME -ExecutingUser $request.headers.'x-ms-client-principal' -InternalMessage $InternalMessage -ExternalMessage $ExternalMessage -State $Request.Body.AutoReplyState } else { - Set-CIPPOutOfOffice -userid $Request.body.user -tenantFilter $TenantFilter -APIName $APINAME -ExecutingUser $request.headers.'x-ms-client-principal' -OOO $message -State "Disabled" + Set-CIPPOutOfOffice -userid $Request.body.user -tenantFilter $TenantFilter -APIName $APINAME -ExecutingUser $request.headers.'x-ms-client-principal' -InternalMessage $InternalMessage -ExternalMessage $ExternalMessage -StartTime $StartTime -EndTime $EndTime -State $Request.Body.AutoReplyState } - } catch { "Could not add out of office message for $($username). Error: $($_.Exception.Message)" diff --git a/ExecUserSettings/function.json b/ExecUserSettings/function.json new file mode 100644 index 000000000000..bf6c3ef0c49a --- /dev/null +++ b/ExecUserSettings/function.json @@ -0,0 +1,18 @@ +{ + "scriptFile": "../Modules/CippEntryPoints/CippEntryPoints.psm1", + "entryPoint": "Receive-CippHttpTrigger", + "bindings": [ + { + "authLevel": "anonymous", + "type": "httpTrigger", + "direction": "in", + "name": "Request", + "methods": ["get", "post"] + }, + { + "type": "http", + "direction": "out", + "name": "Response" + } + ] +} diff --git a/GetCippAlerts/run.ps1 b/GetCippAlerts/run.ps1 index 554b25300eb2..4bb100fcff4d 100644 --- a/GetCippAlerts/run.ps1 +++ b/GetCippAlerts/run.ps1 @@ -7,7 +7,7 @@ $Alerts = [System.Collections.ArrayList]@() $Table = Get-CippTable -tablename CippAlerts $PartitionKey = Get-Date -UFormat '%Y%m%d' $Filter = "PartitionKey eq '{0}'" -f $PartitionKey -$Rows = Get-AzDataTableEntity @Table -Filter $Filter | Sort-Object TableTimestamp -Descending | Select-Object -First 10 +$Rows = Get-CIPPAzDataTableEntity @Table -Filter $Filter | Sort-Object TableTimestamp -Descending | Select-Object -First 10 @@ -16,7 +16,7 @@ $APIVersion = Get-Content "version_latest.txt" | Out-String $CIPPVersion = $request.query.localversion $RemoteAPIVersion = Invoke-RestMethod -Uri "https://raw.githubusercontent.com/KelvinTegelaar/CIPP-API/master/version_latest.txt" -$RemoteCIPPVersion = Invoke-RestMethod -Uri "https://raw.githubusercontent.com/KelvinTegelaar/CIPP/master/version_latest.txt" +$RemoteCIPPVersion = Invoke-RestMethod -Uri "https://raw.githubusercontent.com/KelvinTegelaar/CIPP/master/public/version_latest.txt" $version = [PSCustomObject]@{ LocalCIPPVersion = $CIPPVersion diff --git a/GetDashboard/run.ps1 b/GetDashboard/run.ps1 index fe324a4929be..8c9bafcebc28 100644 --- a/GetDashboard/run.ps1 +++ b/GetDashboard/run.ps1 @@ -189,13 +189,13 @@ Function Get-CronNextExecutionTime { $Table = Get-CippTable -tablename CippLogs $PartitionKey = Get-Date -UFormat '%Y%m%d' $Filter = "PartitionKey eq '{0}'" -f $PartitionKey -$Rows = Get-AzDataTableEntity @Table -Filter $Filter | Sort-Object TableTimestamp -Descending | Select-Object -First 10 +$Rows = Get-CIPPAzDataTableEntity @Table -Filter $Filter | Sort-Object TableTimestamp -Descending | Select-Object -First 10 $Standards = Get-CippTable -tablename standards -$QueuedStandards = (Get-AzDataTableEntity @Standards -Property RowKey | Measure-Object).Count +$QueuedStandards = (Get-CIPPAzDataTableEntity @Standards -Property RowKey | Measure-Object).Count $Apps = Get-CippTable -tablename apps -$QueuedApps = (Get-AzDataTableEntity @Apps -Property RowKey | Measure-Object).Count +$QueuedApps = (Get-CIPPAzDataTableEntity @Apps -Property RowKey | Measure-Object).Count $SlimRows = New-Object System.Collections.ArrayList foreach ($Row in $Rows) { diff --git a/GetVersion/run.ps1 b/GetVersion/run.ps1 index cf7a33c72ae0..d0e092e20571 100644 --- a/GetVersion/run.ps1 +++ b/GetVersion/run.ps1 @@ -10,7 +10,7 @@ $APIVersion = Get-Content "version_latest.txt" | Out-String $CIPPVersion = $request.query.localversion $RemoteAPIVersion = Invoke-RestMethod -Uri "https://raw.githubusercontent.com/KelvinTegelaar/CIPP-API/master/version_latest.txt" -$RemoteCIPPVersion = Invoke-RestMethod -Uri "https://raw.githubusercontent.com/KelvinTegelaar/CIPP/master/version_latest.txt" +$RemoteCIPPVersion = Invoke-RestMethod -Uri "https://raw.githubusercontent.com/KelvinTegelaar/CIPP/master/public/version_latest.txt" $version = [PSCustomObject]@{ LocalCIPPVersion = $CIPPVersion diff --git a/GraphHelper.psm1 b/GraphHelper.psm1 index cdd9a7f52ec7..41a23ffa350c 100644 --- a/GraphHelper.psm1 +++ b/GraphHelper.psm1 @@ -32,12 +32,13 @@ function Get-NormalizedError { '*AppLifecycle_2210*' { 'Failed to call Intune APIs: Does the tenant have a license available?' } '*One or more added object references already exist for the following modified properties:*' { 'This user is already a member of this group.' } '*Microsoft.Exchange.Management.Tasks.MemberAlreadyExistsException*' { 'This user is already a member of this group.' } + '*The property value exceeds the maximum allowed size (64KB)*' { 'One of the values exceeds the maximum allowed size (64KB).' } Default { $message } } } -function Get-GraphToken($tenantid, $scope, $AsApp, $AppID, $refreshToken, $ReturnRefresh) { +function Get-GraphToken($tenantid, $scope, $AsApp, $AppID, $refreshToken, $ReturnRefresh, $SkipCache) { if (!$scope) { $scope = 'https://graph.microsoft.com/.default' } if (!$env:SetFromProfile) { $CIPPAuth = Get-CIPPAuthentication; Write-Host 'Could not get Refreshtoken from environment variable. Reloading token.' } $AuthBody = @{ @@ -70,10 +71,11 @@ function Get-GraphToken($tenantid, $scope, $AsApp, $AppID, $refreshToken, $Retur $TokenKey = '{0}-{1}-{2}' -f $tenantid, $scope, $asApp try { - if ($script:AccessTokens.$TokenKey -and [int](Get-Date -UFormat %s -Millisecond 0) -lt $script:AccessTokens.$TokenKey.expires_on) { + if ($script:AccessTokens.$TokenKey -and [int](Get-Date -UFormat %s -Millisecond 0) -lt $script:AccessTokens.$TokenKey.expires_on -and $SkipCache -ne $true) { Write-Host 'Graph: cached token' $AccessToken = $script:AccessTokens.$TokenKey - } else { + } + else { Write-Host 'Graph: new token' $AccessToken = (Invoke-RestMethod -Method post -Uri "https://login.microsoftonline.com/$($tenantid)/oauth2/v2.0/token" -Body $Authbody -ErrorAction Stop) $ExpiresOn = [int](Get-Date -UFormat %s -Millisecond 0) + $AccessToken.expires_in @@ -85,11 +87,12 @@ function Get-GraphToken($tenantid, $scope, $AsApp, $AppID, $refreshToken, $Retur if ($ReturnRefresh) { $header = $AccessToken } else { $header = @{ Authorization = "Bearer $($AccessToken.access_token)" } } return $header #Write-Host $header['Authorization'] - } catch { + } + catch { # Track consecutive Graph API failures $TenantsTable = Get-CippTable -tablename Tenants $Filter = "PartitionKey eq 'Tenants' and (defaultDomainName eq '{0}' or customerId eq '{0}')" -f $tenantid - $Tenant = Get-AzDataTableEntity @TenantsTable -Filter $Filter + $Tenant = Get-CIPPAzDataTableEntity @TenantsTable -Filter $Filter if (!$Tenant.RowKey) { $donotset = $true $Tenant = [pscustomobject]@{ @@ -103,20 +106,22 @@ function Get-GraphToken($tenantid, $scope, $AsApp, $AppID, $refreshToken, $Retur $Tenant.LastGraphError = if ( $_.ErrorDetails.Message) { $msg = $_.ErrorDetails.Message | ConvertFrom-Json "$($msg.error):$($msg.error_description)" - } else { + } + else { $_.Exception.message } $Tenant.GraphErrorCount++ if (!$donotset) { Update-AzDataTableEntity @TenantsTable -Entity $Tenant } - throw "$($Tenant.LastGraphError)" + throw "Could not get token: $($Tenant.LastGraphError)" } } -function Write-LogMessage ($message, $tenant = 'None', $API = 'None', $user, $sev) { +function Write-LogMessage ($message, $tenant = 'None', $API = 'None', $tenantId = $null, $user, $sev) { try { $username = ([System.Text.Encoding]::UTF8.GetString([System.Convert]::FromBase64String($user)) | ConvertFrom-Json).userDetails - } catch { + } + catch { $username = $user } @@ -139,8 +144,14 @@ function Write-LogMessage ($message, $tenant = 'None', $API = 'None', $user, $se 'PartitionKey' = $PartitionKey 'RowKey' = ([guid]::NewGuid()).ToString() } + + + if ($tenantId) { + $TableRow.Add('TenantID', [string]$tenantId) + } + $Table.Entity = $TableRow - Add-AzDataTableEntity @Table | Out-Null + Add-CIPPAzDataTableEntity @Table | Out-Null } function New-GraphGetRequest { @@ -151,6 +162,7 @@ function New-GraphGetRequest { $AsApp, $noPagination, $NoAuthCheck, + $skipTokenCache, [switch]$ComplexFilter, [switch]$CountOnly ) @@ -159,8 +171,9 @@ function New-GraphGetRequest { if ($scope -eq 'ExchangeOnline') { $AccessToken = Get-ClassicAPIToken -resource 'https://outlook.office365.com' -Tenantid $tenantid $headers = @{ Authorization = "Bearer $($AccessToken.access_token)" } - } else { - $headers = Get-GraphToken -tenantid $tenantid -scope $scope -AsApp $asapp + } + else { + $headers = Get-GraphToken -tenantid $tenantid -scope $scope -AsApp $asapp -SkipCache $skipTokenCache } if ($ComplexFilter) { @@ -171,7 +184,7 @@ function New-GraphGetRequest { # Track consecutive Graph API failures $TenantsTable = Get-CippTable -tablename Tenants $Filter = "PartitionKey eq 'Tenants' and (defaultDomainName eq '{0}' or customerId eq '{0}')" -f $tenantid - $Tenant = Get-AzDataTableEntity @TenantsTable -Filter $Filter + $Tenant = Get-CIPPAzDataTableEntity @TenantsTable -Filter $Filter if (!$Tenant) { $Tenant = @{ GraphErrorCount = 0 @@ -187,11 +200,13 @@ function New-GraphGetRequest { if ($CountOnly) { $Data.'@odata.count' $nextURL = $null - } else { + } + else { if ($data.value) { $data.value } else { ($Data) } if ($noPagination) { $nextURL = $null } else { $nextURL = $data.'@odata.nextLink' } } - } catch { + } + catch { $Message = ($_.ErrorDetails.Message | ConvertFrom-Json -ErrorAction SilentlyContinue).error.message if ($Message -eq $null) { $Message = $($_.Exception.Message) } if ($Message -ne 'Request not applicable to target tenant.' -and $Tenant) { @@ -205,14 +220,20 @@ function New-GraphGetRequest { $Tenant.LastGraphError = '' Update-AzDataTableEntity @TenantsTable -Entity $Tenant return $ReturnedData - } else { + } + else { Write-Error 'Not allowed. You cannot manage your own tenant or tenants not under your scope' } } -function New-GraphPOSTRequest ($uri, $tenantid, $body, $type, $scope, $AsApp, $NoAuthCheck) { +function New-GraphPOSTRequest ($uri, $tenantid, $body, $type, $scope, $AsApp, $NoAuthCheck, $skipTokenCache, $AddedHeaders) { if ($NoAuthCheck -or (Get-AuthorisedRequest -Uri $uri -TenantID $tenantid)) { - $headers = Get-GraphToken -tenantid $tenantid -scope $scope -AsApp $asapp + $headers = Get-GraphToken -tenantid $tenantid -scope $scope -AsApp $asapp -SkipCache $skipTokenCache + if ($AddedHeaders) { + foreach ($header in $AddedHeaders.getenumerator()) { + $headers.Add($header.Key, $header.Value) + } + } Write-Verbose "Using $($uri) as url" if (!$type) { $type = 'POST' @@ -220,19 +241,16 @@ function New-GraphPOSTRequest ($uri, $tenantid, $body, $type, $scope, $AsApp, $N try { $ReturnedData = (Invoke-RestMethod -Uri $($uri) -Method $TYPE -Body $body -Headers $headers -ContentType 'application/json; charset=utf-8') - } catch { - #setting ErrorMess because the error from a failed json conversion overwrites the exception. + } + catch { $ErrorMess = $($_.Exception.Message) - try { - $Message = ($_.ErrorDetails.Message | ConvertFrom-Json -ErrorAction Stop).error.message - } catch { - $Message = $ErrorMess - } - + $Message = ($_.ErrorDetails.Message | ConvertFrom-Json -ErrorAction SilentlyContinue).error.message + if (!$Message) { $Message = $ErrorMess } throw $Message } return $ReturnedData - } else { + } + else { Write-Error 'Not allowed. You cannot manage your own tenant or tenants not under your scope' } } @@ -250,7 +268,8 @@ function Get-ClassicAPIToken($tenantID, $Resource) { if ($script:classictoken.$TokenKey -and [int](Get-Date -UFormat %s -Millisecond 0) -lt $script:classictoken.$TokenKey.expires_on) { Write-Host 'Classic: cached token' return $script:classictoken.$TokenKey - } else { + } + else { Write-Host 'Using classic' $uri = "https://login.microsoftonline.com/$($TenantID)/oauth2/token" $Body = @{ @@ -264,15 +283,17 @@ function Get-ClassicAPIToken($tenantID, $Resource) { if (!$script:classictoken) { $script:classictoken = [HashTable]::Synchronized(@{}) } $script:classictoken.$TokenKey = Invoke-RestMethod $uri -Body $body -ContentType 'application/x-www-form-urlencoded' -ErrorAction SilentlyContinue -Method post return $script:classictoken.$TokenKey - } catch { + } + catch { # Track consecutive Graph API failures $TenantsTable = Get-CippTable -tablename Tenants $Filter = "PartitionKey eq 'Tenants' and (defaultDomainName eq '{0}' or customerId eq '{0}')" -f $tenantid - $Tenant = Get-AzDataTableEntity @TenantsTable -Filter $Filter + $Tenant = Get-CIPPAzDataTableEntity @TenantsTable -Filter $Filter if (!$Tenant) { $Tenant = @{ GraphErrorCount = $null LastGraphTokenError = $null + LastGraphError = $null PartitionKey = 'TenantFailed' RowKey = 'Failed' } @@ -305,12 +326,14 @@ function New-TeamsAPIGetRequest($Uri, $tenantID, $Method = 'GET', $Resource = '4 } $Data if ($noPagination) { $nextURL = $null } else { $nextURL = $data.NextLink } - } catch { + } + catch { throw "Failed to make Teams API Get Request $_" } } until ($null -eq $NextURL) return $ReturnedData - } else { + } + else { Write-Error 'Not allowed. You cannot manage your own tenant or tenants not under your scope' } } @@ -332,12 +355,14 @@ function New-ClassicAPIGetRequest($TenantID, $Uri, $Method = 'GET', $Resource = } $Data if ($noPagination) { $nextURL = $null } else { $nextURL = $data.NextLink } - } catch { + } + catch { throw "Failed to make Classic Get Request $_" } } until ($null -eq $NextURL) return $ReturnedData - } else { + } + else { Write-Error 'Not allowed. You cannot manage your own tenant or tenants not under your scope' } } @@ -357,11 +382,13 @@ function New-ClassicAPIPostRequest($TenantID, $Uri, $Method = 'POST', $Resource } - } catch { + } + catch { throw "Failed to make Classic Get Request $_" } return $ReturnedData - } else { + } + else { Write-Error 'Not allowed. You cannot manage your own tenant or tenants not under your scope' } } @@ -382,7 +409,8 @@ function Get-AuthorisedRequest { $SkipList = Get-Tenants -SkipList if (($env:PartnerTenantAvailable -eq $true -and $SkipList.customerId -notcontains $TenantID -and $SkipList.defaultDomainName -notcontains $TenantID) -or (($Tenants.customerId -contains $TenantID -or $Tenants.defaultDomainName -contains $TenantID) -and $TenantID -ne $env:TenantId)) { return $true - } else { + } + else { return $false } } @@ -400,33 +428,38 @@ function Get-Tenants { $TenantsTable = Get-CippTable -tablename 'Tenants' $ExcludedFilter = "PartitionKey eq 'Tenants' and Excluded eq true" - $SkipListCache = Get-AzDataTableEntity @TenantsTable -Filter $ExcludedFilter + $SkipListCache = Get-CIPPAzDataTableEntity @TenantsTable -Filter $ExcludedFilter if ($SkipList) { return $SkipListCache } if ($IncludeAll.IsPresent) { $Filter = "PartitionKey eq 'Tenants'" - } elseif ($IncludeErrors.IsPresent) { + } + elseif ($IncludeErrors.IsPresent) { $Filter = "PartitionKey eq 'Tenants' and Excluded eq false" - } else { + } + else { $Filter = "PartitionKey eq 'Tenants' and Excluded eq false and GraphErrorCount lt 50" } - $IncludedTenantsCache = Get-AzDataTableEntity @TenantsTable -Filter $Filter + $IncludedTenantsCache = Get-CIPPAzDataTableEntity @TenantsTable -Filter $Filter if (($IncludedTenantsCache | Measure-Object).Count -gt 0) { try { $LastRefresh = ($IncludedTenantsCache | Where-Object { $_.customerId } | Sort-Object LastRefresh -Descending | Select-Object -First 1).LastRefresh | Get-Date -ErrorAction Stop - } catch { $LastRefresh = $false } - } else { + } + catch { $LastRefresh = $false } + } + else { $LastRefresh = $false } if (!$LastRefresh -or $LastRefresh -lt (Get-Date).Addhours(-24).ToUniversalTime()) { try { Write-Host "Renewing. Cache not hit. $LastRefresh" - $TenantList = (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/tenantRelationships/managedTenants/tenants?`$top=999" -tenantid $env:TenantID ) | Select-Object id, @{l = 'customerId'; e = { $_.tenantId } }, @{l = 'DefaultdomainName'; e = { [string]($_.contract.defaultDomainName) } } , @{l = 'MigratedToNewTenantAPI'; e = { $true } }, DisplayName, domains, @{n = 'delegatedPrivilegeStatus'; exp = { $_.tenantStatusInformation.delegatedPrivilegeStatus } } | Where-Object -Property defaultDomainName -NotIn $SkipListCache.defaultDomainName + $TenantList = (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/tenantRelationships/managedTenants/tenants?`$top=999" -tenantid $env:TenantID ) | Select-Object id, @{l = 'customerId'; e = { $_.tenantId } }, @{l = 'DefaultdomainName'; e = { [string]($_.contract.defaultDomainName) } } , @{l = 'MigratedToNewTenantAPI'; e = { $true } }, DisplayName, domains, @{n = 'delegatedPrivilegeStatus'; exp = { $_.tenantStatusInformation.delegatedPrivilegeStatus } } | Where-Object { $_.defaultDomainName -NotIn $SkipListCache.defaultDomainName -and $_.defaultDomainName -ne $null } - } catch { + } + catch { Write-Host "Get-Tenants - Lighthouse Error, using contract/delegatedAdminRelationship calls. Error: $($_.Exception.Message)" [System.Collections.Generic.List[PSCustomObject]]$BulkRequests = @( @{ @@ -447,7 +480,7 @@ function Get-Tenants { $ContractList = $Contracts | Select-Object id, customerId, DefaultdomainName, DisplayName, domains, @{l = 'MigratedToNewTenantAPI'; e = { $true } }, @{ n = 'delegatedPrivilegeStatus'; exp = { $CustomerId = $_.customerId; if (($GDAPRelationships | Where-Object { $_.customer.tenantId -EQ $CustomerId -and $_.status -EQ 'active' } | Measure-Object).Count -gt 0) { 'delegatedAndGranularDelegetedAdminPrivileges' } else { 'delegatedAdminPrivileges' } } } | Where-Object -Property defaultDomainName -NotIn $SkipListCache.defaultDomainName - $GDAPOnlyList = $GDAPRelationships | Where-Object { $_.status -eq 'active' -and $Contracts.customerId -notcontains $_.customer.tenantId } | Select-Object id, @{l = 'customerId'; e = { $($_.customer.tenantId) } }, @{l = 'defaultDomainName'; e = { (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/tenantRelationships/findTenantInformationByTenantId(tenantId='$($_.customer.tenantId)')" -noauthcheck $true -asApp:$true -tenant $env:TenantId).defaultDomainName } }, @{l = 'MigratedToNewTenantAPI'; e = { $true } }, @{n = 'displayName'; exp = { $_.customer.displayName } }, domains, @{n = 'delegatedPrivilegeStatus'; exp = { 'granularDelegatedAdminPrivileges' } } | Where-Object -Property defaultDomainName -NotIn $SkipListCache.defaultDomainName | Sort-Object -Property customerId -Unique + $GDAPOnlyList = $GDAPRelationships | Where-Object { $_.status -eq 'active' -and $Contracts.customerId -notcontains $_.customer.tenantId } | Select-Object id, @{l = 'customerId'; e = { $($_.customer.tenantId) } }, @{l = 'defaultDomainName'; e = { (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/tenantRelationships/findTenantInformationByTenantId(tenantId='$($_.customer.tenantId)')" -noauthcheck $true -asApp:$true -tenant $env:TenantId).defaultDomainName } }, @{l = 'MigratedToNewTenantAPI'; e = { $true } }, @{n = 'displayName'; exp = { $_.customer.displayName } }, domains, @{n = 'delegatedPrivilegeStatus'; exp = { 'granularDelegatedAdminPrivileges' } } | Where-Object { $_.defaultDomainName -NotIn $SkipListCache.defaultDomainName -and $_.defaultDomainName -ne $null } | Sort-Object -Property customerId -Unique $TenantList = @($ContractList) + @($GDAPOnlyList) } @@ -472,7 +505,7 @@ function Get-Tenants { }) | Out-Null } foreach ($Tenant in $TenantList) { - if ($Tenant.defaultDomainName -eq 'Invalid') { continue } + if ($Tenant.defaultDomainName -eq 'Invalid' -or !$Tenant.defaultDomainName) { continue } $IncludedTenantsCache.Add(@{ RowKey = [string]$Tenant.customerId PartitionKey = 'Tenants' @@ -492,10 +525,10 @@ function Get-Tenants { if ($IncludedTenantsCache) { $TenantsTable.Force = $true - Add-AzDataTableEntity @TenantsTable -Entity $IncludedTenantsCache + Add-CIPPAzDataTableEntity @TenantsTable -Entity $IncludedTenantsCache } } - return ($IncludedTenantsCache | Sort-Object -Property displayName) + return ($IncludedTenantsCache | Where-Object -Property defaultDomainName -ne $null | Sort-Object -Property displayName) } @@ -506,21 +539,21 @@ function Remove-CIPPCache { # Remove all tenants except excluded $TenantsTable = Get-CippTable -tablename 'Tenants' $Filter = "PartitionKey eq 'Tenants' and Excluded eq false" - $ClearIncludedTenants = Get-AzDataTableEntity @TenantsTable -Filter $Filter + $ClearIncludedTenants = Get-CIPPAzDataTableEntity @TenantsTable -Filter $Filter Remove-AzDataTableEntity @TenantsTable -Entity $ClearIncludedTenants if ($tenantsonly -eq 'false') { Write-Host 'Clearing all' # Remove Domain Analyser cached results $DomainsTable = Get-CippTable -tablename 'Domains' $Filter = "PartitionKey eq 'TenantDomains'" - $ClearDomainAnalyserRows = Get-AzDataTableEntity @DomainsTable -Filter $Filter | ForEach-Object { + $ClearDomainAnalyserRows = Get-CIPPAzDataTableEntity @DomainsTable -Filter $Filter | ForEach-Object { $_.DomainAnalyser = '' $_ } Update-AzDataTableEntity @DomainsTable -Entity $ClearDomainAnalyserRows #Clear BPA $BPATable = Get-CippTable -tablename 'cachebpa' - $ClearBPARows = Get-AzDataTableEntity @BPATable + $ClearBPARows = Get-CIPPAzDataTableEntity @BPATable Remove-AzDataTableEntity @BPATable -Entity $ClearBPARows $ENV:SetFromProfile = $null $Script:SkipListCache = $Null @@ -532,10 +565,11 @@ function Remove-CIPPCache { function New-ExoRequest ($tenantid, $cmdlet, $cmdParams, $useSystemMailbox, $Anchor, $NoAuthCheck) { if ((Get-AuthorisedRequest -TenantID $tenantid) -or $NoAuthCheck -eq $True) { $token = Get-ClassicAPIToken -resource 'https://outlook.office365.com' -Tenantid $tenantid - $tenant = (get-tenants | Where-Object -Property defaultDomainName -EQ $tenantid).customerId + $tenant = (get-tenants -IncludeErrors | Where-Object -Property defaultDomainName -EQ $tenantid).customerId if ($cmdParams) { $Params = $cmdParams - } else { + } + else { $Params = @{} } $ExoBody = ConvertTo-Json -Depth 5 -InputObject @{ @@ -551,7 +585,9 @@ function New-ExoRequest ($tenantid, $cmdlet, $cmdParams, $useSystemMailbox, $Anc if (!$Anchor -or $useSystemMailbox) { $OnMicrosoft = (New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/domains?$top=999' -tenantid $tenantid -NoAuthCheck $NoAuthCheck | Where-Object -Property isInitial -EQ $true).id - $anchor = "UPN:SystemMailbox{bb558c35-97f1-4cb9-8ff7-d53741dc928c}@$($OnMicrosoft)" + + $anchor = "UPN:SystemMailbox{8cc370d3-822a-4ab8-a926-bb94bd0641a9}@$($OnMicrosoft)" + } } @@ -565,18 +601,21 @@ function New-ExoRequest ($tenantid, $cmdlet, $cmdParams, $useSystemMailbox, $Anc } try { $ReturnedData = Invoke-RestMethod "https://outlook.office365.com/adminapi/beta/$($tenant)/InvokeCommand" -Method POST -Body $ExoBody -Headers $Headers -ContentType 'application/json; charset=utf-8' - } catch { + } + catch { $ErrorMess = $($_.Exception.Message) $ReportedError = ($_.ErrorDetails | ConvertFrom-Json -ErrorAction SilentlyContinue) $Message = if ($ReportedError.error.details.message) { $ReportedError.error.details.message - } elseif ($ReportedError.error.message) { $ReportedError.error.message } + } + elseif ($ReportedError.error.message) { $ReportedError.error.message } else { $ReportedError.error.innererror.internalException.message } if ($null -eq $Message) { $Message = $ErrorMess } throw $Message } return $ReturnedData.value - } else { + } + else { Write-Error 'Not allowed. You cannot manage your own tenant or tenants not under your scope' } } @@ -659,7 +698,8 @@ function Get-CIPPMSolUsers { if ($null -eq $page) { $Page = (Invoke-RestMethod -Uri 'https://provisioningapi.microsoftonline.com/provisioningwebservice.svc' -Method post -Body $MSOLXML -ContentType 'application/soap+xml; charset=utf-8').envelope.body.ListUsersResponse.listusersresult.returnvalue $Page.results.user - } else { + } + else { $Page = (Invoke-RestMethod -Uri 'https://provisioningapi.microsoftonline.com/provisioningwebservice.svc' -Method post -Body $MSOLXML -ContentType 'application/soap+xml; charset=utf-8').envelope.body.NavigateUserResultsResponse.NavigateUserResultsResult.returnvalue $Page.results.user } @@ -684,14 +724,17 @@ function New-DeviceLogin { if ($TenantID) { $ReturnCode = Invoke-RestMethod -Uri "https://login.microsoftonline.com/$($TenantID)/oauth2/v2.0/devicecode" -Method POST -Body "client_id=$($Clientid)&scope=$encodedscope+offline_access+profile+openid" - } else { + } + else { $ReturnCode = Invoke-RestMethod -Uri 'https://login.microsoftonline.com/organizations/oauth2/v2.0/devicecode' -Method POST -Body "client_id=$($Clientid)&scope=$encodedscope+offline_access+profile+openid" } - } else { + } + else { $Checking = Invoke-RestMethod -SkipHttpErrorCheck -Uri 'https://login.microsoftonline.com/organizations/oauth2/v2.0/token' -Method POST -Body "client_id=$($Clientid)&scope=$encodedscope+offline_access+profile+openid&grant_type=device_code&device_code=$($device_code)" if ($checking.refresh_token) { $ReturnCode = $Checking - } else { + } + else { $returncode = $Checking.error } } @@ -705,11 +748,12 @@ function New-passwordString { ) Set-Location (Get-Item $PSScriptRoot).FullName $SettingsTable = Get-CippTable -tablename 'Settings' - $PasswordType = (Get-AzDataTableEntity @SettingsTable).passwordType + $PasswordType = (Get-CIPPAzDataTableEntity @SettingsTable).passwordType if ($PasswordType -eq 'Correct-Battery-Horse') { $Words = Get-Content .\words.txt (Get-Random -InputObject $words -Count 4) -join '-' - } else { + } + else { -join ('abcdefghkmnrstuvwxyzABCDEFGHKLMNPRSTUVWXYZ23456789$%&*#'.ToCharArray() | Get-Random -Count $count) } } @@ -731,7 +775,7 @@ function New-GraphBulkRequest { # Track consecutive Graph API failures $TenantsTable = Get-CippTable -tablename Tenants $Filter = "PartitionKey eq 'Tenants' and (defaultDomainName eq '{0}' or customerId eq '{0}')" -f $tenantid - $Tenant = Get-AzDataTableEntity @TenantsTable -Filter $Filter + $Tenant = Get-CIPPAzDataTableEntity @TenantsTable -Filter $Filter if (!$Tenant) { $Tenant = @{ GraphErrorCount = 0 @@ -756,7 +800,8 @@ function New-GraphBulkRequest { $MoreData.body.value = $NewValues } - } catch { + } + catch { $Message = ($_.ErrorDetails.Message | ConvertFrom-Json -ErrorAction SilentlyContinue).error.message if ($Message -eq $null) { $Message = $($_.Exception.Message) } if ($Message -ne 'Request not applicable to target tenant.') { @@ -771,7 +816,8 @@ function New-GraphBulkRequest { Update-AzDataTableEntity @TenantsTable -Entity $Tenant return $ReturnedData.responses - } else { + } + else { Write-Error 'Not allowed. You cannot manage your own tenant or tenants not under your scope' } } @@ -779,7 +825,8 @@ function New-GraphBulkRequest { function Get-GraphBulkResultByID ($Results, $ID, [switch]$Value) { if ($Value) { ($Results | Where-Object { $_.id -eq $ID }).body.value - } else { + } + else { ($Results | Where-Object { $_.id -eq $ID }).body } } diff --git a/ListAlertsQueue/run.ps1 b/ListAlertsQueue/run.ps1 index 4fa36495dd12..bcee463ba113 100644 --- a/ListAlertsQueue/run.ps1 +++ b/ListAlertsQueue/run.ps1 @@ -11,7 +11,7 @@ Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -m Write-Host 'PowerShell HTTP trigger function processed a request.' $Table = Get-CIPPTable -TableName 'SchedulerConfig' $Filter = "PartitionKey eq 'Alert'" -$QueuedApps = Get-AzDataTableEntity @Table -Filter $Filter +$QueuedApps = Get-CIPPAzDataTableEntity @Table -Filter $Filter $CurrentStandards = foreach ($QueueFile in $QueuedApps) { [PSCustomObject]@{ diff --git a/ListApplicationQueue/run.ps1 b/ListApplicationQueue/run.ps1 index 79e96837e704..ec28f3dec728 100644 --- a/ListApplicationQueue/run.ps1 +++ b/ListApplicationQueue/run.ps1 @@ -10,7 +10,7 @@ Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME - # Write to the Azure Functions log stream. Write-Host "PowerShell HTTP trigger function processed a request." $Table = Get-CippTable -tablename 'apps' -$QueuedApps = (Get-AzDataTableEntity @Table) +$QueuedApps = (Get-CIPPAzDataTableEntity @Table) $CurrentApps = foreach ($QueueFile in $QueuedApps) { Write-Host $QueueFile diff --git a/ListBPA/run.ps1 b/ListBPA/run.ps1 index 0fae94c1b8a8..247175c44ebf 100644 --- a/ListBPA/run.ps1 +++ b/ListBPA/run.ps1 @@ -27,7 +27,7 @@ $CippRoot = (Get-Item $PSScriptRoot).Parent.FullName if ($Request.query.tenantFilter -ne 'AllTenants' -and $Style -eq 'Tenant') { $mergedObject = New-Object pscustomobject - $Data = (Get-AzDataTableEntity @Table -Filter "PartitionKey eq '$($Request.query.tenantFilter)'") | ForEach-Object { + $Data = (Get-CIPPAzDataTableEntity @Table -Filter "PartitionKey eq '$($Request.query.tenantFilter)'") | ForEach-Object { $row = $_ $JSONFields | ForEach-Object { $jsonContent = $row.$_ @@ -41,8 +41,10 @@ if ($Request.query.tenantFilter -ne 'AllTenants' -and $Style -eq 'Tenant') { } $Data = $mergedObject -} else { - $Data = (Get-AzDataTableEntity @Table -Filter "RowKey eq '$NAME'") | ForEach-Object { +} +else { + $Tenants = Get-Tenants -IncludeErrors + $Data = (Get-CIPPAzDataTableEntity @Table -Filter "RowKey eq '$NAME'") | ForEach-Object { $row = $_ $JSONFields | ForEach-Object { $jsonContent = $row.$_ @@ -50,7 +52,7 @@ if ($Request.query.tenantFilter -ne 'AllTenants' -and $Style -eq 'Tenant') { $row.$_ = $jsonContent | ConvertFrom-Json -Depth 15 } } - $row + $row | Where-Object -Property PartitionKey -In $Tenants.customerId } diff --git a/ListBasicAuth/run.ps1 b/ListBasicAuth/run.ps1 index 26a80c74bc0a..e9ccd5c46cc3 100644 --- a/ListBasicAuth/run.ps1 +++ b/ListBasicAuth/run.ps1 @@ -38,7 +38,7 @@ if ($TenantFilter -ne 'AllTenants') { } else { $Table = Get-CIPPTable -TableName cachebasicauth - $Rows = Get-AzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-1) + $Rows = Get-CIPPAzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-1) if (!$Rows) { Push-OutputBinding -Name Msg -Value (Get-Date).ToString() $GraphRequest = [PSCustomObject]@{ diff --git a/ListBasicAuthAllTenants/run.ps1 b/ListBasicAuthAllTenants/run.ps1 index 734ab64ccc5f..1fcbca1b4807 100644 --- a/ListBasicAuthAllTenants/run.ps1 +++ b/ListBasicAuthAllTenants/run.ps1 @@ -32,7 +32,7 @@ Get-Tenants | ForEach-Object -Parallel { } } $Table = Get-CIPPTable -TableName cachebasicauth - Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null } diff --git a/ListCAtemplates/run.ps1 b/ListCAtemplates/run.ps1 index 6c348ce0e721..99c5660c4345 100644 --- a/ListCAtemplates/run.ps1 +++ b/ListCAtemplates/run.ps1 @@ -20,13 +20,13 @@ $Templates = Get-ChildItem "Config\*.CATemplate.json" | ForEach-Object { PartitionKey = "CATemplate" GUID = "$($_.name)" } - Add-AzDataTableEntity @Table -Entity $Entity -Force + Add-CIPPAzDataTableEntity @Table -Entity $Entity -Force } #List new policies $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'CATemplate'" -$Templates = (Get-AzDataTableEntity @Table -Filter $Filter) | ForEach-Object { +$Templates = (Get-CIPPAzDataTableEntity @Table -Filter $Filter) | ForEach-Object { $data = $_.JSON | ConvertFrom-Json -Depth 100 $data | Add-Member -NotePropertyName "GUID" -NotePropertyValue $_.GUID -Force $data diff --git a/ListDomainHealth/run.ps1 b/ListDomainHealth/run.ps1 index b4982b21ec53..29dc7ff06f36 100644 --- a/ListDomainHealth/run.ps1 +++ b/ListDomainHealth/run.ps1 @@ -8,7 +8,7 @@ Import-Module DNSHealth try { $ConfigTable = Get-CippTable -tablename Config $Filter = "PartitionKey eq 'Domains' and RowKey eq 'Domains'" - $Config = Get-AzDataTableEntity @ConfigTable -Filter $Filter + $Config = Get-CIPPAzDataTableEntity @ConfigTable -Filter $Filter $ValidResolvers = @('Google', 'CloudFlare', 'Quad9') if ($ValidResolvers -contains $Config.Resolver) { @@ -20,7 +20,7 @@ try { RowKey = 'Domains' Resolver = $Resolver } - Add-AzDataTableEntity @ConfigTable -Entity $Config -Force + Add-CIPPAzDataTableEntity @ConfigTable -Entity $Config -Force } } catch { $Resolver = 'Google' @@ -42,7 +42,7 @@ try { if ($Request.Query.Domain -match '^(((?!-))(xn--|_{1,1})?[a-z0-9-]{0,61}[a-z0-9]{1,1}\.)*(xn--)?([a-z0-9][a-z0-9\-]{0,60}|[a-z0-9-]{1,30}\.[a-z]{2,})$') { $DomainTable = Get-CIPPTable -Table 'Domains' $Filter = "RowKey eq '{0}'" -f $Request.Query.Domain - $DomainInfo = Get-AzDataTableEntity @DomainTable -Filter $Filter + $DomainInfo = Get-CIPPAzDataTableEntity @DomainTable -Filter $Filter switch ($Request.Query.Action) { 'ListDomainInfo' { $Body = $DomainInfo @@ -91,7 +91,7 @@ try { } } Write-Host $DomainInfo - Add-AzDataTableEntity @DomainTable -Entity $DomainInfo -Force + Add-CIPPAzDataTableEntity @DomainTable -Entity $DomainInfo -Force } } elseif (![string]::IsNullOrEmpty($DomainInfo.DkimSelectors)) { $DkimQuery.Selectors = [System.Collections.Generic.List[string]]($DomainInfo.DkimSelectors | ConvertFrom-Json) diff --git a/ListExConnectorTemplates/run.ps1 b/ListExConnectorTemplates/run.ps1 index 709bf85cd681..8ab8d57480bc 100644 --- a/ListExConnectorTemplates/run.ps1 +++ b/ListExConnectorTemplates/run.ps1 @@ -10,7 +10,7 @@ $Table = Get-CippTable -tablename 'templates' #List new policies $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'ExConnectorTemplate'" -$Templates = (Get-AzDataTableEntity @Table -Filter $Filter) | ForEach-Object { +$Templates = (Get-CIPPAzDataTableEntity @Table -Filter $Filter) | ForEach-Object { $GUID = $_.RowKey $Direction = $_.direction $data = $_.JSON | ConvertFrom-Json diff --git a/ListExtensionsConfig/run.ps1 b/ListExtensionsConfig/run.ps1 index 821857516079..1de02456f1a2 100644 --- a/ListExtensionsConfig/run.ps1 +++ b/ListExtensionsConfig/run.ps1 @@ -8,7 +8,7 @@ Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -m $Table = Get-CIPPTable -TableName Extensionsconfig try { - $Body = (Get-AzDataTableEntity @Table).config | ConvertFrom-Json -Depth 10 -ErrorAction Stop + $Body = (Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json -Depth 10 -ErrorAction Stop } catch { $Body = @{} } diff --git a/ListFunctionParameters/function.json b/ListFunctionParameters/function.json new file mode 100644 index 000000000000..bf6c3ef0c49a --- /dev/null +++ b/ListFunctionParameters/function.json @@ -0,0 +1,18 @@ +{ + "scriptFile": "../Modules/CippEntryPoints/CippEntryPoints.psm1", + "entryPoint": "Receive-CippHttpTrigger", + "bindings": [ + { + "authLevel": "anonymous", + "type": "httpTrigger", + "direction": "in", + "name": "Request", + "methods": ["get", "post"] + }, + { + "type": "http", + "direction": "out", + "name": "Response" + } + ] +} diff --git a/ListGDAPInvite/run.ps1 b/ListGDAPInvite/run.ps1 index e660446da1d1..f8f61376c5f8 100644 --- a/ListGDAPInvite/run.ps1 +++ b/ListGDAPInvite/run.ps1 @@ -13,7 +13,7 @@ Write-Host 'PowerShell HTTP trigger function processed a request.' Write-Host ($Request | ConvertTo-Json) if (![string]::IsNullOrEmpty($Request.Query.RelationshipId)) { $Table = Get-CIPPTable -TableName 'GDAPInvites' - $Invite = Get-AzDataTableEntity @Table -Filter "RowKey eq '$($Request.Query.RelationshipId)'" + $Invite = Get-CIPPAzDataTableEntity @Table -Filter "RowKey eq '$($Request.Query.RelationshipId)'" Write-Host $Invite } else { $Invite = @{} diff --git a/ListGDAPQueue/run.ps1 b/ListGDAPQueue/run.ps1 index 3bacc05e6d6b..384b509cdc63 100644 --- a/ListGDAPQueue/run.ps1 +++ b/ListGDAPQueue/run.ps1 @@ -10,7 +10,7 @@ Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -m # Write to the Azure Functions log stream. Write-Host 'PowerShell HTTP trigger function processed a request.' $Table = Get-CIPPTable -TableName 'GDAPMigration' -$QueuedApps = Get-AzDataTableEntity @Table +$QueuedApps = Get-CIPPAzDataTableEntity @Table $CurrentStandards = foreach ($QueueFile in $QueuedApps) { [PSCustomObject]@{ diff --git a/ListGDAPRoles/run.ps1 b/ListGDAPRoles/run.ps1 index 0c5834cdb85e..fc389cb54702 100644 --- a/ListGDAPRoles/run.ps1 +++ b/ListGDAPRoles/run.ps1 @@ -10,7 +10,7 @@ Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -m # Write to the Azure Functions log stream. Write-Host 'PowerShell HTTP trigger function processed a request.' $Table = Get-CIPPTable -TableName 'GDAPRoles' -$Groups = Get-AzDataTableEntity @Table +$Groups = Get-CIPPAzDataTableEntity @Table $MappedGroups = foreach ($Group in $Groups) { [PSCustomObject]@{ diff --git a/ListGenericAllTenants/run.ps1 b/ListGenericAllTenants/run.ps1 index 60f80e62714b..df23529c61d7 100644 --- a/ListGenericAllTenants/run.ps1 +++ b/ListGenericAllTenants/run.ps1 @@ -8,7 +8,7 @@ $QueueKey = (Get-CippQueue | Where-Object -Property Name -EQ $TableURLName | Sel Update-CippQueueEntry -RowKey $QueueKey -Status 'Started' $Table = Get-CIPPTable -TableName "cache$TableURLName" $fullUrl = "https://graph.microsoft.com/beta/$QueueItem" -Get-AzDataTableEntity @Table | Remove-AzDataTableEntity @table +Get-CIPPAzDataTableEntity @Table | Remove-AzDataTableEntity @table $RawGraphRequest = Get-Tenants | ForEach-Object -Parallel { $domainName = $_.defaultDomainName @@ -35,7 +35,7 @@ foreach ($Request in $RawGraphRequest) { Data = [string]$Json } - Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null } diff --git a/ListGroupTemplates/run.ps1 b/ListGroupTemplates/run.ps1 index 80e4d68649ed..870b45496879 100644 --- a/ListGroupTemplates/run.ps1 +++ b/ListGroupTemplates/run.ps1 @@ -14,7 +14,7 @@ Write-Host $Request.query.id #List new policies $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'GroupTemplate'" -$Templates = (Get-AzDataTableEntity @Table -Filter $Filter) | ForEach-Object { +$Templates = (Get-CIPPAzDataTableEntity @Table -Filter $Filter) | ForEach-Object { $data = $_.JSON | ConvertFrom-Json $data } | Sort-Object -Property displayName diff --git a/ListHaloClients/run.ps1 b/ListHaloClients/run.ps1 index c77cd658897f..dc5d64867528 100644 --- a/ListHaloClients/run.ps1 +++ b/ListHaloClients/run.ps1 @@ -13,7 +13,7 @@ Write-Host "PowerShell HTTP trigger function processed a request." # Interact with query parameters or the body of the request. try { $Table = Get-CIPPTable -TableName Extensionsconfig - $Configuration = ((Get-AzDataTableEntity @Table).config | ConvertFrom-Json).HaloPSA + $Configuration = ((Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json).HaloPSA $Token = Get-HaloToken -configuration $Configuration $i = 1 $RawHaloClients = do { diff --git a/ListIntuneTemplates/run.ps1 b/ListIntuneTemplates/run.ps1 index 0990b9d06b4f..f35dd082841b 100644 --- a/ListIntuneTemplates/run.ps1 +++ b/ListIntuneTemplates/run.ps1 @@ -16,13 +16,13 @@ $Templates = Get-ChildItem 'Config\*.IntuneTemplate.json' | ForEach-Object { PartitionKey = 'IntuneTemplate' GUID = "$($_.name)" } - Add-AzDataTableEntity @Table -Entity $Entity -Force + Add-CIPPAzDataTableEntity @Table -Entity $Entity -Force } #List new policies $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'IntuneTemplate'" -$Templates = (Get-AzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json +$Templates = (Get-CIPPAzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json if ($Request.query.View) { $Templates = $Templates | ForEach-Object { $data = $_.RAWJson | ConvertFrom-Json diff --git a/ListKnownIPDb/run.ps1 b/ListKnownIPDb/run.ps1 index 8eac7add747e..5a2b9996f7b5 100644 --- a/ListKnownIPDb/run.ps1 +++ b/ListKnownIPDb/run.ps1 @@ -11,7 +11,7 @@ Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -m Write-Host 'PowerShell HTTP trigger function processed a request.' $Table = Get-CIPPTable -TableName 'knownlocationdb' $Filter = "Tenant eq '$($Request.Query.TenantFilter)'" -$KnownIPDb = Get-AzDataTableEntity @Table -Filter $Filter +$KnownIPDb = Get-CIPPAzDataTableEntity @Table -Filter $Filter # Associate values to output bindings by calling 'Push-OutputBinding'. Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ diff --git a/ListLicenses/run.ps1 b/ListLicenses/run.ps1 index 95350db85ca6..869d5044184e 100644 --- a/ListLicenses/run.ps1 +++ b/ListLicenses/run.ps1 @@ -17,7 +17,7 @@ $RawGraphRequest = if ($TenantFilter -ne 'AllTenants') { } else { $Table = Get-CIPPTable -TableName cachelicenses - $Rows = Get-AzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-1) + $Rows = Get-CIPPAzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-1) if (!$Rows) { Push-OutputBinding -Name Msg -Value (Get-Date).ToString() $GraphRequest = [PSCustomObject]@{ diff --git a/ListLicensesAllTenants/run.ps1 b/ListLicensesAllTenants/run.ps1 index 16ea3176dff1..e7cdf761879e 100644 --- a/ListLicensesAllTenants/run.ps1 +++ b/ListLicensesAllTenants/run.ps1 @@ -25,5 +25,5 @@ $RawGraphRequest = Get-Tenants | ForEach-Object -Parallel { $Table = Get-CIPPTable -TableName cachelicenses foreach ($GraphRequest in $RawGraphRequest) { - Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null } \ No newline at end of file diff --git a/ListLogs/run.ps1 b/ListLogs/run.ps1 index d95f392f5a90..ee201dbea8d7 100644 --- a/ListLogs/run.ps1 +++ b/ListLogs/run.ps1 @@ -4,7 +4,7 @@ using namespace System.Net param($Request, $TriggerMetadata) $APIName = $TriggerMetadata.FunctionName -Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Info' +Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug' if ($request.Query.Filter -eq 'True') { $LogLevel = if ($Request.query.Severity) { ($Request.query.Severity).split(',') } else { 'Info', 'Warn', 'Error', 'Critical', 'Alert' } @@ -20,7 +20,7 @@ $Table = Get-CIPPTable $ReturnedLog = if ($Request.Query.ListLogs) { - Get-AzDataTableEntity @Table -Property PartitionKey | Sort-Object -Unique PartitionKey | Select-Object PartitionKey | ForEach-Object { + Get-CIPPAzDataTableEntity @Table -Property PartitionKey | Sort-Object -Unique PartitionKey | Select-Object PartitionKey | ForEach-Object { @{ value = $_.PartitionKey label = $_.PartitionKey @@ -29,7 +29,7 @@ $ReturnedLog = if ($Request.Query.ListLogs) { } else { $Filter = "PartitionKey eq '{0}'" -f $PartitionKey - $Rows = Get-AzDataTableEntity @Table -Filter $Filter | Where-Object { $_.Severity -In $LogLevel -and $_.user -like $username } + $Rows = Get-CIPPAzDataTableEntity @Table -Filter $Filter | Where-Object { $_.Severity -In $LogLevel -and $_.user -like $username } foreach ($Row in $Rows) { @{ DateTime = $Row.Timestamp @@ -38,6 +38,11 @@ else { Message = $Row.Message User = $Row.Username Severity = $Row.Severity + TenantID = if ($Row.TenantID -ne $null) { + $Row.TenantID + } else { + 'None' + } } } diff --git a/ListMFAUsers/run.ps1 b/ListMFAUsers/run.ps1 index 5830c84f11a4..40bc53bed91d 100644 --- a/ListMFAUsers/run.ps1 +++ b/ListMFAUsers/run.ps1 @@ -11,102 +11,12 @@ Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -m Write-Host 'PowerShell HTTP trigger function processed a request.' if ($Request.query.TenantFilter -ne 'AllTenants') { - - $users = Get-CIPPMSolUsers -tenant $Request.query.TenantFilter - if (!$users) { - $users = foreach ($user in (New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/users?$select=id,UserPrincipalName,DisplayName,accountEnabled' -tenantid $Request.query.TenantFilter)) { - [PSCustomObject]@{ - UserPrincipalName = $user.UserPrincipalName - BlockCredential = $user.accountEnabled - DisplayName = $user.DisplayName - ObjectId = $user.id - StrongAuthenticationRequirements = @{StrongAuthenticationRequirement = @{state = 'Not Available - GDAP Only' } } - } - } - - } - $SecureDefaultsState = (New-GraphGetRequest -Uri 'https://graph.microsoft.com/beta/policies/identitySecurityDefaultsEnforcementPolicy' -tenantid $Request.query.TenantFilter ).IsEnabled - $CAState = New-Object System.Collections.ArrayList - - Try { - $MFARegistration = (New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/reports/credentialUserRegistrationDetails' -tenantid $Request.query.TenantFilter) - } - catch { - $CAState.Add('Not Licensed for Conditional Access') - $MFARegistration = $null - } - - if ($null -ne $MFARegistration) { - $CAPolicies = (New-GraphGetRequest -Uri 'https://graph.microsoft.com/beta/identity/conditionalAccess/policies' -tenantid $Request.query.TenantFilter -ErrorAction Stop ) - - try { - $ExcludeAllUsers = New-Object System.Collections.ArrayList - $ExcludeSpecific = New-Object System.Collections.ArrayList - - foreach ($Policy in $CAPolicies) { - if (($policy.grantControls.builtincontrols -eq 'mfa') -or ($policy.grantControls.customAuthenticationFactors -eq 'RequireDuoMfa')) { - if ($Policy.conditions.applications.includeApplications -ne 'All') { - Write-Host $Policy.conditions.applications.includeApplications - $CAState.Add("$($policy.displayName) - Specific Applications - $($policy.state)") | Out-Null - $Policy.conditions.users.excludeUsers.foreach({ $ExcludeSpecific.Add($_) }) - continue - } - if ($Policy.conditions.users.includeUsers -eq 'All') { - $CAState.Add("$($policy.displayName) - All Users - $($policy.state)") | Out-Null - $Policy.conditions.users.excludeUsers.foreach({ $ExcludeAllUsers.Add($_) }) - continue - } - } - } - } - catch { - } - } - - if ($CAState.count -eq 0) { $CAState.Add('None') | Out-Null } - - - # Interact with query parameters or the body of the request. - $GraphRequest = $Users | ForEach-Object { - Write-Host 'Processing users' - $UserCAState = New-Object System.Collections.ArrayList - foreach ($CA in $CAState) { - Write-Host 'Looping CAState' - if ($CA -like '*All Users*') { - if ($ExcludeAllUsers -contains $_.ObjectId) { $UserCAState.Add("Excluded from $($policy.displayName) - All Users") | Out-Null } - else { $UserCAState.Add($CA) | Out-Null } - } - elseif ($CA -like '*Specific Applications*') { - if ($ExcludeSpecific -contains $_.ObjectId) { $UserCAState.Add("Excluded from $($policy.displayName) - Specific Applications") | Out-Null } - else { $UserCAState.Add($CA) | Out-Null } - } - else { - Write-Host 'Adding to CA' - $UserCAState.Add($CA) | Out-Null - } - } - - $PerUser = if ($_.StrongAuthenticationRequirements.StrongAuthenticationRequirement.state -ne $null) { $_.StrongAuthenticationRequirements.StrongAuthenticationRequirement.state } else { 'Disabled' } - $AccountState = if ($_.BlockCredential -eq $true) { $false } else { $true } - - $MFARegUser = if (($MFARegistration | Where-Object -Property UserPrincipalName -EQ $_.UserPrincipalName).IsMFARegistered -eq $null) { $false } else { ($MFARegistration | Where-Object -Property UserPrincipalName -EQ $_.UserPrincipalName).IsMFARegistered } - [PSCustomObject]@{ - ID = $_.ObjectId - UPN = $_.UserPrincipalName - DisplayName = $_.DisplayName - AccountEnabled = $AccountState - PerUser = $PerUser - isLicensed = $_.isLicensed - MFARegistration = $MFARegUser - CoveredByCA = ($UserCAState -join ', ') - CoveredBySD = $SecureDefaultsState - } - } + $GraphRequest = Get-CIPPMFAState -TenantFilter $Request.query.TenantFilter } else { $Table = Get-CIPPTable -TableName cachemfa - $Rows = Get-AzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-2) + $Rows = Get-CIPPAzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-2) if (!$Rows) { $Queue = New-CippQueueEntry -Name 'MFA Users - All Tenants' -Link '/identity/reports/mfa-report?customerId=AllTenants' Write-Information ($Queue | ConvertTo-Json) diff --git a/ListMFAUsersAllTenants/run.ps1 b/ListMFAUsersAllTenants/run.ps1 index 7f0e356923ac..f34fb82921f1 100644 --- a/ListMFAUsersAllTenants/run.ps1 +++ b/ListMFAUsersAllTenants/run.ps1 @@ -13,135 +13,46 @@ try { $GraphRequest = Get-Tenants | ForEach-Object -Parallel { $domainName = $_.defaultDomainName - $tenantName = $_.displayName Import-Module '.\GraphHelper.psm1' + Import-Module '.\modules\CippCore' $Table = Get-CIPPTable -TableName cachemfa - - try { - $users = Get-CIPPMSolUsers -tenant $domainName - if (!$users) { - $users = foreach ($user in (New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/users?$select=id,UserPrincipalName,DisplayName,accountEnabled' -tenantid $Request.query.TenantFilter)) { - [PSCustomObject]@{ - UserPrincipalName = $user.UserPrincipalName - BlockCredential = $user.accountEnabled - DisplayName = $user.DisplayName - ObjectId = $user.id - StrongAuthenticationRequirements = @{StrongAuthenticationRequirement = @{state = 'Not Available - GDAP Only' } } - } - } - - } - $SecureDefaultsState = (New-GraphGetRequest -Uri 'https://graph.microsoft.com/beta/policies/identitySecurityDefaultsEnforcementPolicy' -tenantid $domainName).IsEnabled - $CAState = New-Object System.Collections.ArrayList - $CAPolicies = (New-GraphGetRequest -Uri 'https://graph.microsoft.com/v1.0/identity/conditionalAccess/policies' -tenantid $domainName -ErrorAction Stop ) - try { - $ExcludeAllUsers = New-Object System.Collections.ArrayList - $ExcludeSpecific = New-Object System.Collections.ArrayList - foreach ($Policy in $CAPolicies) { - if (($policy.grantControls.builtincontrols -eq 'mfa') -or ($policy.grantControls.customAuthenticationFactors -eq 'RequireDuoMfa')) { - if ($Policy.conditions.applications.includeApplications -ne 'All') { - Write-Host $Policy.conditions.applications.includeApplications - $CAState.Add('Specific Applications') | Out-Null - $ExcludeSpecific = $Policy.conditions.users.excludeUsers - continue - } - if ($Policy.conditions.users.includeUsers -eq 'All') { - $CAState.Add('All Users') | Out-Null - $ExcludeAllUsers = $Policy.conditions.users.excludeUsers - continue - } - } - } - } - catch { - } - Try { - $MFARegistration = (New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/reports/credentialUserRegistrationDetails' -tenantid $domainName) - } - catch { - $CAState.Add('Not Licensed for Conditional Access') | Out-Null - $MFARegistration = $null - } - if ($CAState.length -eq 0) { $CAState.Add('None') | Out-Null } - - # Interact with query parameters or the body of the request. - $GraphRequest = $Users | ForEach-Object { - try { - $UserCAState = New-Object System.Collections.ArrayList - foreach ($CA in $CAState) { - if ($CA -eq 'All Users') { - if ($ExcludeAllUsers -contains $_.ObjectId) { $UserCAState.Add('Excluded from All Users') | Out-Null } - else { $UserCAState.Add($CA) | Out-Null } - } - elseif ($CA -eq 'Specific Applications') { - if ($ExcludeSpecific -contains $_.ObjectId) { $UserCAState.Add('Excluded from Specific Applications') | Out-Null } - else { $UserCAState.Add($CA) | Out-Null } - } - else { - $UserCAState.Add($CA) | Out-Null - } - } - - $PerUser = if ($_.StrongAuthenticationRequirements.StrongAuthenticationRequirement.state -ne $null) { $_.StrongAuthenticationRequirements.StrongAuthenticationRequirement.state } else { 'Disabled' } - $AccountState = if ($_.BlockCredential -eq $true) { $false } else { $true } - $MFARegUser = if (($MFARegistration | Where-Object -Property UserPrincipalName -EQ $_.UserPrincipalName).IsMFARegistered -eq $null) { $false } else { ($MFARegistration | Where-Object -Property UserPrincipalName -EQ $_.UserPrincipalName).IsMFARegistered } - @{ - Tenant = "$tenantName" - UPN = "$($_.UserPrincipalName)" - AccountEnabled = [boolean]$AccountState - PerUser = "$PerUser" - isLicensed = "$($_.isLicensed)" - MFARegistration = [boolean]$MFARegUser - CoveredByCA = [string]($UserCAState -join ', ') - CoveredBySD = [boolean]$SecureDefaultsState - RowKey = [string]($_.UserPrincipalName).replace('#', '') - PartitionKey = 'users' - } - } - catch { - @{ - Tenant = "$tenantName" - UPN = "$($_.UserPrincipalName)" - AccountEnabled = [boolean]$AccountState - isLicensed = [boolean]$_.isLicensed - PerUser = "$PerUser" - MFARegistration = [boolean]$MFARegUser - CoveredByCA = [string]($UserCAState -join ', ') - CoveredBySD = [boolean]$SecureDefaultsState - RowKey = [string]$_.UserPrincipalName - PartitionKey = 'users' - } - } - } - Write-Host $tenantName - #Write-Host ($GraphRequest | ConvertTo-Json -Compress) - if ($GraphRequest) { - Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null - } + Try { + $GraphRequest = Get-CIPPMFAState -TenantFilter $domainName -ErrorAction Stop } - catch { - - $Table = Get-CIPPTable -TableName cachemfa - @{ + catch { + $GraphRequest = $null + } + if (!$GraphRequest) { + $GraphRequest = @{ Tenant = [string]$tenantName UPN = [string]$domainName AccountEnabled = 'none' - PerUser = 'none' + PerUser = [string]'Could not connect to tenant' MFARegistration = 'none' CoveredByCA = [string]'Could not connect to tenant' CoveredBySD = 'none' RowKey = [string]"$domainName" PartitionKey = 'users' } - Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null - } + Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null } - $status = 'Completed' } catch { - $Status = 'Error' + $Table = Get-CIPPTable -TableName cachemfa + $GraphRequest = @{ + Tenant = [string]$tenantName + UPN = [string]$domainName + AccountEnabled = 'none' + PerUser = [string]'Could not connect to tenant' + MFARegistration = 'none' + CoveredByCA = [string]'Could not connect to tenant' + CoveredBySD = 'none' + RowKey = [string]"$domainName" + PartitionKey = 'users' + } + Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null } finally { - Update-CippQueueEntry -RowKey $QueueItem -Status $Status + Update-CippQueueEntry -RowKey $QueueItem -Status "Completed" } diff --git a/ListMailboxRules/run.ps1 b/ListMailboxRules/run.ps1 index 22b08e765dc3..c57f61520169 100644 --- a/ListMailboxRules/run.ps1 +++ b/ListMailboxRules/run.ps1 @@ -14,7 +14,7 @@ Write-Host 'PowerShell HTTP trigger function processed a request.' $TenantFilter = $Request.Query.TenantFilter $Table = Get-CIPPTable -TableName cachembxrules -$Rows = Get-AzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddMinutes(-15) +$Rows = Get-CIPPAzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddMinutes(-15) if (!$Rows) { Push-OutputBinding -Name Msg -Value $TenantFilter $GraphRequest = [PSCustomObject]@{ @@ -40,7 +40,7 @@ else { } } #Remove all old cache -Remove-AzDataTableEntity @Table -Entity (Get-AzDataTableEntity @Table | Where-Object -Property Timestamp -LT (Get-Date).AddMinutes(-15)) +Remove-AzDataTableEntity @Table -Entity (Get-CIPPAzDataTableEntity @Table | Where-Object -Property Timestamp -LT (Get-Date).AddMinutes(-15)) Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ diff --git a/ListMailboxRulesAllTenants/run.ps1 b/ListMailboxRulesAllTenants/run.ps1 index bc6ed9101fb3..5c39385a1c52 100644 --- a/ListMailboxRulesAllTenants/run.ps1 +++ b/ListMailboxRulesAllTenants/run.ps1 @@ -27,7 +27,7 @@ $Tenants | ForEach-Object -Parallel { PartitionKey = 'mailboxrules' } $Table = Get-CIPPTable -TableName cachembxrules - Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null } } catch { @@ -42,7 +42,7 @@ $Tenants | ForEach-Object -Parallel { PartitionKey = 'mailboxrules' } $Table = Get-CIPPTable -TableName cachembxrules - Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null } } @@ -50,4 +50,4 @@ $Tenants | ForEach-Object -Parallel { $Table = Get-CIPPTable -TableName cachembxrules Write-Host "$($GraphRequest.RowKey) - $($GraphRequest.tenant)" -Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null +Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null diff --git a/ListMailboxStatistics/run.ps1 b/ListMailboxStatistics/run.ps1 index f692b66c9ae7..507a96ac924e 100644 --- a/ListMailboxStatistics/run.ps1 +++ b/ListMailboxStatistics/run.ps1 @@ -27,7 +27,7 @@ try { } else { $Table = Get-CIPPTable -TableName "cachereports" - $Rows = Get-AzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-1) + $Rows = Get-CIPPAzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-1) if (!$Rows) { $Queue = New-CippQueueEntry -Name "Reports" -Link '/email/reports/mailbox-statistics?customerId=AllTenants' Push-OutputBinding -Name Msg -Value "reports/getMailboxUsageDetail(period='D7')?`$format=application/json" diff --git a/ListNotificationConfig/run.ps1 b/ListNotificationConfig/run.ps1 index 82e382843126..f65c1f16b644 100644 --- a/ListNotificationConfig/run.ps1 +++ b/ListNotificationConfig/run.ps1 @@ -8,14 +8,14 @@ Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -m $Table = Get-CIPPTable -TableName SchedulerConfig $Filter = "RowKey eq 'CippNotifications' and PartitionKey eq 'CippNotifications'" -$Config = Get-AzDataTableEntity @Table -Filter $Filter +$Config = Get-CIPPAzDataTableEntity @Table -Filter $Filter if ($Config) { $Config = $Config | ConvertTo-Json -Depth 10 | ConvertFrom-Json -Depth 10 -AsHashtable } else { $Config = @{} } #$config | Add-Member -NotePropertyValue @() -NotePropertyName 'logsToInclude' -Force -$config.logsToInclude = @(([pscustomobject]$config | Select-Object * -ExcludeProperty schedule, type, tenantid, onepertenant, sendtoIntegration, partitionkey, rowkey, tenant, ETag, email, logsToInclude, Severity, Alert, Info, Error, timestamp, webhook).psobject.properties.name) +$config.logsToInclude = @(([pscustomobject]$config | Select-Object * -ExcludeProperty schedule, type, tenantid, onepertenant, sendtoIntegration, partitionkey, rowkey, tenant, ETag, email, logsToInclude, Severity, Alert, Info, Error, timestamp, webhook, includeTenantId).psobject.properties.name) if (!$config.logsToInclude) { $config.logsToInclude = @('None') } diff --git a/ListOoO/function.json b/ListOoO/function.json new file mode 100644 index 000000000000..306b0c51e560 --- /dev/null +++ b/ListOoO/function.json @@ -0,0 +1,19 @@ +{ + "bindings": [ + { + "authLevel": "anonymous", + "type": "httpTrigger", + "direction": "in", + "name": "Request", + "methods": [ + "get", + "post" + ] + }, + { + "type": "http", + "direction": "out", + "name": "Response" + } + ] +} \ No newline at end of file diff --git a/ListOoO/run.ps1 b/ListOoO/run.ps1 new file mode 100644 index 000000000000..7a6a7222358d --- /dev/null +++ b/ListOoO/run.ps1 @@ -0,0 +1,21 @@ +using namespace System.Net + +# Input bindings are passed in via param block. +param($Request, $TriggerMetadata) + +$APIName = $TriggerMetadata.FunctionName +$Tenantfilter = $request.query.tenantFilter +try { + $Body = Get-CIPPOutOfOffice -userid $Request.query.userid -tenantFilter $TenantFilter -APIName $APINAME -ExecutingUser $request.headers.'x-ms-client-principal' +} +catch { + $ErrorMessage = Get-NormalizedError -Message $_.Exception.Message + $Body = [pscustomobject]@{"Results" = "Failed. $ErrorMessage" } + +} + +# Associate values to output bindings by calling 'Push-OutputBinding'. +Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ + StatusCode = [HttpStatusCode]::OK + Body = $Body + }) diff --git a/ListPartnerRelationships/run.ps1 b/ListPartnerRelationships/run.ps1 index e9fff1c026dd..4a6d47d586c7 100644 --- a/ListPartnerRelationships/run.ps1 +++ b/ListPartnerRelationships/run.ps1 @@ -7,24 +7,24 @@ $APIName = $TriggerMetadata.FunctionName Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug' try { - $GraphRequestList = @{ - Endpoint = 'policies/crossTenantAccessPolicy/partners' - Tenant = $Request.Query.TenantFilter - QueueNameOverride = 'Partner Relationships' - ReverseTenantLookup = $true - } - $GraphRequest = Get-GraphRequestList @GraphRequestList + $GraphRequestList = @{ + Endpoint = 'policies/crossTenantAccessPolicy/partners' + TenantFilter = $Request.Query.TenantFilter + QueueNameOverride = 'Partner Relationships' + ReverseTenantLookup = $true + } + $GraphRequest = Get-GraphRequestList @GraphRequestList } catch { - $GraphRequest = @() + $GraphRequest = @() } $StatusCode = [HttpStatusCode]::OK $results = [PSCustomObject]@{ - Results = @($GraphRequest) + Results = @($GraphRequest) } # Associate values to output bindings by calling 'Push-OutputBinding'. Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ - StatusCode = $StatusCode - Body = $results - }) + StatusCode = $StatusCode + Body = $results + }) diff --git a/ListScheduledItems/run.ps1 b/ListScheduledItems/run.ps1 index 3b76fb77b212..ba8a12a139cc 100644 --- a/ListScheduledItems/run.ps1 +++ b/ListScheduledItems/run.ps1 @@ -6,7 +6,7 @@ Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -m # Write to the Azure Functions log stream. Write-Host 'PowerShell HTTP trigger function processed a request.' $Table = Get-CIPPTable -TableName 'ScheduledTasks' -$ScheduledTasks = Get-AzDataTableEntity @Table -Filter "PartitionKey eq 'ScheduledTask'" +$ScheduledTasks = Get-CIPPAzDataTableEntity @Table -Filter "PartitionKey eq 'ScheduledTask'" # Associate values to output bindings by calling 'Push-OutputBinding'. Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ diff --git a/ListSpamFilterTemplates/run.ps1 b/ListSpamFilterTemplates/run.ps1 index 25d49aa8eafa..cbee13867932 100644 --- a/ListSpamFilterTemplates/run.ps1 +++ b/ListSpamFilterTemplates/run.ps1 @@ -10,7 +10,7 @@ $Table = Get-CippTable -tablename 'templates' #List new policies $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'SpamfilterTemplate'" -$Templates = (Get-AzDataTableEntity @Table -Filter $Filter) | ForEach-Object { +$Templates = (Get-CIPPAzDataTableEntity @Table -Filter $Filter) | ForEach-Object { $GUID = $_.RowKey $data = $_.JSON | ConvertFrom-Json $data | Add-Member -NotePropertyName "GUID" -NotePropertyValue $GUID diff --git a/ListStandards/run.ps1 b/ListStandards/run.ps1 index 186f59d65aea..84cc3ea0acf4 100644 --- a/ListStandards/run.ps1 +++ b/ListStandards/run.ps1 @@ -11,10 +11,10 @@ $Filter = "PartitionKey eq 'standards'" try { if ($Request.query.TenantFilter) { - $tenants = (Get-AzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json -Depth 15 -ErrorAction Stop | Where-Object Tenant -EQ $Request.query.tenantFilter + $tenants = (Get-CIPPAzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json -Depth 15 -ErrorAction Stop | Where-Object Tenant -EQ $Request.query.tenantFilter } else { - $Tenants = (Get-AzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json -Depth 15 -ErrorAction Stop + $Tenants = (Get-CIPPAzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json -Depth 15 -ErrorAction Stop } } catch {} diff --git a/ListTransportRulesTemplates/run.ps1 b/ListTransportRulesTemplates/run.ps1 index 508d61c8117a..6e6b8f6d761f 100644 --- a/ListTransportRulesTemplates/run.ps1 +++ b/ListTransportRulesTemplates/run.ps1 @@ -15,14 +15,14 @@ $Templates = Get-ChildItem "Config\*.TransportRuleTemplate.json" | ForEach-Objec PartitionKey = "TransportTemplate" GUID = "$($_.name)" } - Add-AzDataTableEntity @Table -Entity $Entity -Force + Add-CIPPAzDataTableEntity @Table -Entity $Entity -Force } #List new policies $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'TransportTemplate'" -$Templates = (Get-AzDataTableEntity @Table -Filter $Filter) | ForEach-Object { +$Templates = (Get-CIPPAzDataTableEntity @Table -Filter $Filter) | ForEach-Object { $GUID = $_.RowKey $data = $_.JSON | ConvertFrom-Json $data | Add-Member -NotePropertyName "GUID" -NotePropertyValue $GUID diff --git a/ListUserSettings/function.json b/ListUserSettings/function.json new file mode 100644 index 000000000000..bf6c3ef0c49a --- /dev/null +++ b/ListUserSettings/function.json @@ -0,0 +1,18 @@ +{ + "scriptFile": "../Modules/CippEntryPoints/CippEntryPoints.psm1", + "entryPoint": "Receive-CippHttpTrigger", + "bindings": [ + { + "authLevel": "anonymous", + "type": "httpTrigger", + "direction": "in", + "name": "Request", + "methods": ["get", "post"] + }, + { + "type": "http", + "direction": "out", + "name": "Response" + } + ] +} diff --git a/ListUsers/run.ps1 b/ListUsers/run.ps1 index 8d0d45fbf68e..4c50e052e256 100644 --- a/ListUsers/run.ps1 +++ b/ListUsers/run.ps1 @@ -27,7 +27,7 @@ $GraphRequest = if ($TenantFilter -ne 'AllTenants') { } else { $Table = Get-CIPPTable -TableName 'cacheusers' - $Rows = Get-AzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-1) + $Rows = Get-CIPPAzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-1) if (!$Rows) { $Queue = New-CippQueueEntry -Name 'Users' -Link '/identity/administration/users?customerId=AllTenants' Push-OutputBinding -Name Msg -Value "users/$($userid)?`$top=999&`$select=$($selectlist -join ',')&`$filter=$GraphFilter&`$count=true" diff --git a/ListWebhookAlert/run.ps1 b/ListWebhookAlert/run.ps1 index 45723840f771..add6382e248a 100644 --- a/ListWebhookAlert/run.ps1 +++ b/ListWebhookAlert/run.ps1 @@ -6,7 +6,7 @@ param($Request, $TriggerMetadata) $APIName = $TriggerMetadata.FunctionName Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Accessed this API" -Sev "Debug" $WebhookTable = Get-CIPPTable -TableName webhookTable -$WebhookRow = Get-AzDataTableEntity @WebhookTable +$WebhookRow = Get-CIPPAzDataTableEntity @WebhookTable # Associate values to output bindings by calling 'Push-OutputBinding'. Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ diff --git a/Modules/Az.Accounts/2.13.1/Accounts.format.ps1xml b/Modules/Az.Accounts/2.13.1/Accounts.format.ps1xml new file mode 100644 index 000000000000..4d28aa4b2f4f --- /dev/null +++ b/Modules/Az.Accounts/2.13.1/Accounts.format.ps1xml @@ -0,0 +1,554 @@ + + + + + AzureErrorRecords + + Microsoft.Azure.Commands.Profile.Errors.AzureErrorRecord + Microsoft.Azure.Commands.Profile.Errors.AzureExceptionRecord + Microsoft.Azure.Commands.Profile.Errors.AzureRestExceptionRecord + + + + + + Microsoft.Azure.Commands.Profile.Errors.AzureRestExceptionRecord + + AzureErrorRecords + + + $_.InvocationInfo.HistoryId + + + + + + + + ErrorCategory + + + ErrorDetail + + + + "{" + $_.InvocationInfo.MyCommand + "}" + + + + $_.InvocationInfo.Line + + + + $_.InvocationInfo.PositionMessage + + + + $_.InvocationInfo.BoundParameters + + + + $_.InvocationInfo.UnboundParameters + + + + $_.InvocationInfo.HistoryId + + + + + + + AzureErrorRecords + $_.GetType() -eq [Microsoft.Azure.Commands.Profile.Errors.AzureRestExceptionRecord] + + + + + RequestId + + + Message + + + ServerMessage + + + ServerResponse + + + RequestMessage + + + + "{" + $_.InvocationInfo.MyCommand + "}" + + + + $_.InvocationInfo.Line + + + + $_.InvocationInfo.PositionMessage + + + StackTrace + + + + $_.InvocationInfo.HistoryId + + + + + + + AzureErrorRecords + $_.GetType() -eq [Microsoft.Azure.Commands.Profile.Errors.AzureExceptionRecord] + + + + + Message + + + StackTrace + + + + $_.Exception.GetType() + + + + "{" + $_.InvocationInfo.MyCommand + "}" + + + + $_.InvocationInfo.Line + + + + $_.InvocationInfo.PositionMessage + + + + $_.InvocationInfo.HistoryId + + + + + + + + Microsoft.Azure.Commands.Profile.CommonModule.PSAzureServiceProfile + + Microsoft.Azure.Commands.Profile.CommonModule.PSAzureServiceProfile + + + + + Left + + + + Left + + + + + + + + Left + Name + + + Left + Description + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAccessToken + + Microsoft.Azure.Commands.Profile.Models.PSAccessToken + + + + + + + Token + + + ExpiresOn + + + Type + + + TenantId + + + UserId + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureSubscriptionPolicy + + Microsoft.Azure.Commands.Profile.Models.PSAzureSubscriptionPolicy + + + + + Left + + + + Left + + + + Left + + + + + + + + Left + locationPlacementId + + + Left + QuotaId + + + Left + SpendingLimit + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureRmAccount + + Microsoft.Azure.Commands.Profile.Models.PSAzureRmAccount + + + + + + + Id + + + Type + + + Tenants + + + Credential + + + TenantMap + + + CertificateThumbprint + + + + $_.ExtendedProperties.GetEnumerator() + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSConfig + + Microsoft.Azure.Commands.Profile.Models.PSConfig + + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + Key + + + Left + Value + + + Left + AppliesTo + + + Left + Scope + + + Left + HelpMessage + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + diff --git a/Modules/Az.Accounts/2.13.1/Accounts.generated.format.ps1xml b/Modules/Az.Accounts/2.13.1/Accounts.generated.format.ps1xml new file mode 100644 index 000000000000..8271581789c7 --- /dev/null +++ b/Modules/Az.Accounts/2.13.1/Accounts.generated.format.ps1xml @@ -0,0 +1,471 @@ + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureEnvironment + + Microsoft.Azure.Commands.Profile.Models.PSAzureEnvironment + + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + Name + + + Left + ResourceManagerUrl + + + Left + ActiveDirectoryAuthority + + + Left + Type + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureSubscription + + Microsoft.Azure.Commands.Profile.Models.PSAzureSubscription + + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + Name + + + Left + Id + + + Left + TenantId + + + Left + State + + + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureProfile + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureProfile + + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + $_.Context.Account.ToString() + + + Left + $_.Context.Subscription.Name + + + Left + $_.Context.Tenant.ToString() + + + Left + $_.Context.Environment.ToString() + + + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + + + 40 + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + Name + + + Left + Account + + + Left + $_.Subscription.Name + + + Left + Environment + + + Left + $_.Tenant.ToString() + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureTenant + + Microsoft.Azure.Commands.Profile.Models.PSAzureTenant + + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + Id + + + Left + $_.Name + + + Left + $_.TenantCategory + + + Left + $_.Domains + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + diff --git a/Modules/Az.Accounts/2.13.1/Accounts.types.ps1xml b/Modules/Az.Accounts/2.13.1/Accounts.types.ps1xml new file mode 100644 index 000000000000..2873f28fd663 --- /dev/null +++ b/Modules/Az.Accounts/2.13.1/Accounts.types.ps1xml @@ -0,0 +1,306 @@ + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureProfile + + + PSStandardMembers + + + SerializationDepth + 10 + + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + PSStandardMembers + + + SerializationDepth + 10 + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Core.AuthenticationStoreTokenCache + + + PSStandardMembers + + + SerializationMethod + SpecificProperties + + + PropertySerializationSet + + CacheData + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Core.ProtectedFileTokenCache + + + PSStandardMembers + + + SerializationMethod + SpecificProperties + + + PropertySerializationSet + + CacheData + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + PSStandardMembers + + + SerializationDepth + 10 + + + + + + Microsoft.Azure.Commands.Profile.Models.AzureContextConverter + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + diff --git a/Modules/Az.Accounts/2.13.1/Az.Accounts.psd1 b/Modules/Az.Accounts/2.13.1/Az.Accounts.psd1 new file mode 100644 index 000000000000..8b322becabf0 --- /dev/null +++ b/Modules/Az.Accounts/2.13.1/Az.Accounts.psd1 @@ -0,0 +1,389 @@ +# +# Module manifest for module 'Az.Accounts' +# +# Generated by: Microsoft Corporation +# +# Generated on: 9/20/2023 +# + +@{ + +# Script module or binary module file associated with this manifest. +RootModule = 'Az.Accounts.psm1' + +# Version number of this module. +ModuleVersion = '2.13.1' + +# Supported PSEditions +CompatiblePSEditions = 'Core', 'Desktop' + +# ID used to uniquely identify this module +GUID = '17a2feff-488b-47f9-8729-e2cec094624c' + +# Author of this module +Author = 'Microsoft Corporation' + +# Company or vendor of this module +CompanyName = 'Microsoft Corporation' + +# Copyright statement for this module +Copyright = 'Microsoft Corporation. All rights reserved.' + +# Description of the functionality provided by this module +Description = 'Microsoft Azure PowerShell - Accounts credential management cmdlets for Azure Resource Manager in Windows PowerShell and PowerShell Core. + +For more information on account credential management, please visit the following: https://learn.microsoft.com/powershell/azure/authenticate-azureps' + +# Minimum version of the PowerShell engine required by this module +PowerShellVersion = '5.1' + +# Name of the PowerShell host required by this module +# PowerShellHostName = '' + +# Minimum version of the PowerShell host required by this module +# PowerShellHostVersion = '' + +# Minimum version of Microsoft .NET Framework required by this module. This prerequisite is valid for the PowerShell Desktop edition only. +DotNetFrameworkVersion = '4.7.2' + +# Minimum version of the common language runtime (CLR) required by this module. This prerequisite is valid for the PowerShell Desktop edition only. +# ClrVersion = '' + +# Processor architecture (None, X86, Amd64) required by this module +# ProcessorArchitecture = '' + +# Modules that must be imported into the global environment prior to importing this module +# RequiredModules = @() + +# Assemblies that must be loaded prior to importing this module +RequiredAssemblies = 'Microsoft.Azure.PowerShell.AssemblyLoading.dll', + 'Microsoft.Azure.PowerShell.Authentication.Abstractions.dll', + 'Microsoft.Azure.PowerShell.Authentication.dll', + 'Microsoft.Azure.PowerShell.Authenticators.dll', + 'Microsoft.Azure.PowerShell.Authentication.ResourceManager.dll', + 'Microsoft.Azure.PowerShell.Clients.Authorization.dll', + 'Microsoft.Azure.PowerShell.Clients.Compute.dll', + 'Microsoft.Azure.PowerShell.Clients.Graph.Rbac.dll', + 'Microsoft.Azure.PowerShell.Clients.Monitor.dll', + 'Microsoft.Azure.PowerShell.Clients.Network.dll', + 'Microsoft.Azure.PowerShell.Clients.PolicyInsights.dll', + 'Microsoft.Azure.PowerShell.Clients.ResourceManager.dll', + 'Microsoft.Azure.PowerShell.Common.dll', + 'Microsoft.Azure.PowerShell.Storage.dll', + 'Microsoft.Azure.PowerShell.Clients.Storage.Management.dll', + 'Microsoft.Azure.PowerShell.Clients.KeyVault.dll', + 'Microsoft.Azure.PowerShell.Clients.Websites.dll', + 'Hyak.Common.dll', 'Microsoft.ApplicationInsights.dll', + 'Microsoft.Azure.Common.dll', 'Microsoft.Rest.ClientRuntime.dll', + 'Microsoft.Rest.ClientRuntime.Azure.dll', + 'Microsoft.WindowsAzure.Storage.dll', + 'Microsoft.WindowsAzure.Storage.DataMovement.dll', + 'Microsoft.Azure.PowerShell.Clients.Aks.dll', + 'Microsoft.Azure.PowerShell.Strategies.dll', + 'Microsoft.Azure.PowerShell.Common.Share.dll', 'FuzzySharp.dll' + +# Script files (.ps1) that are run in the caller's environment prior to importing this module. +# ScriptsToProcess = @() + +# Type files (.ps1xml) to be loaded when importing this module +# TypesToProcess = @() + +# Format files (.ps1xml) to be loaded when importing this module +FormatsToProcess = 'Accounts.format.ps1xml', 'Accounts.generated.format.ps1xml' + +# Modules to import as nested modules of the module specified in RootModule/ModuleToProcess +NestedModules = @() + +# Functions to export from this module, for best performance, do not use wildcards and do not delete the entry, use an empty array if there are no functions to export. +FunctionsToExport = @() + +# Cmdlets to export from this module, for best performance, do not use wildcards and do not delete the entry, use an empty array if there are no cmdlets to export. +CmdletsToExport = 'Disable-AzDataCollection', 'Disable-AzContextAutosave', + 'Enable-AzDataCollection', 'Enable-AzContextAutosave', + 'Remove-AzEnvironment', 'Get-AzEnvironment', 'Set-AzEnvironment', + 'Add-AzEnvironment', 'Get-AzSubscription', 'Connect-AzAccount', + 'Get-AzContext', 'Set-AzContext', 'Import-AzContext', 'Save-AzContext', + 'Get-AzTenant', 'Send-Feedback', 'Resolve-AzError', 'Select-AzContext', + 'Rename-AzContext', 'Remove-AzContext', 'Clear-AzContext', + 'Disconnect-AzAccount', 'Get-AzContextAutosaveSetting', + 'Set-AzDefault', 'Get-AzDefault', 'Clear-AzDefault', + 'Register-AzModule', 'Enable-AzureRmAlias', 'Disable-AzureRmAlias', + 'Uninstall-AzureRm', 'Invoke-AzRestMethod', 'Get-AzAccessToken', + 'Open-AzSurveyLink', 'Get-AzConfig', 'Update-AzConfig', + 'Clear-AzConfig', 'Export-AzConfig', 'Import-AzConfig' + +# Variables to export from this module +# VariablesToExport = @() + +# Aliases to export from this module, for best performance, do not use wildcards and do not delete the entry, use an empty array if there are no aliases to export. +AliasesToExport = 'Add-AzAccount', 'Login-AzAccount', 'Remove-AzAccount', + 'Logout-AzAccount', 'Select-AzSubscription', 'Resolve-Error', + 'Save-AzProfile', 'Get-AzDomain', 'Invoke-AzRest', 'Set-AzConfig' + +# DSC resources to export from this module +# DscResourcesToExport = @() + +# List of all modules packaged with this module +# ModuleList = @() + +# List of all files packaged with this module +# FileList = @() + +# Private data to pass to the module specified in RootModule/ModuleToProcess. This may also contain a PSData hashtable with additional module metadata used by PowerShell. +PrivateData = @{ + + PSData = @{ + + # Tags applied to this module. These help with module discovery in online galleries. + Tags = 'Azure','ResourceManager','ARM','Accounts','Authentication','Environment','Subscription' + + # A URL to the license for this module. + LicenseUri = 'https://aka.ms/azps-license' + + # A URL to the main website for this project. + ProjectUri = 'https://github.com/Azure/azure-powershell' + + # A URL to an icon representing this module. + # IconUri = '' + + # ReleaseNotes of this module + ReleaseNotes = '* Added the module name in breaking change messages +* Upgraded Microsoft.ApplicationInsights version from 2.13.1 to 2.18.0 ' + + # Prerelease string of this module + # Prerelease = '' + + # Flag to indicate whether the module requires explicit user acceptance for install/update/save + # RequireLicenseAcceptance = $false + + # External dependent modules of this module + # ExternalModuleDependencies = @() + + } # End of PSData hashtable + + } # End of PrivateData hashtable + +# HelpInfo URI of this module +# HelpInfoURI = '' + +# Default prefix for commands exported from this module. Override the default prefix using Import-Module -Prefix. +# DefaultCommandPrefix = '' + +} + + +# SIG # Begin signature block +# MIIn0QYJKoZIhvcNAQcCoIInwjCCJ74CAQExDzANBglghkgBZQMEAgEFADB5Bgor +# BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG +# KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCAk2HPcwhsJ45gq +# tueQH3lZy0qaJUF7KlbsF568k8m1kaCCDYUwggYDMIID66ADAgECAhMzAAADTU6R +# phoosHiPAAAAAANNMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD +# VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p +# bmcgUENBIDIwMTEwHhcNMjMwMzE2MTg0MzI4WhcNMjQwMzE0MTg0MzI4WjB0MQsw +# CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u +# ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB +# AQDUKPcKGVa6cboGQU03ONbUKyl4WpH6Q2Xo9cP3RhXTOa6C6THltd2RfnjlUQG+ +# Mwoy93iGmGKEMF/jyO2XdiwMP427j90C/PMY/d5vY31sx+udtbif7GCJ7jJ1vLzd +# j28zV4r0FGG6yEv+tUNelTIsFmmSb0FUiJtU4r5sfCThvg8dI/F9Hh6xMZoVti+k +# bVla+hlG8bf4s00VTw4uAZhjGTFCYFRytKJ3/mteg2qnwvHDOgV7QSdV5dWdd0+x +# zcuG0qgd3oCCAjH8ZmjmowkHUe4dUmbcZfXsgWlOfc6DG7JS+DeJak1DvabamYqH +# g1AUeZ0+skpkwrKwXTFwBRltAgMBAAGjggGCMIIBfjAfBgNVHSUEGDAWBgorBgEE +# AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQUId2Img2Sp05U6XI04jli2KohL+8w +# VAYDVR0RBE0wS6RJMEcxLTArBgNVBAsTJE1pY3Jvc29mdCBJcmVsYW5kIE9wZXJh +# dGlvbnMgTGltaXRlZDEWMBQGA1UEBRMNMjMwMDEyKzUwMDUxNzAfBgNVHSMEGDAW +# gBRIbmTlUAXTgqoXNzcitW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8v +# d3d3Lm1pY3Jvc29mdC5jb20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIw +# MTEtMDctMDguY3JsMGEGCCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDov +# L3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDEx +# XzIwMTEtMDctMDguY3J0MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIB +# ACMET8WuzLrDwexuTUZe9v2xrW8WGUPRQVmyJ1b/BzKYBZ5aU4Qvh5LzZe9jOExD +# YUlKb/Y73lqIIfUcEO/6W3b+7t1P9m9M1xPrZv5cfnSCguooPDq4rQe/iCdNDwHT +# 6XYW6yetxTJMOo4tUDbSS0YiZr7Mab2wkjgNFa0jRFheS9daTS1oJ/z5bNlGinxq +# 2v8azSP/GcH/t8eTrHQfcax3WbPELoGHIbryrSUaOCphsnCNUqUN5FbEMlat5MuY +# 94rGMJnq1IEd6S8ngK6C8E9SWpGEO3NDa0NlAViorpGfI0NYIbdynyOB846aWAjN +# fgThIcdzdWFvAl/6ktWXLETn8u/lYQyWGmul3yz+w06puIPD9p4KPiWBkCesKDHv +# XLrT3BbLZ8dKqSOV8DtzLFAfc9qAsNiG8EoathluJBsbyFbpebadKlErFidAX8KE +# usk8htHqiSkNxydamL/tKfx3V/vDAoQE59ysv4r3pE+zdyfMairvkFNNw7cPn1kH +# Gcww9dFSY2QwAxhMzmoM0G+M+YvBnBu5wjfxNrMRilRbxM6Cj9hKFh0YTwba6M7z +# ntHHpX3d+nabjFm/TnMRROOgIXJzYbzKKaO2g1kWeyG2QtvIR147zlrbQD4X10Ab +# rRg9CpwW7xYxywezj+iNAc+QmFzR94dzJkEPUSCJPsTFMIIHejCCBWKgAwIBAgIK +# YQ6Q0gAAAAAAAzANBgkqhkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNV +# BAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jv +# c29mdCBDb3Jwb3JhdGlvbjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlm +# aWNhdGUgQXV0aG9yaXR5IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEw +# OTA5WjB+MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UE +# BxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYD +# VQQDEx9NaWNyb3NvZnQgQ29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG +# 9w0BAQEFAAOCAg8AMIICCgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+la +# UKq4BjgaBEm6f8MMHt03a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc +# 6Whe0t+bU7IKLMOv2akrrnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4D +# dato88tt8zpcoRb0RrrgOGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+ +# lD3v++MrWhAfTVYoonpy4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nk +# kDstrjNYxbc+/jLTswM9sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6 +# A4aN91/w0FK/jJSHvMAhdCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmd +# X4jiJV3TIUs+UsS1Vz8kA/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL +# 5zmhD+kjSbwYuER8ReTBw3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zd +# sGbiwZeBe+3W7UvnSSmnEyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3 +# T8HhhUSJxAlMxdSlQy90lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS +# 4NaIjAsCAwEAAaOCAe0wggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRI +# bmTlUAXTgqoXNzcitW2oynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTAL +# BgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBD +# uRQFTuHqp8cx0SOJNDBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jv +# c29mdC5jb20vcGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFf +# MDNfMjIuY3JsMF4GCCsGAQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3 +# dy5taWNyb3NvZnQuY29tL3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFf +# MDNfMjIuY3J0MIGfBgNVHSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEF +# BQcCARYzaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1h +# cnljcHMuaHRtMEAGCCsGAQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkA +# YwB5AF8AcwB0AGEAdABlAG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn +# 8oalmOBUeRou09h0ZyKbC5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7 +# v0epo/Np22O/IjWll11lhJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0b +# pdS1HXeUOeLpZMlEPXh6I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/ +# KmtYSWMfCWluWpiW5IP0wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvy +# CInWH8MyGOLwxS3OW560STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBp +# mLJZiWhub6e3dMNABQamASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJi +# hsMdYzaXht/a8/jyFqGaJ+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYb +# BL7fQccOKO7eZS/sl/ahXJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbS +# oqKfenoi+kiVH6v7RyOA9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sL +# gOppO6/8MO0ETI7f33VtY5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtX +# cVZOSEXAQsmbdlsKgEhr/Xmfwb1tbWrJUnMTDXpQzTGCGaIwghmeAgEBMIGVMH4x +# CzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRt +# b25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01p +# Y3Jvc29mdCBDb2RlIFNpZ25pbmcgUENBIDIwMTECEzMAAANNTpGmGiiweI8AAAAA +# A00wDQYJYIZIAWUDBAIBBQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQw +# HAYKKwYBBAGCNwIBCzEOMAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIPqM +# nLtedTpCCZWzygnrN5qjriZa3nvW0MEUhgHrBf/kMEIGCisGAQQBgjcCAQwxNDAy +# oBSAEgBNAGkAYwByAG8AcwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5j +# b20wDQYJKoZIhvcNAQEBBQAEggEAS7p4ZPALh+4+yJuTQhIPP+LV4A+Jom3lI5qs +# lp7zGTEfbcL8TMbAGgLGl186yuYk/eJlpkSh/cGFRhbcBzQUgXmUfAGnRYugqMXE +# VvX3Qil+ivulxYqiozTr9zWcJ3vitlWIAFJqTTmdHjP0smU7TqrS66Tk06fR4sXU +# x5BVXrlrIismo9vw+sA7wI8LHKwTB61N+w9w2QRDXotckocOV5R/T6ySpCkJfjiP +# V/Ht7VO4JbhDXBedTy9uZ6yQdaBJgmF21iJxacaeYL+StSI/OaHApGTHpJo0/l8K +# UzZmO3S3+sUX3NwAyZ6A4iTM3dGMPFTiEykJD41kS/eAZgy+TaGCFywwghcoBgor +# BgEEAYI3AwMBMYIXGDCCFxQGCSqGSIb3DQEHAqCCFwUwghcBAgEDMQ8wDQYJYIZI +# AWUDBAIBBQAwggFZBgsqhkiG9w0BCRABBKCCAUgEggFEMIIBQAIBAQYKKwYBBAGE +# WQoDATAxMA0GCWCGSAFlAwQCAQUABCDzkxGA6Q74EKQNCUJRJIpLLx9SAzmpu+DM +# Ytnz01KnYQIGZN5VuexfGBMyMDIzMDkyMDA2MzM0Ni4wMjVaMASAAgH0oIHYpIHV +# MIHSMQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMH +# UmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMS0wKwYDVQQL +# EyRNaWNyb3NvZnQgSXJlbGFuZCBPcGVyYXRpb25zIExpbWl0ZWQxJjAkBgNVBAsT +# HVRoYWxlcyBUU1MgRVNOOjA4NDItNEJFNi1DMjlBMSUwIwYDVQQDExxNaWNyb3Nv +# ZnQgVGltZS1TdGFtcCBTZXJ2aWNloIIRezCCBycwggUPoAMCAQICEzMAAAGybkAD +# f26plJIAAQAAAbIwDQYJKoZIhvcNAQELBQAwfDELMAkGA1UEBhMCVVMxEzARBgNV +# BAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jv +# c29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAg +# UENBIDIwMTAwHhcNMjIwOTIwMjAyMjAxWhcNMjMxMjE0MjAyMjAxWjCB0jELMAkG +# A1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQx +# HjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEtMCsGA1UECxMkTWljcm9z +# b2Z0IElyZWxhbmQgT3BlcmF0aW9ucyBMaW1pdGVkMSYwJAYDVQQLEx1UaGFsZXMg +# VFNTIEVTTjowODQyLTRCRTYtQzI5QTElMCMGA1UEAxMcTWljcm9zb2Z0IFRpbWUt +# U3RhbXAgU2VydmljZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMqi +# ZTIde/lQ4rC+Bml5f/Wuq/xKTxrfbG23HofmQ+qZAN4GyO73PF3y9OAfpt7Qf2jc +# ldWOGUB+HzBuwllYyP3fx4MY8zvuAuB37FvoytnNC2DKnVrVlHOVcGUL9CnmhDNM +# A2/nskjIf2IoiG9J0qLYr8duvHdQJ9Li2Pq9guySb9mvUL60ogslCO9gkh6FiEDw +# MrwUr8Wja6jFpUTny8tg0N0cnCN2w4fKkp5qZcbUYFYicLSb/6A7pHCtX6xnjqwh +# mJoib3vkKJyVxbuFLRhVXxH95b0LHeNhifn3jvo2j+/4QV10jEpXVW+iC9BsTtR6 +# 9xvTjU51ZgP7BR4YDEWq7JsylSOv5B5THTDXRf184URzFhTyb8OZQKY7mqMh7c8J +# 8w1sEM4XDUF2UZNy829NVCzG2tfdEXZaHxF8RmxpQYBxyhZwY1rotuIS+gfN2eq+ +# hkAT3ipGn8/KmDwDtzAbnfuXjApgeZqwgcYJ8pDJ+y/xU6ouzJz1Bve5TTihkiA7 +# wQsQe6R60Zk9dPdNzw0MK5niRzuQZAt4GI96FhjhlUWcUZOCkv/JXM/OGu/rgSpl +# YwdmPLzzfDtXyuy/GCU5I4l08g6iifXypMgoYkkceOAAz4vx1x0BOnZWfI3fSwqN +# UvoN7ncTT+MB4Vpvf1QBppjBAQUuvui6eCG0MCVNAgMBAAGjggFJMIIBRTAdBgNV +# HQ4EFgQUmfIngFzZEZlPkjDOVluBSDDaanEwHwYDVR0jBBgwFoAUn6cVXQBeYl2D +# 9OXSZacbUzUZ6XIwXwYDVR0fBFgwVjBUoFKgUIZOaHR0cDovL3d3dy5taWNyb3Nv +# ZnQuY29tL3BraW9wcy9jcmwvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUy +# MDIwMTAoMSkuY3JsMGwGCCsGAQUFBwEBBGAwXjBcBggrBgEFBQcwAoZQaHR0cDov +# L3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jZXJ0cy9NaWNyb3NvZnQlMjBUaW1l +# LVN0YW1wJTIwUENBJTIwMjAxMCgxKS5jcnQwDAYDVR0TAQH/BAIwADAWBgNVHSUB +# Af8EDDAKBggrBgEFBQcDCDAOBgNVHQ8BAf8EBAMCB4AwDQYJKoZIhvcNAQELBQAD +# ggIBANxHtu3FzIabaDbWqswdKBlAhKXRCN+5CSMiv2TYa4i2QuWIm+99piwAhDhA +# Dfbqor1zyLi95Y6GQnvIWUgdeC7oL1ZtZye92zYK+EIfwYZmhS+CH4infAzUvscH +# ZF3wlrJUfPUIDGVP0lCYVse9mguvG0dqkY4ayQPEHOvJubgZZaOdg/N8dInd6fGe +# Oc+0DoGzB+LieObJ2Q0AtEt3XN3iX8Cp6+dZTX8xwE/LvhRwPpb/+nKshO7TVuve +# nwdTwqB/LT6CNPaElwFeKxKrqRTPMbHeg+i+KnBLfwmhEXsMg2s1QX7JIxfvT96m +# d0eiMjiMEO22LbOzmLMNd3LINowAnRBAJtX+3/e390B9sMGMHp+a1V+hgs62AopB +# l0p/00li30DN5wEQ5If35Zk7b/T6pEx6rJUDYCti7zCbikjKTanBnOc99zGMlej5 +# X+fC/k5ExUCrOs3/VzGRCZt5LvVQSdWqq/QMzTEmim4sbzASK9imEkjNtZZyvC1C +# sUcD1voFktld4mKMjE+uDEV3IddD+DrRk94nVzNPSuZXewfVOnXHSeqG7xM3V7fl +# 2aL4v1OhL2+JwO1Tx3B0irO1O9qbNdJk355bntd1RSVKgM22KFBHnoL7Js7pRhBi +# aKmVTQGoOb+j1Qa7q+cixGo48Vh9k35BDsJS/DLoXFSPDl4mMIIHcTCCBVmgAwIB +# AgITMwAAABXF52ueAptJmQAAAAAAFTANBgkqhkiG9w0BAQsFADCBiDELMAkGA1UE +# BhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAc +# BgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEyMDAGA1UEAxMpTWljcm9zb2Z0 +# IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IDIwMTAwHhcNMjEwOTMwMTgyMjI1 +# WhcNMzAwOTMwMTgzMjI1WjB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGlu +# Z3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBv +# cmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDCC +# AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOThpkzntHIhC3miy9ckeb0O +# 1YLT/e6cBwfSqWxOdcjKNVf2AX9sSuDivbk+F2Az/1xPx2b3lVNxWuJ+Slr+uDZn +# hUYjDLWNE893MsAQGOhgfWpSg0S3po5GawcU88V29YZQ3MFEyHFcUTE3oAo4bo3t +# 1w/YJlN8OWECesSq/XJprx2rrPY2vjUmZNqYO7oaezOtgFt+jBAcnVL+tuhiJdxq +# D89d9P6OU8/W7IVWTe/dvI2k45GPsjksUZzpcGkNyjYtcI4xyDUoveO0hyTD4MmP +# frVUj9z6BVWYbWg7mka97aSueik3rMvrg0XnRm7KMtXAhjBcTyziYrLNueKNiOSW +# rAFKu75xqRdbZ2De+JKRHh09/SDPc31BmkZ1zcRfNN0Sidb9pSB9fvzZnkXftnIv +# 231fgLrbqn427DZM9ituqBJR6L8FA6PRc6ZNN3SUHDSCD/AQ8rdHGO2n6Jl8P0zb +# r17C89XYcz1DTsEzOUyOArxCaC4Q6oRRRuLRvWoYWmEBc8pnol7XKHYC4jMYcten +# IPDC+hIK12NvDMk2ZItboKaDIV1fMHSRlJTYuVD5C4lh8zYGNRiER9vcG9H9stQc +# xWv2XFJRXRLbJbqvUAV6bMURHXLvjflSxIUXk8A8FdsaN8cIFRg/eKtFtvUeh17a +# j54WcmnGrnu3tz5q4i6tAgMBAAGjggHdMIIB2TASBgkrBgEEAYI3FQEEBQIDAQAB +# MCMGCSsGAQQBgjcVAgQWBBQqp1L+ZMSavoKRPEY1Kc8Q/y8E7jAdBgNVHQ4EFgQU +# n6cVXQBeYl2D9OXSZacbUzUZ6XIwXAYDVR0gBFUwUzBRBgwrBgEEAYI3TIN9AQEw +# QTA/BggrBgEFBQcCARYzaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9E +# b2NzL1JlcG9zaXRvcnkuaHRtMBMGA1UdJQQMMAoGCCsGAQUFBwMIMBkGCSsGAQQB +# gjcUAgQMHgoAUwB1AGIAQwBBMAsGA1UdDwQEAwIBhjAPBgNVHRMBAf8EBTADAQH/ +# MB8GA1UdIwQYMBaAFNX2VsuP6KJcYmjRPZSQW9fOmhjEMFYGA1UdHwRPME0wS6BJ +# oEeGRWh0dHA6Ly9jcmwubWljcm9zb2Z0LmNvbS9wa2kvY3JsL3Byb2R1Y3RzL01p +# Y1Jvb0NlckF1dF8yMDEwLTA2LTIzLmNybDBaBggrBgEFBQcBAQROMEwwSgYIKwYB +# BQUHMAKGPmh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2kvY2VydHMvTWljUm9v +# Q2VyQXV0XzIwMTAtMDYtMjMuY3J0MA0GCSqGSIb3DQEBCwUAA4ICAQCdVX38Kq3h +# LB9nATEkW+Geckv8qW/qXBS2Pk5HZHixBpOXPTEztTnXwnE2P9pkbHzQdTltuw8x +# 5MKP+2zRoZQYIu7pZmc6U03dmLq2HnjYNi6cqYJWAAOwBb6J6Gngugnue99qb74p +# y27YP0h1AdkY3m2CDPVtI1TkeFN1JFe53Z/zjj3G82jfZfakVqr3lbYoVSfQJL1A +# oL8ZthISEV09J+BAljis9/kpicO8F7BUhUKz/AyeixmJ5/ALaoHCgRlCGVJ1ijbC +# HcNhcy4sa3tuPywJeBTpkbKpW99Jo3QMvOyRgNI95ko+ZjtPu4b6MhrZlvSP9pEB +# 9s7GdP32THJvEKt1MMU0sHrYUP4KWN1APMdUbZ1jdEgssU5HLcEUBHG/ZPkkvnNt +# yo4JvbMBV0lUZNlz138eW0QBjloZkWsNn6Qo3GcZKCS6OEuabvshVGtqRRFHqfG3 +# rsjoiV5PndLQTHa1V1QJsWkBRH58oWFsc/4Ku+xBZj1p/cvBQUl+fpO+y/g75LcV +# v7TOPqUxUYS8vwLBgqJ7Fx0ViY1w/ue10CgaiQuPNtq6TPmb/wrpNPgkNWcr4A24 +# 5oyZ1uEi6vAnQj0llOZ0dFtq0Z4+7X6gMTN9vMvpe784cETRkPHIqzqKOghif9lw +# Y1NNje6CbaUFEMFxBmoQtB1VM1izoXBm8qGCAtcwggJAAgEBMIIBAKGB2KSB1TCB +# 0jELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1Jl +# ZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEtMCsGA1UECxMk +# TWljcm9zb2Z0IElyZWxhbmQgT3BlcmF0aW9ucyBMaW1pdGVkMSYwJAYDVQQLEx1U +# aGFsZXMgVFNTIEVTTjowODQyLTRCRTYtQzI5QTElMCMGA1UEAxMcTWljcm9zb2Z0 +# IFRpbWUtU3RhbXAgU2VydmljZaIjCgEBMAcGBSsOAwIaAxUAjhJ+EeySRfn2KCNs +# jn9cF9AUSTqggYMwgYCkfjB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGlu +# Z3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBv +# cmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDAN +# BgkqhkiG9w0BAQUFAAIFAOi0+i0wIhgPMjAyMzA5MjAxMjU3MTdaGA8yMDIzMDky +# MTEyNTcxN1owdzA9BgorBgEEAYRZCgQBMS8wLTAKAgUA6LT6LQIBADAKAgEAAgIR +# nAIB/zAHAgEAAgIR0DAKAgUA6LZLrQIBADA2BgorBgEEAYRZCgQCMSgwJjAMBgor +# BgEEAYRZCgMCoAowCAIBAAIDB6EgoQowCAIBAAIDAYagMA0GCSqGSIb3DQEBBQUA +# A4GBAGjRjrn62VuBz/kNRF8KdoG4YOpoAZu0e3XBc+tcCCiG1Je/ZYXUzMrrq/cz +# MFXWzdmSQRBFPRvcFJw8LcTRu4C6eQOJywts4MMoyE3nJOUUUsOB/i2h2w7L/fo0 +# 3EeEXVTQn/aSK7jkMyysxQEWOw64WNG06Sd08ZDadqbnAc7zMYIEDTCCBAkCAQEw +# gZMwfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcT +# B1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UE +# AxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIwMTACEzMAAAGybkADf26plJIA +# AQAAAbIwDQYJYIZIAWUDBAIBBQCgggFKMBoGCSqGSIb3DQEJAzENBgsqhkiG9w0B +# CRABBDAvBgkqhkiG9w0BCQQxIgQgDd3716NLDTxGc+0tAskrKgBsB9PO5RK3smyU +# vyfE7/owgfoGCyqGSIb3DQEJEAIvMYHqMIHnMIHkMIG9BCBTeM485+E+t4PEVieU +# oFKX7PVyLo/nzu+htJPCG04+NTCBmDCBgKR+MHwxCzAJBgNVBAYTAlVTMRMwEQYD +# VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jvc29mdCBUaW1lLVN0YW1w +# IFBDQSAyMDEwAhMzAAABsm5AA39uqZSSAAEAAAGyMCIEILLYuf/URU9tiFRXIhgo +# OAyZuYAFYpFAH2I0pLSN1lWkMA0GCSqGSIb3DQEBCwUABIICAMQZqLlhmv19+CcR +# claEHbZr4MgJjWr2Da27FqRgoOLDtNaS/IZ16UHukAV7JVdIOdVroxfvVdWXh5iq +# dSAfYNMkSBBPxxLbSFnndIw7KWkp3vbxFcJ6+JsK9k54TDZAUP17OpTM11gpTYfm +# uVAWZaqh086moHKLZsjVU/rzFA3En+QY5ZticB0LytwkIY+7pS6ikN4Q3e/pzPLH +# CSa2OZN3bXezZzOWMFLQwJ2IQJLpCKs0RiICTOaOKTpsjcoK2eBLwzXsgnnNZmj/ +# q1XMWGUJbnNJH4mszFVJ6X0cUo3OJvkF9V796VoZZMUS9i0EmCUZNE0rcvPdBnIE +# c8P+QSbLudmDA+XXno2ItqeA1ZkatNLyZGYGSjK4BU48MzcHMkWKCcUlqyfUiJt7 +# 7UGXDTuCzVkqCVVo7XpJNbN7X1oLkh8yTPr5RBbmlzzykIfEkoVnYj4Qc89ohb1N +# qXKDWby0ldBFOZIgyOgRiYJ984yyeAAXvOpTexhDtDCguYGfV56U+NTMve18Oa8u +# IODMD1Nfr+JLHL+J2tkMfZGFa71tGGnI2w9W6xUltjs8XINLrF08szKC6Vlo20wl +# F09Em/cF6qbZ2cnC/BDOt3xDDnJHYOHLR9QCZABbMd7JiuH32PE5C79PbpPYzyje +# p0LB6iM1n1UYaSSFWCx/a3Itdf6/ +# SIG # End signature block diff --git a/Modules/Az.Accounts/2.13.1/Az.Accounts.psm1 b/Modules/Az.Accounts/2.13.1/Az.Accounts.psm1 new file mode 100644 index 000000000000..2022fcfde49d --- /dev/null +++ b/Modules/Az.Accounts/2.13.1/Az.Accounts.psm1 @@ -0,0 +1,365 @@ +# +# Script module for module 'Az.Accounts' that is executed when 'Az.Accounts' is imported in a PowerShell session. +# +# Generated by: Microsoft Corporation +# +# Generated on: 09/20/2023 05:38:15 +# + +$PSDefaultParameterValues.Clear() +Set-StrictMode -Version Latest + +function Test-DotNet +{ + try + { + if ((Get-PSDrive 'HKLM' -ErrorAction Ignore) -and (-not (Get-ChildItem 'HKLM:\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\' -ErrorAction Stop | Get-ItemPropertyValue -ErrorAction Stop -Name Release | Where-Object { $_ -ge 461808 }))) + { + throw ".NET Framework versions lower than 4.7.2 are not supported in Az. Please upgrade to .NET Framework 4.7.2 or higher." + } + } + catch [System.Management.Automation.DriveNotFoundException] + { + Write-Verbose ".NET Framework version check failed." + } +} + +function Preload-Assembly { + param ( + [string] + $AssemblyDirectory + ) + if($PSEdition -eq 'Desktop' -and (Test-Path $AssemblyDirectory -ErrorAction Ignore)) + { + try + { + Get-ChildItem -ErrorAction Stop -Path $AssemblyDirectory -Filter "*.dll" | ForEach-Object { + try + { + Add-Type -Path $_.FullName -ErrorAction Ignore | Out-Null + } + catch { + Write-Verbose $_ + } + } + } + catch {} + } +} + +if ($true -and ($PSEdition -eq 'Desktop')) +{ + if ($PSVersionTable.PSVersion -lt [Version]'5.1') + { + throw "PowerShell versions lower than 5.1 are not supported in Az. Please upgrade to PowerShell 5.1 or higher." + } + + Test-DotNet +} + +if ($true -and ($PSEdition -eq 'Core')) +{ + if ($PSVersionTable.PSVersion -lt [Version]'6.2.4') + { + throw "Current Az version doesn't support PowerShell Core versions lower than 6.2.4. Please upgrade to PowerShell Core 6.2.4 or higher." + } + if ($PSVersionTable.PSVersion -lt [Version]'7.0.6') + { + Write-Warning "This version of Az.Accounts is only supported on Windows PowerShell 5.1 and PowerShell 7.0.6 or greater, open https://aka.ms/install-powershell to learn how to upgrade. For further information, go to https://aka.ms/azpslifecycle." + } +} + +if (Test-Path -Path "$PSScriptRoot\StartupScripts" -ErrorAction Ignore) +{ + Get-ChildItem "$PSScriptRoot\StartupScripts" -ErrorAction Stop | ForEach-Object { + . $_.FullName + } +} + +# [windows powershell] preload assemblies +if ($PSEdition -eq "Desktop") { + [Microsoft.Azure.PowerShell.AssemblyLoading.ConditionalAssemblyProvider]::GetAssemblies().Values | ForEach-Object { + $path = $_.Item1 + try { + Add-Type -Path $path -ErrorAction Ignore | Out-Null + } + catch { + Write-Verbose "Could not preload $path" + } + } +} + +# [windows powershell] preload module alc assemblies +$preloadPath = (Join-Path $PSScriptRoot -ChildPath "ModuleAlcAssemblies") +Preload-Assembly -AssemblyDirectory $preloadPath + +if (Get-Module AzureRM.profile -ErrorAction Ignore) +{ + Write-Warning ("AzureRM.Profile already loaded. Az and AzureRM modules cannot be imported in the same session or used in the same script or runbook. If you are running PowerShell in an environment you control you can use the 'Uninstall-AzureRm' cmdlet to remove all AzureRm modules from your machine. " + + "If you are running in Azure Automation, take care that none of your runbooks import both Az and AzureRM modules. More information can be found here: https://aka.ms/azps-migration-guide.") + throw ("AzureRM.Profile already loaded. Az and AzureRM modules cannot be imported in the same session or used in the same script or runbook. If you are running PowerShell in an environment you control you can use the 'Uninstall-AzureRm' cmdlet to remove all AzureRm modules from your machine. " + + "If you are running in Azure Automation, take care that none of your runbooks import both Az and AzureRM modules. More information can be found here: https://aka.ms/azps-migration-guide.") +} + +Import-Module (Join-Path -Path $PSScriptRoot -ChildPath Microsoft.Azure.PowerShell.Cmdlets.Accounts.dll) + + +if (Test-Path -Path "$PSScriptRoot\PostImportScripts" -ErrorAction Ignore) +{ + Get-ChildItem "$PSScriptRoot\PostImportScripts" -ErrorAction Stop | ForEach-Object { + . $_.FullName + } +} + +$FilteredCommands = @() + +if ($Env:ACC_CLOUD -eq $null) +{ + $FilteredCommands | ForEach-Object { + + $existingDefault = $false + foreach ($key in $global:PSDefaultParameterValues.Keys) + { + if ($_ -like "$key") + { + $existingDefault = $true + } + } + + if (!$existingDefault) + { + $global:PSDefaultParameterValues.Add($_, + { + if ((Get-Command Get-AzContext -ErrorAction Ignore) -eq $null) + { + $context = Get-AzureRmContext + } + else + { + $context = Get-AzContext + } + if (($context -ne $null) -and $context.ExtendedProperties.ContainsKey("Default Resource Group")) { + $context.ExtendedProperties["Default Resource Group"] + } + }) + } + } +} + +[Microsoft.Azure.Commands.Profile.Utilities.CommandNotFoundHelper]::RegisterCommandNotFoundAction($ExecutionContext.InvokeCommand) + +# SIG # Begin signature block +# MIInwgYJKoZIhvcNAQcCoIInszCCJ68CAQExDzANBglghkgBZQMEAgEFADB5Bgor +# BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG +# KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCCb9fJw7tRJSjyo +# JEg82Xj/MrcwppXsz44viAgrYDK20aCCDXYwggX0MIID3KADAgECAhMzAAADTrU8 +# esGEb+srAAAAAANOMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD +# VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p +# bmcgUENBIDIwMTEwHhcNMjMwMzE2MTg0MzI5WhcNMjQwMzE0MTg0MzI5WjB0MQsw +# CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u +# ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB +# AQDdCKiNI6IBFWuvJUmf6WdOJqZmIwYs5G7AJD5UbcL6tsC+EBPDbr36pFGo1bsU +# p53nRyFYnncoMg8FK0d8jLlw0lgexDDr7gicf2zOBFWqfv/nSLwzJFNP5W03DF/1 +# 1oZ12rSFqGlm+O46cRjTDFBpMRCZZGddZlRBjivby0eI1VgTD1TvAdfBYQe82fhm +# WQkYR/lWmAK+vW/1+bO7jHaxXTNCxLIBW07F8PBjUcwFxxyfbe2mHB4h1L4U0Ofa +# +HX/aREQ7SqYZz59sXM2ySOfvYyIjnqSO80NGBaz5DvzIG88J0+BNhOu2jl6Dfcq +# jYQs1H/PMSQIK6E7lXDXSpXzAgMBAAGjggFzMIIBbzAfBgNVHSUEGDAWBgorBgEE +# AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQUnMc7Zn/ukKBsBiWkwdNfsN5pdwAw +# RQYDVR0RBD4wPKQ6MDgxHjAcBgNVBAsTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEW +# MBQGA1UEBRMNMjMwMDEyKzUwMDUxNjAfBgNVHSMEGDAWgBRIbmTlUAXTgqoXNzci +# tW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8vd3d3Lm1pY3Jvc29mdC5j +# b20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3JsMGEG +# CCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDovL3d3dy5taWNyb3NvZnQu +# Y29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3J0 +# MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIBAD21v9pHoLdBSNlFAjmk +# mx4XxOZAPsVxxXbDyQv1+kGDe9XpgBnT1lXnx7JDpFMKBwAyIwdInmvhK9pGBa31 +# TyeL3p7R2s0L8SABPPRJHAEk4NHpBXxHjm4TKjezAbSqqbgsy10Y7KApy+9UrKa2 +# kGmsuASsk95PVm5vem7OmTs42vm0BJUU+JPQLg8Y/sdj3TtSfLYYZAaJwTAIgi7d +# hzn5hatLo7Dhz+4T+MrFd+6LUa2U3zr97QwzDthx+RP9/RZnur4inzSQsG5DCVIM +# pA1l2NWEA3KAca0tI2l6hQNYsaKL1kefdfHCrPxEry8onJjyGGv9YKoLv6AOO7Oh +# JEmbQlz/xksYG2N/JSOJ+QqYpGTEuYFYVWain7He6jgb41JbpOGKDdE/b+V2q/gX +# UgFe2gdwTpCDsvh8SMRoq1/BNXcr7iTAU38Vgr83iVtPYmFhZOVM0ULp/kKTVoir +# IpP2KCxT4OekOctt8grYnhJ16QMjmMv5o53hjNFXOxigkQWYzUO+6w50g0FAeFa8 +# 5ugCCB6lXEk21FFB1FdIHpjSQf+LP/W2OV/HfhC3uTPgKbRtXo83TZYEudooyZ/A +# Vu08sibZ3MkGOJORLERNwKm2G7oqdOv4Qj8Z0JrGgMzj46NFKAxkLSpE5oHQYP1H +# tPx1lPfD7iNSbJsP6LiUHXH1MIIHejCCBWKgAwIBAgIKYQ6Q0gAAAAAAAzANBgkq +# hkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24x +# EDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlv +# bjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5 +# IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEwOTA5WjB+MQswCQYDVQQG +# EwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwG +# A1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYDVQQDEx9NaWNyb3NvZnQg +# Q29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC +# CgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+laUKq4BjgaBEm6f8MMHt03 +# a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc6Whe0t+bU7IKLMOv2akr +# rnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4Ddato88tt8zpcoRb0Rrrg +# OGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+lD3v++MrWhAfTVYoonpy +# 4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nkkDstrjNYxbc+/jLTswM9 +# sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6A4aN91/w0FK/jJSHvMAh +# dCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmdX4jiJV3TIUs+UsS1Vz8k +# A/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL5zmhD+kjSbwYuER8ReTB +# w3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zdsGbiwZeBe+3W7UvnSSmn +# Eyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3T8HhhUSJxAlMxdSlQy90 +# lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS4NaIjAsCAwEAAaOCAe0w +# ggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRIbmTlUAXTgqoXNzcitW2o +# ynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTALBgNVHQ8EBAMCAYYwDwYD +# VR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBDuRQFTuHqp8cx0SOJNDBa +# BgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20vcGtpL2Ny +# bC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3JsMF4GCCsG +# AQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3dy5taWNyb3NvZnQuY29t +# L3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3J0MIGfBgNV +# HSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEFBQcCARYzaHR0cDovL3d3 +# dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1hcnljcHMuaHRtMEAGCCsG +# AQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkAYwB5AF8AcwB0AGEAdABl +# AG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn8oalmOBUeRou09h0ZyKb +# C5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7v0epo/Np22O/IjWll11l +# hJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0bpdS1HXeUOeLpZMlEPXh6 +# I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/KmtYSWMfCWluWpiW5IP0 +# wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvyCInWH8MyGOLwxS3OW560 +# STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBpmLJZiWhub6e3dMNABQam +# ASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJihsMdYzaXht/a8/jyFqGa +# J+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYbBL7fQccOKO7eZS/sl/ah +# XJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbSoqKfenoi+kiVH6v7RyOA +# 9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sLgOppO6/8MO0ETI7f33Vt +# Y5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtXcVZOSEXAQsmbdlsKgEhr +# /Xmfwb1tbWrJUnMTDXpQzTGCGaIwghmeAgEBMIGVMH4xCzAJBgNVBAYTAlVTMRMw +# EQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVN +# aWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNp +# Z25pbmcgUENBIDIwMTECEzMAAANOtTx6wYRv6ysAAAAAA04wDQYJYIZIAWUDBAIB +# BQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQwHAYKKwYBBAGCNwIBCzEO +# MAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIBsLZoT0GL3AfKW+v1FN9bVc +# VG31uoPh0H8hDfNXM1ivMEIGCisGAQQBgjcCAQwxNDAyoBSAEgBNAGkAYwByAG8A +# cwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20wDQYJKoZIhvcNAQEB +# BQAEggEAjm1RFaOR3jSivggTJhg8Xe4uZwJNAA0kGjYaTLK0sO7bf6gszj9yyZOW +# xl5OXc3I5e8idePoA9U2yMuNyGLP10P/SjCg/FSClm4PZr0HA1ORNDHn85kNLc+7 +# sQMWCkOiYLKNq/TudhmRGfeuEzjeZSiXKGbB65Fr5LeqGAuMNcZ5lKsP4Es7Cavs +# hG+lQd/27Lrb3xnB5LF5FZ9blmjY9UcS0hBnd6x/ynOB4WBFBjsu42fJZz2xx/04 +# panwkiuigz301YvY0maYIiNYJOWaNU32fVM+YX9b7+Iq5plTEx8XhWsexqmQTv9H +# jMkZa/2RkYvkbGfHQ3Ckw/oYI1NydKGCFywwghcoBgorBgEEAYI3AwMBMYIXGDCC +# FxQGCSqGSIb3DQEHAqCCFwUwghcBAgEDMQ8wDQYJYIZIAWUDBAIBBQAwggFZBgsq +# hkiG9w0BCRABBKCCAUgEggFEMIIBQAIBAQYKKwYBBAGEWQoDATAxMA0GCWCGSAFl +# AwQCAQUABCCehXSh9EH4ZOe8kqIKTs5kjZxVf/mTlUUsukZabtyKDwIGZN/OPZ5t +# GBMyMDIzMDkyMDA1NTAzNS4zNjZaMASAAgH0oIHYpIHVMIHSMQswCQYDVQQGEwJV +# UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE +# ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMS0wKwYDVQQLEyRNaWNyb3NvZnQgSXJl +# bGFuZCBPcGVyYXRpb25zIExpbWl0ZWQxJjAkBgNVBAsTHVRoYWxlcyBUU1MgRVNO +# OkQwODItNEJGRC1FRUJBMSUwIwYDVQQDExxNaWNyb3NvZnQgVGltZS1TdGFtcCBT +# ZXJ2aWNloIIRezCCBycwggUPoAMCAQICEzMAAAG6Hz8Z98F1vXwAAQAAAbowDQYJ +# KoZIhvcNAQELBQAwfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24x +# EDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlv +# bjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIwMTAwHhcNMjIw +# OTIwMjAyMjE5WhcNMjMxMjE0MjAyMjE5WjCB0jELMAkGA1UEBhMCVVMxEzARBgNV +# BAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jv +# c29mdCBDb3Jwb3JhdGlvbjEtMCsGA1UECxMkTWljcm9zb2Z0IElyZWxhbmQgT3Bl +# cmF0aW9ucyBMaW1pdGVkMSYwJAYDVQQLEx1UaGFsZXMgVFNTIEVTTjpEMDgyLTRC +# RkQtRUVCQTElMCMGA1UEAxMcTWljcm9zb2Z0IFRpbWUtU3RhbXAgU2VydmljZTCC +# AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAIhOFYMzkjWAE9UVnXF9hRGv +# 0xBRxc+I5Hu3hxVFXyK3u38xusEb0pLkwjgGtDsaLLbrlMxqX3tFb/3BgEPEC3L0 +# wX76gD8zHt+wiBV5mq5BWop29qRrgMJKKCPcpQnSjs9B/4XMFFvrpdPicZDv43FL +# gz9fHqMq0LJDw5JAHGDS30TCY9OF43P4d44Z9lE7CaVS2pJMF3L453MXB5yYK/KD +# bilhERP1jxn2yl+tGCRguIAsMG0oeOhXaw8uSGOhS6ACSHb+ebi0038MFHyoTNhK +# f+SYo4OpSY3xP4+swBBTKDoYP1wH+CfxG6h9fymBJQPQZaqfl0riiDLjmDunQtH1 +# GD64Air5k9Jdwhq5wLmSWXjyFVL+IDfOpdixJ6f5o+MhE6H4t31w+prygHmd2UHQ +# 657UGx6FNuzwC+SpAHmV76MZYac4uAhTgaP47P2eeS1ockvyhl9ya+9JzPfMkug3 +# xevzFADWiLRMr066EMV7q3JSRAsnCS9GQ08C4FKPbSh8OPM33Lng0ffxANnHAAX/ +# DE7cHcx7l9jaV3Acmkj7oqir4Eh2u5YxwiaTE37XaMumX2ES3PJ5NBaXq7YdLJwy +# SD+U9pk/tl4dQ1t/Eeo7uDTliOyQkD8I74xpVB0T31/67KHfkBkFVvy6wye21V+9 +# IC8uSD++RgD3RwtN2kE/AgMBAAGjggFJMIIBRTAdBgNVHQ4EFgQUimLm8QMeJa25 +# j9MWeabI2HSvZOUwHwYDVR0jBBgwFoAUn6cVXQBeYl2D9OXSZacbUzUZ6XIwXwYD +# VR0fBFgwVjBUoFKgUIZOaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9j +# cmwvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUyMDIwMTAoMSkuY3JsMGwG +# CCsGAQUFBwEBBGAwXjBcBggrBgEFBQcwAoZQaHR0cDovL3d3dy5taWNyb3NvZnQu +# Y29tL3BraW9wcy9jZXJ0cy9NaWNyb3NvZnQlMjBUaW1lLVN0YW1wJTIwUENBJTIw +# MjAxMCgxKS5jcnQwDAYDVR0TAQH/BAIwADAWBgNVHSUBAf8EDDAKBggrBgEFBQcD +# CDAOBgNVHQ8BAf8EBAMCB4AwDQYJKoZIhvcNAQELBQADggIBAF/I8U6hbZhvDcn9 +# 6nZ6tkbSEjXPvKZ6wroaXcgstEhpgaeEwleLuPXHLzEWtuJuYz4eshmhXqFr49lb +# AcX5SN5/cEsP0xdFayb7U5P94JZd3HjFvpWRNoNBhF3SDM0A38sI2H+hjhB/VfX1 +# XcZiei1ROPAyCHcBgHLyQrEu6mnb3HhbIdr8h0Ta7WFylGhLSFW6wmzKusP6aOlm +# nGSac5NMfla6lRvTYHd28rbbCgfSm1RhTgoZj+W8DTKtiEMwubHJ3mIPKmo8xtJI +# WXPnXq6XKgldrL5cynLMX/0WX65OuWbHV5GTELdfWvGV3DaZrHPUQ/UP31Keqb2x +# jVCb30LVwgbjIvYS77N1dARkN8F/9pJ1gO4IvZWMwyMlKKFGojO1f1wbjSWcA/57 +# tsc+t2blrMWgSNHgzDr01jbPSupRjy3Ht9ZZs4xN02eiX3eG297NrtC6l4c/gzn2 +# 0eqoqWx/uHWxmTgB0F5osBuTHOe77DyEA0uhArGlgKP91jghgt/OVHoH65g0QqCt +# gZ+36mnCEg6IOhFoFrCc0fJFGVmb1+17gEe+HRMM7jBk4O06J+IooFrI3e3PJjPr +# Qano/MyE3h+zAuBWGMDRcUlNKCDU7dGnWvH3XWwLrCCIcz+3GwRUMsLsDdPW2OVv +# 7v1eEJiMSIZ2P+M7L20Q8aznU4OAMIIHcTCCBVmgAwIBAgITMwAAABXF52ueAptJ +# mQAAAAAAFTANBgkqhkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgT +# Cldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29m +# dCBDb3Jwb3JhdGlvbjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlmaWNh +# dGUgQXV0aG9yaXR5IDIwMTAwHhcNMjEwOTMwMTgyMjI1WhcNMzAwOTMwMTgzMjI1 +# WjB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMH +# UmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYDVQQD +# Ex1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDCCAiIwDQYJKoZIhvcNAQEB +# BQADggIPADCCAgoCggIBAOThpkzntHIhC3miy9ckeb0O1YLT/e6cBwfSqWxOdcjK +# NVf2AX9sSuDivbk+F2Az/1xPx2b3lVNxWuJ+Slr+uDZnhUYjDLWNE893MsAQGOhg +# fWpSg0S3po5GawcU88V29YZQ3MFEyHFcUTE3oAo4bo3t1w/YJlN8OWECesSq/XJp +# rx2rrPY2vjUmZNqYO7oaezOtgFt+jBAcnVL+tuhiJdxqD89d9P6OU8/W7IVWTe/d +# vI2k45GPsjksUZzpcGkNyjYtcI4xyDUoveO0hyTD4MmPfrVUj9z6BVWYbWg7mka9 +# 7aSueik3rMvrg0XnRm7KMtXAhjBcTyziYrLNueKNiOSWrAFKu75xqRdbZ2De+JKR +# Hh09/SDPc31BmkZ1zcRfNN0Sidb9pSB9fvzZnkXftnIv231fgLrbqn427DZM9itu +# qBJR6L8FA6PRc6ZNN3SUHDSCD/AQ8rdHGO2n6Jl8P0zbr17C89XYcz1DTsEzOUyO +# ArxCaC4Q6oRRRuLRvWoYWmEBc8pnol7XKHYC4jMYctenIPDC+hIK12NvDMk2ZItb +# oKaDIV1fMHSRlJTYuVD5C4lh8zYGNRiER9vcG9H9stQcxWv2XFJRXRLbJbqvUAV6 +# bMURHXLvjflSxIUXk8A8FdsaN8cIFRg/eKtFtvUeh17aj54WcmnGrnu3tz5q4i6t +# AgMBAAGjggHdMIIB2TASBgkrBgEEAYI3FQEEBQIDAQABMCMGCSsGAQQBgjcVAgQW +# BBQqp1L+ZMSavoKRPEY1Kc8Q/y8E7jAdBgNVHQ4EFgQUn6cVXQBeYl2D9OXSZacb +# UzUZ6XIwXAYDVR0gBFUwUzBRBgwrBgEEAYI3TIN9AQEwQTA/BggrBgEFBQcCARYz +# aHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9Eb2NzL1JlcG9zaXRvcnku +# aHRtMBMGA1UdJQQMMAoGCCsGAQUFBwMIMBkGCSsGAQQBgjcUAgQMHgoAUwB1AGIA +# QwBBMAsGA1UdDwQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB8GA1UdIwQYMBaAFNX2 +# VsuP6KJcYmjRPZSQW9fOmhjEMFYGA1UdHwRPME0wS6BJoEeGRWh0dHA6Ly9jcmwu +# bWljcm9zb2Z0LmNvbS9wa2kvY3JsL3Byb2R1Y3RzL01pY1Jvb0NlckF1dF8yMDEw +# LTA2LTIzLmNybDBaBggrBgEFBQcBAQROMEwwSgYIKwYBBQUHMAKGPmh0dHA6Ly93 +# d3cubWljcm9zb2Z0LmNvbS9wa2kvY2VydHMvTWljUm9vQ2VyQXV0XzIwMTAtMDYt +# MjMuY3J0MA0GCSqGSIb3DQEBCwUAA4ICAQCdVX38Kq3hLB9nATEkW+Geckv8qW/q +# XBS2Pk5HZHixBpOXPTEztTnXwnE2P9pkbHzQdTltuw8x5MKP+2zRoZQYIu7pZmc6 +# U03dmLq2HnjYNi6cqYJWAAOwBb6J6Gngugnue99qb74py27YP0h1AdkY3m2CDPVt +# I1TkeFN1JFe53Z/zjj3G82jfZfakVqr3lbYoVSfQJL1AoL8ZthISEV09J+BAljis +# 9/kpicO8F7BUhUKz/AyeixmJ5/ALaoHCgRlCGVJ1ijbCHcNhcy4sa3tuPywJeBTp +# kbKpW99Jo3QMvOyRgNI95ko+ZjtPu4b6MhrZlvSP9pEB9s7GdP32THJvEKt1MMU0 +# sHrYUP4KWN1APMdUbZ1jdEgssU5HLcEUBHG/ZPkkvnNtyo4JvbMBV0lUZNlz138e +# W0QBjloZkWsNn6Qo3GcZKCS6OEuabvshVGtqRRFHqfG3rsjoiV5PndLQTHa1V1QJ +# sWkBRH58oWFsc/4Ku+xBZj1p/cvBQUl+fpO+y/g75LcVv7TOPqUxUYS8vwLBgqJ7 +# Fx0ViY1w/ue10CgaiQuPNtq6TPmb/wrpNPgkNWcr4A245oyZ1uEi6vAnQj0llOZ0 +# dFtq0Z4+7X6gMTN9vMvpe784cETRkPHIqzqKOghif9lwY1NNje6CbaUFEMFxBmoQ +# tB1VM1izoXBm8qGCAtcwggJAAgEBMIIBAKGB2KSB1TCB0jELMAkGA1UEBhMCVVMx +# EzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoT +# FU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEtMCsGA1UECxMkTWljcm9zb2Z0IElyZWxh +# bmQgT3BlcmF0aW9ucyBMaW1pdGVkMSYwJAYDVQQLEx1UaGFsZXMgVFNTIEVTTjpE +# MDgyLTRCRkQtRUVCQTElMCMGA1UEAxMcTWljcm9zb2Z0IFRpbWUtU3RhbXAgU2Vy +# dmljZaIjCgEBMAcGBSsOAwIaAxUAdqNHe113gCJ87aZIGa5QBUqIwvKggYMwgYCk +# fjB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMH +# UmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYDVQQD +# Ex1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDANBgkqhkiG9w0BAQUFAAIF +# AOi0eZswIhgPMjAyMzA5MjAwMzQ4NDNaGA8yMDIzMDkyMTAzNDg0M1owdzA9Bgor +# BgEEAYRZCgQBMS8wLTAKAgUA6LR5mwIBADAKAgEAAgIL+AIB/zAHAgEAAgIULDAK +# AgUA6LXLGwIBADA2BgorBgEEAYRZCgQCMSgwJjAMBgorBgEEAYRZCgMCoAowCAIB +# AAIDB6EgoQowCAIBAAIDAYagMA0GCSqGSIb3DQEBBQUAA4GBAClyBBu79vwaDEgr +# sDdtLY+7se9ISbk8pveb65oGP9gabWe8mNnqfg1SxEN1eW2I4ihQvT2bQVBGeDi7 +# wVO+vcDBDl/uDAaYT7wKES/l/PJORKyBmUoDGFoLJT7bHa+uqFek2mjsC8RIlpdj +# oVOh5HQksZd5HgNF4K/uv2nUyKuEMYIEDTCCBAkCAQEwgZMwfDELMAkGA1UEBhMC +# VVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNV +# BAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRp +# bWUtU3RhbXAgUENBIDIwMTACEzMAAAG6Hz8Z98F1vXwAAQAAAbowDQYJYIZIAWUD +# BAIBBQCgggFKMBoGCSqGSIb3DQEJAzENBgsqhkiG9w0BCRABBDAvBgkqhkiG9w0B +# CQQxIgQgbjk/IiL8KyUtICVXFblxmt8j6F3g0s6KsH+WJzhAIqAwgfoGCyqGSIb3 +# DQEJEAIvMYHqMIHnMIHkMIG9BCApVb08M25w+tYGWsmlGtp1gy1nPcqWfqgMF3nl +# WYVzBTCBmDCBgKR+MHwxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9u +# MRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRp +# b24xJjAkBgNVBAMTHU1pY3Jvc29mdCBUaW1lLVN0YW1wIFBDQSAyMDEwAhMzAAAB +# uh8/GffBdb18AAEAAAG6MCIEIJ9hCOdmkSHZdWHnjcQBaILiGo+/uNr71agjiWaN +# bF2dMA0GCSqGSIb3DQEBCwUABIICACgD9Dbo/LkUWEGprq7D+RTXofFwwH6qSKeh +# N1y8UNvmYAtF83AuC2amIWELSmnnblZEv1sMvjteyyLsLRuid8la04mjjLUBduUN +# yGhij+4aarTuuVuwf/Ap273AGk1mv3slKF3R7lQnObcO4SEXYYoDeBDY/HI8Pa3g +# 6FkNw18RsDp3Atj0Eun/UZaL+XCNHPJCsLoEK69bz9cxhiEwQfcEhc9kDzKTqjZV +# Yla/8Qh+WoC/0uQz1lEpQvP4vrSVOXw89ZGUicwjRHZ3Oys2IgPu5vrG3BeFZNCO +# q3ieylUYWrOBvIxZQWcHR5tqmwdQDnUHRR6vZNVxqErZ0dLdd824gFoKGUbup0MG +# SdD/k2nffp38SFvsfiDiO6DRwt49LX5ClzxeXt4LFv9GTNq4/9vlInIQoi9BujGg +# 3vJIDEVxEDZzq//guGDkz1ybPLz3/hrSzySBD5YWaVtcqapTPGMxqSOcwjFD9AbY +# 5BYD0o6/0lXAIBQVLCI4elTZToeECLJkkerZA79OU9UJFL6cdrr5s6KENdLQkXIO +# o3M2KywJgUYUVK4v2mSeUzyahW3XW0+i5K03EPAlDi4ONFZZSE5l73er2SziU0go +# a8R5O6oYM6AAPmSBTX/6EpF1vb5fkPfOSI3nBe1TBlovGg3WvWQGn9Ft5B/kSq6F +# MXMUpngZ +# SIG # End signature block diff --git a/Modules/Az.Accounts/2.13.1/FuzzySharp.dll b/Modules/Az.Accounts/2.13.1/FuzzySharp.dll new file mode 100644 index 000000000000..d25fb236c3e9 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/FuzzySharp.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Hyak.Common.dll b/Modules/Az.Accounts/2.13.1/Hyak.Common.dll new file mode 100644 index 000000000000..18a53248894f Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Hyak.Common.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.ApplicationInsights.dll b/Modules/Az.Accounts/2.13.1/Microsoft.ApplicationInsights.dll new file mode 100644 index 000000000000..8ef5eef2989d Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.ApplicationInsights.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.Common.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.Common.dll new file mode 100644 index 000000000000..1c9d8e2a0ef5 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.Common.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.AssemblyLoading.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.AssemblyLoading.dll new file mode 100644 index 000000000000..38f5f8542077 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.AssemblyLoading.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Authentication.Abstractions.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Authentication.Abstractions.dll new file mode 100644 index 000000000000..77cc1c46f5a7 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Authentication.Abstractions.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Authentication.ResourceManager.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Authentication.ResourceManager.dll new file mode 100644 index 000000000000..d8429b2b6881 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Authentication.ResourceManager.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Authentication.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Authentication.dll new file mode 100644 index 000000000000..1503a5b6d3ac Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Authentication.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.AuthenticationAssemblyLoadContext.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.AuthenticationAssemblyLoadContext.dll new file mode 100644 index 000000000000..acc0eb23524f Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.AuthenticationAssemblyLoadContext.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Authenticators.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Authenticators.dll new file mode 100644 index 000000000000..1d35ab395d17 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Authenticators.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Aks.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Aks.dll new file mode 100644 index 000000000000..3ab15df83c30 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Aks.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Authorization.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Authorization.dll new file mode 100644 index 000000000000..4b6131e2a0f6 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Authorization.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Compute.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Compute.dll new file mode 100644 index 000000000000..b5c2285f8237 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Compute.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Graph.Rbac.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Graph.Rbac.dll new file mode 100644 index 000000000000..afd56a7b9208 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Graph.Rbac.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.KeyVault.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.KeyVault.dll new file mode 100644 index 000000000000..b6838bea7093 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.KeyVault.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Monitor.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Monitor.dll new file mode 100644 index 000000000000..d28204acd31a Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Monitor.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Network.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Network.dll new file mode 100644 index 000000000000..b35c96f4c5cb Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Network.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.PolicyInsights.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.PolicyInsights.dll new file mode 100644 index 000000000000..3a37aeb3a3d5 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.PolicyInsights.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.ResourceManager.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.ResourceManager.dll new file mode 100644 index 000000000000..6b3270044fbc Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.ResourceManager.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Storage.Management.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Storage.Management.dll new file mode 100644 index 000000000000..eaa53e5a4ac9 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Storage.Management.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Websites.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Websites.dll new file mode 100644 index 000000000000..947ac62a5ac0 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Clients.Websites.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Cmdlets.Accounts.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Cmdlets.Accounts.dll new file mode 100644 index 000000000000..f2f380543ee1 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Cmdlets.Accounts.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Cmdlets.Accounts.dll-Help.xml b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Cmdlets.Accounts.dll-Help.xml new file mode 100644 index 000000000000..07d9948aca17 --- /dev/null +++ b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Cmdlets.Accounts.dll-Help.xml @@ -0,0 +1,13631 @@ + + + + + Add-AzEnvironment + Add + AzEnvironment + + Adds endpoints and metadata for an instance of Azure Resource Manager. + + + + The Add-AzEnvironment cmdlet adds endpoints and metadata to enable Azure Resource Manager cmdlets to connect with a new instance of Azure Resource Manager. The built-in environments AzureCloud and AzureChinaCloud target existing public instances of Azure Resource Manager. + + + + Add-AzEnvironment + + Name + + Specifies the name of the environment to add. + + System.String + + System.String + + + None + + + PublishSettingsFileUrl + + Specifies the URL from which .publishsettings files can be downloaded. + + System.String + + System.String + + + None + + + AzureKeyVaultDnsSuffix + + Dns suffix of Azure Key Vault service. Example is vault-int.azure-int.net + + System.String + + System.String + + + None + + + AzureKeyVaultServiceEndpointResourceId + + Resource identifier of Azure Key Vault data service that is the recipient of the requested token. + + System.String + + System.String + + + None + + + TrafficManagerDnsSuffix + + Specifies the domain-name suffix for Azure Traffic Manager services. + + System.String + + System.String + + + None + + + SqlDatabaseDnsSuffix + + Specifies the domain-name suffix for Azure SQL Database servers. + + System.String + + System.String + + + None + + + AzureDataLakeStoreFileSystemEndpointSuffix + + Dns Suffix of Azure Data Lake Store FileSystem. Example: azuredatalake.net + + System.String + + System.String + + + None + + + AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix + + Dns Suffix of Azure Data Lake Analytics job and catalog services + + System.String + + System.String + + + None + + + EnableAdfsAuthentication + + Indicates that Active Directory Federation Services (ADFS) on-premise authentication is allowed. + + + System.Management.Automation.SwitchParameter + + + False + + + AdTenant + + Specifies the default Active Directory tenant. + + System.String + + System.String + + + None + + + GraphAudience + + The audience for tokens authenticating with the AD Graph Endpoint. + + System.String + + System.String + + + None + + + DataLakeAudience + + The audience for tokens authenticating with the AD Data Lake services Endpoint. + + System.String + + System.String + + + None + + + ServiceEndpoint + + Specifies the endpoint for Service Management (RDFE) requests. + + System.String + + System.String + + + None + + + BatchEndpointResourceId + + The resource identifier of the Azure Batch service that is the recipient of the requested token + + System.String + + System.String + + + None + + + AzureOperationalInsightsEndpointResourceId + + The audience for tokens authenticating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureOperationalInsightsEndpoint + + The endpoint to use when communicating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + ManagementPortalUrl + + Specifies the URL for the Management Portal. + + System.String + + System.String + + + None + + + StorageEndpoint + + Specifies the endpoint for storage (blob, table, queue, and file) access. + + System.String + + System.String + + + None + + + ActiveDirectoryEndpoint + + Specifies the base authority for Azure Active Directory authentication. + + System.String + + System.String + + + None + + + ResourceManagerEndpoint + + Specifies the URL for Azure Resource Manager requests. + + System.String + + System.String + + + None + + + GalleryEndpoint + + Specifies the endpoint for the Azure Resource Manager gallery of deployment templates. The parameter is to set the value to `GalleryUrl` of `PSAzureEnvironment`. As `GalleryUrl` is removed from ArmMetadata, Azure PowerShell will no longer provide for the value and so it is not recommended to set `GalleryEndpoint` anymore. + + System.String + + System.String + + + None + + + ActiveDirectoryServiceEndpointResourceId + + Specifies the audience for tokens that authenticate requests to Azure Resource Manager or Service Management (RDFE) endpoints. + + System.String + + System.String + + + None + + + GraphEndpoint + + Specifies the URL for Graph (Active Directory metadata) requests. + + System.String + + System.String + + + None + + + AzureAnalysisServicesEndpointResourceId + + The resource identifier of the Azure Analysis Services resource. + + System.String + + System.String + + + None + + + AzureAnalysisServicesEndpointSuffix + + The endpoint to use when communicating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureAttestationServiceEndpointResourceId + + The The resource identifier of the Azure Attestation service that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureAttestationServiceEndpointSuffix + + Dns suffix of Azure Attestation service. + + System.String + + System.String + + + None + + + AzureSynapseAnalyticsEndpointResourceId + + The The resource identifier of the Azure Synapse Analytics that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureSynapseAnalyticsEndpointSuffix + + Dns suffix of Azure Synapse Analytics. + + System.String + + System.String + + + None + + + ContainerRegistryEndpointSuffix + + Suffix of Azure Container Registry. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + MicrosoftGraphEndpointResourceId + + The resource identifier of Microsoft Graph + + System.String + + System.String + + + None + + + MicrosoftGraphUrl + + Microsoft Graph Url + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Add-AzEnvironment + + Name + + Specifies the name of the environment to add. + + System.String + + System.String + + + None + + + ARMEndpoint + + The Azure Resource Manager endpoint + + System.String + + System.String + + + None + + + AzureKeyVaultDnsSuffix + + Dns suffix of Azure Key Vault service. Example is vault-int.azure-int.net + + System.String + + System.String + + + None + + + AzureKeyVaultServiceEndpointResourceId + + Resource identifier of Azure Key Vault data service that is the recipient of the requested token. + + System.String + + System.String + + + None + + + DataLakeAudience + + The audience for tokens authenticating with the AD Data Lake services Endpoint. + + System.String + + System.String + + + None + + + BatchEndpointResourceId + + The resource identifier of the Azure Batch service that is the recipient of the requested token + + System.String + + System.String + + + None + + + AzureOperationalInsightsEndpointResourceId + + The audience for tokens authenticating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureOperationalInsightsEndpoint + + The endpoint to use when communicating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + StorageEndpoint + + Specifies the endpoint for storage (blob, table, queue, and file) access. + + System.String + + System.String + + + None + + + AzureAnalysisServicesEndpointResourceId + + The resource identifier of the Azure Analysis Services resource. + + System.String + + System.String + + + None + + + AzureAnalysisServicesEndpointSuffix + + The endpoint to use when communicating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureAttestationServiceEndpointResourceId + + The The resource identifier of the Azure Attestation service that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureAttestationServiceEndpointSuffix + + Dns suffix of Azure Attestation service. + + System.String + + System.String + + + None + + + AzureSynapseAnalyticsEndpointResourceId + + The The resource identifier of the Azure Synapse Analytics that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureSynapseAnalyticsEndpointSuffix + + Dns suffix of Azure Synapse Analytics. + + System.String + + System.String + + + None + + + ContainerRegistryEndpointSuffix + + Suffix of Azure Container Registry. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Add-AzEnvironment + + AutoDiscover + + Discovers environments via default or configured endpoint. + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Uri + + Specifies URI of the internet resource to fetch environments. + + System.Uri + + System.Uri + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ActiveDirectoryEndpoint + + Specifies the base authority for Azure Active Directory authentication. + + System.String + + System.String + + + None + + + ActiveDirectoryServiceEndpointResourceId + + Specifies the audience for tokens that authenticate requests to Azure Resource Manager or Service Management (RDFE) endpoints. + + System.String + + System.String + + + None + + + AdTenant + + Specifies the default Active Directory tenant. + + System.String + + System.String + + + None + + + ARMEndpoint + + The Azure Resource Manager endpoint + + System.String + + System.String + + + None + + + AutoDiscover + + Discovers environments via default or configured endpoint. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + AzureAnalysisServicesEndpointResourceId + + The resource identifier of the Azure Analysis Services resource. + + System.String + + System.String + + + None + + + AzureAnalysisServicesEndpointSuffix + + The endpoint to use when communicating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureAttestationServiceEndpointResourceId + + The The resource identifier of the Azure Attestation service that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureAttestationServiceEndpointSuffix + + Dns suffix of Azure Attestation service. + + System.String + + System.String + + + None + + + AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix + + Dns Suffix of Azure Data Lake Analytics job and catalog services + + System.String + + System.String + + + None + + + AzureDataLakeStoreFileSystemEndpointSuffix + + Dns Suffix of Azure Data Lake Store FileSystem. Example: azuredatalake.net + + System.String + + System.String + + + None + + + AzureKeyVaultDnsSuffix + + Dns suffix of Azure Key Vault service. Example is vault-int.azure-int.net + + System.String + + System.String + + + None + + + AzureKeyVaultServiceEndpointResourceId + + Resource identifier of Azure Key Vault data service that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureOperationalInsightsEndpoint + + The endpoint to use when communicating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureOperationalInsightsEndpointResourceId + + The audience for tokens authenticating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureSynapseAnalyticsEndpointResourceId + + The The resource identifier of the Azure Synapse Analytics that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureSynapseAnalyticsEndpointSuffix + + Dns suffix of Azure Synapse Analytics. + + System.String + + System.String + + + None + + + BatchEndpointResourceId + + The resource identifier of the Azure Batch service that is the recipient of the requested token + + System.String + + System.String + + + None + + + ContainerRegistryEndpointSuffix + + Suffix of Azure Container Registry. + + System.String + + System.String + + + None + + + DataLakeAudience + + The audience for tokens authenticating with the AD Data Lake services Endpoint. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableAdfsAuthentication + + Indicates that Active Directory Federation Services (ADFS) on-premise authentication is allowed. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + GalleryEndpoint + + Specifies the endpoint for the Azure Resource Manager gallery of deployment templates. The parameter is to set the value to `GalleryUrl` of `PSAzureEnvironment`. As `GalleryUrl` is removed from ArmMetadata, Azure PowerShell will no longer provide for the value and so it is not recommended to set `GalleryEndpoint` anymore. + + System.String + + System.String + + + None + + + GraphAudience + + The audience for tokens authenticating with the AD Graph Endpoint. + + System.String + + System.String + + + None + + + GraphEndpoint + + Specifies the URL for Graph (Active Directory metadata) requests. + + System.String + + System.String + + + None + + + ManagementPortalUrl + + Specifies the URL for the Management Portal. + + System.String + + System.String + + + None + + + MicrosoftGraphEndpointResourceId + + The resource identifier of Microsoft Graph + + System.String + + System.String + + + None + + + MicrosoftGraphUrl + + Microsoft Graph Url + + System.String + + System.String + + + None + + + Name + + Specifies the name of the environment to add. + + System.String + + System.String + + + None + + + PublishSettingsFileUrl + + Specifies the URL from which .publishsettings files can be downloaded. + + System.String + + System.String + + + None + + + ResourceManagerEndpoint + + Specifies the URL for Azure Resource Manager requests. + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + ServiceEndpoint + + Specifies the endpoint for Service Management (RDFE) requests. + + System.String + + System.String + + + None + + + SqlDatabaseDnsSuffix + + Specifies the domain-name suffix for Azure SQL Database servers. + + System.String + + System.String + + + None + + + StorageEndpoint + + Specifies the endpoint for storage (blob, table, queue, and file) access. + + System.String + + System.String + + + None + + + TrafficManagerDnsSuffix + + Specifies the domain-name suffix for Azure Traffic Manager services. + + System.String + + System.String + + + None + + + Uri + + Specifies URI of the internet resource to fetch environments. + + System.Uri + + System.Uri + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + System.Management.Automation.SwitchParameter + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureEnvironment + + + + + + + + + + + + + + ----- Example 1: Creating and modifying a new environment ----- + Add-AzEnvironment -Name TestEnvironment ` + -ActiveDirectoryEndpoint TestADEndpoint ` + -ActiveDirectoryServiceEndpointResourceId TestADApplicationId ` + -ResourceManagerEndpoint TestRMEndpoint ` + -GalleryEndpoint TestGalleryEndpoint ` + -GraphEndpoint TestGraphEndpoint + +Name Resource Manager Url ActiveDirectory Authority +---- -------------------- ------------------------- +TestEnvironment TestRMEndpoint TestADEndpoint/ + +Set-AzEnvironment -Name TestEnvironment ` + -ActiveDirectoryEndpoint NewTestADEndpoint ` + -GraphEndpoint NewTestGraphEndpoint | Format-List + +Name : TestEnvironment +EnableAdfsAuthentication : False +OnPremise : False +ActiveDirectoryServiceEndpointResourceId : TestADApplicationId +AdTenant : +GalleryUrl : TestGalleryEndpoint +ManagementPortalUrl : +ServiceManagementUrl : +PublishSettingsFileUrl : +ResourceManagerUrl : TestRMEndpoint +SqlDatabaseDnsSuffix : +StorageEndpointSuffix : +ActiveDirectoryAuthority : NewTestADEndpoint +GraphUrl : NewTestGraphEndpoint +GraphEndpointResourceId : +TrafficManagerDnsSuffix : +AzureKeyVaultDnsSuffix : +DataLakeEndpointResourceId : +AzureDataLakeStoreFileSystemEndpointSuffix : +AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix : +AzureKeyVaultServiceEndpointResourceId : +AzureOperationalInsightsEndpointResourceId : +AzureOperationalInsightsEndpoint : +AzureAnalysisServicesEndpointSuffix : +AzureAttestationServiceEndpointSuffix : +AzureAttestationServiceEndpointResourceId : +AzureSynapseAnalyticsEndpointSuffix : +AzureSynapseAnalyticsEndpointResourceId : +VersionProfiles : {} +ExtendedProperties : {} +BatchEndpointResourceId : + + In this example we are creating a new Azure environment with sample endpoints using Add-AzEnvironment, and then we are changing the value of the ActiveDirectoryEndpoint and GraphEndpoint attributes of the created environment using the cmdlet Set-AzEnvironment. + + + + + + ------- Example 2: Discovering a new environment via Uri ------- + <# +Uri https://configuredmetadata.net returns an array of environment metadata. The following example contains a payload for the AzureCloud default environment. + +[ + { + "portal": "https://portal.azure.com", + "authentication": { + "loginEndpoint": "https://login.microsoftonline.com/", + "audiences": [ + "https://management.core.windows.net/" + ], + "tenant": "common", + "identityProvider": "AAD" + }, + "media": "https://rest.media.azure.net", + "graphAudience": "https://graph.windows.net/", + "graph": "https://graph.windows.net/", + "name": "AzureCloud", + "suffixes": { + "azureDataLakeStoreFileSystem": "azuredatalakestore.net", + "acrLoginServer": "azurecr.io", + "sqlServerHostname": ".database.windows.net", + "azureDataLakeAnalyticsCatalogAndJob": "azuredatalakeanalytics.net", + "keyVaultDns": "vault.azure.net", + "storage": "core.windows.net", + "azureFrontDoorEndpointSuffix": "azurefd.net" + }, + "batch": "https://batch.core.windows.net/", + "resourceManager": "https://management.azure.com/", + "vmImageAliasDoc": "https://raw.githubusercontent.com/Azure/azure-rest-api-specs/master/arm-compute/quickstart-templates/aliases.json", + "activeDirectoryDataLake": "https://datalake.azure.net/", + "sqlManagement": "https://management.core.windows.net:8443/", + "gallery": "https://gallery.azure.com/" + }, +…… +] +#> + +Add-AzEnvironment -AutoDiscover -Uri https://configuredmetadata.net + +Name Resource Manager Url ActiveDirectory Authority +---- -------------------- ------------------------- +TestEnvironment TestRMEndpoint TestADEndpoint/ + + In this example, we are discovering a new Azure environment from the `https://configuredmetadata.net` Uri. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/add-azenvironment + + + Get-AzEnvironment + + + + Remove-AzEnvironment + + + + Set-AzEnvironment + + + + + + + Clear-AzConfig + Clear + AzConfig + + Clears the values of configs that are set by the user. + + + + Clears the values of configs that are set by the user. By default all the configs will be cleared. You can also specify keys of configs to clear. + + + + Clear-AzConfig + + AppliesTo + + Specifies what part of Azure PowerShell the config applies to. Possible values are: - "Az": the config applies to all modules and cmdlets of Azure PowerShell. + - Module name: the config applies to a certain module of Azure PowerShell. + For example, "Az.Storage". - Cmdlet name: the config applies to a certain cmdlet of Azure PowerShell. For example, "Get-AzKeyVault". If not specified, when getting or clearing configs, it defaults to all the above; when updating, it defaults to "Az". + + System.String + + System.String + + + None + + + CheckForUpgrade + + When enabled, Azure PowerShell will check for updates automatically and display a hint message when an update is available. The default value will be changed from false to true in Az version 11.0.0. + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSubscriptionForLogin + + Subscription name or GUID. Sets the default context for Azure PowerShell when logging in without specifying a subscription. + + + System.Management.Automation.SwitchParameter + + + False + + + DisableErrorRecordsPersistence + + When disabled, error records will not be written to ~/.Azure/ErrorRecords. This config will be replaced by "EnableErrorRecordsPersistence" as opt-in in the next major release of Az around November 2023. + + + System.Management.Automation.SwitchParameter + + + False + + + DisplayBreakingChangeWarning + + Controls if warning messages for breaking changes are displayed or suppressed. When enabled, a breaking change warning is displayed when executing cmdlets with breaking changes in a future release. + + + System.Management.Automation.SwitchParameter + + + False + + + DisplayRegionIdentified + + When enabled, Azure PowerShell displays recommendations on regions which may reduce your costs. + + + System.Management.Automation.SwitchParameter + + + False + + + DisplaySurveyMessage + + When enabled, you are prompted infrequently to participate in user experience surveys for Azure PowerShell. + + + System.Management.Automation.SwitchParameter + + + False + + + EnableDataCollection + + When enabled, Azure PowerShell cmdlets send telemetry data to Microsoft to improve the customer experience. For more information, see our privacy statement: https://aka.ms/privacy + + + System.Management.Automation.SwitchParameter + + + False + + + EnableLoginByWam + + [Preview] When enabled, Web Account Manager (WAM) will be the default interactive login experience. It will fall back to using the browser if the platform does not support WAM. Note that this feature is under preview. Microsoft Account (MSA) is currently not supported. Feel free to reach out to Azure PowerShell team if you have any feedbacks: https://aka.ms/azpsissue + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Returns true if cmdlet executes correctly. + + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of config changes, for example, whether changes apply only to the current process, or to all sessions started by this user. By default it is CurrentUser. + + + CurrentUser + Process + Default + Environment + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Clear-AzConfig + + AppliesTo + + Specifies what part of Azure PowerShell the config applies to. Possible values are: - "Az": the config applies to all modules and cmdlets of Azure PowerShell. + - Module name: the config applies to a certain module of Azure PowerShell. + For example, "Az.Storage". - Cmdlet name: the config applies to a certain cmdlet of Azure PowerShell. For example, "Get-AzKeyVault". If not specified, when getting or clearing configs, it defaults to all the above; when updating, it defaults to "Az". + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Do not ask for confirmation when clearing all configs. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Returns true if cmdlet executes correctly. + + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of config changes, for example, whether changes apply only to the current process, or to all sessions started by this user. By default it is CurrentUser. + + + CurrentUser + Process + Default + Environment + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AppliesTo + + Specifies what part of Azure PowerShell the config applies to. Possible values are: - "Az": the config applies to all modules and cmdlets of Azure PowerShell. + - Module name: the config applies to a certain module of Azure PowerShell. + For example, "Az.Storage". - Cmdlet name: the config applies to a certain cmdlet of Azure PowerShell. For example, "Get-AzKeyVault". If not specified, when getting or clearing configs, it defaults to all the above; when updating, it defaults to "Az". + + System.String + + System.String + + + None + + + CheckForUpgrade + + When enabled, Azure PowerShell will check for updates automatically and display a hint message when an update is available. The default value will be changed from false to true in Az version 11.0.0. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSubscriptionForLogin + + Subscription name or GUID. Sets the default context for Azure PowerShell when logging in without specifying a subscription. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DisableErrorRecordsPersistence + + When disabled, error records will not be written to ~/.Azure/ErrorRecords. This config will be replaced by "EnableErrorRecordsPersistence" as opt-in in the next major release of Az around November 2023. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DisplayBreakingChangeWarning + + Controls if warning messages for breaking changes are displayed or suppressed. When enabled, a breaking change warning is displayed when executing cmdlets with breaking changes in a future release. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DisplayRegionIdentified + + When enabled, Azure PowerShell displays recommendations on regions which may reduce your costs. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DisplaySurveyMessage + + When enabled, you are prompted infrequently to participate in user experience surveys for Azure PowerShell. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + EnableDataCollection + + When enabled, Azure PowerShell cmdlets send telemetry data to Microsoft to improve the customer experience. For more information, see our privacy statement: https://aka.ms/privacy + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + EnableLoginByWam + + [Preview] When enabled, Web Account Manager (WAM) will be the default interactive login experience. It will fall back to using the browser if the platform does not support WAM. Note that this feature is under preview. Microsoft Account (MSA) is currently not supported. Feel free to reach out to Azure PowerShell team if you have any feedbacks: https://aka.ms/azpsissue + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Force + + Do not ask for confirmation when clearing all configs. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Returns true if cmdlet executes correctly. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of config changes, for example, whether changes apply only to the current process, or to all sessions started by this user. By default it is CurrentUser. + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Clear-AzConfig -Force + + Clear all the configs. `-Force` suppresses the prompt for confirmation. + + + + + + -------------------------- Example 2 -------------------------- + Clear-AzConfig -EnableDataCollection + + Clear the "EnableDataCollection" config. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/clear-azconfig + + + + + + Clear-AzContext + Clear + AzContext + + Remove all Azure credentials, account, and subscription information. + + + + Remove all Azure Credentials, account, and subscription information. + + + + Clear-AzContext + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Delete all users and groups from the global scope without prompting + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Return a value indicating success or failure + + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Clear the context only for the current PowerShell session, or for all sessions. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Delete all users and groups from the global scope without prompting + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Return a value indicating success or failure + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Clear the context only for the current PowerShell session, or for all sessions. + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + --------------- Example 1: Clear global context --------------- + Clear-AzContext -Scope CurrentUser + + Remove all account, subscription, and credential information for any powershell session. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/clear-azcontext + + + + + + Clear-AzDefault + Clear + AzDefault + + Clears the defaults set by the user in the current context. + + + + The Clear-AzDefault cmdlet removes the defaults set by the user depending on the switch parameters specified by the user. + + + + Clear-AzDefault + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Remove all defaults if no default is specified + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + {{Fill PassThru Description}} + + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroup + + Clear Default Resource Group + + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Remove all defaults if no default is specified + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + {{Fill PassThru Description}} + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroup + + Clear Default Resource Group + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.Management.Automation.SwitchParameter + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Clear-AzDefault + + This command removes all the defaults set by the user in the current context. + + + + + + -------------------------- Example 2 -------------------------- + Clear-AzDefault -ResourceGroup + + This command removes the default resource group set by the user in the current context. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/clear-azdefault + + + + + + Connect-AzAccount + Connect + AzAccount + + Connect to Azure with an authenticated account for use with cmdlets from the Az PowerShell modules. + + + + The `Connect-AzAccount` cmdlet connects to Azure with an authenticated account for use with cmdlets from the Az PowerShell modules. You can use this authenticated account only with Azure Resource Manager requests. To add an authenticated account for use with Service Management, use the `Add-AzureAccount` cmdlet from the Azure PowerShell module. If no context is found for the current user, the user's context list is populated with a context for each of their first 25 subscriptions. The list of contexts created for the user can be found by running `Get-AzContext -ListAvailable`. To skip this context population, specify the SkipContextPopulation switch parameter. After executing this cmdlet, you can disconnect from an Azure account using `Disconnect-AzAccount`. + + + + Connect-AzAccount + + AccessToken + + Specifies an access token. + > [!CAUTION] > Access tokens are a type of credential. You should take the appropriate security precautions to > keep them confidential. Access tokens also timeout and may prevent long running tasks from > completing. + + System.String + + System.String + + + None + + + AccountId + + Account Id / User Id / User Name to login with in Default (UserWithSubscriptionId) parameter set; Account ID for access token in AccessToken parameter set; Account ID for managed service in ManagedService parameter set. Can be a managed service resource ID, or the associated client ID. To use the system assigned identity, leave this field blank. + + System.String + + System.String + + + None + + + ContextName + + Name of the default Azure context for this login. For more information about Azure contexts, see Azure PowerShell context objects (/powershell/azure/context-persistence). + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Environment + + Environment containing the Azure account. + + System.String + + System.String + + + None + + + Force + + Overwrite the existing context with the same name without prompting. + + + System.Management.Automation.SwitchParameter + + + False + + + GraphAccessToken + + AccessToken for Graph Service. + + System.String + + System.String + + + None + + + KeyVaultAccessToken + + AccessToken for KeyVault Service. + + System.String + + System.String + + + None + + + MaxContextPopulation + + Max subscription number to populate contexts after login. Default is 25. To populate all subscriptions to contexts, set to -1. + + System.Int32 + + System.Int32 + + + None + + + MicrosoftGraphAccessToken + + Access token to Microsoft Graph + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + SkipContextPopulation + + Skips context population if no contexts are found. + + + System.Management.Automation.SwitchParameter + + + False + + + SkipValidation + + Skip validation for access token. + + + System.Management.Automation.SwitchParameter + + + False + + + Subscription + + Subscription Name or ID. + + System.String + + System.String + + + None + + + Tenant + + Optional tenant name or ID. + > [!NOTE] > Due to limitations of the current API, you must use a tenant ID instead of a tenant name when > connecting with a business-to-business (B2B) account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Connect-AzAccount + + AccountId + + Account Id / User Id / User Name to login with in Default (UserWithSubscriptionId) parameter set; Account ID for access token in AccessToken parameter set; Account ID for managed service in ManagedService parameter set. Can be a managed service resource ID, or the associated client ID. To use the system assigned identity, leave this field blank. + + System.String + + System.String + + + None + + + AuthScope + + Optional OAuth scope for login, supported pre-defined values: AadGraph, AnalysisServices, Attestation, Batch, DataLake, KeyVault, OperationalInsights, Storage, Synapse. It also supports resource id like `https://storage.azure.com/`. + + System.String + + System.String + + + None + + + ContextName + + Name of the default Azure context for this login. For more information about Azure contexts, see Azure PowerShell context objects (/powershell/azure/context-persistence). + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Environment + + Environment containing the Azure account. + + System.String + + System.String + + + None + + + Force + + Overwrite the existing context with the same name without prompting. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxContextPopulation + + Max subscription number to populate contexts after login. Default is 25. To populate all subscriptions to contexts, set to -1. + + System.Int32 + + System.Int32 + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + SkipContextPopulation + + Skips context population if no contexts are found. + + + System.Management.Automation.SwitchParameter + + + False + + + Subscription + + Subscription Name or ID. + + System.String + + System.String + + + None + + + Tenant + + Optional tenant name or ID. + > [!NOTE] > Due to limitations of the current API, you must use a tenant ID instead of a tenant name when > connecting with a business-to-business (B2B) account. + + System.String + + System.String + + + None + + + UseDeviceAuthentication + + Use device code authentication instead of a browser control. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Connect-AzAccount + + AccountId + + Account Id / User Id / User Name to login with in Default (UserWithSubscriptionId) parameter set; Account ID for access token in AccessToken parameter set; Account ID for managed service in ManagedService parameter set. Can be a managed service resource ID, or the associated client ID. To use the system assigned identity, leave this field blank. + + System.String + + System.String + + + None + + + AuthScope + + Optional OAuth scope for login, supported pre-defined values: AadGraph, AnalysisServices, Attestation, Batch, DataLake, KeyVault, OperationalInsights, Storage, Synapse. It also supports resource id like `https://storage.azure.com/`. + + System.String + + System.String + + + None + + + ContextName + + Name of the default Azure context for this login. For more information about Azure contexts, see Azure PowerShell context objects (/powershell/azure/context-persistence). + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Environment + + Environment containing the Azure account. + + System.String + + System.String + + + None + + + Force + + Overwrite the existing context with the same name without prompting. + + + System.Management.Automation.SwitchParameter + + + False + + + Identity + + Login using a Managed Service Identity. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxContextPopulation + + Max subscription number to populate contexts after login. Default is 25. To populate all subscriptions to contexts, set to -1. + + System.Int32 + + System.Int32 + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + SkipContextPopulation + + Skips context population if no contexts are found. + + + System.Management.Automation.SwitchParameter + + + False + + + Subscription + + Subscription Name or ID. + + System.String + + System.String + + + None + + + Tenant + + Optional tenant name or ID. + > [!NOTE] > Due to limitations of the current API, you must use a tenant ID instead of a tenant name when > connecting with a business-to-business (B2B) account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Connect-AzAccount + + ApplicationId + + Application ID of the service principal. + + System.String + + System.String + + + None + + + AuthScope + + Optional OAuth scope for login, supported pre-defined values: AadGraph, AnalysisServices, Attestation, Batch, DataLake, KeyVault, OperationalInsights, Storage, Synapse. It also supports resource id like `https://storage.azure.com/`. + + System.String + + System.String + + + None + + + CertificateThumbprint + + Certificate Hash or Thumbprint. + + System.String + + System.String + + + None + + + ContextName + + Name of the default Azure context for this login. For more information about Azure contexts, see Azure PowerShell context objects (/powershell/azure/context-persistence). + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Environment + + Environment containing the Azure account. + + System.String + + System.String + + + None + + + Force + + Overwrite the existing context with the same name without prompting. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxContextPopulation + + Max subscription number to populate contexts after login. Default is 25. To populate all subscriptions to contexts, set to -1. + + System.Int32 + + System.Int32 + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + SendCertificateChain + + Specifies if the x5c claim (public key of the certificate) should be sent to the STS to achieve easy certificate rollover in Azure AD. + + + System.Management.Automation.SwitchParameter + + + False + + + ServicePrincipal + + Indicates that this account authenticates by providing service principal credentials. + + + System.Management.Automation.SwitchParameter + + + False + + + SkipContextPopulation + + Skips context population if no contexts are found. + + + System.Management.Automation.SwitchParameter + + + False + + + Subscription + + Subscription Name or ID. + + System.String + + System.String + + + None + + + Tenant + + Optional tenant name or ID. + > [!NOTE] > Due to limitations of the current API, you must use a tenant ID instead of a tenant name when > connecting with a business-to-business (B2B) account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Connect-AzAccount + + ApplicationId + + Application ID of the service principal. + + System.String + + System.String + + + None + + + ContextName + + Name of the default Azure context for this login. For more information about Azure contexts, see Azure PowerShell context objects (/powershell/azure/context-persistence). + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Environment + + Environment containing the Azure account. + + System.String + + System.String + + + None + + + FederatedToken + + Specifies a token provided by another identity provider. The issuer and subject in this token must be first configured to be trusted by the ApplicationId. + > [!CAUTION] > Federated tokens are a type of credential. You should take the appropriate security precautions to keep them confidential. Federated tokens also timeout and may prevent long running tasks from completing. + + System.String + + System.String + + + None + + + Force + + Overwrite the existing context with the same name without prompting. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxContextPopulation + + Max subscription number to populate contexts after login. Default is 25. To populate all subscriptions to contexts, set to -1. + + System.Int32 + + System.Int32 + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + ServicePrincipal + + Indicates that this account authenticates by providing service principal credentials. + + + System.Management.Automation.SwitchParameter + + + False + + + SkipContextPopulation + + Skips context population if no contexts are found. + + + System.Management.Automation.SwitchParameter + + + False + + + Subscription + + Subscription Name or ID. + + System.String + + System.String + + + None + + + Tenant + + Optional tenant name or ID. + > [!NOTE] > Due to limitations of the current API, you must use a tenant ID instead of a tenant name when > connecting with a business-to-business (B2B) account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Connect-AzAccount + + ApplicationId + + Application ID of the service principal. + + System.String + + System.String + + + None + + + CertificatePassword + + The password required to access the pkcs#12 certificate file. + + System.Security.SecureString + + System.Security.SecureString + + + None + + + CertificatePath + + The path of certficate file in pkcs#12 format. + + System.String + + System.String + + + None + + + ContextName + + Name of the default Azure context for this login. For more information about Azure contexts, see Azure PowerShell context objects (/powershell/azure/context-persistence). + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Environment + + Environment containing the Azure account. + + System.String + + System.String + + + None + + + Force + + Overwrite the existing context with the same name without prompting. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxContextPopulation + + Max subscription number to populate contexts after login. Default is 25. To populate all subscriptions to contexts, set to -1. + + System.Int32 + + System.Int32 + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + SendCertificateChain + + Specifies if the x5c claim (public key of the certificate) should be sent to the STS to achieve easy certificate rollover in Azure AD. + + + System.Management.Automation.SwitchParameter + + + False + + + ServicePrincipal + + Indicates that this account authenticates by providing service principal credentials. + + + System.Management.Automation.SwitchParameter + + + False + + + SkipContextPopulation + + Skips context population if no contexts are found. + + + System.Management.Automation.SwitchParameter + + + False + + + Subscription + + Subscription Name or ID. + + System.String + + System.String + + + None + + + Tenant + + Optional tenant name or ID. + > [!NOTE] > Due to limitations of the current API, you must use a tenant ID instead of a tenant name when > connecting with a business-to-business (B2B) account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Connect-AzAccount + + AuthScope + + Optional OAuth scope for login, supported pre-defined values: AadGraph, AnalysisServices, Attestation, Batch, DataLake, KeyVault, OperationalInsights, Storage, Synapse. It also supports resource id like `https://storage.azure.com/`. + + System.String + + System.String + + + None + + + ContextName + + Name of the default Azure context for this login. For more information about Azure contexts, see Azure PowerShell context objects (/powershell/azure/context-persistence). + + System.String + + System.String + + + None + + + Credential + + Specifies a PSCredential object. For more information about the PSCredential object, type `Get-Help Get-Credential`. The PSCredential object provides the user ID and password for organizational ID credentials, or the application ID and secret for service principal credentials. + + System.Management.Automation.PSCredential + + System.Management.Automation.PSCredential + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Environment + + Environment containing the Azure account. + + System.String + + System.String + + + None + + + Force + + Overwrite the existing context with the same name without prompting. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxContextPopulation + + Max subscription number to populate contexts after login. Default is 25. To populate all subscriptions to contexts, set to -1. + + System.Int32 + + System.Int32 + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + ServicePrincipal + + Indicates that this account authenticates by providing service principal credentials. + + + System.Management.Automation.SwitchParameter + + + False + + + SkipContextPopulation + + Skips context population if no contexts are found. + + + System.Management.Automation.SwitchParameter + + + False + + + Subscription + + Subscription Name or ID. + + System.String + + System.String + + + None + + + Tenant + + Optional tenant name or ID. + > [!NOTE] > Due to limitations of the current API, you must use a tenant ID instead of a tenant name when > connecting with a business-to-business (B2B) account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Connect-AzAccount + + AuthScope + + Optional OAuth scope for login, supported pre-defined values: AadGraph, AnalysisServices, Attestation, Batch, DataLake, KeyVault, OperationalInsights, Storage, Synapse. It also supports resource id like `https://storage.azure.com/`. + + System.String + + System.String + + + None + + + ContextName + + Name of the default Azure context for this login. For more information about Azure contexts, see Azure PowerShell context objects (/powershell/azure/context-persistence). + + System.String + + System.String + + + None + + + Credential + + Specifies a PSCredential object. For more information about the PSCredential object, type `Get-Help Get-Credential`. The PSCredential object provides the user ID and password for organizational ID credentials, or the application ID and secret for service principal credentials. + + System.Management.Automation.PSCredential + + System.Management.Automation.PSCredential + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Environment + + Environment containing the Azure account. + + System.String + + System.String + + + None + + + Force + + Overwrite the existing context with the same name without prompting. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxContextPopulation + + Max subscription number to populate contexts after login. Default is 25. To populate all subscriptions to contexts, set to -1. + + System.Int32 + + System.Int32 + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + SkipContextPopulation + + Skips context population if no contexts are found. + + + System.Management.Automation.SwitchParameter + + + False + + + Subscription + + Subscription Name or ID. + + System.String + + System.String + + + None + + + Tenant + + Optional tenant name or ID. + > [!NOTE] > Due to limitations of the current API, you must use a tenant ID instead of a tenant name when > connecting with a business-to-business (B2B) account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AccessToken + + Specifies an access token. + > [!CAUTION] > Access tokens are a type of credential. You should take the appropriate security precautions to > keep them confidential. Access tokens also timeout and may prevent long running tasks from > completing. + + System.String + + System.String + + + None + + + AccountId + + Account Id / User Id / User Name to login with in Default (UserWithSubscriptionId) parameter set; Account ID for access token in AccessToken parameter set; Account ID for managed service in ManagedService parameter set. Can be a managed service resource ID, or the associated client ID. To use the system assigned identity, leave this field blank. + + System.String + + System.String + + + None + + + ApplicationId + + Application ID of the service principal. + + System.String + + System.String + + + None + + + AuthScope + + Optional OAuth scope for login, supported pre-defined values: AadGraph, AnalysisServices, Attestation, Batch, DataLake, KeyVault, OperationalInsights, Storage, Synapse. It also supports resource id like `https://storage.azure.com/`. + + System.String + + System.String + + + None + + + CertificatePassword + + The password required to access the pkcs#12 certificate file. + + System.Security.SecureString + + System.Security.SecureString + + + None + + + CertificatePath + + The path of certficate file in pkcs#12 format. + + System.String + + System.String + + + None + + + CertificateThumbprint + + Certificate Hash or Thumbprint. + + System.String + + System.String + + + None + + + ContextName + + Name of the default Azure context for this login. For more information about Azure contexts, see Azure PowerShell context objects (/powershell/azure/context-persistence). + + System.String + + System.String + + + None + + + Credential + + Specifies a PSCredential object. For more information about the PSCredential object, type `Get-Help Get-Credential`. The PSCredential object provides the user ID and password for organizational ID credentials, or the application ID and secret for service principal credentials. + + System.Management.Automation.PSCredential + + System.Management.Automation.PSCredential + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Environment + + Environment containing the Azure account. + + System.String + + System.String + + + None + + + FederatedToken + + Specifies a token provided by another identity provider. The issuer and subject in this token must be first configured to be trusted by the ApplicationId. + > [!CAUTION] > Federated tokens are a type of credential. You should take the appropriate security precautions to keep them confidential. Federated tokens also timeout and may prevent long running tasks from completing. + + System.String + + System.String + + + None + + + Force + + Overwrite the existing context with the same name without prompting. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + GraphAccessToken + + AccessToken for Graph Service. + + System.String + + System.String + + + None + + + Identity + + Login using a Managed Service Identity. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + KeyVaultAccessToken + + AccessToken for KeyVault Service. + + System.String + + System.String + + + None + + + MaxContextPopulation + + Max subscription number to populate contexts after login. Default is 25. To populate all subscriptions to contexts, set to -1. + + System.Int32 + + System.Int32 + + + None + + + MicrosoftGraphAccessToken + + Access token to Microsoft Graph + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + SendCertificateChain + + Specifies if the x5c claim (public key of the certificate) should be sent to the STS to achieve easy certificate rollover in Azure AD. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServicePrincipal + + Indicates that this account authenticates by providing service principal credentials. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + SkipContextPopulation + + Skips context population if no contexts are found. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + SkipValidation + + Skip validation for access token. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Subscription + + Subscription Name or ID. + + System.String + + System.String + + + None + + + Tenant + + Optional tenant name or ID. + > [!NOTE] > Due to limitations of the current API, you must use a tenant ID instead of a tenant name when > connecting with a business-to-business (B2B) account. + + System.String + + System.String + + + None + + + UseDeviceAuthentication + + Use device code authentication instead of a browser control. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureProfile + + + + + + + + + + + + + + ------------ Example 1: Connect to an Azure account ------------ + Connect-AzAccount + +Account SubscriptionName TenantId Environment +------- ---------------- -------- ----------- +azureuser@contoso.com Subscription1 xxxx-xxxx-xxxx-xxxx AzureCloud + + + + + + + + Example 2: Connect to Azure using organizational ID credentials + $Credential = Get-Credential +Connect-AzAccount -Credential $Credential + +Account SubscriptionName TenantId Environment +------- ---------------- -------- ----------- +azureuser@contoso.com Subscription1 xxxx-xxxx-xxxx-xxxx AzureCloud + + + + + + + + Example 3: Connect to Azure using a service principal account + $SecurePassword = ConvertTo-SecureString -String "Password123!" -AsPlainText -Force +$TenantId = 'yyyyyyyy-yyyy-yyyy-yyyy-yyyyyyy' +$ApplicationId = 'zzzzzzzz-zzzz-zzzz-zzzz-zzzzzzzz' +$Credential = New-Object -TypeName System.Management.Automation.PSCredential -ArgumentList $ApplicationId, $SecurePassword +Connect-AzAccount -ServicePrincipal -TenantId $TenantId -Credential $Credential + +Account SubscriptionName TenantId Environment +------- ---------------- -------- ----------- +xxxx-xxxx-xxxx-xxxx Subscription1 xxxx-xxxx-xxxx-xxxx AzureCloud + + + + + + + + Example 4: Use an interactive login to connect to a specific tenant and subscription + Connect-AzAccount -Tenant 'xxxx-xxxx-xxxx-xxxx' -SubscriptionId 'yyyy-yyyy-yyyy-yyyy' + +Account SubscriptionName TenantId Environment +------- ---------------- -------- ----------- +azureuser@contoso.com Subscription1 xxxx-xxxx-xxxx-xxxx AzureCloud + + + + + + + + ----- Example 5: Connect using a Managed Service Identity ----- + Connect-AzAccount -Identity +Set-AzContext -Subscription Subscription1 + +Account SubscriptionName TenantId Environment +------- ---------------- -------- ----------- +MSI@50342 Subscription1 xxxx-xxxx-xxxx-xxxx AzureCloud + + + + + + + + Example 6: Connect using Managed Service Identity login and ClientId + $identity = Get-AzUserAssignedIdentity -ResourceGroupName 'myResourceGroup' -Name 'myUserAssignedIdentity' +Get-AzVM -ResourceGroupName contoso -Name testvm | Update-AzVM -IdentityType UserAssigned -IdentityId $identity.Id +Connect-AzAccount -Identity -AccountId $identity.ClientId # Run on the virtual machine + +Account SubscriptionName TenantId Environment +------- ---------------- -------- ----------- +yyyy-yyyy-yyyy-yyyy Subscription1 xxxx-xxxx-xxxx-xxxx AzureCloud + + + + + + + + ------------ Example 7: Connect using certificates ------------ + $Thumbprint = 'XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX' +$TenantId = 'yyyyyyyy-yyyy-yyyy-yyyy-yyyyyyy' +$ApplicationId = '00000000-0000-0000-0000-00000000' +Connect-AzAccount -CertificateThumbprint $Thumbprint -ApplicationId $ApplicationId -Tenant $TenantId -ServicePrincipal + +Account SubscriptionName TenantId Environment +------- ---------------- -------- ----------- +xxxxxxxx-xxxx-xxxx-xxxxxxxxx Subscription1 yyyyyyyy-yyyy-yyyy-yyyy-yyyyyyy AzureCloud + +Account : xxxxxxxx-xxxx-xxxx-xxxxxxxx +SubscriptionName : MyTestSubscription +SubscriptionId : zzzzzzzz-zzzz-zzzz-zzzz-zzzzzzzz +TenantId : yyyyyyyy-yyyy-yyyy-yyyy-yyyyyyy +Environment : AzureCloud + + + + + + + + -------------- Example 8: Connect with AuthScope -------------- + Connect-AzAccount -AuthScope Storage + +Account SubscriptionName TenantId Environment +------- ---------------- -------- ----------- +yyyy-yyyy-yyyy-yyyy Subscription1 xxxx-xxxx-xxxx-xxxx AzureCloud + + + + + + + + ---------- Example 9: Connect using certificate file ---------- + $SecurePassword = ConvertTo-SecureString -String "Password123!" -AsPlainText -Force +$TenantId = 'yyyyyyyy-yyyy-yyyy-yyyy-yyyyyyy' +$ApplicationId = 'zzzzzzzz-zzzz-zzzz-zzzz-zzzzzzzz' +Connect-AzAccount -ServicePrincipal -ApplicationId $ApplicationId -TenantId $TenantId -CertificatePath './certificatefortest.pfx' -CertificatePassword $securePassword + +Account SubscriptionName TenantId Environment +------- ---------------- -------- ----------- +xxxxxxxx-xxxx-xxxx-xxxxxxxx Subscription1 yyyyyyyy-yyyy-yyyy-yyyy-yyyyyyy AzureCloud + + + + + + + + --------- Example 10: Connect interactively using WAM --------- + Update-AzConfig -EnableLoginByWam $true +Connect-AzAccount + +Account SubscriptionName TenantId Environment +------- ---------------- -------- ----------- +xxxxxxxx-xxxx-xxxx-xxxxxxxx Subscription1 yyyyyyyy-yyyy-yyyy-yyyy-yyyyyyy AzureCloud + + + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/connect-azaccount + + + + + + Disable-AzContextAutosave + Disable + AzContextAutosave + + Turn off autosaving Azure credentials. Your login information will be forgotten the next time you open a PowerShell window + + + + Turn off autosaving Azure credentials. Your login information will be forgotten the next time you open a PowerShell window + + + + Disable-AzContextAutosave + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.ContextAutosaveSettings + + + + + + + + + + + + + + ---------- Example 1: Disable autosaving the context ---------- + Disable-AzContextAutosave + + Disable autosave for the current user. + + + + + + -------------------------- Example 2 -------------------------- + Disable-AzContextAutosave -Scope Process + + + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/disable-azcontextautosave + + + + + + Disable-AzDataCollection + Disable + AzDataCollection + + Opts out of collecting data to improve the Azure PowerShell cmdlets. Data is collected by default unless you explicitly opt out. + + + + The `Disable-AzDataCollection` cmdlet is used to opt out of data collection. Azure PowerShell automatically collects telemetry data by default. To disable data collection, you must explicitly opt-out. Microsoft aggregates collected data to identify patterns of usage, to identify common issues, and to improve the experience of Azure PowerShell. Microsoft Azure PowerShell doesn't collect any private or personal data. If you've previously opted out, run the `Enable-AzDataCollection` cmdlet to re-enable data collection for the current user on the current machine. + + + + Disable-AzDataCollection + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + System.Void + + + + + + + + + + + + + + -- Example 1: Disabling data collection for the current user -- + Disable-AzDataCollection + + + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/disable-azdatacollection + + + Enable-AzDataCollection + + + + + + + Disable-AzureRmAlias + Disable + AzureRmAlias + + Disables AzureRm prefix aliases for Az modules. + + + + Disables AzureRm prefix aliases for Az modules. If -Module is specified, only modules listed will have aliases disabled. Otherwise all AzureRm aliases are disabled. + + + + Disable-AzureRmAlias + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Module + + Indicates which modules to disable aliases for. If none are specified, default is all enabled modules. + + System.String[] + + System.String[] + + + None + + + PassThru + + If specified, cmdlet will return all disabled aliases + + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Indicates what scope aliases should be disabled for. Default is 'Process' + + + Process + CurrentUser + LocalMachine + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Module + + Indicates which modules to disable aliases for. If none are specified, default is all enabled modules. + + System.String[] + + System.String[] + + + None + + + PassThru + + If specified, cmdlet will return all disabled aliases + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Indicates what scope aliases should be disabled for. Default is 'Process' + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + System.String + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Disable-AzureRmAlias + + Disables all AzureRm prefixes for the current PowerShell session. + + + + + + -------------------------- Example 2 -------------------------- + Disable-AzureRmAlias -Module Az.Accounts -Scope CurrentUser + + Disables AzureRm aliases for the Az.Accounts module for both the current process and for the current user. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/disable-azurermalias + + + + + + Disconnect-AzAccount + Disconnect + AzAccount + + Disconnects a connected Azure account and removes all credentials and contexts associated with that account. + + + + The Disconnect-AzAccount cmdlet disconnects a connected Azure account and removes all credentials and contexts (subscription and tenant information) associated with that account. After executing this cmdlet, you will need to login again using Connect-AzAccount. + + + + Disconnect-AzAccount + + ApplicationId + + ServicePrincipal id (globally unique id) + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + TenantId + + Tenant id (globally unique id) + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not executed. + + + System.Management.Automation.SwitchParameter + + + False + + + + Disconnect-AzAccount + + AzureContext + + Context + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not executed. + + + System.Management.Automation.SwitchParameter + + + False + + + + Disconnect-AzAccount + + ContextName + + Name of the context to log out of + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not executed. + + + System.Management.Automation.SwitchParameter + + + False + + + + Disconnect-AzAccount + + InputObject + + The account object to remove + + Microsoft.Azure.Commands.Profile.Models.PSAzureRmAccount + + Microsoft.Azure.Commands.Profile.Models.PSAzureRmAccount + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not executed. + + + System.Management.Automation.SwitchParameter + + + False + + + + Disconnect-AzAccount + + Username + + User name of the form 'user@contoso.org' + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not executed. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ApplicationId + + ServicePrincipal id (globally unique id) + + System.String + + System.String + + + None + + + AzureContext + + Context + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + None + + + ContextName + + Name of the context to log out of + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + The account object to remove + + Microsoft.Azure.Commands.Profile.Models.PSAzureRmAccount + + Microsoft.Azure.Commands.Profile.Models.PSAzureRmAccount + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + TenantId + + Tenant id (globally unique id) + + System.String + + System.String + + + None + + + Username + + User name of the form 'user@contoso.org' + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not executed. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureRmAccount + + + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureRmAccount + + + + + + + + + + + + + + ----------- Example 1: Logout of the current account ----------- + Disconnect-AzAccount + + Logs out of the Azure account associated with the current context. + + + + + + Example 2: Logout of the account associated with a particular context + Get-AzContext "Work" | Disconnect-AzAccount -Scope CurrentUser + + Logs out the account associated with the given context (named 'Work'). Because this uses the 'CurrentUser' scope, all credentials and contexts will be permanently deleted. + + + + + + ------------- Example 3: Log out a particular user ------------- + Disconnect-AzAccount -Username 'user1@contoso.org' + + Logs out the 'user1@contoso.org' user - all credentials and all contexts associated with this user will be removed. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/disconnect-azaccount + + + + + + Enable-AzContextAutosave + Enable + AzContextAutosave + + Azure contexts are PowerShell objects representing your active subscription to run commands against, and the authentication information needed to connect to an Azure cloud. With Azure contexts, Azure PowerShell doesn't need to reauthenticate your account each time you switch subscriptions. For more information, see Azure PowerShell context objects (https://learn.microsoft.com/powershell/azure/context-persistence). + This cmdlet allows the Azure context information to be saved and automatically loaded when you start a PowerShell process. For example, when opening a new window. + + + + Allows the Azure context information to be saved and automatically loaded when a PowerShell process starts. The context is saved at the end of the execution of any cmdlet that affects the context. For example, any profile cmdlet. If you're using user authentication, then tokens can be updated during the course of running any cmdlet. + + + + Enable-AzContextAutosave + + DefaultProfile + + The credentials, tenant, and subscription used for communication with Azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes. For example, whether changes apply only to the current process, or to all sessions started by this user. Changes made with the scope `CurrentUser` will affect all PowerShell sessions started by the user. If a particular session needs to have different settings, use the scope `Process`. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + CurrentUser + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet isn't run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, tenant, and subscription used for communication with Azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes. For example, whether changes apply only to the current process, or to all sessions started by this user. Changes made with the scope `CurrentUser` will affect all PowerShell sessions started by the user. If a particular session needs to have different settings, use the scope `Process`. + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + CurrentUser + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet isn't run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.ContextAutosaveSettings + + + + + + + + + + + + + + Example 1: Enable autosaving credentials for the current user + Enable-AzContextAutosave + + + + + + + + -------------------------- Example 2 -------------------------- + Enable-AzContextAutosave -Scope Process + + + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/enable-azcontextautosave + + + + + + Enable-AzDataCollection + Enable + AzDataCollection + + Enables Azure PowerShell to collect data to improve the user experience with the Azure PowerShell cmdlets. Executing this cmdlet opts in to data collection for the current user on the current machine. Data is collected by default unless you explicitly opt out. + + + + The `Enable-AzDataCollection` cmdlet is used to opt in to data collection. Azure PowerShell automatically collects telemetry data by default. Microsoft aggregates collected data to identify patterns of usage, to identify common issues, and to improve the experience of Azure PowerShell. Microsoft Azure PowerShell doesn't collect any private or personal data. To disable data collection, you must explicitly opt out by executing `Disable-AzDataCollection`. + + + + Enable-AzDataCollection + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + System.Void + + + + + + + + + + + + + + --- Example 1: Enabling data collection for the current user --- + Enable-AzDataCollection + + + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/enable-azdatacollection + + + Disable-AzDataCollection + + + + + + + Enable-AzureRmAlias + Enable + AzureRmAlias + + Enables AzureRm prefix aliases for Az modules. + + + + Enables AzureRm prefix aliases for Az modules. If -Module is specified, only modules listed will have aliases enabled. Otherwise all AzureRm aliases are enabled. + + + + Enable-AzureRmAlias + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Module + + Indicates which modules to enable aliases for. If none are specified, default is all modules. + + System.String[] + + System.String[] + + + None + + + PassThru + + If specified, cmdlet will return all aliases enabled + + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Indicates what scope aliases should be enabled for. Default is 'Local' + + + Local + Process + CurrentUser + LocalMachine + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Module + + Indicates which modules to enable aliases for. If none are specified, default is all modules. + + System.String[] + + System.String[] + + + None + + + PassThru + + If specified, cmdlet will return all aliases enabled + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Indicates what scope aliases should be enabled for. Default is 'Local' + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + System.String + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Enable-AzureRmAlias + + Enables all AzureRm prefixes for the current PowerShell session. + + + + + + -------------------------- Example 2 -------------------------- + Enable-AzureRmAlias -Module Az.Accounts -Scope CurrentUser + + Enables AzureRm aliases for the Az.Accounts module for both the current process and for the current user. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/enable-azurermalias + + + + + + Export-AzConfig + Export + AzConfig + + Exports all the configs into a file so that it can be imported on another machine. + + + + The `Export-AzConfig` cmdlet exports all the configs that are set at the "CurrentUser" scope into a file at given path in JSON format. The file can then be imported by `Import-AzConfig` for example on another machine. + + + + Export-AzConfig + + Path + + Specifies the path of the file to which to save the configs. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Overwrites the given file if it exists. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Returns a boolean value indicating success or failure. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Overwrites the given file if it exists. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Returns a boolean value indicating success or failure. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Path + + Specifies the path of the file to which to save the configs. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Export-AzConfig -Path ./config.json + + This example exports the configs to `./config.json` file which can later be imported via `Import-AzConfig`. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/export-azconfig + + + Import-AzConfig + + + + + + + Get-AzAccessToken + Get + AzAccessToken + + Get raw access token. When using -ResourceUrl, please make sure the value does match current Azure environment. You may refer to the value of `(Get-AzContext).Environment`. + + + + Get access token + + + + Get-AzAccessToken + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + IAzureContextContainer + + IAzureContextContainer + + + None + + + ResourceTypeName + + Optional resource type name, supported values: AadGraph, AnalysisServices, AppConfiguration, Arm, Attestation, Batch, DataLake, KeyVault, MSGraph, OperationalInsights, ResourceManager, Storage, Synapse. Default value is Arm if not specified. + + String + + String + + + None + + + TenantId + + Optional Tenant Id. Use tenant id of default context if not specified. + + String + + String + + + None + + + + Get-AzAccessToken + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + IAzureContextContainer + + IAzureContextContainer + + + None + + + ResourceUrl + + Resource url for that you're requesting token, e.g. 'https://graph.microsoft.com/'. + + String + + String + + + None + + + TenantId + + Optional Tenant Id. Use tenant id of default context if not specified. + + String + + String + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + IAzureContextContainer + + IAzureContextContainer + + + None + + + ResourceTypeName + + Optional resource type name, supported values: AadGraph, AnalysisServices, AppConfiguration, Arm, Attestation, Batch, DataLake, KeyVault, MSGraph, OperationalInsights, ResourceManager, Storage, Synapse. Default value is Arm if not specified. + + String + + String + + + None + + + ResourceUrl + + Resource url for that you're requesting token, e.g. 'https://graph.microsoft.com/'. + + String + + String + + + None + + + TenantId + + Optional Tenant Id. Use tenant id of default context if not specified. + + String + + String + + + None + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAccessToken + + + + + + + + + + + + + + ------- Example 1 Get the access token for ARM endpoint ------- + Get-AzAccessToken + + Get access token of current account for ResourceManager endpoint + + + + + + - Example 2 Get the access token for Microsoft Graph endpoint - + Get-AzAccessToken -ResourceTypeName MSGraph + + Get access token of Microsoft Graph endpoint for current account + + + + + + - Example 3 Get the access token for Microsoft Graph endpoint - + Get-AzAccessToken -ResourceUrl "https://graph.microsoft.com/" + + Get access token of Microsoft Graph endpoint for current account + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/get-azaccesstoken + + + + + + Get-AzConfig + Get + AzConfig + + Gets the configs of Azure PowerShell. + + + + Gets the configs of Azure PowerShell. By default it lists all the configs. You can filter the result using various parameters. + > [!NOTE] > Configs have priorities. Generally speaking, Process scope has higher priority than CurrentUser scope; a config that applies to a certain cmdlet has higher priority than that applies to a module, again higher than Az. > To reduce confusion, the result of `Get-AzConfig` shows those configs that are taking effect. It is a combination of all the configs, but not literally all the configs. However, you could always view them by applying different filter parameters, such as `-Scope`. + + + + Get-AzConfig + + AppliesTo + + Specifies what part of Azure PowerShell the config applies to. Possible values are: - "Az": the config applies to all modules and cmdlets of Azure PowerShell. + - Module name: the config applies to a certain module of Azure PowerShell. + For example, "Az.Storage". - Cmdlet name: the config applies to a certain cmdlet of Azure PowerShell. For example, "Get-AzKeyVault". If not specified, when getting or clearing configs, it defaults to all the above; when updating, it defaults to "Az". + + System.String + + System.String + + + None + + + CheckForUpgrade + + When enabled, Azure PowerShell will check for updates automatically and display a hint message when an update is available. The default value will be changed from false to true in Az version 11.0.0. + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSubscriptionForLogin + + Subscription name or GUID. Sets the default context for Azure PowerShell when logging in without specifying a subscription. + + + System.Management.Automation.SwitchParameter + + + False + + + DisableErrorRecordsPersistence + + When disabled, error records will not be written to ~/.Azure/ErrorRecords. This config will be replaced by "EnableErrorRecordsPersistence" as opt-in in the next major release of Az around November 2023. + + + System.Management.Automation.SwitchParameter + + + False + + + DisplayBreakingChangeWarning + + Controls if warning messages for breaking changes are displayed or suppressed. When enabled, a breaking change warning is displayed when executing cmdlets with breaking changes in a future release. + + + System.Management.Automation.SwitchParameter + + + False + + + DisplayRegionIdentified + + When enabled, Azure PowerShell displays recommendations on regions which may reduce your costs. + + + System.Management.Automation.SwitchParameter + + + False + + + DisplaySurveyMessage + + When enabled, you are prompted infrequently to participate in user experience surveys for Azure PowerShell. + + + System.Management.Automation.SwitchParameter + + + False + + + EnableDataCollection + + When enabled, Azure PowerShell cmdlets send telemetry data to Microsoft to improve the customer experience. For more information, see our privacy statement: https://aka.ms/privacy + + + System.Management.Automation.SwitchParameter + + + False + + + EnableLoginByWam + + [Preview] When enabled, Web Account Manager (WAM) will be the default interactive login experience. It will fall back to using the browser if the platform does not support WAM. Note that this feature is under preview. Microsoft Account (MSA) is currently not supported. Feel free to reach out to Azure PowerShell team if you have any feedbacks: https://aka.ms/azpsissue + + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of config changes, for example, whether changes apply only to the current process, or to all sessions started by this user. By default it is CurrentUser. + + + CurrentUser + Process + Default + Environment + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + + None + + + + + + AppliesTo + + Specifies what part of Azure PowerShell the config applies to. Possible values are: - "Az": the config applies to all modules and cmdlets of Azure PowerShell. + - Module name: the config applies to a certain module of Azure PowerShell. + For example, "Az.Storage". - Cmdlet name: the config applies to a certain cmdlet of Azure PowerShell. For example, "Get-AzKeyVault". If not specified, when getting or clearing configs, it defaults to all the above; when updating, it defaults to "Az". + + System.String + + System.String + + + None + + + CheckForUpgrade + + When enabled, Azure PowerShell will check for updates automatically and display a hint message when an update is available. The default value will be changed from false to true in Az version 11.0.0. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSubscriptionForLogin + + Subscription name or GUID. Sets the default context for Azure PowerShell when logging in without specifying a subscription. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DisableErrorRecordsPersistence + + When disabled, error records will not be written to ~/.Azure/ErrorRecords. This config will be replaced by "EnableErrorRecordsPersistence" as opt-in in the next major release of Az around November 2023. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DisplayBreakingChangeWarning + + Controls if warning messages for breaking changes are displayed or suppressed. When enabled, a breaking change warning is displayed when executing cmdlets with breaking changes in a future release. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DisplayRegionIdentified + + When enabled, Azure PowerShell displays recommendations on regions which may reduce your costs. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DisplaySurveyMessage + + When enabled, you are prompted infrequently to participate in user experience surveys for Azure PowerShell. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + EnableDataCollection + + When enabled, Azure PowerShell cmdlets send telemetry data to Microsoft to improve the customer experience. For more information, see our privacy statement: https://aka.ms/privacy + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + EnableLoginByWam + + [Preview] When enabled, Web Account Manager (WAM) will be the default interactive login experience. It will fall back to using the browser if the platform does not support WAM. Note that this feature is under preview. Microsoft Account (MSA) is currently not supported. Feel free to reach out to Azure PowerShell team if you have any feedbacks: https://aka.ms/azpsissue + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of config changes, for example, whether changes apply only to the current process, or to all sessions started by this user. By default it is CurrentUser. + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + + None + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSConfig + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Get-AzConfig + +Key Value Applies To Scope Help Message +--- ----- ---------- ----- ------------ +EnableDataCollection False Az CurrentUser When enabled, Azure PowerShell cmdlets send telemetry data to Microsoft to improve the custom… +DefaultSubscriptionForLogin Az Default Subscription name or GUID. Sets the default context for Azure PowerShell when logging in with… +DisplayBreakingChangeWarning True Az Default Controls if warning messages for breaking changes are displayed or suppressed. When enabled, … + + Gets all the configs. + + + + + + -------------------------- Example 2 -------------------------- + Get-AzConfig -EnableDataCollection + +Key Value Applies To Scope Help Message +--- ----- ---------- ----- ------------ +EnableDataCollection False Az CurrentUser When enabled, Azure PowerShell cmdlets send telemetry data to Microsoft to improve the custom… + + Gets the "EnableDataCollection" config. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/get-azconfig + + + + + + Get-AzContext + Get + AzContext + + Gets the metadata used to authenticate Azure Resource Manager requests. + + + + The Get-AzContext cmdlet gets the current metadata used to authenticate Azure Resource Manager requests. This cmdlet gets the Active Directory account, Active Directory tenant, Azure subscription, and the targeted Azure environment. Azure Resource Manager cmdlets use these settings by default when making Azure Resource Manager requests. When the available amount of subscription exceeds the default limit of 25, some subscriptions may not show up in the results of `Get-AzContext -ListAvailable`. Please run `Connect-AzAccount -MaxContextPopulation <int>` to get more contexts. + + + + Get-AzContext + + DefaultProfile + + The credentials, account, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ListAvailable + + List all available contexts in the current session. + + + System.Management.Automation.SwitchParameter + + + False + + + RefreshContextFromTokenCache + + Refresh contexts from token cache + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzContext + + Name + + The name of the context + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + DefaultProfile + + The credentials, account, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ListAvailable + + List all available contexts in the current session. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + The name of the context + + System.String + + System.String + + + None + + + RefreshContextFromTokenCache + + Refresh contexts from token cache + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + + + + + + + + + + + + ------------ Example 1: Getting the current context ------------ + Connect-AzAccount +Get-AzContext + +Name Account SubscriptionName Environment TenantId +---- ------- ---------------- ----------- -------- +Subscription1 (xxxxxxxx-xxxx-xxxx-xxx... test@outlook.com Subscription1 AzureCloud xxxxxxxx-x... + + In this example we are logging into our account with an Azure subscription using Connect-AzAccount, and then we are getting the context of the current session by calling Get-AzContext. + + + + + + ---------- Example 2: Listing all available contexts ---------- + Get-AzContext -ListAvailable + +Name Account SubscriptionName Environment TenantId +---- ------- ---------------- ----------- -------- +Subscription1 (xxxxxxxx-xxxx-xxxx-xxx... test@outlook.com Subscription1 AzureCloud xxxxxxxx-x... +Subscription2 (xxxxxxxx-xxxx-xxxx-xxx... test@outlook.com Subscription2 AzureCloud xxxxxxxx-x... +Subscription3 (xxxxxxxx-xxxx-xxxx-xxx... test@outlook.com Subscription3 AzureCloud xxxxxxxx-x... + + In this example, all currently available contexts are displayed. The user may select one of these contexts using Select-AzContext. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/get-azcontext + + + Set-AzContext + + + + Connect-AzAccount + + + + + + + Get-AzContextAutosaveSetting + Get + AzContextAutosaveSetting + + Display metadata about the context autosave feature, including whether the context is automatically saved, and where saved context and credential information can be found. + + + + Display metadata about the context autosave feature, including whether the context is automatically saved, and where saved context and credential information can be found. + + + + Get-AzContextAutosaveSetting + + DefaultProfile + + The credentials, account, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + + + + DefaultProfile + + The credentials, account, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.ContextAutosaveSettings + + + + + + + + + + + + + + ------ Get context save metadata for the current session ------ + Get-AzContextAutosaveSetting + +Mode : Process +ContextDirectory : None +ContextFile : None +CacheDirectory : None +CacheFile : None +Settings : {} + + Get details about whether and where the context is saved. In the above example, the autosave feature has been disabled. + + + + + + -------- Get context save metadata for the current user -------- + Get-AzContextAutosaveSetting -Scope CurrentUser + +Mode : CurrentUser +ContextDirectory : C:\Users\contoso\AppData\Roaming\Windows Azure Powershell +ContextFile : AzureRmContext.json +CacheDirectory : C:\Users\contoso\AppData\Roaming\Windows Azure Powershell +CacheFile : TokenCache.dat +Settings : {} + + Get details about whether and where the context is saved by default for the current user. Note that this may be different than the settings that are active in the current session. In the above example, the autosave feature has been enabled, and data is saved to the default location. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/get-azcontextautosavesetting + + + + + + Get-AzDefault + Get + AzDefault + + Get the defaults set by the user in the current context. + + + + The Get-AzDefault cmdlet gets the Resource Group that the user has set as default in the current context. + + + + Get-AzDefault + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ResourceGroup + + Display Default Resource Group + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ResourceGroup + + Display Default Resource Group + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.Management.Automation.SwitchParameter + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSResourceGroup + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Get-AzDefault + +Id : /subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/myResourceGroup +Name : myResourceGroup +Properties : Microsoft.Azure.Management.Internal.Resources.Models.ResourceGroupProperties +Location : eastus +ManagedBy : +Tags : + + This command returns the current defaults if there are defaults set, or returns nothing if no default is set. + + + + + + -------------------------- Example 2 -------------------------- + Get-AzDefault -ResourceGroup + +Id : /subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/myResourceGroup +Name : myResourceGroup +Properties : Microsoft.Azure.Management.Internal.Resources.Models.ResourceGroupProperties +Location : eastus +ManagedBy : +Tags : + + This command returns the current default Resource Group if there is a default set, or returns nothing if no default is set. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/get-azdefault + + + + + + Get-AzEnvironment + Get + AzEnvironment + + Get endpoints and metadata for an instance of Azure services. `GalleryUrl` will be removed from ArmMetadata and so Azure PowerShell will no longer provide for its value in `PSAzureEnvironment`. Currently `GalleryUrl` is not used in Azure PowerShell products. Please do not reply on `GalleryUrl` anymore. + + + + The Get-AzEnvironment cmdlet gets endpoints and metadata for an instance of Azure services. + + + + Get-AzEnvironment + + Name + + Specifies the name of the Azure instance to get. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + DefaultProfile + + The credentials, account, tenant and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies the name of the Azure instance to get. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureEnvironment + + + + + + + + + + + + + + ---------- Example 1: Getting all Azure environments ---------- + Get-AzEnvironment + +Name Resource Manager Url ActiveDirectory Authority Type +---- -------------------- ------------------------- ---- +AzureUSGovernment https://management.usgovcloudapi.net/ https://login.microsoftonline.us/ Built-in +AzureCloud https://management.azure.com/ https://login.microsoftonline.com/ Built-in +AzureChinaCloud https://management.chinacloudapi.cn/ https://login.chinacloudapi.cn/ Built-in + + This example shows how to get the endpoints and metadata for the AzureCloud (default) environment. + + + + + + -------- Example 2: Getting the AzureCloud environment -------- + Get-AzEnvironment -Name AzureCloud + +Name Resource Manager Url ActiveDirectory Authority Type +---- -------------------- ------------------------- ---- +AzureCloud https://management.azure.com/ https://login.microsoftonline.com/ Built-in + + This example shows how to get the endpoints and metadata for the AzureCloud (default) environment. + + + + + + ------ Example 3: Getting the AzureChinaCloud environment ------ + Get-AzEnvironment -Name AzureChinaCloud | Format-List + +Name : AzureChinaCloud +Type : Built-in +EnableAdfsAuthentication : False +OnPremise : False +ActiveDirectoryServiceEndpointResourceId : https://management.core.chinacloudapi.cn/ +AdTenant : Common +GalleryUrl : https://gallery.azure.com/ +ManagementPortalUrl : https://go.microsoft.com/fwlink/?LinkId=301902 +ServiceManagementUrl : https://management.core.chinacloudapi.cn/ +PublishSettingsFileUrl : https://go.microsoft.com/fwlink/?LinkID=301776 +ResourceManagerUrl : https://management.chinacloudapi.cn/ +SqlDatabaseDnsSuffix : .database.chinacloudapi.cn +StorageEndpointSuffix : core.chinacloudapi.cn +ActiveDirectoryAuthority : https://login.chinacloudapi.cn/ +GraphUrl : https://graph.chinacloudapi.cn/ +GraphEndpointResourceId : https://graph.chinacloudapi.cn/ +TrafficManagerDnsSuffix : trafficmanager.cn +AzureKeyVaultDnsSuffix : vault.azure.cn +DataLakeEndpointResourceId : +AzureDataLakeStoreFileSystemEndpointSuffix : +AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix : +AzureKeyVaultServiceEndpointResourceId : https://vault.azure.cn +ContainerRegistryEndpointSuffix : azurecr.cn +AzureOperationalInsightsEndpointResourceId : +AzureOperationalInsightsEndpoint : +AzureAnalysisServicesEndpointSuffix : asazure.chinacloudapi.cn +AnalysisServicesEndpointResourceId : https://region.asazure.chinacloudapi.cn +AzureAttestationServiceEndpointSuffix : +AzureAttestationServiceEndpointResourceId : +AzureSynapseAnalyticsEndpointSuffix : dev.azuresynapse.azure.cn +AzureSynapseAnalyticsEndpointResourceId : https://dev.azuresynapse.azure.cn + + This example shows how to get the endpoints and metadata for the AzureChinaCloud environment. + + + + + + ----- Example 4: Getting the AzureUSGovernment environment ----- + Get-AzEnvironment -Name AzureUSGovernment + +Name Resource Manager Url ActiveDirectory Authority Type +---- -------------------- ------------------------- ---- +AzureUSGovernment https://management.usgovcloudapi.net/ https://login.microsoftonline.us/ Built-in + + This example shows how to get the endpoints and metadata for the AzureUSGovernment environment. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/get-azenvironment + + + Add-AzEnvironment + + + + Remove-AzEnvironment + + + + Set-AzEnvironment + + + + + + + Get-AzSubscription + Get + AzSubscription + + Get subscriptions that the current account can access. + + + + The Get-AzSubscription cmdlet gets the subscription ID, subscription name, and home tenant for subscriptions that the current account can access. + + + + Get-AzSubscription + + AsJob + + Run cmdlet in the background and return a Job to track progress. + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + SubscriptionId + + Specifies the ID of the subscription to get. + + System.String + + System.String + + + None + + + TenantId + + Specifies the ID of the tenant that contains subscriptions to get. + + System.String + + System.String + + + None + + + + Get-AzSubscription + + AsJob + + Run cmdlet in the background and return a Job to track progress. + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + SubscriptionName + + Specifies the name of the subscription to get. + + System.String + + System.String + + + None + + + TenantId + + Specifies the ID of the tenant that contains subscriptions to get. + + System.String + + System.String + + + None + + + + + + AsJob + + Run cmdlet in the background and return a Job to track progress. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + SubscriptionId + + Specifies the ID of the subscription to get. + + System.String + + System.String + + + None + + + SubscriptionName + + Specifies the name of the subscription to get. + + System.String + + System.String + + + None + + + TenantId + + Specifies the ID of the tenant that contains subscriptions to get. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureSubscription + + + + + + + + + + + + + + ------- Example 1: Get all subscriptions in all tenants ------- + Get-AzSubscription + +Name Id TenantId State +---- -- -------- ----- +Subscription1 yyyy-yyyy-yyyy-yyyy aaaa-aaaa-aaaa-aaaa Enabled +Subscription2 xxxx-xxxx-xxxx-xxxx aaaa-aaaa-aaaa-aaaa Enabled +Subscription3 zzzz-zzzz-zzzz-zzzz bbbb-bbbb-bbbb-bbbb Enabled + + This command gets all subscriptions in all tenants that are authorized for the current account. + + + + + + ---- Example 2: Get all subscriptions for a specific tenant ---- + Get-AzSubscription -TenantId "aaaa-aaaa-aaaa-aaaa" + +Name Id TenantId State +---- -- -------- ----- +Subscription1 yyyy-yyyy-yyyy-yyyy aaaa-aaaa-aaaa-aaaa Enabled +Subscription2 xxxx-xxxx-xxxx-xxxx aaaa-aaaa-aaaa-aaaa Enabled + + List all subscriptions in the given tenant that are authorized for the current account. + + + + + + ---- Example 3: Get all subscriptions in the current tenant ---- + Get-AzSubscription -TenantId (Get-AzContext).Tenant + +Name Id TenantId State +---- -- -------- ----- +Subscription1 yyyy-yyyy-yyyy-yyyy aaaa-aaaa-aaaa-aaaa Enabled +Subscription2 xxxx-xxxx-xxxx-xxxx aaaa-aaaa-aaaa-aaaa Enabled + + This command gets all subscriptions in the current tenant that are authorized for the current user. + + + + + + Example 4: Change the current context to use a specific subscription + Get-AzSubscription -SubscriptionId "xxxx-xxxx-xxxx-xxxx" -TenantId "yyyy-yyyy-yyyy-yyyy" | Set-AzContext + +Name Account SubscriptionName Environment TenantId +---- ------- ---------------- ----------- -------- +Subscription1 (xxxx-xxxx-xxxx-xxxx) azureuser@micros... Subscription1 AzureCloud yyyy-yyyy-yyyy-yyyy + + This command gets the specified subscription, and then sets the current context to use it. All subsequent cmdlets in this session use the new subscription (Contoso Subscription 1) by default. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/get-azsubscription + + + + + + Get-AzTenant + Get + AzTenant + + Gets tenants that are authorized for the current user. + + + + The Get-AzTenant cmdlet gets tenants authorized for the current user. + + + + Get-AzTenant + + TenantId + + Specifies the ID of the tenant that this cmdlet gets. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + TenantId + + Specifies the ID of the tenant that this cmdlet gets. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureTenant + + + + + + + + + + + + + + ---------------- Example 1: Getting all tenants ---------------- + Connect-AzAccount +Get-AzTenant + +Id Name Category Domains +-- ----------- -------- ------- +xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx Microsoft Home {test0.com, test1.com, test2.microsoft.com, test3.microsoft.com...} +yyyyyyyy-yyyy-yyyy-yyyy-yyyyyyyyyyyy Testhost Home testhost.onmicrosoft.com + + This example shows how to get all of the authorized tenants of an Azure account. + + + + + + ------------- Example 2: Getting a specific tenant ------------- + Connect-AzAccount +Get-AzTenant -TenantId xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx + +Id Name Category Domains +-- ----------- -------- ------- +xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx Microsoft Home {test0.com, test1.com, test2.microsoft.com, test3.microsoft.com...} + + This example shows how to get a specific authorized tenant of an Azure account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/get-aztenant + + + + + + Import-AzConfig + Import + AzConfig + + Imports configs from a file that was previously exported by `Export-AzConfig`. + + + + The `Import-AzConfig` cmdlet imports all the configs from a file that was previously exported by `Export-AzConfig`. The imported configs will be set at the "CurrentUser" scope, so they are consistent across PowerShell sessions. + During importing, if a config that is to be imported has already been set, its value will be overwritten. + + + + Import-AzConfig + + Path + + Specifies the path to configuration saved by using Export-AzConfig. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Returns a boolean value indicating success or failure. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Returns a boolean value indicating success or failure. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Path + + Specifies the path to configuration saved by using Export-AzConfig. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Import-AzConfig -Path ./config.json + + This example imports configs from file `./config.json`. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/import-azconfig + + + Export-AzConfig + + + + + + + Import-AzContext + Import + AzContext + + Loads Azure authentication information from a file. + + + + The Import-AzContext cmdlet loads authentication information from a file to set the Azure environment and context. Cmdlets that you run in the current session use this information to authenticate requests to Azure Resource Manager. + + + + Import-AzContext + + AzureContext + + {{Fill AzureContext Description}} + + Microsoft.Azure.Commands.Common.Authentication.Models.AzureRmProfile + + Microsoft.Azure.Commands.Common.Authentication.Models.AzureRmProfile + + + None + + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Import-AzContext + + Path + + Specifies the path to context information saved by using Save-AzContext. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AzureContext + + {{Fill AzureContext Description}} + + Microsoft.Azure.Commands.Common.Authentication.Models.AzureRmProfile + + Microsoft.Azure.Commands.Common.Authentication.Models.AzureRmProfile + + + None + + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Path + + Specifies the path to context information saved by using Save-AzContext. + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Common.Authentication.Models.AzureRmProfile + + + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureProfile + + + + + + + + + + + + + + ----- Example 1: Importing a context from a AzureRmProfile ----- + Import-AzContext -AzContext (Connect-AzAccount) + +Account SubscriptionName TenantId Environment +------- ---------------- -------- ----------- +azureuser@contoso.com Subscription1 xxxx-xxxx-xxxx-xxxx AzureCloud + + This example imports a context from a PSAzureProfile that is passed through to the cmdlet. + + + + + + ------- Example 2: Importing a context from a JSON file ------- + Import-AzContext -Path C:\test.json + +Account SubscriptionName TenantId Environment +------- ---------------- -------- ----------- +azureuser@contoso.com Subscription1 xxxx-xxxx-xxxx-xxxx AzureCloud + + This example selects a context from a JSON file that is passed through to the cmdlet. This JSON file can be created from Save-AzContext. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/import-azcontext + + + + + + Invoke-AzRestMethod + Invoke + AzRestMethod + + Construct and perform HTTP request to Azure resource management endpoint only + + + + Construct and perform HTTP request to Azure resource management endpoint only + + + + Invoke-AzRestMethod + + ApiVersion + + Api Version + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Method + + Http Method + + + GET + POST + PUT + PATCH + DELETE + + System.String + + System.String + + + None + + + Name + + list of Target Resource Name + + System.String[] + + System.String[] + + + None + + + Payload + + JSON format payload + + System.String + + System.String + + + None + + + ResourceGroupName + + Target Resource Group Name + + System.String + + System.String + + + None + + + ResourceProviderName + + Target Resource Provider Name + + System.String + + System.String + + + None + + + ResourceType + + List of Target Resource Type + + System.String[] + + System.String[] + + + None + + + SubscriptionId + + Target Subscription Id + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Invoke-AzRestMethod + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Method + + Http Method + + + GET + POST + PUT + PATCH + DELETE + + System.String + + System.String + + + None + + + Path + + Path of target resource URL. Hostname of Resource Manager should not be added. + + System.String + + System.String + + + None + + + Payload + + JSON format payload + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Invoke-AzRestMethod + + Uri + + Uniform Resource Identifier of the Azure resources. The target resource needs to support Azure AD authentication and the access token is derived according to resource id. If resource id is not set, its value is derived according to built-in service suffixes in current Azure Environment. + + System.Uri + + System.Uri + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Method + + Http Method + + + GET + POST + PUT + PATCH + DELETE + + System.String + + System.String + + + None + + + Payload + + JSON format payload + + System.String + + System.String + + + None + + + ResourceId + + Identifier URI specified by the REST API you are calling. It shouldn't be the resource id of Azure Resource Manager. + + System.Uri + + System.Uri + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ApiVersion + + Api Version + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Method + + Http Method + + System.String + + System.String + + + None + + + Name + + list of Target Resource Name + + System.String[] + + System.String[] + + + None + + + Path + + Path of target resource URL. Hostname of Resource Manager should not be added. + + System.String + + System.String + + + None + + + Payload + + JSON format payload + + System.String + + System.String + + + None + + + ResourceGroupName + + Target Resource Group Name + + System.String + + System.String + + + None + + + ResourceId + + Identifier URI specified by the REST API you are calling. It shouldn't be the resource id of Azure Resource Manager. + + System.Uri + + System.Uri + + + None + + + ResourceProviderName + + Target Resource Provider Name + + System.String + + System.String + + + None + + + ResourceType + + List of Target Resource Type + + System.String[] + + System.String[] + + + None + + + SubscriptionId + + Target Subscription Id + + System.String + + System.String + + + None + + + Uri + + Uniform Resource Identifier of the Azure resources. The target resource needs to support Azure AD authentication and the access token is derived according to resource id. If resource id is not set, its value is derived according to built-in service suffixes in current Azure Environment. + + System.Uri + + System.Uri + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.string + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSHttpResponse + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Invoke-AzRestMethod -Path "/subscriptions/{subscription}/resourcegroups/{resourcegroup}/providers/microsoft.operationalinsights/workspaces/{workspace}?api-version={API}" -Method GET + +Headers : {[Cache-Control, System.String[]], [Pragma, System.String[]], [x-ms-request-id, System.String[]], [Strict-Transport-Security, System.String[]]…} +Version : 1.1 +StatusCode : 200 +Method : GET +Content : { + "properties": { + "source": "Azure", + "customerId": "{customerId}", + "provisioningState": "Succeeded", + "sku": { + "name": "pergb2018", + "maxCapacityReservationLevel": 3000, + "lastSkuUpdate": "Mon, 25 May 2020 11:10:01 GMT" + }, + "retentionInDays": 30, + "features": { + "legacy": 0, + "searchVersion": 1, + "enableLogAccessUsingOnlyResourcePermissions": true + }, + "workspaceCapping": { + "dailyQuotaGb": -1.0, + "quotaNextResetTime": "Thu, 18 Jun 2020 05:00:00 GMT", + "dataIngestionStatus": "RespectQuota" + }, + "enableFailover": false, + "publicNetworkAccessForIngestion": "Enabled", + "publicNetworkAccessForQuery": "Enabled", + "createdDate": "Mon, 25 May 2020 11:10:01 GMT", + "modifiedDate": "Mon, 25 May 2020 11:10:02 GMT" + }, + "id": "/subscriptions/{subscription}/resourcegroups/{resourcegroup}/providers/microsoft.operationalinsights/workspaces/{workspace}", + "name": "{workspace}", + "type": "Microsoft.OperationalInsights/workspaces", + "location": "eastasia", + "tags": {} + } + + Get log analytics workspace by path. It only supports management plane API and Hostname of Azure Resource Manager is added according to Azure environment setting. + + + + + + + -------------------------- Example 2 -------------------------- + Invoke-AzRestMethod https://graph.microsoft.com/v1.0/me + +Headers : {[Date, System.String[]], [Cache-Control, System.String[]], [Transfer-Encoding, System.String[]], [Strict-Transport-Security, System.String[]]…} +Version : 1.1 +StatusCode : 200 +Method : GET +Content : {"@odata.context":"https://graph.microsoft.com/v1.0/$metadata#users/$entity","businessPhones":["......} + + Get current signed in user via MicrosoftGraph API. This example is equivalent to `Get-AzADUser -SignedIn`. + + + + + + -------------------------- Example 3 -------------------------- + $subscriptionId = (Get-AzContext).Subscription.ID +Invoke-AzRestMethod -SubscriptionId $subscriptionId -ResourceGroupName "test-group" -ResourceProviderName Microsoft.AppPlatform -ResourceType Spring,apps -Name "test-spring-service" -ApiVersion 2020-07-01 -Method GET + +Headers : {[Cache-Control, System.String[]], [Pragma, System.String[]], [Vary, System.String[]], [x-ms-request-id, + System.String[]]…} +Version : 1.1 +StatusCode : 200 +Method : GET +Content : {"value":[{"properties":{"public":true,"url":"https://test-spring-service-demo.azuremicroservices.io","provisioni + ngState":"Succeeded","activeDeploymentName":"default","fqdn":"test-spring-service.azuremicroservices.io","httpsOn + ly":false,"createdTime":"2022-06-22T02:57:13.272Z","temporaryDisk":{"sizeInGB":5,"mountPath":"/tmp"},"pers + istentDisk":{"sizeInGB":0,"mountPath":"/persistent"}},"type":"Microsoft.AppPlatform/Spring/apps","identity + ":null,"location":"eastus","id":"/subscriptions/$subscriptionId/resourceGroups/test-group/providers/Microsoft.AppPlatform/Spring/test-spring-service/apps/demo","name":"demo"},{"properties":{"publ + ic":false,"provisioningState":"Succeeded","activeDeploymentName":"deploy01","fqdn":"test-spring-service.azuremicr + oservices.io","httpsOnly":false,"createdTime":"2022-06-22T07:46:54.9Z","temporaryDisk":{"sizeInGB":5,"moun + tPath":"/tmp"},"persistentDisk":{"sizeInGB":0,"mountPath":"/persistent"}},"type":"Microsoft.AppPlatform/Sp + ring/apps","identity":null,"location":"eastus","id":"/subscriptions/$subscriptionId/r + esourceGroups/test-group/providers/Microsoft.AppPlatform/Spring/test-spring-service/apps/pwsh01","name":"pwsh0 + 1"}]} + + List apps under spring service "test-spring-service" + + + + + + -------------------------- Example 4 -------------------------- + $subscriptionId = (Get-AzContext).Subscription.ID +Invoke-AzRestMethod -SubscriptionId $subscriptionId -ResourceGroupName "test-group" -ResourceProviderName Microsoft.AppPlatform -ResourceType Spring -Name "test-spring-service","demo" -ApiVersion 2020-07-01 -Method GET + +Headers : {[Cache-Control, System.String[]], [Pragma, System.String[]], [Vary, System.String[]], [x-ms-request-id, + System.String[]]…} +Version : 1.1 +StatusCode : 200 +Method : GET +Content : {"properties":{"public":true,"url":"https://test-spring-service-demo.azuremicroservices.io","provisioningState":" + Succeeded","activeDeploymentName":"default","fqdn":"test-spring-service.azuremicroservices.io","httpsOnly":false, + "createdTime":"2022-06-22T02:57:13.272Z","temporaryDisk":{"sizeInGB":5,"mountPath":"/tmp"},"persistentDisk + ":{"sizeInGB":0,"mountPath":"/persistent"}},"type":"Microsoft.AppPlatform/Spring/apps","identity":null,"lo + cation":"eastus","id":"/subscriptions/$subscriptionId/resourceGroups/test-group/pr + oviders/Microsoft.AppPlatform/Spring/test-spring-service/apps/demo","name":"demo"} + + Get app "demo" under Spring cloud service "test-spring-service" + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/invoke-azrestmethod + + + + + + Open-AzSurveyLink + Open + AzSurveyLink + + Open survey link in default browser. + + + + Open survey link in default browser. + + + + Open-AzSurveyLink + + + + + + + None + + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Open-AzSurveyLink + +Opening the default browser to https://aka.ms/azpssurvey?Q_CHL=INTERCEPT + + + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/open-azsurveylink + + + + + + Register-AzModule + Register + AzModule + + FOR INTERNAL USE ONLY - Provide Runtime Support for AutoRest Generated cmdlets + + + + FOR INTERNAL USE ONLY - Provide Runtime Support for AutoRest Generated cmdlets + + + + Register-AzModule + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + System.Object + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Register-AzModule + + Used Internally by AutoRest-generated cmdlets + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/register-azmodule + + + + + + Remove-AzContext + Remove + AzContext + + Remove a context from the set of available contexts + + + + Remove an azure context from the set of contexts + + + + Remove-AzContext + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Remove context even if it is the default + + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + A context object, normally passed through the pipeline. + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + None + + + PassThru + + Return the removed context + + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzContext + + Name + + The name of the context + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Remove context even if it is the default + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Return the removed context + + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Remove context even if it is the default + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + A context object, normally passed through the pipeline. + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + None + + + Name + + The name of the context + + System.String + + System.String + + + None + + + PassThru + + Return the removed context + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Remove-AzContext -Name Default + + Remove the context named default + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/remove-azcontext + + + + + + Remove-AzEnvironment + Remove + AzEnvironment + + Removes endpoints and metadata for connecting to a given Azure instance. + + + + The Remove-AzEnvironment cmdlet removes endpoints and metadata information for connecting to a given Azure instance. + + + + Remove-AzEnvironment + + Name + + Specifies the name of the environment to remove. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies the name of the environment to remove. + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureEnvironment + + + + + + + + + + + + + + ----- Example 1: Creating and removing a test environment ----- + Add-AzEnvironment -Name TestEnvironment ` + -ActiveDirectoryEndpoint TestADEndpoint ` + -ActiveDirectoryServiceEndpointResourceId TestADApplicationId ` + -ResourceManagerEndpoint TestRMEndpoint ` + -GalleryEndpoint TestGalleryEndpoint ` + -GraphEndpoint TestGraphEndpoint + +Name Resource Manager Url ActiveDirectory Authority +---- -------------------- ------------------------- +TestEnvironment TestRMEndpoint TestADEndpoint/ + +Remove-AzEnvironment -Name TestEnvironment + +Name Resource Manager Url ActiveDirectory Authority +---- -------------------- ------------------------- +TestEnvironment TestRMEndpoint TestADEndpoint/ + + This example shows how to create an environment using Add-AzEnvironment, and then how to delete the environment using Remove-AzEnvironment. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/remove-azenvironment + + + Add-AzEnvironment + + + + Get-AzEnvironment + + + + Set-AzEnvironment + + + + + + + Rename-AzContext + Rename + AzContext + + Rename an Azure context. By default contexts are named by user account and subscription. + + + + Rename an Azure context. By default contexts are named by user account and subscription. + + + + Rename-AzContext + + TargetName + + The new name of the context + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Rename the context even if the target context already exists + + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + A context object, normally passed through the pipeline. + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + None + + + PassThru + + Return the renamed context. + + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Rename-AzContext + + SourceName + + The name of the context + + System.String + + System.String + + + None + + + TargetName + + The new name of the context + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Rename the context even if the target context already exists + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Return the renamed context. + + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Rename the context even if the target context already exists + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + A context object, normally passed through the pipeline. + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + None + + + PassThru + + Return the renamed context. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + SourceName + + The name of the context + + System.String + + System.String + + + None + + + TargetName + + The new name of the context + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + + + + + + + + + + + + ------ Example 1: Rename a context using named parameters ------ + Rename-AzContext -SourceName "[user1@contoso.org; 12345-6789-2345-3567890]" -TargetName "Work" + + Rename the context for 'user1@contoso.org' with subscription '12345-6789-2345-3567890' to 'Work'. After this command, you will be able to target the context using 'Select-AzContext Work'. Note that you can tab through the values for 'SourceName' using tab completion. + + + + + + --- Example 2: Rename a context using positional parameters --- + Rename-AzContext "My context" "Work" + + Rename the context named "My context" to "Work". After this command, you will be able to target the context using Select-AzContext Work + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/rename-azcontext + + + + + + Resolve-AzError + Resolve + AzError + + Display detailed information about PowerShell errors, with extended details for Azure PowerShell errors. + + + + Resolves and displays detailed information about errors in the current PowerShell session, including where the error occurred in script, stack trace, and all inner and aggregate exceptions. For Azure PowerShell errors provides additional detail in debugging service issues, including complete detail about the request and server response that caused the error. + + + + Resolve-AzError + + Error + + One or more error records to resolve. If no parameters are specified, all errors in the session are resolved. + + System.Management.Automation.ErrorRecord[] + + System.Management.Automation.ErrorRecord[] + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + Resolve-AzError + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Last + + Resolve only the last error that occurred in the session. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Error + + One or more error records to resolve. If no parameters are specified, all errors in the session are resolved. + + System.Management.Automation.ErrorRecord[] + + System.Management.Automation.ErrorRecord[] + + + None + + + Last + + Resolve only the last error that occurred in the session. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.Management.Automation.ErrorRecord[] + + + + + + + + + + Microsoft.Azure.Commands.Profile.Errors.AzureErrorRecord + + + + + + + + Microsoft.Azure.Commands.Profile.Errors.AzureExceptionRecord + + + + + + + + Microsoft.Azure.Commands.Profile.Errors.AzureRestExceptionRecord + + + + + + + + + + + + + + -------------- Example 1: Resolve the Last Error -------------- + Resolve-AzError -Last + +HistoryId: 3 + + +Message : Run Connect-AzAccount to login. +StackTrace : at Microsoft.Azure.Commands.ResourceManager.Common.AzureRMCmdlet.get_DefaultContext() in AzureRmCmdlet.cs:line 85 + at Microsoft.Azure.Commands.ResourceManager.Common.AzureRMCmdlet.LogCmdletStartInvocationInfo() in AzureRmCmdlet.cs:line 269 + at Microsoft.WindowsAzure.Commands.Utilities.Common.AzurePSCmdlet.BeginProcessing() inAzurePSCmdlet.cs:line 299 + at Microsoft.Azure.Commands.ResourceManager.Common.AzureRMCmdlet.BeginProcessing() in AzureRmCmdlet.cs:line 320 + at Microsoft.Azure.Commands.Profile.GetAzureRMSubscriptionCommand.BeginProcessing() in GetAzureRMSubscription.cs:line 49 + at System.Management.Automation.Cmdlet.DoBeginProcessing() + at System.Management.Automation.CommandProcessorBase.DoBegin() +Exception : System.Management.Automation.PSInvalidOperationException +InvocationInfo : {Get-AzSubscription} +Line : Get-AzSubscription +Position : At line:1 char:1 + + Get-AzSubscription + + ~~~~~~~~~~~~~~~~~~~~~~~ +HistoryId : 3 + + Get details of the last error. + + + + + + --------- Example 2: Resolve all Errors in the Session --------- + Resolve-AzError + +HistoryId: 8 + + +RequestId : b61309e8-09c9-4f0d-ba56-08a6b28c731d +Message : Resource group 'contoso' could not be found. +ServerMessage : ResourceGroupNotFound: Resource group 'contoso' could not be found. + (System.Collections.Generic.List`1[Microsoft.Rest.Azure.CloudError]) +ServerResponse : {NotFound} +RequestMessage : {GET https://management.azure.com/subscriptions/00977cdb-163f-435f-9c32-39ec8ae61f4d/resourceGroups/co + ntoso/providers/Microsoft.Storage/storageAccounts/contoso?api-version=2016-12-01} +InvocationInfo : {Get-AzStorageAccount} +Line : Get-AzStorageAccount -ResourceGroupName contoso -Name contoso +Position : At line:1 char:1 + + Get-AzStorageAccount -ResourceGroupName contoso -Name contoso + + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ +StackTrace : at Microsoft.Azure.Management.Storage.StorageAccountsOperations.<GetPropertiesWithHttpMessagesAsync + >d__8.MoveNext() + --- End of stack trace from previous location where exception was thrown --- + at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() + at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) + at Microsoft.Azure.Management.Storage.StorageAccountsOperationsExtensions.<GetPropertiesAsync>d__7. + MoveNext() + --- End of stack trace from previous location where exception was thrown --- + at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() + at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) + at Microsoft.Azure.Management.Storage.StorageAccountsOperationsExtensions.GetProperties(IStorageAcc + ountsOperations operations, String resourceGroupName, String accountName) + at Microsoft.Azure.Commands.Management.Storage.GetAzureStorageAccountCommand.ExecuteCmdlet() in C:\ + zd\azure-powershell\src\ResourceManager\Storage\Commands.Management.Storage\StorageAccount\GetAzureSto + rageAccount.cs:line 70 + at Microsoft.WindowsAzure.Commands.Utilities.Common.AzurePSCmdlet.ProcessRecord() in + C:\zd\azure-powershell\src\Common\Commands.Common\AzurePSCmdlet.cs:line 642 +HistoryId : 8 + + + HistoryId: 5 + + +Message : Run Connect-AzAccount to login. +StackTrace : at Microsoft.Azure.Commands.ResourceManager.Common.AzureRMCmdlet.get_DefaultContext() in C:\zd\azur + e-powershell\src\ResourceManager\Common\Commands.ResourceManager.Common\AzureRmCmdlet.cs:line 85 + at Microsoft.Azure.Commands.ResourceManager.Common.AzureRMCmdlet.LogCmdletStartInvocationInfo() in + C:\zd\azure-powershell\src\ResourceManager\Common\Commands.ResourceManager.Common\AzureRmCmdlet.cs:lin + e 269 + at Microsoft.WindowsAzure.Commands.Utilities.Common.AzurePSCmdlet.BeginProcessing() in + C:\zd\azure-powershell\src\Common\Commands.Common\AzurePSCmdlet.cs:line 299 + at Microsoft.Azure.Commands.ResourceManager.Common.AzureRMCmdlet.BeginProcessing() in C:\zd\azure-p + owershell\src\ResourceManager\Common\Commands.ResourceManager.Common\AzureRmCmdlet.cs:line 320 + at Microsoft.Azure.Commands.Profile.GetAzureRMSubscriptionCommand.BeginProcessing() in C:\zd\azure- + powershell\src\ResourceManager\Profile\Commands.Profile\Subscription\GetAzureRMSubscription.cs:line 49 + at System.Management.Automation.Cmdlet.DoBeginProcessing() + at System.Management.Automation.CommandProcessorBase.DoBegin() +Exception : System.Management.Automation.PSInvalidOperationException +InvocationInfo : {Get-AzSubscription} +Line : Get-AzSubscription +Position : At line:1 char:1 + + Get-AzSubscription + + ~~~~~~~~~~~~~~~~~~~~~~~ +HistoryId : 5 + + Get details of all errors that have occurred in the current session. + + + + + + ------------- Example 3: Resolve a Specific Error ------------- + Resolve-AzError $Error[0] + +HistoryId: 8 + + +RequestId : b61309e8-09c9-4f0d-ba56-08a6b28c731d +Message : Resource group 'contoso' could not be found. +ServerMessage : ResourceGroupNotFound: Resource group 'contoso' could not be found. + (System.Collections.Generic.List`1[Microsoft.Rest.Azure.CloudError]) +ServerResponse : {NotFound} +RequestMessage : {GET https://management.azure.com/subscriptions/00977cdb-163f-435f-9c32-39ec8ae61f4d/resourceGroups/co + ntoso/providers/Microsoft.Storage/storageAccounts/contoso?api-version=2016-12-01} +InvocationInfo : {Get-AzStorageAccount} +Line : Get-AzStorageAccount -ResourceGroupName contoso -Name contoso +Position : At line:1 char:1 + + Get-AzStorageAccount -ResourceGroupName contoso -Name contoso + + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ +StackTrace : at Microsoft.Azure.Management.Storage.StorageAccountsOperations.<GetPropertiesWithHttpMessagesAsync + >d__8.MoveNext() + --- End of stack trace from previous location where exception was thrown --- + at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() + at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) + at Microsoft.Azure.Management.Storage.StorageAccountsOperationsExtensions.<GetPropertiesAsync>d__7. + MoveNext() + --- End of stack trace from previous location where exception was thrown --- + at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() + at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) + at Microsoft.Azure.Management.Storage.StorageAccountsOperationsExtensions.GetProperties(IStorageAcc + ountsOperations operations, String resourceGroupName, String accountName) + at Microsoft.Azure.Commands.Management.Storage.GetAzureStorageAccountCommand.ExecuteCmdlet() in C:\ + zd\azure-powershell\src\ResourceManager\Storage\Commands.Management.Storage\StorageAccount\GetAzureSto + rageAccount.cs:line 70 + at Microsoft.WindowsAzure.Commands.Utilities.Common.AzurePSCmdlet.ProcessRecord() in + C:\zd\azure-powershell\src\Common\Commands.Common\AzurePSCmdlet.cs:line 642 +HistoryId : 8 + + Get details of the specified error. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/resolve-azerror + + + + + + Save-AzContext + Save + AzContext + + Saves the current authentication information for use in other PowerShell sessions. + + + + The Save-AzContext cmdlet saves the current authentication information for use in other PowerShell sessions. + + + + Save-AzContext + + Profile + + Specifies the Azure context from which this cmdlet reads. If you do not specify a context, this cmdlet reads from the local default context. + + Microsoft.Azure.Commands.Common.Authentication.Models.AzureRmProfile + + Microsoft.Azure.Commands.Common.Authentication.Models.AzureRmProfile + + + None + + + Path + + Specifies the path of the file to which to save authentication information. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Overwrite the given file if it exists + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Overwrite the given file if it exists + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Path + + Specifies the path of the file to which to save authentication information. + + System.String + + System.String + + + None + + + Profile + + Specifies the Azure context from which this cmdlet reads. If you do not specify a context, this cmdlet reads from the local default context. + + Microsoft.Azure.Commands.Common.Authentication.Models.AzureRmProfile + + Microsoft.Azure.Commands.Common.Authentication.Models.AzureRmProfile + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Common.Authentication.Models.AzureRmProfile + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureProfile + + + + + + + + + + + + + + ------- Example 1: Saving the current session's context ------- + Connect-AzAccount +Save-AzContext -Path C:\test.json + + This example saves the current session's Azure context to the JSON file provided. + + + + + + -------------- Example 2: Saving a given context -------------- + Save-AzContext -Profile (Connect-AzAccount) -Path C:\test.json + + This example saves the Azure context that is passed through to the cmdlet to the JSON file provided. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/save-azcontext + + + + + + Select-AzContext + Select + AzContext + + Select a subscription and account to target in Azure PowerShell cmdlets + + + + Select a subscription to target (or account or tenant) in Azure PowerShell cmdlets. After this cmdlet, future cmdlets will target the selected context. + + + + Select-AzContext + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + A context object, normally passed through the pipeline. + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Select-AzContext + + Name + + The name of the context + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, tenant and subscription used for communication with azure + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + A context object, normally passed through the pipeline. + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + None + + + Name + + The name of the context + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + + + + + + + + + + + + -------------- Example 1: Target a named context -------------- + Select-AzContext "Work" + +Name Account SubscriptionName Environment TenantId +---- ------- ---------------- ----------- -------- +Work test@outlook.com Subscription1 AzureCloud xxxxxxxx-x... + + Target future Azure PowerShell cmdlets at the account, tenant, and subscription in the 'Work' context. + + + + + + -------------------------- Example 2 -------------------------- + Select-AzContext -Name TestEnvironment -Scope Process + + + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/select-azcontext + + + + + + Send-Feedback + Send + Feedback + + Sends feedback to the Azure PowerShell team via a set of guided prompts. + + + + The Send-Feedback cmdlet sends feedback to the Azure PowerShell team. + + + + Send-Feedback + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + None + + + + + + + + + + System.Void + + + + + + + + + + + + + + -------------------------- Example 1: -------------------------- + Send-Feedback + +With zero (0) being the least and ten (10) being the most, how likely are you to recommend Azure PowerShell to a friend or colleague? + +10 + +What does Azure PowerShell do well? + +Response. + +Upon what could Azure PowerShell improve? + +Response. + +Please enter your email if you are interested in providing follow up information: + +your@email.com + + + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/send-feedback + + + + + + Set-AzContext + Set + AzContext + + Sets the tenant, subscription, and environment for cmdlets to use in the current session. + + + + The Set-AzContext cmdlet sets authentication information for cmdlets that you run in the current session. The context includes tenant, subscription, and environment information. + + + + Set-AzContext + + Context + + Specifies the context for the current session. + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + None + + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExtendedProperty + + Additional context properties + + System.Collections.Generic.IDictionary`2[System.String,System.String] + + System.Collections.Generic.IDictionary`2[System.String,System.String] + + + None + + + Force + + Overwrite the existing context with the same name, if any. + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Name of the context + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzContext + + Subscription + + The name or id of the subscription that the context should be set to. This parameter has aliases to -SubscriptionName and -SubscriptionId, so, for clarity, either of these can be used instead of -Subscription when specifying name and id, respectively. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExtendedProperty + + Additional context properties + + System.Collections.Generic.IDictionary`2[System.String,System.String] + + System.Collections.Generic.IDictionary`2[System.String,System.String] + + + None + + + Force + + Overwrite the existing context with the same name, if any. + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Name of the context + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Tenant + + Tenant domain name or ID + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzContext + + SubscriptionObject + + A subscription object + + Microsoft.Azure.Commands.Profile.Models.PSAzureSubscription + + Microsoft.Azure.Commands.Profile.Models.PSAzureSubscription + + + None + + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExtendedProperty + + Additional context properties + + System.Collections.Generic.IDictionary`2[System.String,System.String] + + System.Collections.Generic.IDictionary`2[System.String,System.String] + + + None + + + Force + + Overwrite the existing context with the same name, if any. + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Name of the context + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzContext + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExtendedProperty + + Additional context properties + + System.Collections.Generic.IDictionary`2[System.String,System.String] + + System.Collections.Generic.IDictionary`2[System.String,System.String] + + + None + + + Force + + Overwrite the existing context with the same name, if any. + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Name of the context + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Tenant + + Tenant domain name or ID + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzContext + + TenantObject + + A Tenant Object + + Microsoft.Azure.Commands.Profile.Models.PSAzureTenant + + Microsoft.Azure.Commands.Profile.Models.PSAzureTenant + + + None + + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExtendedProperty + + Additional context properties + + System.Collections.Generic.IDictionary`2[System.String,System.String] + + System.Collections.Generic.IDictionary`2[System.String,System.String] + + + None + + + Force + + Overwrite the existing context with the same name, if any. + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Name of the context + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Specifies the context for the current session. + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + None + + + DefaultProfile + + The credentials, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExtendedProperty + + Additional context properties + + System.Collections.Generic.IDictionary`2[System.String,System.String] + + System.Collections.Generic.IDictionary`2[System.String,System.String] + + + None + + + Force + + Overwrite the existing context with the same name, if any. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Name of the context + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Subscription + + The name or id of the subscription that the context should be set to. This parameter has aliases to -SubscriptionName and -SubscriptionId, so, for clarity, either of these can be used instead of -Subscription when specifying name and id, respectively. + + System.String + + System.String + + + None + + + SubscriptionObject + + A subscription object + + Microsoft.Azure.Commands.Profile.Models.PSAzureSubscription + + Microsoft.Azure.Commands.Profile.Models.PSAzureSubscription + + + None + + + Tenant + + Tenant domain name or ID + + System.String + + System.String + + + None + + + TenantObject + + A Tenant Object + + Microsoft.Azure.Commands.Profile.Models.PSAzureTenant + + Microsoft.Azure.Commands.Profile.Models.PSAzureTenant + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureTenant + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureSubscription + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.Core.PSAzureContext + + + + + + + + + + + + + + ----------- Example 1: Set the subscription context ----------- + Set-AzContext -Subscription "xxxx-xxxx-xxxx-xxxx" + +Name Account SubscriptionName Environment TenantId +---- ------- ---------------- ----------- -------- +Work test@outlook.com Subscription1 AzureCloud xxxxxxxx-x... + + This command sets the context to use the specified subscription. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/set-azcontext + + + Get-AzContext + + + + + + + Set-AzDefault + Set + AzDefault + + Sets a default in the current context + + + + The Set-AzDefault cmdlet adds or changes the defaults in the current context. + + + + Set-AzDefault + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Create a new resource group if specified default does not exist + + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Name of the resource group being set as default + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Create a new resource group if specified default does not exist + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Name of the resource group being set as default + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSResourceGroup + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Set-AzDefault -ResourceGroupName myResourceGroup + +Id : /subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/myResourceGroup +Name : myResourceGroup +Properties : Microsoft.Azure.Management.Internal.Resources.Models.ResourceGroupProperties +Location : eastus +ManagedBy : +Tags : + + This command sets the default resource group to the resource group specified by the user. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/set-azdefault + + + + + + Set-AzEnvironment + Set + AzEnvironment + + Sets properties for an Azure environment. + + + + The Set-AzEnvironment cmdlet sets endpoints and metadata for connecting to an instance of Azure. + + + + Set-AzEnvironment + + Name + + Specifies the name of the environment to modify. + + System.String + + System.String + + + None + + + PublishSettingsFileUrl + + Specifies the URL from which .publishsettings files can be downloaded. + + System.String + + System.String + + + None + + + AzureKeyVaultDnsSuffix + + Dns suffix of Azure Key Vault service. Example is vault-int.azure-int.net + + System.String + + System.String + + + None + + + AzureKeyVaultServiceEndpointResourceId + + Resource identifier of Azure Key Vault data service that is the recipient of the requested token. + + System.String + + System.String + + + None + + + TrafficManagerDnsSuffix + + Specifies the domain-name suffix for Azure Traffic Manager services. + + System.String + + System.String + + + None + + + SqlDatabaseDnsSuffix + + Specifies the domain-name suffix for Azure SQL Database servers. + + System.String + + System.String + + + None + + + AzureDataLakeStoreFileSystemEndpointSuffix + + Dns Suffix of Azure Data Lake Store FileSystem. Example: azuredatalake.net + + System.String + + System.String + + + None + + + AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix + + Dns Suffix of Azure Data Lake Analytics job and catalog services + + System.String + + System.String + + + None + + + EnableAdfsAuthentication + + Indicates that Active Directory Federation Services (ADFS) on-premise authentication is allowed. + + + System.Management.Automation.SwitchParameter + + + False + + + AdTenant + + Specifies the default Active Directory tenant. + + System.String + + System.String + + + None + + + GraphAudience + + The audience for tokens authenticating with the AD Graph Endpoint. + + System.String + + System.String + + + None + + + DataLakeAudience + + The audience for tokens authenticating with the AD Data Lake services Endpoint. + + System.String + + System.String + + + None + + + ServiceEndpoint + + Specifies the endpoint for Service Management (RDFE) requests. + + System.String + + System.String + + + None + + + BatchEndpointResourceId + + The resource identifier of the Azure Batch service that is the recipient of the requested token + + System.String + + System.String + + + None + + + AzureOperationalInsightsEndpointResourceId + + The audience for tokens authenticating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureOperationalInsightsEndpoint + + The endpoint to use when communicating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + ManagementPortalUrl + + Specifies the URL for the Management Portal. + + System.String + + System.String + + + None + + + StorageEndpoint + + Specifies the endpoint for storage (blob, table, queue, and file) access. + + System.String + + System.String + + + None + + + ActiveDirectoryEndpoint + + Specifies the base authority for Azure Active Directory authentication. + + System.String + + System.String + + + None + + + ResourceManagerEndpoint + + Specifies the URL for Azure Resource Manager requests. + + System.String + + System.String + + + None + + + GalleryEndpoint + + Specifies the endpoint for the Azure Resource Manager gallery of deployment templates. The parameter is to set the value to `GalleryUrl` of `PSAzureEnvironment`. As `GalleryUrl` is removed from ArmMetadata, Azure PowerShell will no longer provide for the value and so it is not recommended to set `GalleryEndpoint` anymore. + + System.String + + System.String + + + None + + + ActiveDirectoryServiceEndpointResourceId + + Specifies the audience for tokens that authenticate requests to Azure Resource Manager or Service Management (RDFE) endpoints. + + System.String + + System.String + + + None + + + GraphEndpoint + + Specifies the URL for Graph (Active Directory metadata) requests. + + System.String + + System.String + + + None + + + AzureAnalysisServicesEndpointResourceId + + The resource identifier of the Azure Analysis Services resource. + + System.String + + System.String + + + None + + + AzureAnalysisServicesEndpointSuffix + + The endpoint to use when communicating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureAttestationServiceEndpointResourceId + + The The resource identifier of the Azure Attestation service that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureAttestationServiceEndpointSuffix + + Dns suffix of Azure Attestation service. + + System.String + + System.String + + + None + + + AzureSynapseAnalyticsEndpointResourceId + + The The resource identifier of the Azure Synapse Analytics that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureSynapseAnalyticsEndpointSuffix + + Dns suffix of Azure Synapse Analytics. + + System.String + + System.String + + + None + + + ContainerRegistryEndpointSuffix + + Suffix of Azure Container Registry. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + MicrosoftGraphEndpointResourceId + + The resource identifier of Microsoft Graph + + System.String + + System.String + + + None + + + MicrosoftGraphUrl + + Microsoft Graph Url + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzEnvironment + + Name + + Specifies the name of the environment to modify. + + System.String + + System.String + + + None + + + ARMEndpoint + + The Azure Resource Manager endpoint. + + System.String + + System.String + + + None + + + AzureKeyVaultDnsSuffix + + Dns suffix of Azure Key Vault service. Example is vault-int.azure-int.net + + System.String + + System.String + + + None + + + AzureKeyVaultServiceEndpointResourceId + + Resource identifier of Azure Key Vault data service that is the recipient of the requested token. + + System.String + + System.String + + + None + + + DataLakeAudience + + The audience for tokens authenticating with the AD Data Lake services Endpoint. + + System.String + + System.String + + + None + + + BatchEndpointResourceId + + The resource identifier of the Azure Batch service that is the recipient of the requested token + + System.String + + System.String + + + None + + + AzureOperationalInsightsEndpointResourceId + + The audience for tokens authenticating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureOperationalInsightsEndpoint + + The endpoint to use when communicating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + StorageEndpoint + + Specifies the endpoint for storage (blob, table, queue, and file) access. + + System.String + + System.String + + + None + + + AzureAnalysisServicesEndpointResourceId + + The resource identifier of the Azure Analysis Services resource. + + System.String + + System.String + + + None + + + AzureAnalysisServicesEndpointSuffix + + The endpoint to use when communicating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureAttestationServiceEndpointResourceId + + The The resource identifier of the Azure Attestation service that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureAttestationServiceEndpointSuffix + + Dns suffix of Azure Attestation service. + + System.String + + System.String + + + None + + + AzureSynapseAnalyticsEndpointResourceId + + The The resource identifier of the Azure Synapse Analytics that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureSynapseAnalyticsEndpointSuffix + + Dns suffix of Azure Synapse Analytics. + + System.String + + System.String + + + None + + + ContainerRegistryEndpointSuffix + + Suffix of Azure Container Registry. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + + Process + CurrentUser + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ActiveDirectoryEndpoint + + Specifies the base authority for Azure Active Directory authentication. + + System.String + + System.String + + + None + + + ActiveDirectoryServiceEndpointResourceId + + Specifies the audience for tokens that authenticate requests to Azure Resource Manager or Service Management (RDFE) endpoints. + + System.String + + System.String + + + None + + + AdTenant + + Specifies the default Active Directory tenant. + + System.String + + System.String + + + None + + + ARMEndpoint + + The Azure Resource Manager endpoint. + + System.String + + System.String + + + None + + + AzureAnalysisServicesEndpointResourceId + + The resource identifier of the Azure Analysis Services resource. + + System.String + + System.String + + + None + + + AzureAnalysisServicesEndpointSuffix + + The endpoint to use when communicating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureAttestationServiceEndpointResourceId + + The The resource identifier of the Azure Attestation service that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureAttestationServiceEndpointSuffix + + Dns suffix of Azure Attestation service. + + System.String + + System.String + + + None + + + AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix + + Dns Suffix of Azure Data Lake Analytics job and catalog services + + System.String + + System.String + + + None + + + AzureDataLakeStoreFileSystemEndpointSuffix + + Dns Suffix of Azure Data Lake Store FileSystem. Example: azuredatalake.net + + System.String + + System.String + + + None + + + AzureKeyVaultDnsSuffix + + Dns suffix of Azure Key Vault service. Example is vault-int.azure-int.net + + System.String + + System.String + + + None + + + AzureKeyVaultServiceEndpointResourceId + + Resource identifier of Azure Key Vault data service that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureOperationalInsightsEndpoint + + The endpoint to use when communicating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureOperationalInsightsEndpointResourceId + + The audience for tokens authenticating with the Azure Log Analytics API. + + System.String + + System.String + + + None + + + AzureSynapseAnalyticsEndpointResourceId + + The The resource identifier of the Azure Synapse Analytics that is the recipient of the requested token. + + System.String + + System.String + + + None + + + AzureSynapseAnalyticsEndpointSuffix + + Dns suffix of Azure Synapse Analytics. + + System.String + + System.String + + + None + + + BatchEndpointResourceId + + The resource identifier of the Azure Batch service that is the recipient of the requested token + + System.String + + System.String + + + None + + + ContainerRegistryEndpointSuffix + + Suffix of Azure Container Registry. + + System.String + + System.String + + + None + + + DataLakeAudience + + The audience for tokens authenticating with the AD Data Lake services Endpoint. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableAdfsAuthentication + + Indicates that Active Directory Federation Services (ADFS) on-premise authentication is allowed. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + GalleryEndpoint + + Specifies the endpoint for the Azure Resource Manager gallery of deployment templates. The parameter is to set the value to `GalleryUrl` of `PSAzureEnvironment`. As `GalleryUrl` is removed from ArmMetadata, Azure PowerShell will no longer provide for the value and so it is not recommended to set `GalleryEndpoint` anymore. + + System.String + + System.String + + + None + + + GraphAudience + + The audience for tokens authenticating with the AD Graph Endpoint. + + System.String + + System.String + + + None + + + GraphEndpoint + + Specifies the URL for Graph (Active Directory metadata) requests. + + System.String + + System.String + + + None + + + ManagementPortalUrl + + Specifies the URL for the Management Portal. + + System.String + + System.String + + + None + + + MicrosoftGraphEndpointResourceId + + The resource identifier of Microsoft Graph + + System.String + + System.String + + + None + + + MicrosoftGraphUrl + + Microsoft Graph Url + + System.String + + System.String + + + None + + + Name + + Specifies the name of the environment to modify. + + System.String + + System.String + + + None + + + PublishSettingsFileUrl + + Specifies the URL from which .publishsettings files can be downloaded. + + System.String + + System.String + + + None + + + ResourceManagerEndpoint + + Specifies the URL for Azure Resource Manager requests. + + System.String + + System.String + + + None + + + Scope + + Determines the scope of context changes, for example, whether changes apply only to the current process, or to all sessions started by this user. + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + Microsoft.Azure.Commands.Profile.Common.ContextModificationScope + + + None + + + ServiceEndpoint + + Specifies the endpoint for Service Management (RDFE) requests. + + System.String + + System.String + + + None + + + SqlDatabaseDnsSuffix + + Specifies the domain-name suffix for Azure SQL Database servers. + + System.String + + System.String + + + None + + + StorageEndpoint + + Specifies the endpoint for storage (blob, table, queue, and file) access. + + System.String + + System.String + + + None + + + TrafficManagerDnsSuffix + + Specifies the domain-name suffix for Azure Traffic Manager services. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + System.Management.Automation.SwitchParameter + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSAzureEnvironment + + + + + + + + + + + + + + ----- Example 1: Creating and modifying a new environment ----- + Add-AzEnvironment -Name TestEnvironment ` + -ActiveDirectoryEndpoint TestADEndpoint ` + -ActiveDirectoryServiceEndpointResourceId TestADApplicationId ` + -ResourceManagerEndpoint TestRMEndpoint ` + -GalleryEndpoint TestGalleryEndpoint ` + -GraphEndpoint TestGraphEndpoint + +Name Resource Manager Url ActiveDirectory Authority +---- -------------------- ------------------------- +TestEnvironment TestRMEndpoint TestADEndpoint/ + +Set-AzEnvironment -Name TestEnvironment ` + -ActiveDirectoryEndpoint NewTestADEndpoint ` + -GraphEndpoint NewTestGraphEndpoint | Format-List + +Name : TestEnvironment +EnableAdfsAuthentication : False +ActiveDirectoryServiceEndpointResourceId : TestADApplicationId +AdTenant : +GalleryUrl : TestGalleryEndpoint +ManagementPortalUrl : +ServiceManagementUrl : +PublishSettingsFileUrl : +ResourceManagerUrl : TestRMEndpoint +SqlDatabaseDnsSuffix : +StorageEndpointSuffix : +ActiveDirectoryAuthority : NewTestADEndpoint +GraphUrl : NewTestGraphEndpoint +GraphEndpointResourceId : +TrafficManagerDnsSuffix : +AzureKeyVaultDnsSuffix : +AzureDataLakeStoreFileSystemEndpointSuffix : +AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix : +AzureKeyVaultServiceEndpointResourceId : +BatchEndpointResourceId : +AzureOperationalInsightsEndpoint : +AzureOperationalInsightsEndpointResourceId : +AzureAttestationServiceEndpointSuffix : +AzureAttestationServiceEndpointResourceId : +AzureSynapseAnalyticsEndpointSuffix : +AzureSynapseAnalyticsEndpointResourceId : + + In this example we are creating a new Azure environment with sample endpoints using Add-AzEnvironment, and then we are changing the value of the ActiveDirectoryEndpoint and GraphEndpoint attributes of the created environment using the cmdlet Set-AzEnvironment. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/set-azenvironment + + + Add-AzEnvironment + + + + Get-AzEnvironment + + + + Remove-AzEnvironment + + + + + + + Uninstall-AzureRm + Uninstall + AzureRm + + Removes all AzureRm modules from a machine. + + + + Removes all AzureRm modules from a machine. + + + + Uninstall-AzureRm + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Return list of Modules removed if specified. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Return list of Modules removed if specified. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + None + + + + + + + + + + System.String + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Uninstall-AzureRm + + Running this command will remove all AzureRm modules from the machine for the version of PowerShell in which the cmdlet is run. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/uninstall-azurerm + + + + + + Update-AzConfig + Update + AzConfig + + Updates the configs of Azure PowerShell. + + + + Updates the configs of Azure PowerShell. Depending on which config to update, you may specify the scope where the config is persisted and to which module or cmdlet it applies to. + > [!NOTE] > It is discouraged to update configs in multiple PowerShell processes. Either do it in one process, or make sure the updates are at Process scope (`-Scope Process`) to avoid unexpected side-effects. + + + + Update-AzConfig + + AppliesTo + + Specifies what part of Azure PowerShell the config applies to. Possible values are: - "Az": the config applies to all modules and cmdlets of Azure PowerShell. + - Module name: the config applies to a certain module of Azure PowerShell. + For example, "Az.Storage". - Cmdlet name: the config applies to a certain cmdlet of Azure PowerShell. For example, "Get-AzKeyVault". If not specified, when getting or clearing configs, it defaults to all the above; when updating, it defaults to "Az". + + System.String + + System.String + + + None + + + CheckForUpgrade + + When enabled, Azure PowerShell will check for updates automatically and display a hint message when an update is available. The default value will be changed from false to true in Az version 11.0.0. + + System.Boolean + + System.Boolean + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSubscriptionForLogin + + Subscription name or GUID. Sets the default context for Azure PowerShell when logging in without specifying a subscription. + + System.String + + System.String + + + None + + + DisableErrorRecordsPersistence + + When disabled, error records will not be written to ~/.Azure/ErrorRecords. This config will be replaced by "EnableErrorRecordsPersistence" as opt-in in the next major release of Az around November 2023. + + System.Boolean + + System.Boolean + + + None + + + DisplayBreakingChangeWarning + + Controls if warning messages for breaking changes are displayed or suppressed. When enabled, a breaking change warning is displayed when executing cmdlets with breaking changes in a future release. + + System.Boolean + + System.Boolean + + + None + + + DisplayRegionIdentified + + When enabled, Azure PowerShell displays recommendations on regions which may reduce your costs. + + System.Boolean + + System.Boolean + + + None + + + DisplaySurveyMessage + + When enabled, you are prompted infrequently to participate in user experience surveys for Azure PowerShell. + + System.Boolean + + System.Boolean + + + None + + + EnableDataCollection + + When enabled, Azure PowerShell cmdlets send telemetry data to Microsoft to improve the customer experience. For more information, see our privacy statement: https://aka.ms/privacy + + System.Boolean + + System.Boolean + + + None + + + EnableLoginByWam + + [Preview] When enabled, Web Account Manager (WAM) will be the default interactive login experience. It will fall back to using the browser if the platform does not support WAM. Note that this feature is under preview. Microsoft Account (MSA) is currently not supported. Feel free to reach out to Azure PowerShell team if you have any feedbacks: https://aka.ms/azpsissue + + System.Boolean + + System.Boolean + + + None + + + Scope + + Determines the scope of config changes, for example, whether changes apply only to the current process, or to all sessions started by this user. By default it is CurrentUser. + + + CurrentUser + Process + Default + Environment + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AppliesTo + + Specifies what part of Azure PowerShell the config applies to. Possible values are: - "Az": the config applies to all modules and cmdlets of Azure PowerShell. + - Module name: the config applies to a certain module of Azure PowerShell. + For example, "Az.Storage". - Cmdlet name: the config applies to a certain cmdlet of Azure PowerShell. For example, "Get-AzKeyVault". If not specified, when getting or clearing configs, it defaults to all the above; when updating, it defaults to "Az". + + System.String + + System.String + + + None + + + CheckForUpgrade + + When enabled, Azure PowerShell will check for updates automatically and display a hint message when an update is available. The default value will be changed from false to true in Az version 11.0.0. + + System.Boolean + + System.Boolean + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSubscriptionForLogin + + Subscription name or GUID. Sets the default context for Azure PowerShell when logging in without specifying a subscription. + + System.String + + System.String + + + None + + + DisableErrorRecordsPersistence + + When disabled, error records will not be written to ~/.Azure/ErrorRecords. This config will be replaced by "EnableErrorRecordsPersistence" as opt-in in the next major release of Az around November 2023. + + System.Boolean + + System.Boolean + + + None + + + DisplayBreakingChangeWarning + + Controls if warning messages for breaking changes are displayed or suppressed. When enabled, a breaking change warning is displayed when executing cmdlets with breaking changes in a future release. + + System.Boolean + + System.Boolean + + + None + + + DisplayRegionIdentified + + When enabled, Azure PowerShell displays recommendations on regions which may reduce your costs. + + System.Boolean + + System.Boolean + + + None + + + DisplaySurveyMessage + + When enabled, you are prompted infrequently to participate in user experience surveys for Azure PowerShell. + + System.Boolean + + System.Boolean + + + None + + + EnableDataCollection + + When enabled, Azure PowerShell cmdlets send telemetry data to Microsoft to improve the customer experience. For more information, see our privacy statement: https://aka.ms/privacy + + System.Boolean + + System.Boolean + + + None + + + EnableLoginByWam + + [Preview] When enabled, Web Account Manager (WAM) will be the default interactive login experience. It will fall back to using the browser if the platform does not support WAM. Note that this feature is under preview. Microsoft Account (MSA) is currently not supported. Feel free to reach out to Azure PowerShell team if you have any feedbacks: https://aka.ms/azpsissue + + System.Boolean + + System.Boolean + + + None + + + Scope + + Determines the scope of config changes, for example, whether changes apply only to the current process, or to all sessions started by this user. By default it is CurrentUser. + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + Microsoft.Azure.PowerShell.Common.Config.ConfigScope + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + System.Boolean + + + + + + + + + + Microsoft.Azure.Commands.Profile.Models.PSConfig + + + + + + + + + + + + + + -------------------------- Example 1 -------------------------- + Update-AzConfig -DefaultSubscriptionForLogin "Name of subscription" + +Key Value Applies To Scope Help Message +--- ----- ---------- ----- ------------ +DefaultSubscriptionForLogin Name of subscription Az CurrentUser Subscription name or GUID. Sets the default context for Azure PowerShell when lo… + + Sets the "DefaultSubscriptionForLogin" config as "Name of subscription". When `Connect-AzAccount` the specified subscription will be selected as the default subscription. + + + + + + -------------------------- Example 2 -------------------------- + Update-AzConfig -DisplayBreakingChangeWarning $false -AppliesTo "Az.KeyVault" + +Key Value Applies To Scope Help Message +--- ----- ---------- ----- ------------ +DisplayBreakingChangeWarning False Az.KeyVault CurrentUser Controls if warning messages for breaking changes are displayed or suppressed. When enabled,… + + Sets the "DisplayBreakingChangeWarnings" config as "$false" for "Az.KeyVault" module. This prevents all the warning messages for upcoming breaking changes in Az.KeyVault module from prompting. + + + + + + -------------------------- Example 3 -------------------------- + Update-AzConfig -EnableDataCollection $true + +Key Value Applies To Scope Help Message +--- ----- ---------- ----- ------------ +EnableDataCollection True Az CurrentUser When enabled, Azure PowerShell cmdlets send telemetry data to Microsoft to improve the customer experi… + + Sets the "EnableDataCollection" config as "$true". This enables sending the telemetry data. Setting this config is equivalent to `Enable-AzDataCollection` and `Disable-AzDataCollection`. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.accounts/update-azconfig + + + + \ No newline at end of file diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Common.Share.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Common.Share.dll new file mode 100644 index 000000000000..3d53eaa669dc Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Common.Share.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Common.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Common.dll new file mode 100644 index 000000000000..2443eb5dd56a Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Common.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Storage.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Storage.dll new file mode 100644 index 000000000000..a163f556b3f8 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Storage.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Strategies.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Strategies.dll new file mode 100644 index 000000000000..0ccbb5ead102 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Azure.PowerShell.Strategies.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Rest.ClientRuntime.Azure.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Rest.ClientRuntime.Azure.dll new file mode 100644 index 000000000000..1d99c7015912 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Rest.ClientRuntime.Azure.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.Rest.ClientRuntime.dll b/Modules/Az.Accounts/2.13.1/Microsoft.Rest.ClientRuntime.dll new file mode 100644 index 000000000000..a4fca7488baf Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.Rest.ClientRuntime.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.WindowsAzure.Storage.DataMovement.dll b/Modules/Az.Accounts/2.13.1/Microsoft.WindowsAzure.Storage.DataMovement.dll new file mode 100644 index 000000000000..6ac672abd486 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.WindowsAzure.Storage.DataMovement.dll differ diff --git a/Modules/Az.Accounts/2.13.1/Microsoft.WindowsAzure.Storage.dll b/Modules/Az.Accounts/2.13.1/Microsoft.WindowsAzure.Storage.dll new file mode 100644 index 000000000000..70c5ed6806c6 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/Microsoft.WindowsAzure.Storage.dll differ diff --git a/Modules/Az.Accounts/2.13.1/PSGetModuleInfo.xml b/Modules/Az.Accounts/2.13.1/PSGetModuleInfo.xml new file mode 100644 index 000000000000..7f3fcdb49c94 --- /dev/null +++ b/Modules/Az.Accounts/2.13.1/PSGetModuleInfo.xml @@ -0,0 +1,204 @@ + + + + Microsoft.PowerShell.Commands.PSRepositoryItemInfo + System.Management.Automation.PSCustomObject + System.Object + + + Az.Accounts + 2.13.1 + Module + Microsoft Azure PowerShell - Accounts credential management cmdlets for Azure Resource Manager in Windows PowerShell and PowerShell Core._x000D__x000A__x000D__x000A_For more information on account credential management, please visit the following: https://learn.microsoft.com/powershell/azure/authenticate-azureps + Microsoft Corporation + azure-sdk + Microsoft Corporation. All rights reserved. +
2023-09-26T01:21:07+02:00
+ + + https://aka.ms/azps-license + https://github.com/Azure/azure-powershell + + + + System.Object[] + System.Array + System.Object + + + Azure + ResourceManager + ARM + Accounts + Authentication + Environment + Subscription + PSModule + PSEdition_Core + PSEdition_Desktop + + + + + System.Collections.Hashtable + System.Object + + + + DscResource + + + + + + + Command + + + + Disable-AzDataCollection + Disable-AzContextAutosave + Enable-AzDataCollection + Enable-AzContextAutosave + Remove-AzEnvironment + Get-AzEnvironment + Set-AzEnvironment + Add-AzEnvironment + Get-AzSubscription + Connect-AzAccount + Get-AzContext + Set-AzContext + Import-AzContext + Save-AzContext + Get-AzTenant + Send-Feedback + Resolve-AzError + Select-AzContext + Rename-AzContext + Remove-AzContext + Clear-AzContext + Disconnect-AzAccount + Get-AzContextAutosaveSetting + Set-AzDefault + Get-AzDefault + Clear-AzDefault + Register-AzModule + Enable-AzureRmAlias + Disable-AzureRmAlias + Uninstall-AzureRm + Invoke-AzRestMethod + Get-AzAccessToken + Open-AzSurveyLink + Get-AzConfig + Update-AzConfig + Clear-AzConfig + Export-AzConfig + Import-AzConfig + + + + + Function + + + + RoleCapability + + + + Cmdlet + + + + Disable-AzDataCollection + Disable-AzContextAutosave + Enable-AzDataCollection + Enable-AzContextAutosave + Remove-AzEnvironment + Get-AzEnvironment + Set-AzEnvironment + Add-AzEnvironment + Get-AzSubscription + Connect-AzAccount + Get-AzContext + Set-AzContext + Import-AzContext + Save-AzContext + Get-AzTenant + Send-Feedback + Resolve-AzError + Select-AzContext + Rename-AzContext + Remove-AzContext + Clear-AzContext + Disconnect-AzAccount + Get-AzContextAutosaveSetting + Set-AzDefault + Get-AzDefault + Clear-AzDefault + Register-AzModule + Enable-AzureRmAlias + Disable-AzureRmAlias + Uninstall-AzureRm + Invoke-AzRestMethod + Get-AzAccessToken + Open-AzSurveyLink + Get-AzConfig + Update-AzConfig + Clear-AzConfig + Export-AzConfig + Import-AzConfig + + + + + Workflow + + + + + + * Added the module name in breaking change messages _x000D__x000A_* Upgraded Microsoft.ApplicationInsights version from 2.13.1 to 2.18.0 + + + + + https://www.powershellgallery.com/api/v2 + PSGallery + NuGet + + + System.Management.Automation.PSCustomObject + System.Object + + + Microsoft Corporation. All rights reserved. + Microsoft Azure PowerShell - Accounts credential management cmdlets for Azure Resource Manager in Windows PowerShell and PowerShell Core._x000D__x000A__x000D__x000A_For more information on account credential management, please visit the following: https://learn.microsoft.com/powershell/azure/authenticate-azureps + True + * Added the module name in breaking change messages _x000D__x000A_* Upgraded Microsoft.ApplicationInsights version from 2.13.1 to 2.18.0 + True + True + 12674952 + 205804084 + 9678831 + 26/09/2023 01:21:07 +02:00 + 26/09/2023 01:21:07 +02:00 + 21/10/2023 12:36:30 +02:00 + Azure ResourceManager ARM Accounts Authentication Environment Subscription PSModule PSEdition_Core PSEdition_Desktop PSCmdlet_Disable-AzDataCollection PSCommand_Disable-AzDataCollection PSCmdlet_Disable-AzContextAutosave PSCommand_Disable-AzContextAutosave PSCmdlet_Enable-AzDataCollection PSCommand_Enable-AzDataCollection PSCmdlet_Enable-AzContextAutosave PSCommand_Enable-AzContextAutosave PSCmdlet_Remove-AzEnvironment PSCommand_Remove-AzEnvironment PSCmdlet_Get-AzEnvironment PSCommand_Get-AzEnvironment PSCmdlet_Set-AzEnvironment PSCommand_Set-AzEnvironment PSCmdlet_Add-AzEnvironment PSCommand_Add-AzEnvironment PSCmdlet_Get-AzSubscription PSCommand_Get-AzSubscription PSCmdlet_Connect-AzAccount PSCommand_Connect-AzAccount PSCmdlet_Get-AzContext PSCommand_Get-AzContext PSCmdlet_Set-AzContext PSCommand_Set-AzContext PSCmdlet_Import-AzContext PSCommand_Import-AzContext PSCmdlet_Save-AzContext PSCommand_Save-AzContext PSCmdlet_Get-AzTenant PSCommand_Get-AzTenant PSCmdlet_Send-Feedback PSCommand_Send-Feedback PSCmdlet_Resolve-AzError PSCommand_Resolve-AzError PSCmdlet_Select-AzContext PSCommand_Select-AzContext PSCmdlet_Rename-AzContext PSCommand_Rename-AzContext PSCmdlet_Remove-AzContext PSCommand_Remove-AzContext PSCmdlet_Clear-AzContext PSCommand_Clear-AzContext PSCmdlet_Disconnect-AzAccount PSCommand_Disconnect-AzAccount PSCmdlet_Get-AzContextAutosaveSetting PSCommand_Get-AzContextAutosaveSetting PSCmdlet_Set-AzDefault PSCommand_Set-AzDefault PSCmdlet_Get-AzDefault PSCommand_Get-AzDefault PSCmdlet_Clear-AzDefault PSCommand_Clear-AzDefault PSCmdlet_Register-AzModule PSCommand_Register-AzModule PSCmdlet_Enable-AzureRmAlias PSCommand_Enable-AzureRmAlias PSCmdlet_Disable-AzureRmAlias PSCommand_Disable-AzureRmAlias PSCmdlet_Uninstall-AzureRm PSCommand_Uninstall-AzureRm PSCmdlet_Invoke-AzRestMethod PSCommand_Invoke-AzRestMethod PSCmdlet_Get-AzAccessToken PSCommand_Get-AzAccessToken PSCmdlet_Open-AzSurveyLink PSCommand_Open-AzSurveyLink PSCmdlet_Get-AzConfig PSCommand_Get-AzConfig PSCmdlet_Update-AzConfig PSCommand_Update-AzConfig PSCmdlet_Clear-AzConfig PSCommand_Clear-AzConfig PSCmdlet_Export-AzConfig PSCommand_Export-AzConfig PSCmdlet_Import-AzConfig PSCommand_Import-AzConfig PSIncludes_Cmdlet + False + 2023-10-21T12:36:30Z + 2.13.1 + Microsoft Corporation + false + Module + Az.Accounts.nuspec|Accounts.format.ps1xml|Accounts.generated.format.ps1xml|lib\netcoreapp2.1\Azure.Core.dll|Accounts.types.ps1xml|lib\netcoreapp2.1\Microsoft.Identity.Client.dll|lib\netcoreapp3.1\Microsoft.Identity.Client.Extensions.Msal.dll|Az.Accounts.psd1|lib\netfx\Azure.Core.dll|Az.Accounts.psm1|lib\netfx\Microsoft.Identity.Client.dll|FuzzySharp.dll|lib\netfx\Microsoft.Identity.Client.Extensions.Msal.dll|Hyak.Common.dll|lib\netfx\Newtonsoft.Json.dll|Microsoft.ApplicationInsights.dll|lib\netfx\System.Diagnostics.DiagnosticSource.dll|Microsoft.Azure.Common.dll|lib\netfx\System.Numerics.Vectors.dll|Microsoft.Azure.PowerShell.AssemblyLoading.dll|lib\netfx\System.Reflection.DispatchProxy.dll|Microsoft.Azure.PowerShell.Authentication.Abstractions.dll|lib\netfx\System.Runtime.CompilerServices.Unsafe.dll|Microsoft.Azure.PowerShell.Authentication.dll|lib\netfx\System.Security.Cryptography.Cng.dll|Microsoft.Azure.PowerShell.Authentication.ResourceManager.dll|lib\netfx\System.Text.Encodings.Web.dll|Microsoft.Azure.PowerShell.AuthenticationAssemblyLoadContext.dll|lib\netfx\System.Xml.ReaderWriter.dll|Microsoft.Azure.PowerShell.Authenticators.dll|lib\netstandard2.0\Azure.Identity.BrokeredAuthentication.dll|Microsoft.Azure.PowerShell.Clients.Aks.dll|lib\netstandard2.0\Azure.Identity.dll|Microsoft.Azure.PowerShell.Clients.Authorization.dll|lib\netstandard2.0\Microsoft.Bcl.AsyncInterfaces.dll|Microsoft.Azure.PowerShell.Clients.Compute.dll|lib\netstandard2.0\Microsoft.Identity.Client.Broker.dll|Microsoft.Azure.PowerShell.Clients.Graph.Rbac.dll|lib\netstandard2.0\Microsoft.Identity.Client.NativeInterop.dll|Microsoft.Azure.PowerShell.Clients.KeyVault.dll|lib\netstandard2.0\Microsoft.IdentityModel.Abstractions.dll|Microsoft.Azure.PowerShell.Clients.Monitor.dll|lib\netstandard2.0\msalruntime.dll|Microsoft.Azure.PowerShell.Clients.Network.dll|lib\netstandard2.0\msalruntime_arm64.dll|Microsoft.Azure.PowerShell.Clients.PolicyInsights.dll|lib\netstandard2.0\msalruntime_x005F_x86.dll|Microsoft.Azure.PowerShell.Clients.ResourceManager.dll|lib\netstandard2.0\System.Buffers.dll|Microsoft.Azure.PowerShell.Clients.Storage.Management.dll|lib\netstandard2.0\System.Memory.Data.dll|Microsoft.Azure.PowerShell.Clients.Websites.dll|lib\netstandard2.0\System.Memory.dll|Microsoft.Azure.PowerShell.Cmdlets.Accounts.dll|lib\netstandard2.0\System.Net.Http.WinHttpHandler.dll|Microsoft.Azure.PowerShell.Cmdlets.Accounts.dll-Help.xml|lib\netstandard2.0\System.Private.ServiceModel.dll|Microsoft.Azure.PowerShell.Common.dll|lib\netstandard2.0\System.Security.AccessControl.dll|Microsoft.Azure.PowerShell.Common.Share.dll|lib\netstandard2.0\System.Security.Permissions.dll|Microsoft.Azure.PowerShell.Storage.dll|lib\netstandard2.0\System.Security.Principal.Windows.dll|Microsoft.Azure.PowerShell.Strategies.dll|lib\netstandard2.0\System.ServiceModel.Primitives.dll|Microsoft.Rest.ClientRuntime.Azure.dll|lib\netstandard2.0\System.Text.Json.dll|Microsoft.Rest.ClientRuntime.dll|lib\netstandard2.0\System.Threading.Tasks.Extensions.dll|Microsoft.WindowsAzure.Storage.DataMovement.dll|PostImportScripts\LoadAuthenticators.ps1|Microsoft.WindowsAzure.Storage.dll|StartupScripts\AzError.ps1|en-US\about_az.help.txt|StartupScripts\InitializeAssemblyResolver.ps1 + 17a2feff-488b-47f9-8729-e2cec094624c + 5.1 + 4.7.2 + Microsoft Corporation + + + C:\Github\CIPP-API\Az.Accounts\2.13.1 + + + diff --git a/Modules/Az.Accounts/2.13.1/PostImportScripts/LoadAuthenticators.ps1 b/Modules/Az.Accounts/2.13.1/PostImportScripts/LoadAuthenticators.ps1 new file mode 100644 index 000000000000..1a6de8a08d69 --- /dev/null +++ b/Modules/Az.Accounts/2.13.1/PostImportScripts/LoadAuthenticators.ps1 @@ -0,0 +1,222 @@ +if ($PSEdition -eq 'Desktop') { + try { + [Microsoft.Azure.Commands.Profile.Utilities.CustomAssemblyResolver]::Initialize() + } catch {} +} +# SIG # Begin signature block +# MIIoPAYJKoZIhvcNAQcCoIIoLTCCKCkCAQExDzANBglghkgBZQMEAgEFADB5Bgor +# BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG +# KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCBn8ROze2QLH/c6 +# GtPhR/BPLgOtmjkNhcq+fFmu16VcrqCCDYUwggYDMIID66ADAgECAhMzAAADTU6R +# phoosHiPAAAAAANNMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD +# VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p +# bmcgUENBIDIwMTEwHhcNMjMwMzE2MTg0MzI4WhcNMjQwMzE0MTg0MzI4WjB0MQsw +# CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u +# ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB +# AQDUKPcKGVa6cboGQU03ONbUKyl4WpH6Q2Xo9cP3RhXTOa6C6THltd2RfnjlUQG+ +# Mwoy93iGmGKEMF/jyO2XdiwMP427j90C/PMY/d5vY31sx+udtbif7GCJ7jJ1vLzd +# j28zV4r0FGG6yEv+tUNelTIsFmmSb0FUiJtU4r5sfCThvg8dI/F9Hh6xMZoVti+k +# bVla+hlG8bf4s00VTw4uAZhjGTFCYFRytKJ3/mteg2qnwvHDOgV7QSdV5dWdd0+x +# zcuG0qgd3oCCAjH8ZmjmowkHUe4dUmbcZfXsgWlOfc6DG7JS+DeJak1DvabamYqH +# g1AUeZ0+skpkwrKwXTFwBRltAgMBAAGjggGCMIIBfjAfBgNVHSUEGDAWBgorBgEE +# AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQUId2Img2Sp05U6XI04jli2KohL+8w +# VAYDVR0RBE0wS6RJMEcxLTArBgNVBAsTJE1pY3Jvc29mdCBJcmVsYW5kIE9wZXJh +# dGlvbnMgTGltaXRlZDEWMBQGA1UEBRMNMjMwMDEyKzUwMDUxNzAfBgNVHSMEGDAW +# gBRIbmTlUAXTgqoXNzcitW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8v +# d3d3Lm1pY3Jvc29mdC5jb20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIw +# MTEtMDctMDguY3JsMGEGCCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDov +# L3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDEx +# XzIwMTEtMDctMDguY3J0MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIB +# ACMET8WuzLrDwexuTUZe9v2xrW8WGUPRQVmyJ1b/BzKYBZ5aU4Qvh5LzZe9jOExD +# YUlKb/Y73lqIIfUcEO/6W3b+7t1P9m9M1xPrZv5cfnSCguooPDq4rQe/iCdNDwHT +# 6XYW6yetxTJMOo4tUDbSS0YiZr7Mab2wkjgNFa0jRFheS9daTS1oJ/z5bNlGinxq +# 2v8azSP/GcH/t8eTrHQfcax3WbPELoGHIbryrSUaOCphsnCNUqUN5FbEMlat5MuY +# 94rGMJnq1IEd6S8ngK6C8E9SWpGEO3NDa0NlAViorpGfI0NYIbdynyOB846aWAjN +# fgThIcdzdWFvAl/6ktWXLETn8u/lYQyWGmul3yz+w06puIPD9p4KPiWBkCesKDHv +# XLrT3BbLZ8dKqSOV8DtzLFAfc9qAsNiG8EoathluJBsbyFbpebadKlErFidAX8KE +# usk8htHqiSkNxydamL/tKfx3V/vDAoQE59ysv4r3pE+zdyfMairvkFNNw7cPn1kH +# Gcww9dFSY2QwAxhMzmoM0G+M+YvBnBu5wjfxNrMRilRbxM6Cj9hKFh0YTwba6M7z +# ntHHpX3d+nabjFm/TnMRROOgIXJzYbzKKaO2g1kWeyG2QtvIR147zlrbQD4X10Ab +# rRg9CpwW7xYxywezj+iNAc+QmFzR94dzJkEPUSCJPsTFMIIHejCCBWKgAwIBAgIK +# YQ6Q0gAAAAAAAzANBgkqhkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNV +# BAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jv +# c29mdCBDb3Jwb3JhdGlvbjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlm +# aWNhdGUgQXV0aG9yaXR5IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEw +# OTA5WjB+MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UE +# BxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYD +# VQQDEx9NaWNyb3NvZnQgQ29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG +# 9w0BAQEFAAOCAg8AMIICCgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+la +# UKq4BjgaBEm6f8MMHt03a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc +# 6Whe0t+bU7IKLMOv2akrrnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4D +# dato88tt8zpcoRb0RrrgOGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+ +# lD3v++MrWhAfTVYoonpy4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nk +# kDstrjNYxbc+/jLTswM9sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6 +# A4aN91/w0FK/jJSHvMAhdCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmd +# X4jiJV3TIUs+UsS1Vz8kA/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL +# 5zmhD+kjSbwYuER8ReTBw3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zd +# sGbiwZeBe+3W7UvnSSmnEyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3 +# T8HhhUSJxAlMxdSlQy90lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS +# 4NaIjAsCAwEAAaOCAe0wggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRI +# bmTlUAXTgqoXNzcitW2oynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTAL +# BgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBD +# uRQFTuHqp8cx0SOJNDBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jv +# c29mdC5jb20vcGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFf +# MDNfMjIuY3JsMF4GCCsGAQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3 +# dy5taWNyb3NvZnQuY29tL3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFf +# MDNfMjIuY3J0MIGfBgNVHSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEF +# BQcCARYzaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1h +# cnljcHMuaHRtMEAGCCsGAQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkA +# YwB5AF8AcwB0AGEAdABlAG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn +# 8oalmOBUeRou09h0ZyKbC5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7 +# v0epo/Np22O/IjWll11lhJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0b +# pdS1HXeUOeLpZMlEPXh6I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/ +# KmtYSWMfCWluWpiW5IP0wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvy +# CInWH8MyGOLwxS3OW560STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBp +# mLJZiWhub6e3dMNABQamASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJi +# hsMdYzaXht/a8/jyFqGaJ+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYb +# BL7fQccOKO7eZS/sl/ahXJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbS +# oqKfenoi+kiVH6v7RyOA9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sL +# gOppO6/8MO0ETI7f33VtY5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtX +# cVZOSEXAQsmbdlsKgEhr/Xmfwb1tbWrJUnMTDXpQzTGCGg0wghoJAgEBMIGVMH4x +# CzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRt +# b25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01p +# Y3Jvc29mdCBDb2RlIFNpZ25pbmcgUENBIDIwMTECEzMAAANNTpGmGiiweI8AAAAA +# A00wDQYJYIZIAWUDBAIBBQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQw +# HAYKKwYBBAGCNwIBCzEOMAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIC8M +# Xy0xGn+XGeN5xhSUhsVdQGTLtuHOS5+U3UgQ1k53MEIGCisGAQQBgjcCAQwxNDAy +# oBSAEgBNAGkAYwByAG8AcwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5j +# b20wDQYJKoZIhvcNAQEBBQAEggEAf/y9IwVq9QTOrbQE7i6AVISmUE6gxgH9PaqX +# D6xL8+9cpj9Y6/kfZ6Zw1Z04+XY4c5dhmIJuWcRjx+i5yXFmp0fyaDfNpalcQlJv +# 1yplKVfyAsVpod7RIH4YvrwP2c/gvYSLRF9k1a/QyIT4yTfPFGaR42tZ0MAyWHhz +# t5ZdXN3dPJt865YoEzv7pPZN29w4mjfr78s6XxeYYARLHPdw/rChVioeia9TyNl9 +# QCKfm9Kar9oDLel2pMgRuonn40KhF85e93XvVLO1PMGXzljlkGWY7PmHuXiOJeyS +# xOe/+p56sTLtL2yIjl/8SDLVGi7LJ7Y93hQGv9yd8U9Tio/mVqGCF5cwgheTBgor +# BgEEAYI3AwMBMYIXgzCCF38GCSqGSIb3DQEHAqCCF3AwghdsAgEDMQ8wDQYJYIZI +# AWUDBAIBBQAwggFSBgsqhkiG9w0BCRABBKCCAUEEggE9MIIBOQIBAQYKKwYBBAGE +# WQoDATAxMA0GCWCGSAFlAwQCAQUABCAkPO6Va7JVENY1DGO3Rgl+LBuXva2N4CJh +# CxPTspOx1QIGZQP2LMVBGBMyMDIzMDkyMDA1NTA0NC41MDZaMASAAgH0oIHRpIHO +# MIHLMQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMH +# UmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQL +# ExxNaWNyb3NvZnQgQW1lcmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxk +# IFRTUyBFU046OEQwMC0wNUUwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1l +# LVN0YW1wIFNlcnZpY2WgghHtMIIHIDCCBQigAwIBAgITMwAAAc1VByrnysGZHQAB +# AAABzTANBgkqhkiG9w0BAQsFADB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2Fz +# aGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENv +# cnBvcmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAx +# MDAeFw0yMzA1MjUxOTEyMDVaFw0yNDAyMDExOTEyMDVaMIHLMQswCQYDVQQGEwJV +# UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE +# ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1l +# cmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046OEQwMC0w +# NUUwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2Uw +# ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDTOCLVS2jmEWOqxzygW7s6 +# YLmm29pjvA+Ch6VL7HlTL8yUt3Z0KIzTa2O/Hvr/aJza1qEVklq7NPiOrpBAIz65 +# 7LVxwEc4BxJiv6B68a8DQiF6WAFFNaK3WHi7TfxRnqLohgNz7vZPylZQX795r8MQ +# vX56uwjj/R4hXnR7Na4Llu4mWsml/wp6VJqCuxZnu9jX4qaUxngcrfFT7+zvlXCl +# wLah2n0eGKna1dOjOgyK00jYq5vtzr5NZ+qVxqaw9DmEsj9vfqYkfQZry2JO5wmg +# XX79Ox7PLMUfqT4+8w5JkdSMoX32b1D6cDKWRUv5qjiYh4o/a9ehE/KAkUWlSPbb +# DR/aGnPJLAGPy2qA97YCBeeIJjRKURgdPlhE5O46kOju8nYJnIvxbuC2Qp2jxwc6 +# rD9M6Pvc8sZIcQ10YKZVYKs94YPSlkhwXwttbRY+jZnQiDm2ZFjH8SPe1I6ERcfe +# YX1zCYjEzdwWcm+fFZmlJA9HQW7ZJAmOECONtfK28EREEE5yzq+T3QMVPhiEfEhg +# cYsh0DeoWiYGsDiKEuS+FElMMyT456+U2ZRa2hbRQ97QcbvaAd6OVQLp3TQqNEu0 +# es5Zq0wg2CADf+QKQR/Y6+fGgk9qJNJW3Mu771KthuPlNfKss0B1zh0xa1yN4qC3 +# zoE9Uq6T8r7G3/OtSFms4wIDAQABo4IBSTCCAUUwHQYDVR0OBBYEFKGT+aY2aZrB +# AJVIZh5kicokfNWaMB8GA1UdIwQYMBaAFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMF8G +# A1UdHwRYMFYwVKBSoFCGTmh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMv +# Y3JsL01pY3Jvc29mdCUyMFRpbWUtU3RhbXAlMjBQQ0ElMjAyMDEwKDEpLmNybDBs +# BggrBgEFBQcBAQRgMF4wXAYIKwYBBQUHMAKGUGh0dHA6Ly93d3cubWljcm9zb2Z0 +# LmNvbS9wa2lvcHMvY2VydHMvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUy +# MDIwMTAoMSkuY3J0MAwGA1UdEwEB/wQCMAAwFgYDVR0lAQH/BAwwCgYIKwYBBQUH +# AwgwDgYDVR0PAQH/BAQDAgeAMA0GCSqGSIb3DQEBCwUAA4ICAQBSqG3ppKIU+i/E +# MwwtotoxnKfw0SX/3T16EPbjwsAImWOZ5nLAbatopl8zFY841gb5eiL1j81h4DiE +# iXt+BJgHIA2LIhKhSscd79oMbr631DiEqf9X5LZR3V3KIYstU3K7f5Dk7tbobuHu +# +6fYM/gOx44sgRU7YQ+YTYHvv8k4mMnuiahJRlU/F2vavcHU5uhXi078K4nSRAPn +# WyX7gVi6iVMBBUF4823oPFznEcHup7VNGRtGe1xvnlMd1CuyxctM8d/oqyTsxwlJ +# AM5F/lDxnEWoSzAkad1nWvkaAeMV7+39IpXhuf9G3xbffKiyBnj3cQeiA4SxSwCd +# nx00RBlXS6r9tGDa/o9RS01FOABzKkP5CBDpm4wpKdIU74KtBH2sE5QYYn7liYWZ +# r2f/U+ghTmdOEOPkXEcX81H4dRJU28Tj/gUZdwL81xah8Kn+cB7vM/Hs3/J8tF13 +# ZPP+8NtX3vu4NrchHDJYgjOi+1JuSf+4jpF/pEEPXp9AusizmSmkBK4iVT7NwVtR +# nS1ts8qAGHGPg2HPa4b2u9meueUoqNVtMhbumI1y+d9ZkThNXBXz2aItT2C99DM3 +# T3qYqAUmvKUryVSpMLVpse4je5WN6VVlCDFKWFRH202YxEVWsZ5baN9CaqCbCS0E +# a7s9OFLaEM5fNn9m5s69lD/ekcW2qTCCB3EwggVZoAMCAQICEzMAAAAVxedrngKb +# SZkAAAAAABUwDQYJKoZIhvcNAQELBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQI +# EwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3Nv +# ZnQgQ29ycG9yYXRpb24xMjAwBgNVBAMTKU1pY3Jvc29mdCBSb290IENlcnRpZmlj +# YXRlIEF1dGhvcml0eSAyMDEwMB4XDTIxMDkzMDE4MjIyNVoXDTMwMDkzMDE4MzIy +# NVowfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcT +# B1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UE +# AxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIwMTAwggIiMA0GCSqGSIb3DQEB +# AQUAA4ICDwAwggIKAoICAQDk4aZM57RyIQt5osvXJHm9DtWC0/3unAcH0qlsTnXI +# yjVX9gF/bErg4r25PhdgM/9cT8dm95VTcVrifkpa/rg2Z4VGIwy1jRPPdzLAEBjo +# YH1qUoNEt6aORmsHFPPFdvWGUNzBRMhxXFExN6AKOG6N7dcP2CZTfDlhAnrEqv1y +# aa8dq6z2Nr41JmTamDu6GnszrYBbfowQHJ1S/rboYiXcag/PXfT+jlPP1uyFVk3v +# 3byNpOORj7I5LFGc6XBpDco2LXCOMcg1KL3jtIckw+DJj361VI/c+gVVmG1oO5pG +# ve2krnopN6zL64NF50ZuyjLVwIYwXE8s4mKyzbnijYjklqwBSru+cakXW2dg3viS +# kR4dPf0gz3N9QZpGdc3EXzTdEonW/aUgfX782Z5F37ZyL9t9X4C626p+Nuw2TPYr +# bqgSUei/BQOj0XOmTTd0lBw0gg/wEPK3Rxjtp+iZfD9M269ewvPV2HM9Q07BMzlM +# jgK8QmguEOqEUUbi0b1qGFphAXPKZ6Je1yh2AuIzGHLXpyDwwvoSCtdjbwzJNmSL +# W6CmgyFdXzB0kZSU2LlQ+QuJYfM2BjUYhEfb3BvR/bLUHMVr9lxSUV0S2yW6r1AF +# emzFER1y7435UsSFF5PAPBXbGjfHCBUYP3irRbb1Hode2o+eFnJpxq57t7c+auIu +# rQIDAQABo4IB3TCCAdkwEgYJKwYBBAGCNxUBBAUCAwEAATAjBgkrBgEEAYI3FQIE +# FgQUKqdS/mTEmr6CkTxGNSnPEP8vBO4wHQYDVR0OBBYEFJ+nFV0AXmJdg/Tl0mWn +# G1M1GelyMFwGA1UdIARVMFMwUQYMKwYBBAGCN0yDfQEBMEEwPwYIKwYBBQUHAgEW +# M2h0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvRG9jcy9SZXBvc2l0b3J5 +# Lmh0bTATBgNVHSUEDDAKBggrBgEFBQcDCDAZBgkrBgEEAYI3FAIEDB4KAFMAdQBi +# AEMAQTALBgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBTV +# 9lbLj+iiXGJo0T2UkFvXzpoYxDBWBgNVHR8ETzBNMEugSaBHhkVodHRwOi8vY3Js +# Lm1pY3Jvc29mdC5jb20vcGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXRfMjAx +# MC0wNi0yMy5jcmwwWgYIKwYBBQUHAQEETjBMMEoGCCsGAQUFBzAChj5odHRwOi8v +# d3d3Lm1pY3Jvc29mdC5jb20vcGtpL2NlcnRzL01pY1Jvb0NlckF1dF8yMDEwLTA2 +# LTIzLmNydDANBgkqhkiG9w0BAQsFAAOCAgEAnVV9/Cqt4SwfZwExJFvhnnJL/Klv +# 6lwUtj5OR2R4sQaTlz0xM7U518JxNj/aZGx80HU5bbsPMeTCj/ts0aGUGCLu6WZn +# OlNN3Zi6th542DYunKmCVgADsAW+iehp4LoJ7nvfam++Kctu2D9IdQHZGN5tggz1 +# bSNU5HhTdSRXud2f8449xvNo32X2pFaq95W2KFUn0CS9QKC/GbYSEhFdPSfgQJY4 +# rPf5KYnDvBewVIVCs/wMnosZiefwC2qBwoEZQhlSdYo2wh3DYXMuLGt7bj8sCXgU +# 6ZGyqVvfSaN0DLzskYDSPeZKPmY7T7uG+jIa2Zb0j/aRAfbOxnT99kxybxCrdTDF +# NLB62FD+CljdQDzHVG2dY3RILLFORy3BFARxv2T5JL5zbcqOCb2zAVdJVGTZc9d/ +# HltEAY5aGZFrDZ+kKNxnGSgkujhLmm77IVRrakURR6nxt67I6IleT53S0Ex2tVdU +# CbFpAUR+fKFhbHP+CrvsQWY9af3LwUFJfn6Tvsv4O+S3Fb+0zj6lMVGEvL8CwYKi +# excdFYmNcP7ntdAoGokLjzbaukz5m/8K6TT4JDVnK+ANuOaMmdbhIurwJ0I9JZTm +# dHRbatGePu1+oDEzfbzL6Xu/OHBE0ZDxyKs6ijoIYn/ZcGNTTY3ugm2lBRDBcQZq +# ELQdVTNYs6FwZvKhggNQMIICOAIBATCB+aGB0aSBzjCByzELMAkGA1UEBhMCVVMx +# EzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoT +# FU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjElMCMGA1UECxMcTWljcm9zb2Z0IEFtZXJp +# Y2EgT3BlcmF0aW9uczEnMCUGA1UECxMeblNoaWVsZCBUU1MgRVNOOjhEMDAtMDVF +# MC1EOTQ3MSUwIwYDVQQDExxNaWNyb3NvZnQgVGltZS1TdGFtcCBTZXJ2aWNloiMK +# AQEwBwYFKw4DAhoDFQBoqfem2KKzuRZjISYifGolVOdyBKCBgzCBgKR+MHwxCzAJ +# BgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25k +# MR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jv +# c29mdCBUaW1lLVN0YW1wIFBDQSAyMDEwMA0GCSqGSIb3DQEBCwUAAgUA6LRjDzAi +# GA8yMDIzMDkxOTE4MTIzMVoYDzIwMjMwOTIwMTgxMjMxWjB3MD0GCisGAQQBhFkK +# BAExLzAtMAoCBQDotGMPAgEAMAoCAQACAhpaAgH/MAcCAQACAhNWMAoCBQDotbSP +# AgEAMDYGCisGAQQBhFkKBAIxKDAmMAwGCisGAQQBhFkKAwKgCjAIAgEAAgMHoSCh +# CjAIAgEAAgMBhqAwDQYJKoZIhvcNAQELBQADggEBALTbRIUnATvJxQER3PTF/m7f +# ea2mmC38vdy89JNDWbAETiN+HOhqZRgyGz1otnOANH++7NjRRSrh8byXARE8w1dN +# AVpbbjDea3JZt2zTkA6uRN/vjuifXHSz470WR6P8Mm3KhMtOK4AYLam5Xe1bnjAv +# JU02cI0r1MUOqkWJa/2Il+9Dm1raxizVGFUvgSLHDgxpFgfins0MBOg4RQTpRDIP +# arFUPTmbFhZfTBa2DAiHGcy9hPO1pNUY3FKdAMYkRxt9CAodlmkueGu6oiSxRd3M +# TPqGHQx9pJzJuE6yM0SZO/J0O5PnHIRc7RMdy0XikWk8D3SmDYFQOOxk7noeloYx +# ggQNMIIECQIBATCBkzB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3Rv +# bjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0 +# aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMAITMwAA +# Ac1VByrnysGZHQABAAABzTANBglghkgBZQMEAgEFAKCCAUowGgYJKoZIhvcNAQkD +# MQ0GCyqGSIb3DQEJEAEEMC8GCSqGSIb3DQEJBDEiBCDMuF7QDQHme8LEs4NWCnOa +# 8jbgJtGZELxoEEYiDH+efzCB+gYLKoZIhvcNAQkQAi8xgeowgecwgeQwgb0EIOJm +# pfitVr1PZGgvTEdTpStUc6GNh7LNroQBKwpURpkKMIGYMIGApH4wfDELMAkGA1UE +# BhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAc +# BgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0 +# IFRpbWUtU3RhbXAgUENBIDIwMTACEzMAAAHNVQcq58rBmR0AAQAAAc0wIgQgpXNo +# CR5udEHFtsK4vRweYQG6+tUY8EhPATlSEIELPDswDQYJKoZIhvcNAQELBQAEggIA +# iFTcLZ0vwFJzK+Rqanq7AynGwJuFJLGY6whQgWb+a8jLVtlCBrd5w36Xa3DfTbUO +# KSNVOq3JahGUSLZwnfm69YOiH8xujOMozBs7lgnTwoEfFchjFhGxMUxjC7YVuqph +# 82Q6e/qzSHMhNsbVoL7G/EA9lGIQ2rjxiREnh5IbiAvrrYyYrIHUGux7U/gXUE3W +# UzXMCNAuQrAXgC1I4CRfv8gRR1D1Zf27juawIsubcJ+X4NsHsrZlUChB4Jvcli5U +# +0BHtqXZl0jesLtdnxXcZQrZR8N5yMAr+J9ozW4F5l/Nw/K3JO/5XeR3tGjTpKWT +# qd9YPyvhJpn7WJGeOb60ahoyNkCPjdJXCfx7tMRYztCzlQVkqsbZmaWXAOPBpCJy +# KJW7TTHceNGuQxTbZ62LPX+3X+Li0I5QL+fN/CyvajxlbkONe6p7mEO1GwyEoBHK +# aK7p3pH45Fyn9pedZpWRnwNKFCtm7xIGrjD8dwh/SKnQQn0UZCOm6Z2MTA2dexh5 +# tckF0e9H6wsS2ty7bQjaxuIu7bRVIOv7N58yLZvZ/JpjuxTXTxJuxPmlAsBq4DPk +# 6oHV7zY0K9mbyoGUw0Hie5ZW+i15UGOQYjt9ORg38GLgv4mt3o4v78J0X1HTWDGt +# IKZzmt/ZsnE2gTde52Wujm56LnstUoCXuTKlLP5MTGA= +# SIG # End signature block diff --git a/Modules/Az.Accounts/2.13.1/StartupScripts/AzError.ps1 b/Modules/Az.Accounts/2.13.1/StartupScripts/AzError.ps1 new file mode 100644 index 000000000000..5379b99cf34a --- /dev/null +++ b/Modules/Az.Accounts/2.13.1/StartupScripts/AzError.ps1 @@ -0,0 +1,281 @@ +function Write-InstallationCheckToFile +{ + Param($installationchecks) + if (Get-Module AzureRM.Profile -ListAvailable -ErrorAction Ignore) + { + Write-Warning ("Both Az and AzureRM modules were detected on this machine. Az and AzureRM modules cannot be imported in the same session or used in the same script or runbook. If you are running PowerShell in an environment you control you can use the 'Uninstall-AzureRm' cmdlet to remove all AzureRm modules from your machine. " + + "If you are running in Azure Automation, take care that none of your runbooks import both Az and AzureRM modules. More information can be found here: https://aka.ms/azps-migration-guide") + } + + $installationchecks.Add("AzSideBySideCheck","true") + try + { + if (Test-Path $pathToInstallationChecks -ErrorAction Ignore) + { + Remove-Item -Path $pathToInstallationChecks -ErrorAction Stop + } + + $pathToInstallDir = Split-Path -Path $pathToInstallationChecks -Parent -ErrorAction Stop + if (Test-Path $pathToInstallDir -ErrorAction Ignore) + { + New-Item -Path $pathToInstallationChecks -ErrorAction Stop -ItemType File -Value ($installationchecks | ConvertTo-Json -ErrorAction Stop) + } + } + catch + { + Write-Verbose "Installation checks failed to write to file." + } +} + +if (!($env:SkipAzInstallationChecks -eq "true")) +{ + $pathToInstallationChecks = Join-Path (Join-Path $HOME ".Azure") "AzInstallationChecks.json" + $installationchecks = @{} + if (!(Test-Path $pathToInstallationChecks -ErrorAction Ignore)) + { + Write-InstallationCheckToFile $installationchecks + } + else + { + try + { + ((Get-Content $pathToInstallationChecks -ErrorAction Stop) | ConvertFrom-Json -ErrorAction Stop).PSObject.Properties | Foreach { $installationchecks[$_.Name] = $_.Value } + } + catch + { + Write-InstallationCheckToFile $installationchecks + } + + if (!$installationchecks.ContainsKey("AzSideBySideCheck")) + { + Write-InstallationCheckToFile $installationchecks + } + } +} + +if (Get-Module AzureRM.profile -ErrorAction Ignore) +{ + Write-Warning ("AzureRM.Profile already loaded. Az and AzureRM modules cannot be imported in the same session or used in the same script or runbook. If you are running PowerShell in an environment you control you can use the 'Uninstall-AzureRm' cmdlet to remove all AzureRm modules from your machine. " + + "If you are running in Azure Automation, take care that none of your runbooks import both Az and AzureRM modules. More information can be found here: https://aka.ms/azps-migration-guide.") + throw ("AzureRM.Profile already loaded. Az and AzureRM modules cannot be imported in the same session or used in the same script or runbook. If you are running PowerShell in an environment you control you can use the 'Uninstall-AzureRm' cmdlet to remove all AzureRm modules from your machine. " + + "If you are running in Azure Automation, take care that none of your runbooks import both Az and AzureRM modules. More information can be found here: https://aka.ms/azps-migration-guide.") +} + +Update-TypeData -AppendPath (Join-Path (Get-Item $PSScriptRoot).Parent.FullName Accounts.types.ps1xml) -ErrorAction Ignore +# SIG # Begin signature block +# MIIoPAYJKoZIhvcNAQcCoIIoLTCCKCkCAQExDzANBglghkgBZQMEAgEFADB5Bgor +# BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG +# KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCDT3s8rOGw0kP8l +# AbYXJ7G9hr2fOKBRtW5xO6fWVEOZvqCCDYUwggYDMIID66ADAgECAhMzAAADTU6R +# phoosHiPAAAAAANNMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD +# VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p +# bmcgUENBIDIwMTEwHhcNMjMwMzE2MTg0MzI4WhcNMjQwMzE0MTg0MzI4WjB0MQsw +# CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u +# ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB +# AQDUKPcKGVa6cboGQU03ONbUKyl4WpH6Q2Xo9cP3RhXTOa6C6THltd2RfnjlUQG+ +# Mwoy93iGmGKEMF/jyO2XdiwMP427j90C/PMY/d5vY31sx+udtbif7GCJ7jJ1vLzd +# j28zV4r0FGG6yEv+tUNelTIsFmmSb0FUiJtU4r5sfCThvg8dI/F9Hh6xMZoVti+k +# bVla+hlG8bf4s00VTw4uAZhjGTFCYFRytKJ3/mteg2qnwvHDOgV7QSdV5dWdd0+x +# zcuG0qgd3oCCAjH8ZmjmowkHUe4dUmbcZfXsgWlOfc6DG7JS+DeJak1DvabamYqH +# g1AUeZ0+skpkwrKwXTFwBRltAgMBAAGjggGCMIIBfjAfBgNVHSUEGDAWBgorBgEE +# AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQUId2Img2Sp05U6XI04jli2KohL+8w +# VAYDVR0RBE0wS6RJMEcxLTArBgNVBAsTJE1pY3Jvc29mdCBJcmVsYW5kIE9wZXJh +# dGlvbnMgTGltaXRlZDEWMBQGA1UEBRMNMjMwMDEyKzUwMDUxNzAfBgNVHSMEGDAW +# gBRIbmTlUAXTgqoXNzcitW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8v +# d3d3Lm1pY3Jvc29mdC5jb20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIw +# MTEtMDctMDguY3JsMGEGCCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDov +# L3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDEx +# XzIwMTEtMDctMDguY3J0MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIB +# ACMET8WuzLrDwexuTUZe9v2xrW8WGUPRQVmyJ1b/BzKYBZ5aU4Qvh5LzZe9jOExD +# YUlKb/Y73lqIIfUcEO/6W3b+7t1P9m9M1xPrZv5cfnSCguooPDq4rQe/iCdNDwHT +# 6XYW6yetxTJMOo4tUDbSS0YiZr7Mab2wkjgNFa0jRFheS9daTS1oJ/z5bNlGinxq +# 2v8azSP/GcH/t8eTrHQfcax3WbPELoGHIbryrSUaOCphsnCNUqUN5FbEMlat5MuY +# 94rGMJnq1IEd6S8ngK6C8E9SWpGEO3NDa0NlAViorpGfI0NYIbdynyOB846aWAjN +# fgThIcdzdWFvAl/6ktWXLETn8u/lYQyWGmul3yz+w06puIPD9p4KPiWBkCesKDHv +# XLrT3BbLZ8dKqSOV8DtzLFAfc9qAsNiG8EoathluJBsbyFbpebadKlErFidAX8KE +# usk8htHqiSkNxydamL/tKfx3V/vDAoQE59ysv4r3pE+zdyfMairvkFNNw7cPn1kH +# Gcww9dFSY2QwAxhMzmoM0G+M+YvBnBu5wjfxNrMRilRbxM6Cj9hKFh0YTwba6M7z +# ntHHpX3d+nabjFm/TnMRROOgIXJzYbzKKaO2g1kWeyG2QtvIR147zlrbQD4X10Ab +# rRg9CpwW7xYxywezj+iNAc+QmFzR94dzJkEPUSCJPsTFMIIHejCCBWKgAwIBAgIK +# YQ6Q0gAAAAAAAzANBgkqhkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNV +# BAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jv +# c29mdCBDb3Jwb3JhdGlvbjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlm +# aWNhdGUgQXV0aG9yaXR5IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEw +# OTA5WjB+MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UE +# BxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYD +# VQQDEx9NaWNyb3NvZnQgQ29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG +# 9w0BAQEFAAOCAg8AMIICCgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+la +# UKq4BjgaBEm6f8MMHt03a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc +# 6Whe0t+bU7IKLMOv2akrrnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4D +# dato88tt8zpcoRb0RrrgOGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+ +# lD3v++MrWhAfTVYoonpy4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nk +# kDstrjNYxbc+/jLTswM9sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6 +# A4aN91/w0FK/jJSHvMAhdCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmd +# X4jiJV3TIUs+UsS1Vz8kA/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL +# 5zmhD+kjSbwYuER8ReTBw3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zd +# sGbiwZeBe+3W7UvnSSmnEyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3 +# T8HhhUSJxAlMxdSlQy90lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS +# 4NaIjAsCAwEAAaOCAe0wggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRI +# bmTlUAXTgqoXNzcitW2oynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTAL +# BgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBD +# uRQFTuHqp8cx0SOJNDBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jv +# c29mdC5jb20vcGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFf +# MDNfMjIuY3JsMF4GCCsGAQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3 +# dy5taWNyb3NvZnQuY29tL3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFf +# MDNfMjIuY3J0MIGfBgNVHSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEF +# BQcCARYzaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1h +# cnljcHMuaHRtMEAGCCsGAQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkA +# YwB5AF8AcwB0AGEAdABlAG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn +# 8oalmOBUeRou09h0ZyKbC5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7 +# v0epo/Np22O/IjWll11lhJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0b +# pdS1HXeUOeLpZMlEPXh6I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/ +# KmtYSWMfCWluWpiW5IP0wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvy +# CInWH8MyGOLwxS3OW560STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBp +# mLJZiWhub6e3dMNABQamASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJi +# hsMdYzaXht/a8/jyFqGaJ+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYb +# BL7fQccOKO7eZS/sl/ahXJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbS +# oqKfenoi+kiVH6v7RyOA9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sL +# gOppO6/8MO0ETI7f33VtY5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtX +# cVZOSEXAQsmbdlsKgEhr/Xmfwb1tbWrJUnMTDXpQzTGCGg0wghoJAgEBMIGVMH4x +# CzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRt +# b25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01p +# Y3Jvc29mdCBDb2RlIFNpZ25pbmcgUENBIDIwMTECEzMAAANNTpGmGiiweI8AAAAA +# A00wDQYJYIZIAWUDBAIBBQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQw +# HAYKKwYBBAGCNwIBCzEOMAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIKR+ +# w/DaLVp8ra2PXQQVXZI6DyW6fyW+fzmibTR/vTxzMEIGCisGAQQBgjcCAQwxNDAy +# oBSAEgBNAGkAYwByAG8AcwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5j +# b20wDQYJKoZIhvcNAQEBBQAEggEAAJ/05iL6/mTJTdXlA3WMNU7DPdukKaJDMocn +# pzyB1C0hLB0o81xP7YSAsUBDAKzunfQ+oBNu6n/owxsHxw8C5aiDdeX87DkrwFEN +# 6Y0/kc3H3LpC+ll1Aq78ia85raDdogkMJNqAZOpaSs/+WPQGmTqATI3FTxjzviyB +# W2d09blFshgmPNB4IKNWZrf0xAZjugWcVe7WjbSnrf9C6Uap/yfFjAm1D+Am86Dy +# 9UYWjaxYSdiYj39a4rawSz2+47doMiSNWEdRzLBWQ3mhzG79emCceHwhCMof3KYZ +# WbXjXm+C738l48ZuzZ50X/w2B7jWQCLLiIdIY0Nczh9n7W+R8qGCF5cwgheTBgor +# BgEEAYI3AwMBMYIXgzCCF38GCSqGSIb3DQEHAqCCF3AwghdsAgEDMQ8wDQYJYIZI +# AWUDBAIBBQAwggFSBgsqhkiG9w0BCRABBKCCAUEEggE9MIIBOQIBAQYKKwYBBAGE +# WQoDATAxMA0GCWCGSAFlAwQCAQUABCDTxg5YDL/sFFSkwNmajR/hD+zpUa9/iONc +# c1T6Gn07AgIGZQPtxMFeGBMyMDIzMDkyMDA1NTA0My40MTNaMASAAgH0oIHRpIHO +# MIHLMQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMH +# UmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQL +# ExxNaWNyb3NvZnQgQW1lcmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxk +# IFRTUyBFU046QTAwMC0wNUUwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1l +# LVN0YW1wIFNlcnZpY2WgghHtMIIHIDCCBQigAwIBAgITMwAAAdB3CKrvoxfG3QAB +# AAAB0DANBgkqhkiG9w0BAQsFADB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2Fz +# aGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENv +# cnBvcmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAx +# MDAeFw0yMzA1MjUxOTEyMTRaFw0yNDAyMDExOTEyMTRaMIHLMQswCQYDVQQGEwJV +# UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE +# ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1l +# cmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046QTAwMC0w +# NUUwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2Uw +# ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDfMlfn35fvM0XAUSmI5qiG +# 0UxPi25HkSyBgzk3zpYO311d1OEEFz0QpAK23s1dJFrjB5gD+SMw5z6EwxC4CrXU +# 9KaQ4WNHqHrhWftpgo3MkJex9frmO9MldUfjUG56sIW6YVF6YjX+9rT1JDdCDHbo +# 5nZiasMigGKawGb2HqD7/kjRR67RvVh7Q4natAVu46Zf5MLviR0xN5cNG20xwBwg +# ttaYEk5XlULaBH5OnXz2eWoIx+SjDO7Bt5BuABWY8SvmRQfByT2cppEzTjt/fs0x +# p4B1cAHVDwlGwZuv9Rfc3nddxgFrKA8MWHbJF0+aWUUYIBR8Fy2guFVHoHeOze7I +# sbyvRrax//83gYqo8c5Z/1/u7kjLcTgipiyZ8XERsLEECJ5ox1BBLY6AjmbgAzDd +# Nl2Leej+qIbdBr/SUvKEC+Xw4xjFMOTUVWKWemt2khwndUfBNR7Nzu1z9L0Wv7TA +# Y/v+v6pNhAeohPMCFJc+ak6uMD8TKSzWFjw5aADkmD9mGuC86yvSKkII4MayzoUd +# seT0nfk8Y0fPjtdw2Wnejl6zLHuYXwcDau2O1DMuoiedNVjTF37UEmYT+oxC/OFX +# UGPDEQt9tzgbR9g8HLtUfEeWOsOED5xgb5rwyfvIss7H/cdHFcIiIczzQgYnsLyE +# GepoZDkKhSMR5eCB6Kcv/QIDAQABo4IBSTCCAUUwHQYDVR0OBBYEFDPhAYWS0oA+ +# lOtITfjJtyl0knRRMB8GA1UdIwQYMBaAFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMF8G +# A1UdHwRYMFYwVKBSoFCGTmh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMv +# Y3JsL01pY3Jvc29mdCUyMFRpbWUtU3RhbXAlMjBQQ0ElMjAyMDEwKDEpLmNybDBs +# BggrBgEFBQcBAQRgMF4wXAYIKwYBBQUHMAKGUGh0dHA6Ly93d3cubWljcm9zb2Z0 +# LmNvbS9wa2lvcHMvY2VydHMvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUy +# MDIwMTAoMSkuY3J0MAwGA1UdEwEB/wQCMAAwFgYDVR0lAQH/BAwwCgYIKwYBBQUH +# AwgwDgYDVR0PAQH/BAQDAgeAMA0GCSqGSIb3DQEBCwUAA4ICAQCXh+ckCkZaA06S +# NW+qxtS9gHQp4x7G+gdikngKItEr8otkXIrmWPYrarRWBlY91lqGiilHyIlZ3iNB +# UbaNEmaKAGMZ5YcS7IZUKPaq1jU0msyl+8og0t9C/Z26+atx3vshHrFQuSgwTHZV +# pzv7k8CYnBYoxdhI1uGhqH595mqLvtMsxEN/1so7U+b3U6LCry5uwwcz5+j8Oj0G +# UX3b+iZg+As0xTN6T0Qa8BNec/LwcyqYNEaMkW2VAKrmhvWH8OCDTcXgONnnABQH +# BfXK/fLAbHFGS1XNOtr62/iaHBGAkrCGl6Bi8Pfws6fs+w+sE9r3hX9Vg0gsRMoH +# RuMaiXsrGmGsuYnLn3AwTguMatw9R8U5vJtWSlu1CFO5P0LEvQQiMZ12sQSsQAkN +# DTs9rTjVNjjIUgoZ6XPMxlcPIDcjxw8bfeb4y4wAxM2RRoWcxpkx+6IIf2L+b7gL +# HtBxXCWJ5bMW7WwUC2LltburUwBv0SgjpDtbEqw/uDgWBerCT+Zty3Nc967iGaQj +# yYQH6H/h9Xc8smm2n6VjySRx2swnW3hr6Qx63U/xY9HL6FNhrGiFED7ZRKrnwvvX +# vMVQUIEkB7GUEeN6heY8gHLt0jLV3yzDiQA8R8p5YGgGAVt9MEwgAJNY1iHvH/8v +# zhJSZFNkH8svRztO/i3TvKrjb8ZxwjCCB3EwggVZoAMCAQICEzMAAAAVxedrngKb +# SZkAAAAAABUwDQYJKoZIhvcNAQELBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQI +# EwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3Nv +# ZnQgQ29ycG9yYXRpb24xMjAwBgNVBAMTKU1pY3Jvc29mdCBSb290IENlcnRpZmlj +# YXRlIEF1dGhvcml0eSAyMDEwMB4XDTIxMDkzMDE4MjIyNVoXDTMwMDkzMDE4MzIy +# NVowfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcT +# B1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UE +# AxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIwMTAwggIiMA0GCSqGSIb3DQEB +# AQUAA4ICDwAwggIKAoICAQDk4aZM57RyIQt5osvXJHm9DtWC0/3unAcH0qlsTnXI +# yjVX9gF/bErg4r25PhdgM/9cT8dm95VTcVrifkpa/rg2Z4VGIwy1jRPPdzLAEBjo +# YH1qUoNEt6aORmsHFPPFdvWGUNzBRMhxXFExN6AKOG6N7dcP2CZTfDlhAnrEqv1y +# aa8dq6z2Nr41JmTamDu6GnszrYBbfowQHJ1S/rboYiXcag/PXfT+jlPP1uyFVk3v +# 3byNpOORj7I5LFGc6XBpDco2LXCOMcg1KL3jtIckw+DJj361VI/c+gVVmG1oO5pG +# ve2krnopN6zL64NF50ZuyjLVwIYwXE8s4mKyzbnijYjklqwBSru+cakXW2dg3viS +# kR4dPf0gz3N9QZpGdc3EXzTdEonW/aUgfX782Z5F37ZyL9t9X4C626p+Nuw2TPYr +# bqgSUei/BQOj0XOmTTd0lBw0gg/wEPK3Rxjtp+iZfD9M269ewvPV2HM9Q07BMzlM +# jgK8QmguEOqEUUbi0b1qGFphAXPKZ6Je1yh2AuIzGHLXpyDwwvoSCtdjbwzJNmSL +# W6CmgyFdXzB0kZSU2LlQ+QuJYfM2BjUYhEfb3BvR/bLUHMVr9lxSUV0S2yW6r1AF +# emzFER1y7435UsSFF5PAPBXbGjfHCBUYP3irRbb1Hode2o+eFnJpxq57t7c+auIu +# rQIDAQABo4IB3TCCAdkwEgYJKwYBBAGCNxUBBAUCAwEAATAjBgkrBgEEAYI3FQIE +# FgQUKqdS/mTEmr6CkTxGNSnPEP8vBO4wHQYDVR0OBBYEFJ+nFV0AXmJdg/Tl0mWn +# G1M1GelyMFwGA1UdIARVMFMwUQYMKwYBBAGCN0yDfQEBMEEwPwYIKwYBBQUHAgEW +# M2h0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvRG9jcy9SZXBvc2l0b3J5 +# Lmh0bTATBgNVHSUEDDAKBggrBgEFBQcDCDAZBgkrBgEEAYI3FAIEDB4KAFMAdQBi +# AEMAQTALBgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBTV +# 9lbLj+iiXGJo0T2UkFvXzpoYxDBWBgNVHR8ETzBNMEugSaBHhkVodHRwOi8vY3Js +# Lm1pY3Jvc29mdC5jb20vcGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXRfMjAx +# MC0wNi0yMy5jcmwwWgYIKwYBBQUHAQEETjBMMEoGCCsGAQUFBzAChj5odHRwOi8v +# d3d3Lm1pY3Jvc29mdC5jb20vcGtpL2NlcnRzL01pY1Jvb0NlckF1dF8yMDEwLTA2 +# LTIzLmNydDANBgkqhkiG9w0BAQsFAAOCAgEAnVV9/Cqt4SwfZwExJFvhnnJL/Klv +# 6lwUtj5OR2R4sQaTlz0xM7U518JxNj/aZGx80HU5bbsPMeTCj/ts0aGUGCLu6WZn +# OlNN3Zi6th542DYunKmCVgADsAW+iehp4LoJ7nvfam++Kctu2D9IdQHZGN5tggz1 +# bSNU5HhTdSRXud2f8449xvNo32X2pFaq95W2KFUn0CS9QKC/GbYSEhFdPSfgQJY4 +# rPf5KYnDvBewVIVCs/wMnosZiefwC2qBwoEZQhlSdYo2wh3DYXMuLGt7bj8sCXgU +# 6ZGyqVvfSaN0DLzskYDSPeZKPmY7T7uG+jIa2Zb0j/aRAfbOxnT99kxybxCrdTDF +# NLB62FD+CljdQDzHVG2dY3RILLFORy3BFARxv2T5JL5zbcqOCb2zAVdJVGTZc9d/ +# HltEAY5aGZFrDZ+kKNxnGSgkujhLmm77IVRrakURR6nxt67I6IleT53S0Ex2tVdU +# CbFpAUR+fKFhbHP+CrvsQWY9af3LwUFJfn6Tvsv4O+S3Fb+0zj6lMVGEvL8CwYKi +# excdFYmNcP7ntdAoGokLjzbaukz5m/8K6TT4JDVnK+ANuOaMmdbhIurwJ0I9JZTm +# dHRbatGePu1+oDEzfbzL6Xu/OHBE0ZDxyKs6ijoIYn/ZcGNTTY3ugm2lBRDBcQZq +# ELQdVTNYs6FwZvKhggNQMIICOAIBATCB+aGB0aSBzjCByzELMAkGA1UEBhMCVVMx +# EzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoT +# FU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjElMCMGA1UECxMcTWljcm9zb2Z0IEFtZXJp +# Y2EgT3BlcmF0aW9uczEnMCUGA1UECxMeblNoaWVsZCBUU1MgRVNOOkEwMDAtMDVF +# MC1EOTQ3MSUwIwYDVQQDExxNaWNyb3NvZnQgVGltZS1TdGFtcCBTZXJ2aWNloiMK +# AQEwBwYFKw4DAhoDFQC8t8hT8KKUX91lU5FqRP9Cfu9MiaCBgzCBgKR+MHwxCzAJ +# BgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25k +# MR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jv +# c29mdCBUaW1lLVN0YW1wIFBDQSAyMDEwMA0GCSqGSIb3DQEBCwUAAgUA6LUDNzAi +# GA8yMDIzMDkyMDA1MzU1MVoYDzIwMjMwOTIxMDUzNTUxWjB3MD0GCisGAQQBhFkK +# BAExLzAtMAoCBQDotQM3AgEAMAoCAQACAidSAgH/MAcCAQACAhN/MAoCBQDotlS3 +# AgEAMDYGCisGAQQBhFkKBAIxKDAmMAwGCisGAQQBhFkKAwKgCjAIAgEAAgMHoSCh +# CjAIAgEAAgMBhqAwDQYJKoZIhvcNAQELBQADggEBAGtIWKlQ4xjkBGBgoktG9bqb +# W3uOsn29c3JcnP5Eq5RSCeHwCRLqC6bYPnrI0V6uJZGaSe/UiVRIjbQsr2Md6Liu +# 18E+/l27E3rd5NKZ4JapQ+nadT7roP/Q2NkZ+hK8kYvV+j0C2aCVDxM6KKvyfXN3 +# 9vIyVoMXXa4Htf6H6hiqbvBelUMohEcS20RXmTcQgBz/4JqhqXiIJBid/2SRudEp +# P4FKC/q7NZu0Kt9vaka5bpOjFkH8DSdsTmNhCnMsz3k60iD9L7fzqu6bIkCGeO9K +# urvs0V5kghKnZiJZ37Bwtng7KlequE58NxNKkuZrEiwepGU/NMZpgCsT31R2Qgwx +# ggQNMIIECQIBATCBkzB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3Rv +# bjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0 +# aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMAITMwAA +# AdB3CKrvoxfG3QABAAAB0DANBglghkgBZQMEAgEFAKCCAUowGgYJKoZIhvcNAQkD +# MQ0GCyqGSIb3DQEJEAEEMC8GCSqGSIb3DQEJBDEiBCA5XwcAA1GbklJPMnjaBqpF +# NIgNrpeBP842Vo44Tv3PxTCB+gYLKoZIhvcNAQkQAi8xgeowgecwgeQwgb0EIAiV +# QAZftNP/Md1E2Yw+fBXa9w6fjmTZ5WAerrTSPwnXMIGYMIGApH4wfDELMAkGA1UE +# BhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAc +# BgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0 +# IFRpbWUtU3RhbXAgUENBIDIwMTACEzMAAAHQdwiq76MXxt0AAQAAAdAwIgQgqB/y +# toAW0gc8cem4mHJrpEhQ7NI8Dpr/F6zncI8TlJUwDQYJKoZIhvcNAQELBQAEggIA +# q2johekNXCez3sHPgTENMweCsqyCVgtTV3YML+gpr56aV2vz+Iuy6Bt+8tatbyVW +# ANUYA8RkAftW+u/VvBBJUl0Y/83/DHph0XoaHq0MAZ9zbVWUqU5bcocF4IbZnik9 +# rA86SRXqOrPIK/i4J2vY7dWdPdhV6C8E2jBL0Lx/qiunv2BZy4DfptkRznVY5eRG +# jOcAhlr0s20DS1ylsIuGNf1bloA5Cldc+ObtGVglNPXLKD50YKsCIl4zshQEwubA +# 42PPlGpDcH8JfZAH/ckamL/wQhCi4UdZlVR7NVSMJ19oDlV3Y2ybLw7pVs6UJsqi +# DSzEdW+634lbvORxEWsOeok0J1tlgjjUGhPjMdFh/96qcqPnInvHqvYOcmVUFfYL +# HnquWfMQxvcHyLni96fLcsfGDGsUaNNjSx4vmaIYJknwCadjHIJyChjhYNQb00bz +# aHP6UJDZf2ZcRhuaKdMGV3lWH2Wens4zDgoYSW0iES9FkqIHGh3vy2knZ2CDrY7w +# BdB8PrTm9I7XVen1DEeXtoLusGLn08Jf9UnSXoBq6hptFUJi718OsfXPN26u9/3M +# IKxkdPyvj7pir1X9GaZMyz6eCGJGGtoaBPWAYrJHXoPq/zwpRiGcbK+PLkfI8PRb +# G5flQxQzxdP1hSzAqqE+VCto96sLhASeMZ7gpL87UoQ= +# SIG # End signature block diff --git a/Modules/Az.Accounts/2.13.1/StartupScripts/InitializeAssemblyResolver.ps1 b/Modules/Az.Accounts/2.13.1/StartupScripts/InitializeAssemblyResolver.ps1 new file mode 100644 index 000000000000..f03e9ec7eb08 --- /dev/null +++ b/Modules/Az.Accounts/2.13.1/StartupScripts/InitializeAssemblyResolver.ps1 @@ -0,0 +1,242 @@ +$assemblyRootPath = [System.IO.Path]::Combine($PSScriptRoot, "..", "lib") +Write-Debug "Initializing ConditionalAssemblyContext. PSEdition is [$($PSVersionTable.PSEdition)]. PSVersion is [$($PSVersionTable.PSVersion)]." +$conditionalAssemblyContext = [Microsoft.Azure.PowerShell.AssemblyLoading.ConditionalAssemblyContext]::new($PSVersionTable.PSEdition, $PSVersionTable.PSVersion) +Write-Debug "Initializing ConditionalAssemblyProvider. AssemblyRootPath is [$assemblyRootPath]." +[Microsoft.Azure.PowerShell.AssemblyLoading.ConditionalAssemblyProvider]::Initialize($assemblyRootPath, $conditionalAssemblyContext) + +if ($PSEdition -eq 'Desktop') { + try { + [Microsoft.Azure.Commands.Profile.Utilities.CustomAssemblyResolver]::Initialize() + } + catch { + Write-Warning $_ + } +} +else { + try { + Add-Type -Path ([System.IO.Path]::Combine($PSScriptRoot, "..", "Microsoft.Azure.PowerShell.AuthenticationAssemblyLoadContext.dll")) | Out-Null + Write-Debug "Registering Az shared AssemblyLoadContext." + [Microsoft.Azure.PowerShell.AuthenticationAssemblyLoadContext.AzAssemblyLoadContextInitializer]::RegisterAzSharedAssemblyLoadContext() + Write-Debug "AssemblyLoadContext registered." + } + catch { + Write-Warning $_ + } +} +# SIG # Begin signature block +# MIIoKgYJKoZIhvcNAQcCoIIoGzCCKBcCAQExDzANBglghkgBZQMEAgEFADB5Bgor +# BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG +# KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCCAe8RL2QVOwrz6 +# penupFKMe0U4FkbIX5RGfbRRPsEAcqCCDXYwggX0MIID3KADAgECAhMzAAADTrU8 +# esGEb+srAAAAAANOMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD +# VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p +# bmcgUENBIDIwMTEwHhcNMjMwMzE2MTg0MzI5WhcNMjQwMzE0MTg0MzI5WjB0MQsw +# CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u +# ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB +# AQDdCKiNI6IBFWuvJUmf6WdOJqZmIwYs5G7AJD5UbcL6tsC+EBPDbr36pFGo1bsU +# p53nRyFYnncoMg8FK0d8jLlw0lgexDDr7gicf2zOBFWqfv/nSLwzJFNP5W03DF/1 +# 1oZ12rSFqGlm+O46cRjTDFBpMRCZZGddZlRBjivby0eI1VgTD1TvAdfBYQe82fhm +# WQkYR/lWmAK+vW/1+bO7jHaxXTNCxLIBW07F8PBjUcwFxxyfbe2mHB4h1L4U0Ofa +# +HX/aREQ7SqYZz59sXM2ySOfvYyIjnqSO80NGBaz5DvzIG88J0+BNhOu2jl6Dfcq +# jYQs1H/PMSQIK6E7lXDXSpXzAgMBAAGjggFzMIIBbzAfBgNVHSUEGDAWBgorBgEE +# AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQUnMc7Zn/ukKBsBiWkwdNfsN5pdwAw +# RQYDVR0RBD4wPKQ6MDgxHjAcBgNVBAsTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEW +# MBQGA1UEBRMNMjMwMDEyKzUwMDUxNjAfBgNVHSMEGDAWgBRIbmTlUAXTgqoXNzci +# tW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8vd3d3Lm1pY3Jvc29mdC5j +# b20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3JsMGEG +# CCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDovL3d3dy5taWNyb3NvZnQu +# Y29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3J0 +# MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIBAD21v9pHoLdBSNlFAjmk +# mx4XxOZAPsVxxXbDyQv1+kGDe9XpgBnT1lXnx7JDpFMKBwAyIwdInmvhK9pGBa31 +# TyeL3p7R2s0L8SABPPRJHAEk4NHpBXxHjm4TKjezAbSqqbgsy10Y7KApy+9UrKa2 +# kGmsuASsk95PVm5vem7OmTs42vm0BJUU+JPQLg8Y/sdj3TtSfLYYZAaJwTAIgi7d +# hzn5hatLo7Dhz+4T+MrFd+6LUa2U3zr97QwzDthx+RP9/RZnur4inzSQsG5DCVIM +# pA1l2NWEA3KAca0tI2l6hQNYsaKL1kefdfHCrPxEry8onJjyGGv9YKoLv6AOO7Oh +# JEmbQlz/xksYG2N/JSOJ+QqYpGTEuYFYVWain7He6jgb41JbpOGKDdE/b+V2q/gX +# UgFe2gdwTpCDsvh8SMRoq1/BNXcr7iTAU38Vgr83iVtPYmFhZOVM0ULp/kKTVoir +# IpP2KCxT4OekOctt8grYnhJ16QMjmMv5o53hjNFXOxigkQWYzUO+6w50g0FAeFa8 +# 5ugCCB6lXEk21FFB1FdIHpjSQf+LP/W2OV/HfhC3uTPgKbRtXo83TZYEudooyZ/A +# Vu08sibZ3MkGOJORLERNwKm2G7oqdOv4Qj8Z0JrGgMzj46NFKAxkLSpE5oHQYP1H +# tPx1lPfD7iNSbJsP6LiUHXH1MIIHejCCBWKgAwIBAgIKYQ6Q0gAAAAAAAzANBgkq +# hkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24x +# EDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlv +# bjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5 +# IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEwOTA5WjB+MQswCQYDVQQG +# EwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwG +# A1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYDVQQDEx9NaWNyb3NvZnQg +# Q29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC +# CgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+laUKq4BjgaBEm6f8MMHt03 +# a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc6Whe0t+bU7IKLMOv2akr +# rnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4Ddato88tt8zpcoRb0Rrrg +# OGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+lD3v++MrWhAfTVYoonpy +# 4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nkkDstrjNYxbc+/jLTswM9 +# sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6A4aN91/w0FK/jJSHvMAh +# dCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmdX4jiJV3TIUs+UsS1Vz8k +# A/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL5zmhD+kjSbwYuER8ReTB +# w3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zdsGbiwZeBe+3W7UvnSSmn +# Eyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3T8HhhUSJxAlMxdSlQy90 +# lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS4NaIjAsCAwEAAaOCAe0w +# ggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRIbmTlUAXTgqoXNzcitW2o +# ynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTALBgNVHQ8EBAMCAYYwDwYD +# VR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBDuRQFTuHqp8cx0SOJNDBa +# BgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20vcGtpL2Ny +# bC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3JsMF4GCCsG +# AQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3dy5taWNyb3NvZnQuY29t +# L3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3J0MIGfBgNV +# HSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEFBQcCARYzaHR0cDovL3d3 +# dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1hcnljcHMuaHRtMEAGCCsG +# AQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkAYwB5AF8AcwB0AGEAdABl +# AG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn8oalmOBUeRou09h0ZyKb +# C5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7v0epo/Np22O/IjWll11l +# hJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0bpdS1HXeUOeLpZMlEPXh6 +# I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/KmtYSWMfCWluWpiW5IP0 +# wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvyCInWH8MyGOLwxS3OW560 +# STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBpmLJZiWhub6e3dMNABQam +# ASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJihsMdYzaXht/a8/jyFqGa +# J+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYbBL7fQccOKO7eZS/sl/ah +# XJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbSoqKfenoi+kiVH6v7RyOA +# 9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sLgOppO6/8MO0ETI7f33Vt +# Y5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtXcVZOSEXAQsmbdlsKgEhr +# /Xmfwb1tbWrJUnMTDXpQzTGCGgowghoGAgEBMIGVMH4xCzAJBgNVBAYTAlVTMRMw +# EQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVN +# aWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNp +# Z25pbmcgUENBIDIwMTECEzMAAANOtTx6wYRv6ysAAAAAA04wDQYJYIZIAWUDBAIB +# BQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQwHAYKKwYBBAGCNwIBCzEO +# MAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIMHofDlPBqmVqK1okjwWVgBB +# tT7fuKbvz/K2Z2tehrjfMEIGCisGAQQBgjcCAQwxNDAyoBSAEgBNAGkAYwByAG8A +# cwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20wDQYJKoZIhvcNAQEB +# BQAEggEAh6WOd8mYDPLLkfaNOj1I07laB0TnfUoY3kPU8nRKXndoULPuXHTw+0TR +# ZwgvCjxyErXrV6Gpd03Xy2YcKFMOT5DHY8iV0olxkvZNHTt0oMmIUjYyCkblV3PA +# nrDZGbmmxw3FKRT/n2bQ9SNj7PNl29HgNxQxlDSEl6yJP+Bs11pyfW5uNYNVFPIj +# M5ddEr31Z9y/SwJ0oB892Anu6ZT2Cqy6Xt5XIacqNVpWG00UUVguvrHdelkLF4g4 +# dgI+UROhJfNfXgkmazGilBrufCC3LFe46BZgY3kJavyni3F3qsAujcb8+0QXczTu +# 9omGeP+6mHTHBR+9gPJW9pp+0x6O96GCF5QwgheQBgorBgEEAYI3AwMBMYIXgDCC +# F3wGCSqGSIb3DQEHAqCCF20wghdpAgEDMQ8wDQYJYIZIAWUDBAIBBQAwggFSBgsq +# hkiG9w0BCRABBKCCAUEEggE9MIIBOQIBAQYKKwYBBAGEWQoDATAxMA0GCWCGSAFl +# AwQCAQUABCDB/5pgJMSywQWzPV9JmKhJL6MoNIaXQMIgMZkbopcpUAIGZQQDsMbk +# GBMyMDIzMDkyMDA1NTA0NC4xNTJaMASAAgH0oIHRpIHOMIHLMQswCQYDVQQGEwJV +# UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE +# ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1l +# cmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046REMwMC0w +# NUUwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2Wg +# ghHqMIIHIDCCBQigAwIBAgITMwAAAdIhJDFKWL8tEQABAAAB0jANBgkqhkiG9w0B +# AQsFADB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UE +# BxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYD +# VQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDAeFw0yMzA1MjUxOTEy +# MjFaFw0yNDAyMDExOTEyMjFaMIHLMQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2Fz +# aGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENv +# cnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1lcmljYSBPcGVyYXRpb25z +# MScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046REMwMC0wNUUwLUQ5NDcxJTAjBgNV +# BAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2UwggIiMA0GCSqGSIb3DQEB +# AQUAA4ICDwAwggIKAoICAQDcYIhC0QI/SPaT5+nYSBsSdhBPO2SXM40Vyyg8Fq1T +# PrMNDzxChxWUD7fbKwYGSsONgtjjVed5HSh5il75jNacb6TrZwuX+Q2++f2/8CCy +# u8TY0rxEInD3Tj52bWz5QRWVQejfdCA/n6ZzinhcZZ7+VelWgTfYC7rDrhX3TBX8 +# 9elqXmISOVIWeXiRK8h9hH6SXgjhQGGQbf2bSM7uGkKzJ/pZ2LvlTzq+mOW9iP2j +# cYEA4bpPeurpglLVUSnGGQLmjQp7Sdy1wE52WjPKdLnBF6JbmSREM/Dj9Z7okxRN +# UjYSdgyvZ1LWSilhV/wegYXVQ6P9MKjRnE8CI5KMHmq7EsHhIBK0B99dFQydL1vd +# uC7eWEjzz55Z/DyH6Hl2SPOf5KZ4lHf6MUwtgaf+MeZxkW0ixh/vL1mX8VsJTHa8 +# AH+0l/9dnWzFMFFJFG7g95nHJ6MmYPrfmoeKORoyEQRsSus2qCrpMjg/P3Z9WJAt +# FGoXYMD19NrzG4UFPpVbl3N1XvG4/uldo1+anBpDYhxQU7k1gfHn6QxdUU0TsrJ/ +# JCvLffS89b4VXlIaxnVF6QZh+J7xLUNGtEmj6dwPzoCfL7zqDZJvmsvYNk1lcbyV +# xMIgDFPoA2fZPXHF7dxahM2ZG7AAt3vZEiMtC6E/ciLRcIwzlJrBiHEenIPvxW15 +# qwIDAQABo4IBSTCCAUUwHQYDVR0OBBYEFCC2n7cnR3ToP/kbEZ2XJFFmZ1kkMB8G +# A1UdIwQYMBaAFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMF8GA1UdHwRYMFYwVKBSoFCG +# Tmh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvY3JsL01pY3Jvc29mdCUy +# MFRpbWUtU3RhbXAlMjBQQ0ElMjAyMDEwKDEpLmNybDBsBggrBgEFBQcBAQRgMF4w +# XAYIKwYBBQUHMAKGUGh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvY2Vy +# dHMvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUyMDIwMTAoMSkuY3J0MAwG +# A1UdEwEB/wQCMAAwFgYDVR0lAQH/BAwwCgYIKwYBBQUHAwgwDgYDVR0PAQH/BAQD +# AgeAMA0GCSqGSIb3DQEBCwUAA4ICAQCw5iq0Ey0LlAdz2PcqchRwW5d+fitNISCv +# qD0E6W/AyiTk+TM3WhYTaxQ2pP6Or4qOV+Du7/L+k18gYr1phshxVMVnXNcdjecM +# tTWUOVAwbJoeWHaAgknNIMzXK3+zguG5TVcLEh/CVMy1J7KPE8Q0Cz56NgWzd9ur +# G+shSDKkKdhOYPXF970Mr1GCFFpe1oXjEy6aS+Heavp2wmy65mbu0AcUOPEn+hYq +# ijgLXSPqvuFmOOo5UnSV66Dv5FdkqK7q5DReox9RPEZcHUa+2BUKPjp+dQ3D4c9I +# H8727KjMD8OXZomD9A8Mr/fcDn5FI7lfZc8ghYc7spYKTO/0Z9YRRamhVWxxrIsB +# N5LrWh+18soXJ++EeSjzSYdgGWYPg16hL/7Aydx4Kz/WBTUmbGiiVUcE/I0aQU2U +# /0NzUiIFIW80SvxeDWn6I+hyVg/sdFSALP5JT7wAe8zTvsrI2hMpEVLdStFAMqan +# FYqtwZU5FoAsoPZ7h1ElWmKLZkXk8ePuALztNY1yseO0TwdueIGcIwItrlBYg1Xp +# Pz1+pMhGMVble6KHunaKo5K/ldOM0mQQT4Vjg6ZbzRIVRoDcArQ5//0875jOUvJt +# Yyc7Hl04jcmvjEIXC3HjkUYvgHEWL0QF/4f7vLAchaEZ839/3GYOdqH5VVnZrUIB +# QB6DTaUILDCCB3EwggVZoAMCAQICEzMAAAAVxedrngKbSZkAAAAAABUwDQYJKoZI +# hvcNAQELBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAw +# DgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24x +# MjAwBgNVBAMTKU1pY3Jvc29mdCBSb290IENlcnRpZmljYXRlIEF1dGhvcml0eSAy +# MDEwMB4XDTIxMDkzMDE4MjIyNVoXDTMwMDkzMDE4MzIyNVowfDELMAkGA1UEBhMC +# VVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNV +# BAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRp +# bWUtU3RhbXAgUENBIDIwMTAwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC +# AQDk4aZM57RyIQt5osvXJHm9DtWC0/3unAcH0qlsTnXIyjVX9gF/bErg4r25Phdg +# M/9cT8dm95VTcVrifkpa/rg2Z4VGIwy1jRPPdzLAEBjoYH1qUoNEt6aORmsHFPPF +# dvWGUNzBRMhxXFExN6AKOG6N7dcP2CZTfDlhAnrEqv1yaa8dq6z2Nr41JmTamDu6 +# GnszrYBbfowQHJ1S/rboYiXcag/PXfT+jlPP1uyFVk3v3byNpOORj7I5LFGc6XBp +# Dco2LXCOMcg1KL3jtIckw+DJj361VI/c+gVVmG1oO5pGve2krnopN6zL64NF50Zu +# yjLVwIYwXE8s4mKyzbnijYjklqwBSru+cakXW2dg3viSkR4dPf0gz3N9QZpGdc3E +# XzTdEonW/aUgfX782Z5F37ZyL9t9X4C626p+Nuw2TPYrbqgSUei/BQOj0XOmTTd0 +# lBw0gg/wEPK3Rxjtp+iZfD9M269ewvPV2HM9Q07BMzlMjgK8QmguEOqEUUbi0b1q +# GFphAXPKZ6Je1yh2AuIzGHLXpyDwwvoSCtdjbwzJNmSLW6CmgyFdXzB0kZSU2LlQ +# +QuJYfM2BjUYhEfb3BvR/bLUHMVr9lxSUV0S2yW6r1AFemzFER1y7435UsSFF5PA +# PBXbGjfHCBUYP3irRbb1Hode2o+eFnJpxq57t7c+auIurQIDAQABo4IB3TCCAdkw +# EgYJKwYBBAGCNxUBBAUCAwEAATAjBgkrBgEEAYI3FQIEFgQUKqdS/mTEmr6CkTxG +# NSnPEP8vBO4wHQYDVR0OBBYEFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMFwGA1UdIARV +# MFMwUQYMKwYBBAGCN0yDfQEBMEEwPwYIKwYBBQUHAgEWM2h0dHA6Ly93d3cubWlj +# cm9zb2Z0LmNvbS9wa2lvcHMvRG9jcy9SZXBvc2l0b3J5Lmh0bTATBgNVHSUEDDAK +# BggrBgEFBQcDCDAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTALBgNVHQ8EBAMC +# AYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBTV9lbLj+iiXGJo0T2UkFvX +# zpoYxDBWBgNVHR8ETzBNMEugSaBHhkVodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20v +# cGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXRfMjAxMC0wNi0yMy5jcmwwWgYI +# KwYBBQUHAQEETjBMMEoGCCsGAQUFBzAChj5odHRwOi8vd3d3Lm1pY3Jvc29mdC5j +# b20vcGtpL2NlcnRzL01pY1Jvb0NlckF1dF8yMDEwLTA2LTIzLmNydDANBgkqhkiG +# 9w0BAQsFAAOCAgEAnVV9/Cqt4SwfZwExJFvhnnJL/Klv6lwUtj5OR2R4sQaTlz0x +# M7U518JxNj/aZGx80HU5bbsPMeTCj/ts0aGUGCLu6WZnOlNN3Zi6th542DYunKmC +# VgADsAW+iehp4LoJ7nvfam++Kctu2D9IdQHZGN5tggz1bSNU5HhTdSRXud2f8449 +# xvNo32X2pFaq95W2KFUn0CS9QKC/GbYSEhFdPSfgQJY4rPf5KYnDvBewVIVCs/wM +# nosZiefwC2qBwoEZQhlSdYo2wh3DYXMuLGt7bj8sCXgU6ZGyqVvfSaN0DLzskYDS +# PeZKPmY7T7uG+jIa2Zb0j/aRAfbOxnT99kxybxCrdTDFNLB62FD+CljdQDzHVG2d +# Y3RILLFORy3BFARxv2T5JL5zbcqOCb2zAVdJVGTZc9d/HltEAY5aGZFrDZ+kKNxn +# GSgkujhLmm77IVRrakURR6nxt67I6IleT53S0Ex2tVdUCbFpAUR+fKFhbHP+Crvs +# QWY9af3LwUFJfn6Tvsv4O+S3Fb+0zj6lMVGEvL8CwYKiexcdFYmNcP7ntdAoGokL +# jzbaukz5m/8K6TT4JDVnK+ANuOaMmdbhIurwJ0I9JZTmdHRbatGePu1+oDEzfbzL +# 6Xu/OHBE0ZDxyKs6ijoIYn/ZcGNTTY3ugm2lBRDBcQZqELQdVTNYs6FwZvKhggNN +# MIICNQIBATCB+aGB0aSBzjCByzELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hp +# bmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jw +# b3JhdGlvbjElMCMGA1UECxMcTWljcm9zb2Z0IEFtZXJpY2EgT3BlcmF0aW9uczEn +# MCUGA1UECxMeblNoaWVsZCBUU1MgRVNOOkRDMDAtMDVFMC1EOTQ3MSUwIwYDVQQD +# ExxNaWNyb3NvZnQgVGltZS1TdGFtcCBTZXJ2aWNloiMKAQEwBwYFKw4DAhoDFQCJ +# ptLCZsE06NtmHQzB5F1TroFSBqCBgzCBgKR+MHwxCzAJBgNVBAYTAlVTMRMwEQYD +# VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jvc29mdCBUaW1lLVN0YW1w +# IFBDQSAyMDEwMA0GCSqGSIb3DQEBCwUAAgUA6LRwyDAiGA8yMDIzMDkxOTE5MTEw +# NFoYDzIwMjMwOTIwMTkxMTA0WjB0MDoGCisGAQQBhFkKBAExLDAqMAoCBQDotHDI +# AgEAMAcCAQACAi5fMAcCAQACAhMzMAoCBQDotcJIAgEAMDYGCisGAQQBhFkKBAIx +# KDAmMAwGCisGAQQBhFkKAwKgCjAIAgEAAgMHoSChCjAIAgEAAgMBhqAwDQYJKoZI +# hvcNAQELBQADggEBABSMhArCfMaUns9Ybi+bd7CrSqySoFW9FQHNYSc/7Z4kVIDH +# MOSWB04XzoJV+b5q9p40kFfOlc5b184s/ZuR0zXF8NOTag0yTpWUYZDo3OrdVa45 +# g1JiqIjXs1Mpilyf/r194uoB8G63Kyxv4tyQX01/UL1ohtT88bXEDl6pNb+Xyhu/ +# 3benlypP9gr5fXHU1AcSpR/fuLO2QX4Inqqsrn8073fZkUrFfXeHgYGscjH/6A8V +# xK3x86MVX85OKS7L48K64XMJmuNzDOPMz7fbFLtwrj3tXhnU179w/GuGdvFgRaPf +# VfxZcx4y31FR1J4hDsrSVj/eGul6ZvDhEP5llugxggQNMIIECQIBATCBkzB8MQsw +# CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u +# ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYDVQQDEx1NaWNy +# b3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMAITMwAAAdIhJDFKWL8tEQABAAAB0jAN +# BglghkgBZQMEAgEFAKCCAUowGgYJKoZIhvcNAQkDMQ0GCyqGSIb3DQEJEAEEMC8G +# CSqGSIb3DQEJBDEiBCDABiZtIILyalxFaNkpSNLPyB6dnqa8Og8PeO2M5QwQvjCB +# +gYLKoZIhvcNAQkQAi8xgeowgecwgeQwgb0EIMeAIJPf30i9ZbOExU557GwWNaLH +# 0Z5s65JFga2DeaROMIGYMIGApH4wfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldh +# c2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBD +# b3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIw +# MTACEzMAAAHSISQxSli/LREAAQAAAdIwIgQgxHcZpEl6iRNRIzFH1U59AFtiyMD5 +# cXN76GiPGy+kKMAwDQYJKoZIhvcNAQELBQAEggIA0Ev33yJgxJMIh75Ft6iuoxJH +# qmm0N6lliYKEIWF42TZBKU4ubpdr1tca9Wt8bL/AagZ4tEEb1fKBJTwmedSQQOey +# cWdkjeXRlHqBkHEpz/u+yIl9/4KojgmxT9P0ZNfHPjQxt9Zb7wubc2N9tgJ6ZwXr +# Kx/1DZkiKwXXRbNga7yyVM924J0/xokBiDkWtWKF4UOdEAtAoQmxwtVFWnJBVVQK +# BV8bAgi4+5lGrD1PoX1/uLd1hsnr0+/qu/Lz8f20DcFmPrp+gEXLdDCvws93b9fx +# 3hSuuVawfT8XFnXEut989RtYBlYkOPgDIrUbuHj5EqmB19UnhOeFkvhMHEqq+XKo +# kO9mHo8WZOnMFYM8FeSclxl3z/3jrAEibfoXBpVXFv1F3GGt5WH+2UWs7JXTK01R +# tnDr6DRsMEIr0yw2g1cb//u0BkmcEwBXr51dNX3E0WAxqVJk9yjV+YuGLjeD569E +# wDGANqkm83LIALMCBaBAzjVoG8jVnR0gLXrca7i+ez1h/jVDl5GmGcVfdgvxzDYk +# +uMpr/FsnoEFMGiBe/9l72gXY7pnoCipoNTx6q3GA3cfzfVDw27c8AzCny1DHUvj +# cUPCdId96d7eIR//lZo+DnJdQ+rsPlDuqpPdoldS/TzlCl+5Z8idTtxp9kSqzt8O +# aZYYi6hivyQoGN3avBU= +# SIG # End signature block diff --git a/Modules/Az.Accounts/2.13.1/en-US/about_az.help.txt b/Modules/Az.Accounts/2.13.1/en-US/about_az.help.txt new file mode 100644 index 000000000000..fb4a5e9becd1 --- /dev/null +++ b/Modules/Az.Accounts/2.13.1/en-US/about_az.help.txt @@ -0,0 +1,50 @@ +About topic for Azure PowerShell - about_az + +TOPIC + +about_Az + +SHORT DESCRIPTION + +The Azure Az PowerShell module is a set of cmdlets for managing Azure +resources directly from the PowerShell command line and in PowerShell +scripts. + +LONG DESCRIPTION + +Azure PowerShell provides cross-platform cmdlets for managing Azure +services. All Azure PowerShell cmdlets work on Windows PowerShell 5.1 and +supported versions of PowerShell 7. + +The Azure PowerShell cmdlets follow the naming convention {verb}-Az{noun}. + +- {verb} is an approved PowerShell verb reflecting the corresponding HTTP + operation. + +- {noun} matches or has a close equivalent to the name of the resource. + +The cmdlets produce .NET objects that can be piped between commands +simplifying the sequencing of commands making Azure PowerShell a powerful +solution for scripting and automation purposes. + +A PowerShell module is available for each Azure service. For convenience, +we provide a wrapper module named "Az" that comprises the stable modules. +Modules in preview must be installed independently or via the "AzPreview" +wrapper module. + +Azure PowerShell is frequently updated to include bug fixes and service +updates. It is recommended to plan to update to the most recent version +regularly (a minimum of twice a year). + +GETTING STARTED + +1. Connect to Azure using Connect-AzAccount + +2. Run your first command. For example, create a resource group in the + east US region. + + New-AzResourceGroup -Name "MyResoureGroup" -location "eastus" + +SEE ALSO + +Azure PowerShell documentation: https://learn.microsoft.com/powershell/azure diff --git a/Modules/Az.Accounts/2.13.1/lib/netcoreapp2.1/Azure.Core.dll b/Modules/Az.Accounts/2.13.1/lib/netcoreapp2.1/Azure.Core.dll new file mode 100644 index 000000000000..66f3d3165b86 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netcoreapp2.1/Azure.Core.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netcoreapp2.1/Microsoft.Identity.Client.dll b/Modules/Az.Accounts/2.13.1/lib/netcoreapp2.1/Microsoft.Identity.Client.dll new file mode 100644 index 000000000000..7e98f30fc54a Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netcoreapp2.1/Microsoft.Identity.Client.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netcoreapp3.1/Microsoft.Identity.Client.Extensions.Msal.dll b/Modules/Az.Accounts/2.13.1/lib/netcoreapp3.1/Microsoft.Identity.Client.Extensions.Msal.dll new file mode 100644 index 000000000000..02168e3b1856 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netcoreapp3.1/Microsoft.Identity.Client.Extensions.Msal.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netfx/Azure.Core.dll b/Modules/Az.Accounts/2.13.1/lib/netfx/Azure.Core.dll new file mode 100644 index 000000000000..2593da6045ce Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netfx/Azure.Core.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netfx/Microsoft.Identity.Client.Extensions.Msal.dll b/Modules/Az.Accounts/2.13.1/lib/netfx/Microsoft.Identity.Client.Extensions.Msal.dll new file mode 100644 index 000000000000..87f0bdfe02f2 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netfx/Microsoft.Identity.Client.Extensions.Msal.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netfx/Microsoft.Identity.Client.dll b/Modules/Az.Accounts/2.13.1/lib/netfx/Microsoft.Identity.Client.dll new file mode 100644 index 000000000000..2a1b17bc86a4 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netfx/Microsoft.Identity.Client.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netfx/Newtonsoft.Json.dll b/Modules/Az.Accounts/2.13.1/lib/netfx/Newtonsoft.Json.dll new file mode 100644 index 000000000000..9f13f1f8a4fd Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netfx/Newtonsoft.Json.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netfx/System.Diagnostics.DiagnosticSource.dll b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Diagnostics.DiagnosticSource.dll new file mode 100644 index 000000000000..92419a27e0c2 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Diagnostics.DiagnosticSource.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netfx/System.Numerics.Vectors.dll b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Numerics.Vectors.dll new file mode 100644 index 000000000000..08659724d4f8 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Numerics.Vectors.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netfx/System.Reflection.DispatchProxy.dll b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Reflection.DispatchProxy.dll new file mode 100644 index 000000000000..674ced0460de Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Reflection.DispatchProxy.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netfx/System.Runtime.CompilerServices.Unsafe.dll b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Runtime.CompilerServices.Unsafe.dll new file mode 100644 index 000000000000..c5ba4e4047a1 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Runtime.CompilerServices.Unsafe.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netfx/System.Security.Cryptography.Cng.dll b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Security.Cryptography.Cng.dll new file mode 100644 index 000000000000..4f4c30e080bd Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Security.Cryptography.Cng.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netfx/System.Text.Encodings.Web.dll b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Text.Encodings.Web.dll new file mode 100644 index 000000000000..6d2b207854ac Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Text.Encodings.Web.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netfx/System.Xml.ReaderWriter.dll b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Xml.ReaderWriter.dll new file mode 100644 index 000000000000..022e63a21a86 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netfx/System.Xml.ReaderWriter.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Azure.Identity.BrokeredAuthentication.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Azure.Identity.BrokeredAuthentication.dll new file mode 100644 index 000000000000..4b4b2f2b663d Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Azure.Identity.BrokeredAuthentication.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Azure.Identity.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Azure.Identity.dll new file mode 100644 index 000000000000..5662a76ad958 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Azure.Identity.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Microsoft.Bcl.AsyncInterfaces.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Microsoft.Bcl.AsyncInterfaces.dll new file mode 100644 index 000000000000..f2955edfecb7 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Microsoft.Bcl.AsyncInterfaces.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Microsoft.Identity.Client.Broker.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Microsoft.Identity.Client.Broker.dll new file mode 100644 index 000000000000..3e0a147d4bcb Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Microsoft.Identity.Client.Broker.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Microsoft.Identity.Client.NativeInterop.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Microsoft.Identity.Client.NativeInterop.dll new file mode 100644 index 000000000000..a7d555909366 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Microsoft.Identity.Client.NativeInterop.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Microsoft.IdentityModel.Abstractions.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Microsoft.IdentityModel.Abstractions.dll new file mode 100644 index 000000000000..f793fd89bece Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/Microsoft.IdentityModel.Abstractions.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Buffers.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Buffers.dll new file mode 100644 index 000000000000..c517a3b62cc7 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Buffers.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Memory.Data.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Memory.Data.dll new file mode 100644 index 000000000000..6f2a3e0ad07f Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Memory.Data.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Memory.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Memory.dll new file mode 100644 index 000000000000..bdfc501e9647 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Memory.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Net.Http.WinHttpHandler.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Net.Http.WinHttpHandler.dll new file mode 100644 index 000000000000..8bd471e74c6e Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Net.Http.WinHttpHandler.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Private.ServiceModel.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Private.ServiceModel.dll new file mode 100644 index 000000000000..3f9f84edf0ed Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Private.ServiceModel.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Security.AccessControl.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Security.AccessControl.dll new file mode 100644 index 000000000000..36fb33af4590 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Security.AccessControl.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Security.Permissions.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Security.Permissions.dll new file mode 100644 index 000000000000..2a353ee22eec Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Security.Permissions.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Security.Principal.Windows.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Security.Principal.Windows.dll new file mode 100644 index 000000000000..19d0fc0e971c Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Security.Principal.Windows.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.ServiceModel.Primitives.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.ServiceModel.Primitives.dll new file mode 100644 index 000000000000..c1aa0a64f8f9 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.ServiceModel.Primitives.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Text.Json.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Text.Json.dll new file mode 100644 index 000000000000..fe2154a3bf3a Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Text.Json.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Threading.Tasks.Extensions.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Threading.Tasks.Extensions.dll new file mode 100644 index 000000000000..dfab23478ab4 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/System.Threading.Tasks.Extensions.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/msalruntime.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/msalruntime.dll new file mode 100644 index 000000000000..70162a8713a2 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/msalruntime.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/msalruntime_arm64.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/msalruntime_arm64.dll new file mode 100644 index 000000000000..aca4cb32691f Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/msalruntime_arm64.dll differ diff --git a/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/msalruntime_x86.dll b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/msalruntime_x86.dll new file mode 100644 index 000000000000..24735b8531b8 Binary files /dev/null and b/Modules/Az.Accounts/2.13.1/lib/netstandard2.0/msalruntime_x86.dll differ diff --git a/Modules/Az.Storage/5.10.1/Az.Storage.psd1 b/Modules/Az.Storage/5.10.1/Az.Storage.psd1 new file mode 100644 index 000000000000..bf9a7675ace1 --- /dev/null +++ b/Modules/Az.Storage/5.10.1/Az.Storage.psd1 @@ -0,0 +1,490 @@ +# +# Module manifest for module 'Az.Storage' +# +# Generated by: Microsoft Corporation +# +# Generated on: 9/20/2023 +# + +@{ + +# Script module or binary module file associated with this manifest. +RootModule = 'Az.Storage.psm1' + +# Version number of this module. +ModuleVersion = '5.10.1' + +# Supported PSEditions +CompatiblePSEditions = 'Core', 'Desktop' + +# ID used to uniquely identify this module +GUID = 'dfa9e4ea-1407-446d-9111-79122977ab20' + +# Author of this module +Author = 'Microsoft Corporation' + +# Company or vendor of this module +CompanyName = 'Microsoft Corporation' + +# Copyright statement for this module +Copyright = 'Microsoft Corporation. All rights reserved.' + +# Description of the functionality provided by this module +Description = 'Microsoft Azure PowerShell - Storage service data plane and management cmdlets for Azure Resource Manager in Windows PowerShell and PowerShell Core. Creates and manages storage accounts in Azure Resource Manager. + +For more information on Storage, please visit the following: https://learn.microsoft.com/azure/storage/' + +# Minimum version of the PowerShell engine required by this module +PowerShellVersion = '5.1' + +# Name of the PowerShell host required by this module +# PowerShellHostName = '' + +# Minimum version of the PowerShell host required by this module +# PowerShellHostVersion = '' + +# Minimum version of Microsoft .NET Framework required by this module. This prerequisite is valid for the PowerShell Desktop edition only. +DotNetFrameworkVersion = '4.7.2' + +# Minimum version of the common language runtime (CLR) required by this module. This prerequisite is valid for the PowerShell Desktop edition only. +# ClrVersion = '' + +# Processor architecture (None, X86, Amd64) required by this module +# ProcessorArchitecture = '' + +# Modules that must be imported into the global environment prior to importing this module +RequiredModules = @() + +# Assemblies that must be loaded prior to importing this module +RequiredAssemblies = 'Microsoft.Azure.PowerShell.Storage.Management.Sdk.dll', + 'Microsoft.Azure.Storage.Common.dll', + 'Microsoft.Azure.Storage.Blob.dll', + 'Microsoft.Azure.Storage.File.dll', + 'Microsoft.Azure.Storage.Queue.dll', + 'Microsoft.Azure.Cosmos.Table.dll', + 'Microsoft.Azure.DocumentDB.Core.dll', + 'Microsoft.Azure.Storage.DataMovement.dll', + 'Microsoft.Azure.DocumentDB.Core.dll', 'Microsoft.OData.Core.dll', + 'Microsoft.OData.Edm.dll', 'Microsoft.Spatial.dll', + 'Microsoft.Azure.KeyVault.Core.dll', 'Azure.Storage.Blobs.dll', + 'Azure.Storage.Common.dll', 'Azure.Storage.Files.DataLake.dll', + 'Azure.Storage.Queues.dll', 'Azure.Storage.Files.Shares.dll', + 'Azure.Data.Tables.dll', 'System.IO.Hashing.dll' + +# Script files (.ps1) that are run in the caller's environment prior to importing this module. +# ScriptsToProcess = @() + +# Type files (.ps1xml) to be loaded when importing this module +# TypesToProcess = @() + +# Format files (.ps1xml) to be loaded when importing this module +FormatsToProcess = 'Storage.Management.format.ps1xml', 'Storage.format.ps1xml', + 'Storage.generated.format.ps1xml' + +# Modules to import as nested modules of the module specified in RootModule/ModuleToProcess +NestedModules = @() + +# Functions to export from this module, for best performance, do not use wildcards and do not delete the entry, use an empty array if there are no functions to export. +FunctionsToExport = @() + +# Cmdlets to export from this module, for best performance, do not use wildcards and do not delete the entry, use an empty array if there are no cmdlets to export. +CmdletsToExport = 'Get-AzStorageAccount', 'Get-AzStorageAccountKey', + 'New-AzStorageAccount', 'New-AzStorageAccountKey', + 'Remove-AzStorageAccount', 'Set-AzCurrentStorageAccount', + 'Set-AzStorageAccount', 'Get-AzStorageAccountNameAvailability', + 'Get-AzStorageUsage', 'Update-AzStorageAccountNetworkRuleSet', + 'Get-AzStorageAccountNetworkRuleSet', + 'Add-AzStorageAccountNetworkRule', + 'Remove-AzStorageAccountNetworkRule', 'Get-AzStorageTable', + 'New-AzStorageTableSASToken', + 'New-AzStorageTableStoredAccessPolicy', 'New-AzStorageTable', + 'Remove-AzStorageTableStoredAccessPolicy', 'Remove-AzStorageTable', + 'Get-AzStorageTableStoredAccessPolicy', + 'Set-AzStorageTableStoredAccessPolicy', 'Get-AzStorageQueue', + 'New-AzStorageQueue', 'Remove-AzStorageQueue', + 'Get-AzStorageQueueStoredAccessPolicy', + 'New-AzStorageQueueSASToken', + 'New-AzStorageQueueStoredAccessPolicy', + 'Remove-AzStorageQueueStoredAccessPolicy', + 'Set-AzStorageQueueStoredAccessPolicy', 'Get-AzStorageFile', + 'Get-AzStorageFileContent', 'Get-AzStorageFileCopyState', + 'Get-AzStorageShare', 'Get-AzStorageShareStoredAccessPolicy', + 'New-AzStorageDirectory', 'New-AzStorageFileSASToken', + 'New-AzStorageShare', 'New-AzStorageShareSASToken', + 'New-AzStorageShareStoredAccessPolicy', 'Remove-AzStorageDirectory', + 'Remove-AzStorageFile', 'Remove-AzStorageShare', + 'Remove-AzStorageShareStoredAccessPolicy', + 'Set-AzStorageFileContent', 'Set-AzStorageShareQuota', + 'Set-AzStorageShareStoredAccessPolicy', 'Start-AzStorageFileCopy', + 'Stop-AzStorageFileCopy', 'New-AzStorageAccountSASToken', + 'Set-AzStorageCORSRule', 'Get-AzStorageCORSRule', + 'Get-AzStorageServiceLoggingProperty', + 'Get-AzStorageServiceMetricsProperty', 'Remove-AzStorageCORSRule', + 'Set-AzStorageServiceLoggingProperty', + 'Set-AzStorageServiceMetricsProperty', 'New-AzStorageContext', + 'Set-AzStorageContainerAcl', 'Remove-AzStorageBlob', + 'Set-AzStorageBlobContent', 'Get-AzStorageBlob', + 'Get-AzStorageBlobContent', 'Get-AzStorageBlobCopyState', + 'Get-AzStorageContainer', + 'Get-AzStorageContainerStoredAccessPolicy', + 'New-AzStorageBlobSASToken', 'New-AzStorageContainer', + 'New-AzStorageContainerSASToken', + 'New-AzStorageContainerStoredAccessPolicy', + 'Remove-AzStorageContainer', + 'Remove-AzStorageContainerStoredAccessPolicy', + 'Set-AzStorageContainerStoredAccessPolicy', + 'Start-AzStorageBlobCopy', 'Start-AzStorageBlobIncrementalCopy', + 'Stop-AzStorageBlobCopy', 'Update-AzStorageServiceProperty', + 'Get-AzStorageServiceProperty', + 'Enable-AzStorageDeleteRetentionPolicy', + 'Disable-AzStorageDeleteRetentionPolicy', + 'Enable-AzStorageStaticWebsite', 'Disable-AzStorageStaticWebsite', + 'Get-AzRmStorageContainer', 'Update-AzRmStorageContainer', + 'New-AzRmStorageContainer', 'Remove-AzRmStorageContainer', + 'Add-AzRmStorageContainerLegalHold', + 'Remove-AzRmStorageContainerLegalHold', + 'Set-AzRmStorageContainerImmutabilityPolicy', + 'Get-AzRmStorageContainerImmutabilityPolicy', + 'Remove-AzRmStorageContainerImmutabilityPolicy', + 'Lock-AzRmStorageContainerImmutabilityPolicy', + 'Set-AzStorageAccountManagementPolicy', + 'Get-AzStorageAccountManagementPolicy', + 'Remove-AzStorageAccountManagementPolicy', + 'New-AzStorageAccountManagementPolicyFilter', + 'New-AzStorageAccountManagementPolicyRule', + 'Add-AzStorageAccountManagementPolicyAction', + 'Update-AzStorageBlobServiceProperty', + 'Get-AzStorageBlobServiceProperty', + 'Enable-AzStorageBlobDeleteRetentionPolicy', + 'Disable-AzStorageBlobDeleteRetentionPolicy', + 'Revoke-AzStorageAccountUserDelegationKeys', + 'Get-AzStorageFileHandle', 'Close-AzStorageFileHandle', + 'New-AzRmStorageShare', 'Remove-AzRmStorageShare', + 'Get-AzRmStorageShare', 'Update-AzRmStorageShare', + 'Update-AzStorageFileServiceProperty', + 'Get-AzStorageFileServiceProperty', 'Restore-AzRmStorageShare', + 'Get-AzDataLakeGen2ChildItem', 'Get-AzDataLakeGen2Item', + 'New-AzDataLakeGen2Item', 'Move-AzDataLakeGen2Item', + 'Remove-AzDataLakeGen2Item', 'Update-AzDataLakeGen2Item', + 'Set-AzDataLakeGen2ItemAclObject', 'Get-AzDataLakeGen2ItemContent', + 'Invoke-AzStorageAccountFailover', 'Get-AzStorageBlobQueryResult', + 'New-AzStorageBlobQueryConfig', + 'New-AzStorageObjectReplicationPolicyRule', + 'Set-AzStorageObjectReplicationPolicy', + 'Get-AzStorageObjectReplicationPolicy', + 'Remove-AzStorageObjectReplicationPolicy', + 'Enable-AzStorageBlobRestorePolicy', + 'Disable-AzStorageBlobRestorePolicy', + 'New-AzStorageBlobRangeToRestore', 'Restore-AzStorageBlobRange', + 'Set-AzDataLakeGen2AclRecursive', + 'Update-AzDataLakeGen2AclRecursive', + 'Remove-AzDataLakeGen2AclRecursive', 'New-AzStorageEncryptionScope', + 'Update-AzStorageEncryptionScope', 'Get-AzStorageEncryptionScope', + 'Copy-AzStorageBlob', 'Set-AzStorageBlobInventoryPolicy', + 'New-AzStorageBlobInventoryPolicyRule', + 'Get-AzStorageBlobInventoryPolicy', + 'Remove-AzStorageBlobInventoryPolicy', + 'Enable-AzStorageContainerDeleteRetentionPolicy', + 'Disable-AzStorageContainerDeleteRetentionPolicy', + 'Restore-AzStorageContainer', + 'Enable-AzStorageBlobLastAccessTimeTracking', + 'Disable-AzStorageBlobLastAccessTimeTracking', + 'Set-AzStorageBlobTag', 'Get-AzStorageBlobTag', + 'Get-AzStorageBlobByTag', + 'Invoke-AzStorageAccountHierarchicalNamespaceUpgrade', + 'Stop-AzStorageAccountHierarchicalNamespaceUpgrade', + 'Set-AzStorageBlobImmutabilityPolicy', + 'Remove-AzStorageBlobImmutabilityPolicy', + 'Set-AzStorageBlobLegalHold', + 'Invoke-AzRmStorageContainerImmutableStorageWithVersioningMigration', + 'New-AzDataLakeGen2SasToken', + 'New-AzStorageAccountManagementPolicyBlobIndexMatchObject', + 'Set-AzStorageLocalUser', 'Get-AzStorageLocalUser', + 'Remove-AzStorageLocalUser', 'Get-AzStorageLocalUserKey', + 'New-AzStorageLocalUserSshPassword', + 'New-AzStorageLocalUserSshPublicKey', + 'New-AzStorageLocalUserPermissionScope', + 'Get-AzDataLakeGen2DeletedItem', + 'Restore-AzDataLakeGen2DeletedItem', 'Rename-AzStorageFile', + 'Rename-AzStorageDirectory' + +# Variables to export from this module +# VariablesToExport = @() + +# Aliases to export from this module, for best performance, do not use wildcards and do not delete the entry, use an empty array if there are no aliases to export. +AliasesToExport = 'Get-AzStorageContainerAcl', 'Start-CopyAzureStorageBlob', + 'Stop-CopyAzureStorageBlob', 'Enable-AzStorageSoftDelete', + 'Disable-AzStorageSoftDelete', 'New-AzDatalakeGen2FileSystem', + 'Remove-AzDatalakeGen2FileSystem', 'Get-AzDatalakeGen2FileSystem', + 'New-AzDataLakeGen2ItemAclObject' + +# DSC resources to export from this module +# DscResourcesToExport = @() + +# List of all modules packaged with this module +# ModuleList = @() + +# List of all files packaged with this module +# FileList = @() + +# Private data to pass to the module specified in RootModule/ModuleToProcess. This may also contain a PSData hashtable with additional module metadata used by PowerShell. +PrivateData = @{ + + PSData = @{ + + # Tags applied to this module. These help with module discovery in online galleries. + Tags = 'Azure','ResourceManager','ARM','Storage','StorageAccount' + + # A URL to the license for this module. + LicenseUri = 'https://aka.ms/azps-license' + + # A URL to the main website for this project. + ProjectUri = 'https://github.com/Azure/azure-powershell' + + # A URL to an icon representing this module. + # IconUri = '' + + # ReleaseNotes of this module + ReleaseNotes = '* Added warning messages for an upcoming breaking change that the output Permissions will be changed to a string when creating and updating a Queue access policy + - ''Get-AzStorageQueueStoredAccessPolicy'' + - ''Set-AzStorageQueueStoredAccessPolicy''' + + # Prerelease string of this module + # Prerelease = '' + + # Flag to indicate whether the module requires explicit user acceptance for install/update/save + # RequireLicenseAcceptance = $false + + # External dependent modules of this module + # ExternalModuleDependencies = @() + + } # End of PSData hashtable + + } # End of PrivateData hashtable + +# HelpInfo URI of this module +# HelpInfoURI = '' + +# Default prefix for commands exported from this module. Override the default prefix using Import-Module -Prefix. +# DefaultCommandPrefix = '' + +} + + +# SIG # Begin signature block +# MIIoPAYJKoZIhvcNAQcCoIIoLTCCKCkCAQExDzANBglghkgBZQMEAgEFADB5Bgor +# BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG +# KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCCdRZYEGtB5KnoA +# uiFe8QrK8pFWcEZeglK0oCilGyNKK6CCDYUwggYDMIID66ADAgECAhMzAAADTU6R +# phoosHiPAAAAAANNMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD +# VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p +# bmcgUENBIDIwMTEwHhcNMjMwMzE2MTg0MzI4WhcNMjQwMzE0MTg0MzI4WjB0MQsw +# CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u +# ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB +# AQDUKPcKGVa6cboGQU03ONbUKyl4WpH6Q2Xo9cP3RhXTOa6C6THltd2RfnjlUQG+ +# Mwoy93iGmGKEMF/jyO2XdiwMP427j90C/PMY/d5vY31sx+udtbif7GCJ7jJ1vLzd +# j28zV4r0FGG6yEv+tUNelTIsFmmSb0FUiJtU4r5sfCThvg8dI/F9Hh6xMZoVti+k +# bVla+hlG8bf4s00VTw4uAZhjGTFCYFRytKJ3/mteg2qnwvHDOgV7QSdV5dWdd0+x +# zcuG0qgd3oCCAjH8ZmjmowkHUe4dUmbcZfXsgWlOfc6DG7JS+DeJak1DvabamYqH +# g1AUeZ0+skpkwrKwXTFwBRltAgMBAAGjggGCMIIBfjAfBgNVHSUEGDAWBgorBgEE +# AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQUId2Img2Sp05U6XI04jli2KohL+8w +# VAYDVR0RBE0wS6RJMEcxLTArBgNVBAsTJE1pY3Jvc29mdCBJcmVsYW5kIE9wZXJh +# dGlvbnMgTGltaXRlZDEWMBQGA1UEBRMNMjMwMDEyKzUwMDUxNzAfBgNVHSMEGDAW +# gBRIbmTlUAXTgqoXNzcitW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8v +# d3d3Lm1pY3Jvc29mdC5jb20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIw +# MTEtMDctMDguY3JsMGEGCCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDov +# L3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDEx +# XzIwMTEtMDctMDguY3J0MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIB +# ACMET8WuzLrDwexuTUZe9v2xrW8WGUPRQVmyJ1b/BzKYBZ5aU4Qvh5LzZe9jOExD +# YUlKb/Y73lqIIfUcEO/6W3b+7t1P9m9M1xPrZv5cfnSCguooPDq4rQe/iCdNDwHT +# 6XYW6yetxTJMOo4tUDbSS0YiZr7Mab2wkjgNFa0jRFheS9daTS1oJ/z5bNlGinxq +# 2v8azSP/GcH/t8eTrHQfcax3WbPELoGHIbryrSUaOCphsnCNUqUN5FbEMlat5MuY +# 94rGMJnq1IEd6S8ngK6C8E9SWpGEO3NDa0NlAViorpGfI0NYIbdynyOB846aWAjN +# fgThIcdzdWFvAl/6ktWXLETn8u/lYQyWGmul3yz+w06puIPD9p4KPiWBkCesKDHv +# XLrT3BbLZ8dKqSOV8DtzLFAfc9qAsNiG8EoathluJBsbyFbpebadKlErFidAX8KE +# usk8htHqiSkNxydamL/tKfx3V/vDAoQE59ysv4r3pE+zdyfMairvkFNNw7cPn1kH +# Gcww9dFSY2QwAxhMzmoM0G+M+YvBnBu5wjfxNrMRilRbxM6Cj9hKFh0YTwba6M7z +# ntHHpX3d+nabjFm/TnMRROOgIXJzYbzKKaO2g1kWeyG2QtvIR147zlrbQD4X10Ab +# rRg9CpwW7xYxywezj+iNAc+QmFzR94dzJkEPUSCJPsTFMIIHejCCBWKgAwIBAgIK +# YQ6Q0gAAAAAAAzANBgkqhkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNV +# BAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jv +# c29mdCBDb3Jwb3JhdGlvbjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlm +# aWNhdGUgQXV0aG9yaXR5IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEw +# OTA5WjB+MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UE +# BxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYD +# VQQDEx9NaWNyb3NvZnQgQ29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG +# 9w0BAQEFAAOCAg8AMIICCgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+la +# UKq4BjgaBEm6f8MMHt03a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc +# 6Whe0t+bU7IKLMOv2akrrnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4D +# dato88tt8zpcoRb0RrrgOGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+ +# lD3v++MrWhAfTVYoonpy4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nk +# kDstrjNYxbc+/jLTswM9sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6 +# A4aN91/w0FK/jJSHvMAhdCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmd +# X4jiJV3TIUs+UsS1Vz8kA/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL +# 5zmhD+kjSbwYuER8ReTBw3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zd +# sGbiwZeBe+3W7UvnSSmnEyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3 +# T8HhhUSJxAlMxdSlQy90lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS +# 4NaIjAsCAwEAAaOCAe0wggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRI +# bmTlUAXTgqoXNzcitW2oynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTAL +# BgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBD +# uRQFTuHqp8cx0SOJNDBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jv +# c29mdC5jb20vcGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFf +# MDNfMjIuY3JsMF4GCCsGAQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3 +# dy5taWNyb3NvZnQuY29tL3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFf +# MDNfMjIuY3J0MIGfBgNVHSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEF +# BQcCARYzaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1h +# cnljcHMuaHRtMEAGCCsGAQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkA +# YwB5AF8AcwB0AGEAdABlAG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn +# 8oalmOBUeRou09h0ZyKbC5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7 +# v0epo/Np22O/IjWll11lhJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0b +# pdS1HXeUOeLpZMlEPXh6I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/ +# KmtYSWMfCWluWpiW5IP0wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvy +# CInWH8MyGOLwxS3OW560STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBp +# mLJZiWhub6e3dMNABQamASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJi +# hsMdYzaXht/a8/jyFqGaJ+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYb +# BL7fQccOKO7eZS/sl/ahXJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbS +# oqKfenoi+kiVH6v7RyOA9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sL +# gOppO6/8MO0ETI7f33VtY5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtX +# cVZOSEXAQsmbdlsKgEhr/Xmfwb1tbWrJUnMTDXpQzTGCGg0wghoJAgEBMIGVMH4x +# CzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRt +# b25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01p +# Y3Jvc29mdCBDb2RlIFNpZ25pbmcgUENBIDIwMTECEzMAAANNTpGmGiiweI8AAAAA +# A00wDQYJYIZIAWUDBAIBBQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQw +# HAYKKwYBBAGCNwIBCzEOMAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIENa +# IBKv7dXPoaoJ9wK3psyDBM3YbtFIrgZXGZQEsl2XMEIGCisGAQQBgjcCAQwxNDAy +# oBSAEgBNAGkAYwByAG8AcwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5j +# b20wDQYJKoZIhvcNAQEBBQAEggEAkOAAsRzCtsOZL/jXzAXmihgTdEsqGp1Wamop +# iJJaH+yyNapHF74Lx7tDsFV9rtgFgBTSX4lv1/5Xos4ILqgs9hu+12HolB9urO85 +# a9Ty98r21QzRMAjfBXGpVUqegX7bbWqUIkGpecQU2gs7rcwpMhHdRh73npW0NUID +# dtBihqa9OnABOY9RdmHuC3eSNVO3EBFgQhyyDAorvxJ1iCquWBcYRHQTD6zy1mop +# Zn+yg3j/ywAGYxTFBh2zRIoUxewhhrl03XuvFYLe/Zw3h6NmHMV84B37j2lIOHMD +# 23ZdviX4Chyg2XVKaiY73v4d+C8mkumGHrEaV4gY27VbXzR0+aGCF5cwgheTBgor +# BgEEAYI3AwMBMYIXgzCCF38GCSqGSIb3DQEHAqCCF3AwghdsAgEDMQ8wDQYJYIZI +# AWUDBAIBBQAwggFSBgsqhkiG9w0BCRABBKCCAUEEggE9MIIBOQIBAQYKKwYBBAGE +# WQoDATAxMA0GCWCGSAFlAwQCAQUABCDUO9ei7DjFfyApynRMFasWAYnXZZbcyVDE +# 5tkZni6BVwIGZQPtxZzcGBMyMDIzMDkyMDA2MzM0NS4zMTJaMASAAgH0oIHRpIHO +# MIHLMQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMH +# UmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQL +# ExxNaWNyb3NvZnQgQW1lcmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxk +# IFRTUyBFU046QTAwMC0wNUUwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1l +# LVN0YW1wIFNlcnZpY2WgghHtMIIHIDCCBQigAwIBAgITMwAAAdB3CKrvoxfG3QAB +# AAAB0DANBgkqhkiG9w0BAQsFADB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2Fz +# aGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENv +# cnBvcmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAx +# MDAeFw0yMzA1MjUxOTEyMTRaFw0yNDAyMDExOTEyMTRaMIHLMQswCQYDVQQGEwJV +# UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE +# ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1l +# cmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046QTAwMC0w +# NUUwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2Uw +# ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDfMlfn35fvM0XAUSmI5qiG +# 0UxPi25HkSyBgzk3zpYO311d1OEEFz0QpAK23s1dJFrjB5gD+SMw5z6EwxC4CrXU +# 9KaQ4WNHqHrhWftpgo3MkJex9frmO9MldUfjUG56sIW6YVF6YjX+9rT1JDdCDHbo +# 5nZiasMigGKawGb2HqD7/kjRR67RvVh7Q4natAVu46Zf5MLviR0xN5cNG20xwBwg +# ttaYEk5XlULaBH5OnXz2eWoIx+SjDO7Bt5BuABWY8SvmRQfByT2cppEzTjt/fs0x +# p4B1cAHVDwlGwZuv9Rfc3nddxgFrKA8MWHbJF0+aWUUYIBR8Fy2guFVHoHeOze7I +# sbyvRrax//83gYqo8c5Z/1/u7kjLcTgipiyZ8XERsLEECJ5ox1BBLY6AjmbgAzDd +# Nl2Leej+qIbdBr/SUvKEC+Xw4xjFMOTUVWKWemt2khwndUfBNR7Nzu1z9L0Wv7TA +# Y/v+v6pNhAeohPMCFJc+ak6uMD8TKSzWFjw5aADkmD9mGuC86yvSKkII4MayzoUd +# seT0nfk8Y0fPjtdw2Wnejl6zLHuYXwcDau2O1DMuoiedNVjTF37UEmYT+oxC/OFX +# UGPDEQt9tzgbR9g8HLtUfEeWOsOED5xgb5rwyfvIss7H/cdHFcIiIczzQgYnsLyE +# GepoZDkKhSMR5eCB6Kcv/QIDAQABo4IBSTCCAUUwHQYDVR0OBBYEFDPhAYWS0oA+ +# lOtITfjJtyl0knRRMB8GA1UdIwQYMBaAFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMF8G +# A1UdHwRYMFYwVKBSoFCGTmh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMv +# Y3JsL01pY3Jvc29mdCUyMFRpbWUtU3RhbXAlMjBQQ0ElMjAyMDEwKDEpLmNybDBs +# BggrBgEFBQcBAQRgMF4wXAYIKwYBBQUHMAKGUGh0dHA6Ly93d3cubWljcm9zb2Z0 +# LmNvbS9wa2lvcHMvY2VydHMvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUy +# MDIwMTAoMSkuY3J0MAwGA1UdEwEB/wQCMAAwFgYDVR0lAQH/BAwwCgYIKwYBBQUH +# AwgwDgYDVR0PAQH/BAQDAgeAMA0GCSqGSIb3DQEBCwUAA4ICAQCXh+ckCkZaA06S +# NW+qxtS9gHQp4x7G+gdikngKItEr8otkXIrmWPYrarRWBlY91lqGiilHyIlZ3iNB +# UbaNEmaKAGMZ5YcS7IZUKPaq1jU0msyl+8og0t9C/Z26+atx3vshHrFQuSgwTHZV +# pzv7k8CYnBYoxdhI1uGhqH595mqLvtMsxEN/1so7U+b3U6LCry5uwwcz5+j8Oj0G +# UX3b+iZg+As0xTN6T0Qa8BNec/LwcyqYNEaMkW2VAKrmhvWH8OCDTcXgONnnABQH +# BfXK/fLAbHFGS1XNOtr62/iaHBGAkrCGl6Bi8Pfws6fs+w+sE9r3hX9Vg0gsRMoH +# RuMaiXsrGmGsuYnLn3AwTguMatw9R8U5vJtWSlu1CFO5P0LEvQQiMZ12sQSsQAkN +# DTs9rTjVNjjIUgoZ6XPMxlcPIDcjxw8bfeb4y4wAxM2RRoWcxpkx+6IIf2L+b7gL +# HtBxXCWJ5bMW7WwUC2LltburUwBv0SgjpDtbEqw/uDgWBerCT+Zty3Nc967iGaQj +# yYQH6H/h9Xc8smm2n6VjySRx2swnW3hr6Qx63U/xY9HL6FNhrGiFED7ZRKrnwvvX +# vMVQUIEkB7GUEeN6heY8gHLt0jLV3yzDiQA8R8p5YGgGAVt9MEwgAJNY1iHvH/8v +# zhJSZFNkH8svRztO/i3TvKrjb8ZxwjCCB3EwggVZoAMCAQICEzMAAAAVxedrngKb +# SZkAAAAAABUwDQYJKoZIhvcNAQELBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQI +# EwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3Nv +# ZnQgQ29ycG9yYXRpb24xMjAwBgNVBAMTKU1pY3Jvc29mdCBSb290IENlcnRpZmlj +# YXRlIEF1dGhvcml0eSAyMDEwMB4XDTIxMDkzMDE4MjIyNVoXDTMwMDkzMDE4MzIy +# NVowfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcT +# B1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UE +# AxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIwMTAwggIiMA0GCSqGSIb3DQEB +# AQUAA4ICDwAwggIKAoICAQDk4aZM57RyIQt5osvXJHm9DtWC0/3unAcH0qlsTnXI +# yjVX9gF/bErg4r25PhdgM/9cT8dm95VTcVrifkpa/rg2Z4VGIwy1jRPPdzLAEBjo +# YH1qUoNEt6aORmsHFPPFdvWGUNzBRMhxXFExN6AKOG6N7dcP2CZTfDlhAnrEqv1y +# aa8dq6z2Nr41JmTamDu6GnszrYBbfowQHJ1S/rboYiXcag/PXfT+jlPP1uyFVk3v +# 3byNpOORj7I5LFGc6XBpDco2LXCOMcg1KL3jtIckw+DJj361VI/c+gVVmG1oO5pG +# ve2krnopN6zL64NF50ZuyjLVwIYwXE8s4mKyzbnijYjklqwBSru+cakXW2dg3viS +# kR4dPf0gz3N9QZpGdc3EXzTdEonW/aUgfX782Z5F37ZyL9t9X4C626p+Nuw2TPYr +# bqgSUei/BQOj0XOmTTd0lBw0gg/wEPK3Rxjtp+iZfD9M269ewvPV2HM9Q07BMzlM +# jgK8QmguEOqEUUbi0b1qGFphAXPKZ6Je1yh2AuIzGHLXpyDwwvoSCtdjbwzJNmSL +# W6CmgyFdXzB0kZSU2LlQ+QuJYfM2BjUYhEfb3BvR/bLUHMVr9lxSUV0S2yW6r1AF +# emzFER1y7435UsSFF5PAPBXbGjfHCBUYP3irRbb1Hode2o+eFnJpxq57t7c+auIu +# rQIDAQABo4IB3TCCAdkwEgYJKwYBBAGCNxUBBAUCAwEAATAjBgkrBgEEAYI3FQIE +# FgQUKqdS/mTEmr6CkTxGNSnPEP8vBO4wHQYDVR0OBBYEFJ+nFV0AXmJdg/Tl0mWn +# G1M1GelyMFwGA1UdIARVMFMwUQYMKwYBBAGCN0yDfQEBMEEwPwYIKwYBBQUHAgEW +# M2h0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvRG9jcy9SZXBvc2l0b3J5 +# Lmh0bTATBgNVHSUEDDAKBggrBgEFBQcDCDAZBgkrBgEEAYI3FAIEDB4KAFMAdQBi +# AEMAQTALBgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBTV +# 9lbLj+iiXGJo0T2UkFvXzpoYxDBWBgNVHR8ETzBNMEugSaBHhkVodHRwOi8vY3Js +# Lm1pY3Jvc29mdC5jb20vcGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXRfMjAx +# MC0wNi0yMy5jcmwwWgYIKwYBBQUHAQEETjBMMEoGCCsGAQUFBzAChj5odHRwOi8v +# d3d3Lm1pY3Jvc29mdC5jb20vcGtpL2NlcnRzL01pY1Jvb0NlckF1dF8yMDEwLTA2 +# LTIzLmNydDANBgkqhkiG9w0BAQsFAAOCAgEAnVV9/Cqt4SwfZwExJFvhnnJL/Klv +# 6lwUtj5OR2R4sQaTlz0xM7U518JxNj/aZGx80HU5bbsPMeTCj/ts0aGUGCLu6WZn +# OlNN3Zi6th542DYunKmCVgADsAW+iehp4LoJ7nvfam++Kctu2D9IdQHZGN5tggz1 +# bSNU5HhTdSRXud2f8449xvNo32X2pFaq95W2KFUn0CS9QKC/GbYSEhFdPSfgQJY4 +# rPf5KYnDvBewVIVCs/wMnosZiefwC2qBwoEZQhlSdYo2wh3DYXMuLGt7bj8sCXgU +# 6ZGyqVvfSaN0DLzskYDSPeZKPmY7T7uG+jIa2Zb0j/aRAfbOxnT99kxybxCrdTDF +# NLB62FD+CljdQDzHVG2dY3RILLFORy3BFARxv2T5JL5zbcqOCb2zAVdJVGTZc9d/ +# HltEAY5aGZFrDZ+kKNxnGSgkujhLmm77IVRrakURR6nxt67I6IleT53S0Ex2tVdU +# CbFpAUR+fKFhbHP+CrvsQWY9af3LwUFJfn6Tvsv4O+S3Fb+0zj6lMVGEvL8CwYKi +# excdFYmNcP7ntdAoGokLjzbaukz5m/8K6TT4JDVnK+ANuOaMmdbhIurwJ0I9JZTm +# dHRbatGePu1+oDEzfbzL6Xu/OHBE0ZDxyKs6ijoIYn/ZcGNTTY3ugm2lBRDBcQZq +# ELQdVTNYs6FwZvKhggNQMIICOAIBATCB+aGB0aSBzjCByzELMAkGA1UEBhMCVVMx +# EzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoT +# FU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjElMCMGA1UECxMcTWljcm9zb2Z0IEFtZXJp +# Y2EgT3BlcmF0aW9uczEnMCUGA1UECxMeblNoaWVsZCBUU1MgRVNOOkEwMDAtMDVF +# MC1EOTQ3MSUwIwYDVQQDExxNaWNyb3NvZnQgVGltZS1TdGFtcCBTZXJ2aWNloiMK +# AQEwBwYFKw4DAhoDFQC8t8hT8KKUX91lU5FqRP9Cfu9MiaCBgzCBgKR+MHwxCzAJ +# BgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25k +# MR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jv +# c29mdCBUaW1lLVN0YW1wIFBDQSAyMDEwMA0GCSqGSIb3DQEBCwUAAgUA6LUDNzAi +# GA8yMDIzMDkyMDA1MzU1MVoYDzIwMjMwOTIxMDUzNTUxWjB3MD0GCisGAQQBhFkK +# BAExLzAtMAoCBQDotQM3AgEAMAoCAQACAidSAgH/MAcCAQACAhN/MAoCBQDotlS3 +# AgEAMDYGCisGAQQBhFkKBAIxKDAmMAwGCisGAQQBhFkKAwKgCjAIAgEAAgMHoSCh +# CjAIAgEAAgMBhqAwDQYJKoZIhvcNAQELBQADggEBAGtIWKlQ4xjkBGBgoktG9bqb +# W3uOsn29c3JcnP5Eq5RSCeHwCRLqC6bYPnrI0V6uJZGaSe/UiVRIjbQsr2Md6Liu +# 18E+/l27E3rd5NKZ4JapQ+nadT7roP/Q2NkZ+hK8kYvV+j0C2aCVDxM6KKvyfXN3 +# 9vIyVoMXXa4Htf6H6hiqbvBelUMohEcS20RXmTcQgBz/4JqhqXiIJBid/2SRudEp +# P4FKC/q7NZu0Kt9vaka5bpOjFkH8DSdsTmNhCnMsz3k60iD9L7fzqu6bIkCGeO9K +# urvs0V5kghKnZiJZ37Bwtng7KlequE58NxNKkuZrEiwepGU/NMZpgCsT31R2Qgwx +# ggQNMIIECQIBATCBkzB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3Rv +# bjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0 +# aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMAITMwAA +# AdB3CKrvoxfG3QABAAAB0DANBglghkgBZQMEAgEFAKCCAUowGgYJKoZIhvcNAQkD +# MQ0GCyqGSIb3DQEJEAEEMC8GCSqGSIb3DQEJBDEiBCDeYFGUAEuM2PdfyKpqVDZg +# WHZK0Gr4VELlXDbMaRqw0DCB+gYLKoZIhvcNAQkQAi8xgeowgecwgeQwgb0EIAiV +# QAZftNP/Md1E2Yw+fBXa9w6fjmTZ5WAerrTSPwnXMIGYMIGApH4wfDELMAkGA1UE +# BhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAc +# BgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0 +# IFRpbWUtU3RhbXAgUENBIDIwMTACEzMAAAHQdwiq76MXxt0AAQAAAdAwIgQgqB/y +# toAW0gc8cem4mHJrpEhQ7NI8Dpr/F6zncI8TlJUwDQYJKoZIhvcNAQELBQAEggIA +# s39yxfmrlLLv67aPN3q+l4I5HIp7Rpm2QwkK5mtfgRpYl4TaYTIwNZJAGgoaOuBH +# S703Ku5L32bJhw6EmRIiDfuJ2AxsMxjXklkAiM/8VKETgAV96jNNmgiyZHY5RytW +# 6eiyRwV/Sr/jKjhcfG7I30hmajIncFg+xfQWKP0rIi9AdoZbbsNmfkgEgQUGEvQF +# vw0u6rjqPIfENBBA0o/GyFRHMZ1QyyTEYO8moZM2rr1UqPhnjJw9Qy8nrNIot3MP +# Gho9jO8czGY4UsSbHQnXIE4H+KTOCwfbDkly/fwwtDVnFsg1E46Gug2gadc0gB7I +# 05zp7aKBQtdNEIMiZ2Eizlt2azDK0lIxpHNpRrFDCDVe5Oyh9Jxyvg1Ul/jSnsOk +# plchQvr1uOSdrrh79q+iE/6u/m5h51JVJWpjRrXCxDYnbmL+JqvumbX/b9mNp8Nc +# 5LLFYosb1Rgvzb/uLiQ26AT4x27io27lGuNVzeGpSCCOI5NJcQF6KQNUjIPWXixx +# pWyySo2xJzKDLCJyEZ4aeS/8h5rdmytsbI7N8zx4SYgQi0JammzOCSSCZnrQ6Vzf +# LjnDsbB36aBKTVxod8BSJHfoRivjRkhPpElrnRovxx6itAd+YAGemQHzIS3fxY4B +# U7gosKIxh3Ypfcb+I++AwROjNWQCDJ8V4ckqhfsRKtg= +# SIG # End signature block diff --git a/Modules/Az.Storage/5.10.1/Az.Storage.psm1 b/Modules/Az.Storage/5.10.1/Az.Storage.psm1 new file mode 100644 index 000000000000..2a2cc1640c3a --- /dev/null +++ b/Modules/Az.Storage/5.10.1/Az.Storage.psm1 @@ -0,0 +1,363 @@ +# +# Script module for module 'Az.Storage' that is executed when 'Az.Storage' is imported in a PowerShell session. +# +# Generated by: Microsoft Corporation +# +# Generated on: 09/20/2023 05:38:20 +# + +$PSDefaultParameterValues.Clear() +Set-StrictMode -Version Latest + +function Test-DotNet +{ + try + { + if ((Get-PSDrive 'HKLM' -ErrorAction Ignore) -and (-not (Get-ChildItem 'HKLM:\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\' -ErrorAction Stop | Get-ItemPropertyValue -ErrorAction Stop -Name Release | Where-Object { $_ -ge 461808 }))) + { + throw ".NET Framework versions lower than 4.7.2 are not supported in Az. Please upgrade to .NET Framework 4.7.2 or higher." + } + } + catch [System.Management.Automation.DriveNotFoundException] + { + Write-Verbose ".NET Framework version check failed." + } +} + +function Preload-Assembly { + param ( + [string] + $AssemblyDirectory + ) + if($PSEdition -eq 'Desktop' -and (Test-Path $AssemblyDirectory -ErrorAction Ignore)) + { + try + { + Get-ChildItem -ErrorAction Stop -Path $AssemblyDirectory -Filter "*.dll" | ForEach-Object { + try + { + Add-Type -Path $_.FullName -ErrorAction Ignore | Out-Null + } + catch { + Write-Verbose $_ + } + } + } + catch {} + } +} + +if ($true -and ($PSEdition -eq 'Desktop')) +{ + if ($PSVersionTable.PSVersion -lt [Version]'5.1') + { + throw "PowerShell versions lower than 5.1 are not supported in Az. Please upgrade to PowerShell 5.1 or higher." + } + + Test-DotNet +} + +if ($true -and ($PSEdition -eq 'Core')) +{ + if ($PSVersionTable.PSVersion -lt [Version]'6.2.4') + { + throw "Current Az version doesn't support PowerShell Core versions lower than 6.2.4. Please upgrade to PowerShell Core 6.2.4 or higher." + } +} + +if (Test-Path -Path "$PSScriptRoot\StartupScripts" -ErrorAction Ignore) +{ + Get-ChildItem "$PSScriptRoot\StartupScripts" -ErrorAction Stop | ForEach-Object { + . $_.FullName + } +} + +# [windows powershell] preload assemblies + + +# [windows powershell] preload module alc assemblies +$preloadPath = (Join-Path $PSScriptRoot -ChildPath "ModuleAlcAssemblies") +Preload-Assembly -AssemblyDirectory $preloadPath + +if (Get-Module AzureRM.profile -ErrorAction Ignore) +{ + Write-Warning ("AzureRM.Profile already loaded. Az and AzureRM modules cannot be imported in the same session or used in the same script or runbook. If you are running PowerShell in an environment you control you can use the 'Uninstall-AzureRm' cmdlet to remove all AzureRm modules from your machine. " + + "If you are running in Azure Automation, take care that none of your runbooks import both Az and AzureRM modules. More information can be found here: https://aka.ms/azps-migration-guide.") + throw ("AzureRM.Profile already loaded. Az and AzureRM modules cannot be imported in the same session or used in the same script or runbook. If you are running PowerShell in an environment you control you can use the 'Uninstall-AzureRm' cmdlet to remove all AzureRm modules from your machine. " + + "If you are running in Azure Automation, take care that none of your runbooks import both Az and AzureRM modules. More information can be found here: https://aka.ms/azps-migration-guide.") +} + +$module = Get-Module Az.Accounts + if ($module -ne $null -and $module.Version -lt [System.Version]"2.13.1") +{ + Write-Error "This module requires Az.Accounts version 2.13.1. An earlier version of Az.Accounts is imported in the current PowerShell session. Please open a new session before importing this module. This error could indicate that multiple incompatible versions of the Azure PowerShell cmdlets are installed on your system. Please see https://aka.ms/azps-version-error for troubleshooting information." -ErrorAction Stop +} +elseif ($module -eq $null) +{ + Import-Module Az.Accounts -MinimumVersion 2.13.1 -Scope Global +} +Import-Module (Join-Path -Path $PSScriptRoot -ChildPath Microsoft.Azure.PowerShell.Cmdlets.Storage.Management.dll) +Import-Module (Join-Path -Path $PSScriptRoot -ChildPath Microsoft.Azure.PowerShell.Cmdlets.Storage.dll) + + +if (Test-Path -Path "$PSScriptRoot\PostImportScripts" -ErrorAction Ignore) +{ + Get-ChildItem "$PSScriptRoot\PostImportScripts" -ErrorAction Stop | ForEach-Object { + . $_.FullName + } +} + +$FilteredCommands = @('Add-AzStorageAccountNetworkRule:ResourceGroupName','Get-AzStorageAccountKey:ResourceGroupName','Get-AzStorageAccountNetworkRuleSet:ResourceGroupName','New-AzStorageAccount:ResourceGroupName','New-AzStorageAccountKey:ResourceGroupName','Remove-AzStorageAccount:ResourceGroupName','Remove-AzStorageAccountNetworkRule:ResourceGroupName','Set-AzStorageAccount:ResourceGroupName','Update-AzStorageAccountNetworkRuleSet:ResourceGroupName') + +if ($Env:ACC_CLOUD -eq $null) +{ + $FilteredCommands | ForEach-Object { + + $existingDefault = $false + foreach ($key in $global:PSDefaultParameterValues.Keys) + { + if ($_ -like "$key") + { + $existingDefault = $true + } + } + + if (!$existingDefault) + { + $global:PSDefaultParameterValues.Add($_, + { + if ((Get-Command Get-AzContext -ErrorAction Ignore) -eq $null) + { + $context = Get-AzureRmContext + } + else + { + $context = Get-AzContext + } + if (($context -ne $null) -and $context.ExtendedProperties.ContainsKey("Default Resource Group")) { + $context.ExtendedProperties["Default Resource Group"] + } + }) + } + } +} + + + +# SIG # Begin signature block +# MIIoPAYJKoZIhvcNAQcCoIIoLTCCKCkCAQExDzANBglghkgBZQMEAgEFADB5Bgor +# BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG +# KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCDwTIUolTxW5AMF +# jJJ4/I0a4JkEve1o6uz9g6Jgnx/vIKCCDYUwggYDMIID66ADAgECAhMzAAADTU6R +# phoosHiPAAAAAANNMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD +# VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p +# bmcgUENBIDIwMTEwHhcNMjMwMzE2MTg0MzI4WhcNMjQwMzE0MTg0MzI4WjB0MQsw +# CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u +# ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy +# b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB +# AQDUKPcKGVa6cboGQU03ONbUKyl4WpH6Q2Xo9cP3RhXTOa6C6THltd2RfnjlUQG+ +# Mwoy93iGmGKEMF/jyO2XdiwMP427j90C/PMY/d5vY31sx+udtbif7GCJ7jJ1vLzd +# j28zV4r0FGG6yEv+tUNelTIsFmmSb0FUiJtU4r5sfCThvg8dI/F9Hh6xMZoVti+k +# bVla+hlG8bf4s00VTw4uAZhjGTFCYFRytKJ3/mteg2qnwvHDOgV7QSdV5dWdd0+x +# zcuG0qgd3oCCAjH8ZmjmowkHUe4dUmbcZfXsgWlOfc6DG7JS+DeJak1DvabamYqH +# g1AUeZ0+skpkwrKwXTFwBRltAgMBAAGjggGCMIIBfjAfBgNVHSUEGDAWBgorBgEE +# AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQUId2Img2Sp05U6XI04jli2KohL+8w +# VAYDVR0RBE0wS6RJMEcxLTArBgNVBAsTJE1pY3Jvc29mdCBJcmVsYW5kIE9wZXJh +# dGlvbnMgTGltaXRlZDEWMBQGA1UEBRMNMjMwMDEyKzUwMDUxNzAfBgNVHSMEGDAW +# gBRIbmTlUAXTgqoXNzcitW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8v +# d3d3Lm1pY3Jvc29mdC5jb20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIw +# MTEtMDctMDguY3JsMGEGCCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDov +# L3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDEx +# XzIwMTEtMDctMDguY3J0MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIB +# ACMET8WuzLrDwexuTUZe9v2xrW8WGUPRQVmyJ1b/BzKYBZ5aU4Qvh5LzZe9jOExD +# YUlKb/Y73lqIIfUcEO/6W3b+7t1P9m9M1xPrZv5cfnSCguooPDq4rQe/iCdNDwHT +# 6XYW6yetxTJMOo4tUDbSS0YiZr7Mab2wkjgNFa0jRFheS9daTS1oJ/z5bNlGinxq +# 2v8azSP/GcH/t8eTrHQfcax3WbPELoGHIbryrSUaOCphsnCNUqUN5FbEMlat5MuY +# 94rGMJnq1IEd6S8ngK6C8E9SWpGEO3NDa0NlAViorpGfI0NYIbdynyOB846aWAjN +# fgThIcdzdWFvAl/6ktWXLETn8u/lYQyWGmul3yz+w06puIPD9p4KPiWBkCesKDHv +# XLrT3BbLZ8dKqSOV8DtzLFAfc9qAsNiG8EoathluJBsbyFbpebadKlErFidAX8KE +# usk8htHqiSkNxydamL/tKfx3V/vDAoQE59ysv4r3pE+zdyfMairvkFNNw7cPn1kH +# Gcww9dFSY2QwAxhMzmoM0G+M+YvBnBu5wjfxNrMRilRbxM6Cj9hKFh0YTwba6M7z +# ntHHpX3d+nabjFm/TnMRROOgIXJzYbzKKaO2g1kWeyG2QtvIR147zlrbQD4X10Ab +# rRg9CpwW7xYxywezj+iNAc+QmFzR94dzJkEPUSCJPsTFMIIHejCCBWKgAwIBAgIK +# YQ6Q0gAAAAAAAzANBgkqhkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNV +# BAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jv +# c29mdCBDb3Jwb3JhdGlvbjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlm +# aWNhdGUgQXV0aG9yaXR5IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEw +# OTA5WjB+MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UE +# BxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYD +# VQQDEx9NaWNyb3NvZnQgQ29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG +# 9w0BAQEFAAOCAg8AMIICCgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+la +# UKq4BjgaBEm6f8MMHt03a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc +# 6Whe0t+bU7IKLMOv2akrrnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4D +# dato88tt8zpcoRb0RrrgOGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+ +# lD3v++MrWhAfTVYoonpy4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nk +# kDstrjNYxbc+/jLTswM9sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6 +# A4aN91/w0FK/jJSHvMAhdCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmd +# X4jiJV3TIUs+UsS1Vz8kA/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL +# 5zmhD+kjSbwYuER8ReTBw3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zd +# sGbiwZeBe+3W7UvnSSmnEyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3 +# T8HhhUSJxAlMxdSlQy90lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS +# 4NaIjAsCAwEAAaOCAe0wggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRI +# bmTlUAXTgqoXNzcitW2oynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTAL +# BgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBD +# uRQFTuHqp8cx0SOJNDBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jv +# c29mdC5jb20vcGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFf +# MDNfMjIuY3JsMF4GCCsGAQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3 +# dy5taWNyb3NvZnQuY29tL3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFf +# MDNfMjIuY3J0MIGfBgNVHSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEF +# BQcCARYzaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1h +# cnljcHMuaHRtMEAGCCsGAQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkA +# YwB5AF8AcwB0AGEAdABlAG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn +# 8oalmOBUeRou09h0ZyKbC5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7 +# v0epo/Np22O/IjWll11lhJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0b +# pdS1HXeUOeLpZMlEPXh6I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/ +# KmtYSWMfCWluWpiW5IP0wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvy +# CInWH8MyGOLwxS3OW560STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBp +# mLJZiWhub6e3dMNABQamASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJi +# hsMdYzaXht/a8/jyFqGaJ+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYb +# BL7fQccOKO7eZS/sl/ahXJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbS +# oqKfenoi+kiVH6v7RyOA9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sL +# gOppO6/8MO0ETI7f33VtY5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtX +# cVZOSEXAQsmbdlsKgEhr/Xmfwb1tbWrJUnMTDXpQzTGCGg0wghoJAgEBMIGVMH4x +# CzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRt +# b25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01p +# Y3Jvc29mdCBDb2RlIFNpZ25pbmcgUENBIDIwMTECEzMAAANNTpGmGiiweI8AAAAA +# A00wDQYJYIZIAWUDBAIBBQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQw +# HAYKKwYBBAGCNwIBCzEOMAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIPQg +# 821upPbW5BDsHGmP+BUZm/k9HNe0klVGqBLyAD5jMEIGCisGAQQBgjcCAQwxNDAy +# oBSAEgBNAGkAYwByAG8AcwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5j +# b20wDQYJKoZIhvcNAQEBBQAEggEASgU29Su5178PTKxjc5cqgH1k4o9tV9arxiiO +# lwhTKiZXPXAdpvhQdXJf5RAH6i9cDOBwdyF7yzOzxTfXgjvzOBVFE48j/SAZP4iL +# OunWtwRoREHNmrBJ6Sc5ijPah3UoyOx3RqsTcoLZQI9VwvCSBIStBvxde4sxEv81 +# kQQ24BfE8ZwRGc2NoLjRdkz0vTOYFD3ExYMQH1UucJLhuBxiXbmm7xhOECqGzxiA +# 06IU5qSEnj+xhq3zOLZVmT2IQfHeyaNoY9bbqnRrs7hU5hGpVehJPMba9wq/mtUh +# LP3Qcdjf+LL9WKO67GyLBMpvERsUcRXKLfC37LMrx8KTE1m1gKGCF5cwgheTBgor +# BgEEAYI3AwMBMYIXgzCCF38GCSqGSIb3DQEHAqCCF3AwghdsAgEDMQ8wDQYJYIZI +# AWUDBAIBBQAwggFSBgsqhkiG9w0BCRABBKCCAUEEggE9MIIBOQIBAQYKKwYBBAGE +# WQoDATAxMA0GCWCGSAFlAwQCAQUABCCJFwibS1li/K2/AC3GKSEfEvFzKbklas6i +# owVD/11eZQIGZQPtxMFOGBMyMDIzMDkyMDA1NTA0My4wNjdaMASAAgH0oIHRpIHO +# MIHLMQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMH +# UmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQL +# ExxNaWNyb3NvZnQgQW1lcmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxk +# IFRTUyBFU046QTAwMC0wNUUwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1l +# LVN0YW1wIFNlcnZpY2WgghHtMIIHIDCCBQigAwIBAgITMwAAAdB3CKrvoxfG3QAB +# AAAB0DANBgkqhkiG9w0BAQsFADB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2Fz +# aGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENv +# cnBvcmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAx +# MDAeFw0yMzA1MjUxOTEyMTRaFw0yNDAyMDExOTEyMTRaMIHLMQswCQYDVQQGEwJV +# UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE +# ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1l +# cmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046QTAwMC0w +# NUUwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2Uw +# ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDfMlfn35fvM0XAUSmI5qiG +# 0UxPi25HkSyBgzk3zpYO311d1OEEFz0QpAK23s1dJFrjB5gD+SMw5z6EwxC4CrXU +# 9KaQ4WNHqHrhWftpgo3MkJex9frmO9MldUfjUG56sIW6YVF6YjX+9rT1JDdCDHbo +# 5nZiasMigGKawGb2HqD7/kjRR67RvVh7Q4natAVu46Zf5MLviR0xN5cNG20xwBwg +# ttaYEk5XlULaBH5OnXz2eWoIx+SjDO7Bt5BuABWY8SvmRQfByT2cppEzTjt/fs0x +# p4B1cAHVDwlGwZuv9Rfc3nddxgFrKA8MWHbJF0+aWUUYIBR8Fy2guFVHoHeOze7I +# sbyvRrax//83gYqo8c5Z/1/u7kjLcTgipiyZ8XERsLEECJ5ox1BBLY6AjmbgAzDd +# Nl2Leej+qIbdBr/SUvKEC+Xw4xjFMOTUVWKWemt2khwndUfBNR7Nzu1z9L0Wv7TA +# Y/v+v6pNhAeohPMCFJc+ak6uMD8TKSzWFjw5aADkmD9mGuC86yvSKkII4MayzoUd +# seT0nfk8Y0fPjtdw2Wnejl6zLHuYXwcDau2O1DMuoiedNVjTF37UEmYT+oxC/OFX +# UGPDEQt9tzgbR9g8HLtUfEeWOsOED5xgb5rwyfvIss7H/cdHFcIiIczzQgYnsLyE +# GepoZDkKhSMR5eCB6Kcv/QIDAQABo4IBSTCCAUUwHQYDVR0OBBYEFDPhAYWS0oA+ +# lOtITfjJtyl0knRRMB8GA1UdIwQYMBaAFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMF8G +# A1UdHwRYMFYwVKBSoFCGTmh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMv +# Y3JsL01pY3Jvc29mdCUyMFRpbWUtU3RhbXAlMjBQQ0ElMjAyMDEwKDEpLmNybDBs +# BggrBgEFBQcBAQRgMF4wXAYIKwYBBQUHMAKGUGh0dHA6Ly93d3cubWljcm9zb2Z0 +# LmNvbS9wa2lvcHMvY2VydHMvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUy +# MDIwMTAoMSkuY3J0MAwGA1UdEwEB/wQCMAAwFgYDVR0lAQH/BAwwCgYIKwYBBQUH +# AwgwDgYDVR0PAQH/BAQDAgeAMA0GCSqGSIb3DQEBCwUAA4ICAQCXh+ckCkZaA06S +# NW+qxtS9gHQp4x7G+gdikngKItEr8otkXIrmWPYrarRWBlY91lqGiilHyIlZ3iNB +# UbaNEmaKAGMZ5YcS7IZUKPaq1jU0msyl+8og0t9C/Z26+atx3vshHrFQuSgwTHZV +# pzv7k8CYnBYoxdhI1uGhqH595mqLvtMsxEN/1so7U+b3U6LCry5uwwcz5+j8Oj0G +# UX3b+iZg+As0xTN6T0Qa8BNec/LwcyqYNEaMkW2VAKrmhvWH8OCDTcXgONnnABQH +# BfXK/fLAbHFGS1XNOtr62/iaHBGAkrCGl6Bi8Pfws6fs+w+sE9r3hX9Vg0gsRMoH +# RuMaiXsrGmGsuYnLn3AwTguMatw9R8U5vJtWSlu1CFO5P0LEvQQiMZ12sQSsQAkN +# DTs9rTjVNjjIUgoZ6XPMxlcPIDcjxw8bfeb4y4wAxM2RRoWcxpkx+6IIf2L+b7gL +# HtBxXCWJ5bMW7WwUC2LltburUwBv0SgjpDtbEqw/uDgWBerCT+Zty3Nc967iGaQj +# yYQH6H/h9Xc8smm2n6VjySRx2swnW3hr6Qx63U/xY9HL6FNhrGiFED7ZRKrnwvvX +# vMVQUIEkB7GUEeN6heY8gHLt0jLV3yzDiQA8R8p5YGgGAVt9MEwgAJNY1iHvH/8v +# zhJSZFNkH8svRztO/i3TvKrjb8ZxwjCCB3EwggVZoAMCAQICEzMAAAAVxedrngKb +# SZkAAAAAABUwDQYJKoZIhvcNAQELBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQI +# EwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3Nv +# ZnQgQ29ycG9yYXRpb24xMjAwBgNVBAMTKU1pY3Jvc29mdCBSb290IENlcnRpZmlj +# YXRlIEF1dGhvcml0eSAyMDEwMB4XDTIxMDkzMDE4MjIyNVoXDTMwMDkzMDE4MzIy +# NVowfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcT +# B1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UE +# AxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIwMTAwggIiMA0GCSqGSIb3DQEB +# AQUAA4ICDwAwggIKAoICAQDk4aZM57RyIQt5osvXJHm9DtWC0/3unAcH0qlsTnXI +# yjVX9gF/bErg4r25PhdgM/9cT8dm95VTcVrifkpa/rg2Z4VGIwy1jRPPdzLAEBjo +# YH1qUoNEt6aORmsHFPPFdvWGUNzBRMhxXFExN6AKOG6N7dcP2CZTfDlhAnrEqv1y +# aa8dq6z2Nr41JmTamDu6GnszrYBbfowQHJ1S/rboYiXcag/PXfT+jlPP1uyFVk3v +# 3byNpOORj7I5LFGc6XBpDco2LXCOMcg1KL3jtIckw+DJj361VI/c+gVVmG1oO5pG +# ve2krnopN6zL64NF50ZuyjLVwIYwXE8s4mKyzbnijYjklqwBSru+cakXW2dg3viS +# kR4dPf0gz3N9QZpGdc3EXzTdEonW/aUgfX782Z5F37ZyL9t9X4C626p+Nuw2TPYr +# bqgSUei/BQOj0XOmTTd0lBw0gg/wEPK3Rxjtp+iZfD9M269ewvPV2HM9Q07BMzlM +# jgK8QmguEOqEUUbi0b1qGFphAXPKZ6Je1yh2AuIzGHLXpyDwwvoSCtdjbwzJNmSL +# W6CmgyFdXzB0kZSU2LlQ+QuJYfM2BjUYhEfb3BvR/bLUHMVr9lxSUV0S2yW6r1AF +# emzFER1y7435UsSFF5PAPBXbGjfHCBUYP3irRbb1Hode2o+eFnJpxq57t7c+auIu +# rQIDAQABo4IB3TCCAdkwEgYJKwYBBAGCNxUBBAUCAwEAATAjBgkrBgEEAYI3FQIE +# FgQUKqdS/mTEmr6CkTxGNSnPEP8vBO4wHQYDVR0OBBYEFJ+nFV0AXmJdg/Tl0mWn +# G1M1GelyMFwGA1UdIARVMFMwUQYMKwYBBAGCN0yDfQEBMEEwPwYIKwYBBQUHAgEW +# M2h0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvRG9jcy9SZXBvc2l0b3J5 +# Lmh0bTATBgNVHSUEDDAKBggrBgEFBQcDCDAZBgkrBgEEAYI3FAIEDB4KAFMAdQBi +# AEMAQTALBgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBTV +# 9lbLj+iiXGJo0T2UkFvXzpoYxDBWBgNVHR8ETzBNMEugSaBHhkVodHRwOi8vY3Js +# Lm1pY3Jvc29mdC5jb20vcGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXRfMjAx +# MC0wNi0yMy5jcmwwWgYIKwYBBQUHAQEETjBMMEoGCCsGAQUFBzAChj5odHRwOi8v +# d3d3Lm1pY3Jvc29mdC5jb20vcGtpL2NlcnRzL01pY1Jvb0NlckF1dF8yMDEwLTA2 +# LTIzLmNydDANBgkqhkiG9w0BAQsFAAOCAgEAnVV9/Cqt4SwfZwExJFvhnnJL/Klv +# 6lwUtj5OR2R4sQaTlz0xM7U518JxNj/aZGx80HU5bbsPMeTCj/ts0aGUGCLu6WZn +# OlNN3Zi6th542DYunKmCVgADsAW+iehp4LoJ7nvfam++Kctu2D9IdQHZGN5tggz1 +# bSNU5HhTdSRXud2f8449xvNo32X2pFaq95W2KFUn0CS9QKC/GbYSEhFdPSfgQJY4 +# rPf5KYnDvBewVIVCs/wMnosZiefwC2qBwoEZQhlSdYo2wh3DYXMuLGt7bj8sCXgU +# 6ZGyqVvfSaN0DLzskYDSPeZKPmY7T7uG+jIa2Zb0j/aRAfbOxnT99kxybxCrdTDF +# NLB62FD+CljdQDzHVG2dY3RILLFORy3BFARxv2T5JL5zbcqOCb2zAVdJVGTZc9d/ +# HltEAY5aGZFrDZ+kKNxnGSgkujhLmm77IVRrakURR6nxt67I6IleT53S0Ex2tVdU +# CbFpAUR+fKFhbHP+CrvsQWY9af3LwUFJfn6Tvsv4O+S3Fb+0zj6lMVGEvL8CwYKi +# excdFYmNcP7ntdAoGokLjzbaukz5m/8K6TT4JDVnK+ANuOaMmdbhIurwJ0I9JZTm +# dHRbatGePu1+oDEzfbzL6Xu/OHBE0ZDxyKs6ijoIYn/ZcGNTTY3ugm2lBRDBcQZq +# ELQdVTNYs6FwZvKhggNQMIICOAIBATCB+aGB0aSBzjCByzELMAkGA1UEBhMCVVMx +# EzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoT +# FU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjElMCMGA1UECxMcTWljcm9zb2Z0IEFtZXJp +# Y2EgT3BlcmF0aW9uczEnMCUGA1UECxMeblNoaWVsZCBUU1MgRVNOOkEwMDAtMDVF +# MC1EOTQ3MSUwIwYDVQQDExxNaWNyb3NvZnQgVGltZS1TdGFtcCBTZXJ2aWNloiMK +# AQEwBwYFKw4DAhoDFQC8t8hT8KKUX91lU5FqRP9Cfu9MiaCBgzCBgKR+MHwxCzAJ +# BgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25k +# MR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jv +# c29mdCBUaW1lLVN0YW1wIFBDQSAyMDEwMA0GCSqGSIb3DQEBCwUAAgUA6LUDNzAi +# GA8yMDIzMDkyMDA1MzU1MVoYDzIwMjMwOTIxMDUzNTUxWjB3MD0GCisGAQQBhFkK +# BAExLzAtMAoCBQDotQM3AgEAMAoCAQACAidSAgH/MAcCAQACAhN/MAoCBQDotlS3 +# AgEAMDYGCisGAQQBhFkKBAIxKDAmMAwGCisGAQQBhFkKAwKgCjAIAgEAAgMHoSCh +# CjAIAgEAAgMBhqAwDQYJKoZIhvcNAQELBQADggEBAGtIWKlQ4xjkBGBgoktG9bqb +# W3uOsn29c3JcnP5Eq5RSCeHwCRLqC6bYPnrI0V6uJZGaSe/UiVRIjbQsr2Md6Liu +# 18E+/l27E3rd5NKZ4JapQ+nadT7roP/Q2NkZ+hK8kYvV+j0C2aCVDxM6KKvyfXN3 +# 9vIyVoMXXa4Htf6H6hiqbvBelUMohEcS20RXmTcQgBz/4JqhqXiIJBid/2SRudEp +# P4FKC/q7NZu0Kt9vaka5bpOjFkH8DSdsTmNhCnMsz3k60iD9L7fzqu6bIkCGeO9K +# urvs0V5kghKnZiJZ37Bwtng7KlequE58NxNKkuZrEiwepGU/NMZpgCsT31R2Qgwx +# ggQNMIIECQIBATCBkzB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3Rv +# bjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0 +# aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMAITMwAA +# AdB3CKrvoxfG3QABAAAB0DANBglghkgBZQMEAgEFAKCCAUowGgYJKoZIhvcNAQkD +# MQ0GCyqGSIb3DQEJEAEEMC8GCSqGSIb3DQEJBDEiBCDunI2HmoCbbBbEkRj4d+ba +# QJF/cprPwy+IBTpUNH3TzjCB+gYLKoZIhvcNAQkQAi8xgeowgecwgeQwgb0EIAiV +# QAZftNP/Md1E2Yw+fBXa9w6fjmTZ5WAerrTSPwnXMIGYMIGApH4wfDELMAkGA1UE +# BhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAc +# BgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0 +# IFRpbWUtU3RhbXAgUENBIDIwMTACEzMAAAHQdwiq76MXxt0AAQAAAdAwIgQgqB/y +# toAW0gc8cem4mHJrpEhQ7NI8Dpr/F6zncI8TlJUwDQYJKoZIhvcNAQELBQAEggIA +# r01ufT/BRQoI9t9ZIPBQaxxnx+SDyk96u2tYd2bb7mqmPBlJn5hQC4hPi9SKTL42 +# UtvVZ1335HKnIWJHSxaxzmIWM7YDHSyytOr+09UBUaVul/lSXM2Y+g77sl8UkL4k +# 9dD6z0jCaA7x3RAxfVAOE+wEHztq8xYGjoR4Xp3ax/FjdkNWYPO94oWbj0kL30uH +# 8KnU8xCbmezrMZBjf9nil4UgW/tK1Rwht3Xd/JiW+WtRiklX4h7SWJ+i2XnDyPNc +# OSbaQ1Fc1MddjMFD184Xs0C4hF+BBGVAmGWgeMy5UuoCG56lsOH0SVmSEpbVgEm9 +# MEa7k7ATs3Kn8lhFCO3QLpp1dey0hAjGNvwDsBkWHWXuuPoSxmHe3eEViwwwFHhH +# fLbXNKVlTbWT2sU0u74vnIS+X8dR8alwzL/dTUlb3j+mtFftnOZWc+caHoUacUbz +# bQE8Ti4gzRbATtvUCVIvx4GEcGPeq8ntfvUETF4fRLhbyoOstvsDhGNTQ1gebJf/ +# ZvIugJwBR3PTHDGWcZO0YXWPH+l0bxZ0fs0QggOi1Kb5f4oV53mwx+OXwFd7sO58 +# zX82ccaY8uTr+cpKL1YR8//+ilg/S/l/0bwtk+IDL8rAlbz029H5BrSMs2hByHLv +# mySNUdQc5z6FvLHtjMAQcUGtxL2tK+03aKNH5NrgtsE= +# SIG # End signature block diff --git a/Modules/Az.Storage/5.10.1/Azure.Data.Tables.dll b/Modules/Az.Storage/5.10.1/Azure.Data.Tables.dll new file mode 100644 index 000000000000..8073b79d2b68 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Azure.Data.Tables.dll differ diff --git a/Modules/Az.Storage/5.10.1/Azure.Storage.Blobs.dll b/Modules/Az.Storage/5.10.1/Azure.Storage.Blobs.dll new file mode 100644 index 000000000000..aa03740a7c52 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Azure.Storage.Blobs.dll differ diff --git a/Modules/Az.Storage/5.10.1/Azure.Storage.Common.dll b/Modules/Az.Storage/5.10.1/Azure.Storage.Common.dll new file mode 100644 index 000000000000..06a465a6d8bc Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Azure.Storage.Common.dll differ diff --git a/Modules/Az.Storage/5.10.1/Azure.Storage.Files.DataLake.dll b/Modules/Az.Storage/5.10.1/Azure.Storage.Files.DataLake.dll new file mode 100644 index 000000000000..67ad0e6c7bf3 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Azure.Storage.Files.DataLake.dll differ diff --git a/Modules/Az.Storage/5.10.1/Azure.Storage.Files.Shares.dll b/Modules/Az.Storage/5.10.1/Azure.Storage.Files.Shares.dll new file mode 100644 index 000000000000..877567a57798 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Azure.Storage.Files.Shares.dll differ diff --git a/Modules/Az.Storage/5.10.1/Azure.Storage.Queues.dll b/Modules/Az.Storage/5.10.1/Azure.Storage.Queues.dll new file mode 100644 index 000000000000..f56b897deda6 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Azure.Storage.Queues.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.Cosmos.Table.dll b/Modules/Az.Storage/5.10.1/Microsoft.Azure.Cosmos.Table.dll new file mode 100644 index 000000000000..d2fc43049374 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.Azure.Cosmos.Table.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.DocumentDB.Core.dll b/Modules/Az.Storage/5.10.1/Microsoft.Azure.DocumentDB.Core.dll new file mode 100644 index 000000000000..08ee37ff689f Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.Azure.DocumentDB.Core.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.KeyVault.Core.dll b/Modules/Az.Storage/5.10.1/Microsoft.Azure.KeyVault.Core.dll new file mode 100644 index 000000000000..3e899b4f76d2 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.Azure.KeyVault.Core.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Cmdlets.Storage.Management.dll b/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Cmdlets.Storage.Management.dll new file mode 100644 index 000000000000..aa85fed17669 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Cmdlets.Storage.Management.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Cmdlets.Storage.Management.dll-Help.xml b/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Cmdlets.Storage.Management.dll-Help.xml new file mode 100644 index 000000000000..3a82e6be7a49 --- /dev/null +++ b/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Cmdlets.Storage.Management.dll-Help.xml @@ -0,0 +1,35289 @@ + + + + + Add-AzRmStorageContainerLegalHold + Add + AzRmStorageContainerLegalHold + + Adds legal hold tags to a Storage blob container + + + + The Add-AzRmStorageContainerLegalHold cmdlet adds legal hold tags to a Storage blob container + + + + Add-AzRmStorageContainerLegalHold + + AllowProtectedAppendWriteAll + + When enabled, new blocks can be written to both 'Appened and Block Blobs' while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. + + System.Boolean + + System.Boolean + + + None + + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Tag + + Container LegalHold Tags + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Add-AzRmStorageContainerLegalHold + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + AllowProtectedAppendWriteAll + + When enabled, new blocks can be written to both 'Appened and Block Blobs' while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. + + System.Boolean + + System.Boolean + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + Tag + + Container LegalHold Tags + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Add-AzRmStorageContainerLegalHold + + AllowProtectedAppendWriteAll + + When enabled, new blocks can be written to both 'Appened and Block Blobs' while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. + + System.Boolean + + System.Boolean + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Tag + + Container LegalHold Tags + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AllowProtectedAppendWriteAll + + When enabled, new blocks can be written to both 'Appened and Block Blobs' while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. + + System.Boolean + + System.Boolean + + + None + + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Tag + + Container LegalHold Tags + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSLegalHold + + + + + + + + + + + + + + Example 1: Add legal hold tags to a Storage blob container with Storage account name and container name + Add-AzRmStorageContainerLegalHold -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" -Tag tag1,tag2 -AllowProtectedAppendWriteAll $true + + This command adds legal hold tags to a Storage blob container with Storage account name and container name, and set AllowProtectedAppendWriteAll as true to allow append new blocks to append or block blob. + + + + + + Example 2: Add legal hold tags to a Storage blob container with Storage account object and container name + $accountObject = Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" +Add-AzRmStorageContainerLegalHold -StorageAccount $accountObject -ContainerName "myContainer" -Tag tag1 + + This command adds legal hold tags to a Storage blob container with Storage account object and container name. + + + + + + Example 3: Add legal hold tags to all Storage blob containers in a Storage account with pipeline + Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" | Add-AzRmStorageContainerLegalHold -Tag tag1,tag2,tag3 + + This command adds legal hold tags to all Storage blob containers in a Storage account with pipeline. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/add-azrmstoragecontainerlegalhold + + + + + + Add-AzStorageAccountManagementPolicyAction + Add + AzStorageAccountManagementPolicyAction + + Adds an action to the input ManagementPolicy Action Group object, or creates a ManagementPolicy Action Group object with the action. The object can be used in New-AzStorageAccountManagementPolicyRule. + + + + The Add-AzStorageAccountManagementPolicyAction cmdlet adds an action to the input ManagementPolicy Action Group object, or creates a ManagementPolicy Action Group object with the action. + + + + Add-AzStorageAccountManagementPolicyAction + + BaseBlobAction + + The management policy action for baseblob. + + + Delete + TierToArchive + TierToCool + TierToCold + TierToHot + + System.String + + System.String + + + None + + + DaysAfterLastTierChangeGreaterThan + + Integer value indicating the age in days after last blob tier change time. This property is only applicable for tierToArchive actions. It requires daysAfterModificationGreaterThan to be set for baseBlobs based actions, or daysAfterModificationGreaterThan to be set for snapshots and blob version based actions. + + System.Int32 + + System.Int32 + + + None + + + DaysAfterModificationGreaterThan + + Integer value indicating the age in days after last modification. + + System.Int32 + + System.Int32 + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + If input the ManagementPolicy Action object, will set the action to the input action object. If not input, will create a new action object. + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + + None + + + + Add-AzStorageAccountManagementPolicyAction + + BaseBlobAction + + The management policy action for baseblob. + + + Delete + TierToArchive + TierToCool + TierToCold + TierToHot + + System.String + + System.String + + + None + + + DaysAfterLastAccessTimeGreaterThan + + Integer value indicating the age in days after last blob access. This property can only be used in conjuction with last access time tracking policy. + + System.Int32 + + System.Int32 + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableAutoTierToHotFromCool + + Enables auto tiering of a blob from cool to hot on a blob access. It only works with TierToCool action and DaysAfterLastAccessTimeGreaterThan. + + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + If input the ManagementPolicy Action object, will set the action to the input action object. If not input, will create a new action object. + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + + None + + + + Add-AzStorageAccountManagementPolicyAction + + BaseBlobAction + + The management policy action for baseblob. + + + Delete + TierToArchive + TierToCool + TierToCold + TierToHot + + System.String + + System.String + + + None + + + DaysAfterCreationGreaterThan + + Integer value indicating the age in days after creation. + + System.Int32 + + System.Int32 + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + If input the ManagementPolicy Action object, will set the action to the input action object. If not input, will create a new action object. + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + + None + + + + Add-AzStorageAccountManagementPolicyAction + + BlobVersionAction + + The management policy action for blob version. + + + Delete + TierToArchive + TierToCool + TierToCold + TierToHot + + System.String + + System.String + + + None + + + DaysAfterCreationGreaterThan + + Integer value indicating the age in days after creation. + + System.Int32 + + System.Int32 + + + None + + + DaysAfterLastTierChangeGreaterThan + + Integer value indicating the age in days after last blob tier change time. This property is only applicable for tierToArchive actions. It requires daysAfterModificationGreaterThan to be set for baseBlobs based actions, or daysAfterModificationGreaterThan to be set for snapshots and blob version based actions. + + System.Int32 + + System.Int32 + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + If input the ManagementPolicy Action object, will set the action to the input action object. If not input, will create a new action object. + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + + None + + + + Add-AzStorageAccountManagementPolicyAction + + DaysAfterCreationGreaterThan + + Integer value indicating the age in days after creation. + + System.Int32 + + System.Int32 + + + None + + + DaysAfterLastTierChangeGreaterThan + + Integer value indicating the age in days after last blob tier change time. This property is only applicable for tierToArchive actions. It requires daysAfterModificationGreaterThan to be set for baseBlobs based actions, or daysAfterModificationGreaterThan to be set for snapshots and blob version based actions. + + System.Int32 + + System.Int32 + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + If input the ManagementPolicy Action object, will set the action to the input action object. If not input, will create a new action object. + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + + None + + + SnapshotAction + + The management policy action for snapshot. + + + Delete + TierToArchive + TierToCool + TierToCold + TierToHot + + System.String + + System.String + + + None + + + + + + BaseBlobAction + + The management policy action for baseblob. + + System.String + + System.String + + + None + + + BlobVersionAction + + The management policy action for blob version. + + System.String + + System.String + + + None + + + DaysAfterCreationGreaterThan + + Integer value indicating the age in days after creation. + + System.Int32 + + System.Int32 + + + None + + + DaysAfterLastAccessTimeGreaterThan + + Integer value indicating the age in days after last blob access. This property can only be used in conjuction with last access time tracking policy. + + System.Int32 + + System.Int32 + + + None + + + DaysAfterLastTierChangeGreaterThan + + Integer value indicating the age in days after last blob tier change time. This property is only applicable for tierToArchive actions. It requires daysAfterModificationGreaterThan to be set for baseBlobs based actions, or daysAfterModificationGreaterThan to be set for snapshots and blob version based actions. + + System.Int32 + + System.Int32 + + + None + + + DaysAfterModificationGreaterThan + + Integer value indicating the age in days after last modification. + + System.Int32 + + System.Int32 + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableAutoTierToHotFromCool + + Enables auto tiering of a blob from cool to hot on a blob access. It only works with TierToCool action and DaysAfterLastAccessTimeGreaterThan. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + If input the ManagementPolicy Action object, will set the action to the input action object. If not input, will create a new action object. + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + + None + + + SnapshotAction + + The management policy action for snapshot. + + System.String + + System.String + + + None + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + + + + + + + + + + + + + Example 1: Creates a ManagementPolicy Action Group object with 4 actions, then add it to a management policy rule and set to a Storage account + PS C:\>$action = Add-AzStorageAccountManagementPolicyAction -BaseBlobAction Delete -DaysAfterCreationGreaterThan 100 +PS C:\>$action = Add-AzStorageAccountManagementPolicyAction -BaseBlobAction TierToArchive -daysAfterModificationGreaterThan 50 -DaysAfterLastTierChangeGreaterThan 40 -InputObject $action +PS C:\>$action = Add-AzStorageAccountManagementPolicyAction -BaseBlobAction TierToCool -DaysAfterLastAccessTimeGreaterThan 30 -EnableAutoTierToHotFromCool -InputObject $action +PS C:\>$action = Add-AzStorageAccountManagementPolicyAction -BaseBlobAction TierToHot -DaysAfterCreationGreaterThan 100 -InputObject $action +PS C:\>$action = Add-AzStorageAccountManagementPolicyAction -SnapshotAction Delete -daysAfterCreationGreaterThan 100 -InputObject $action +PS C:\>$action + +BaseBlob.TierToCool.DaysAfterModificationGreaterThan : +BaseBlob.TierToCool.DaysAfterLastAccessTimeGreaterThan : 30 +BaseBlob.TierToCool.DaysAfterCreationGreaterThan : +BaseBlob.EnableAutoTierToHotFromCool : True +BaseBlob.TierToArchive.DaysAfterModificationGreaterThan : 50 +BaseBlob.TierToArchive.DaysAfterLastAccessTimeGreaterThan : +BaseBlob.TierToArchive.DaysAfterCreationGreaterThan : +BaseBlob.TierToArchive.DaysAfterLastTierChangeGreaterThan : 40 +BaseBlob.Delete.DaysAfterModificationGreaterThan : +BaseBlob.Delete.DaysAfterLastAccessTimeGreaterThan : +BaseBlob.Delete.DaysAfterCreationGreaterThan : 100 +BaseBlob.TierToCold.DaysAfterModificationGreaterThan : +BaseBlob.TierToCold.DaysAfterLastAccessTimeGreaterThan : +BaseBlob.TierToCold.DaysAfterCreationGreaterThan : +BaseBlob.TierToHot.DaysAfterModificationGreaterThan : +BaseBlob.TierToHot.DaysAfterLastAccessTimeGreaterThan : +BaseBlob.TierToHot.DaysAfterCreationGreaterThan : 100 +Snapshot.TierToCool.DaysAfterCreationGreaterThan : +Snapshot.TierToArchive.DaysAfterCreationGreaterThan : +Snapshot.TierToArchive.DaysAfterLastTierChangeGreaterThan : +Snapshot.Delete.DaysAfterCreationGreaterThan : 100 +Snapshot.TierToCold.DaysAfterCreationGreaterThan : +Snapshot.TierToHot.DaysAfterCreationGreaterThan : +Version.TierToCool.DaysAfterCreationGreaterThan : +Version.TierToArchive.DaysAfterCreationGreaterThan : +Version.TierToArchive.DaysAfterLastTierChangeGreaterThan : +Version.Delete.DaysAfterCreationGreaterThan : +Version.TierToCold.DaysAfterCreationGreaterThan : +Version.TierToHot.DaysAfterCreationGreaterThan : + +PS C:\>$filter = New-AzStorageAccountManagementPolicyFilter +PS C:\>$rule = New-AzStorageAccountManagementPolicyRule -Name Test -Action $action -Filter $filter +PS C:\>$policy = Set-AzStorageAccountManagementPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -Rule $rule + + The first command create a ManagementPolicy Action Group object, the following 3 commands add 3 actions to the object. Then add it to a management policy rule and set to a Storage account. + + + + + + Example 2: Creates a ManagementPolicy Action Group object with 7 actions on snapshot and blob version, then add it to a management policy rule and set to a Storage account + PS C:\> $action = Add-AzStorageAccountManagementPolicyAction -SnapshotAction Delete -daysAfterCreationGreaterThan 40 +PS C:\> $action = Add-AzStorageAccountManagementPolicyAction -InputObject $action -SnapshotAction TierToArchive -daysAfterCreationGreaterThan 50 +PS C:\> $action = Add-AzStorageAccountManagementPolicyAction -InputObject $action -SnapshotAction TierToCool -daysAfterCreationGreaterThan 60 +PS C:\> $action = Add-AzStorageAccountManagementPolicyAction -InputObject $action -BlobVersionAction Delete -daysAfterCreationGreaterThan 70 +PS C:\> $action = Add-AzStorageAccountManagementPolicyAction -InputObject $action -BlobVersionAction TierToArchive -daysAfterCreationGreaterThan 80 +PS C:\> $action = Add-AzStorageAccountManagementPolicyAction -InputObject $action -BlobVersionAction TierToCool -daysAfterCreationGreaterThan 90 +PS C:\> $action = Add-AzStorageAccountManagementPolicyAction -InputObject $action -BlobVersionAction TierToCold -daysAfterCreationGreaterThan 100 +PS C:\> $action + +BaseBlob.TierToCool.DaysAfterModificationGreaterThan : +BaseBlob.TierToCool.DaysAfterLastAccessTimeGreaterThan : +BaseBlob.TierToCool.DaysAfterCreationGreaterThan : +BaseBlob.EnableAutoTierToHotFromCool : +BaseBlob.TierToArchive.DaysAfterModificationGreaterThan : +BaseBlob.TierToArchive.DaysAfterLastAccessTimeGreaterThan : +BaseBlob.TierToArchive.DaysAfterCreationGreaterThan : +BaseBlob.TierToArchive.DaysAfterLastTierChangeGreaterThan : +BaseBlob.Delete.DaysAfterModificationGreaterThan : +BaseBlob.Delete.DaysAfterLastAccessTimeGreaterThan : +BaseBlob.Delete.DaysAfterCreationGreaterThan : +BaseBlob.TierToCold.DaysAfterModificationGreaterThan : +BaseBlob.TierToCold.DaysAfterLastAccessTimeGreaterThan : +BaseBlob.TierToCold.DaysAfterCreationGreaterThan : +BaseBlob.TierToHot.DaysAfterModificationGreaterThan : +BaseBlob.TierToHot.DaysAfterLastAccessTimeGreaterThan : +BaseBlob.TierToHot.DaysAfterCreationGreaterThan : +Snapshot.TierToCool.DaysAfterCreationGreaterThan : 60 +Snapshot.TierToArchive.DaysAfterCreationGreaterThan : 50 +Snapshot.TierToArchive.DaysAfterLastTierChangeGreaterThan : +Snapshot.Delete.DaysAfterCreationGreaterThan : 40 +Snapshot.TierToCold.DaysAfterCreationGreaterThan : +Snapshot.TierToHot.DaysAfterCreationGreaterThan : +Version.TierToCool.DaysAfterCreationGreaterThan : 90 +Version.TierToArchive.DaysAfterCreationGreaterThan : 80 +Version.TierToArchive.DaysAfterLastTierChangeGreaterThan : +Version.Delete.DaysAfterCreationGreaterThan : 70 +Version.TierToCold.DaysAfterCreationGreaterThan : 100 +Version.TierToHot.DaysAfterCreationGreaterThan : + +PS C:\>$filter = New-AzStorageAccountManagementPolicyFilter +PS C:\>$rule = New-AzStorageAccountManagementPolicyRule -Name Test -Action $action -Filter $filter +PS C:\>$policy = Set-AzStorageAccountManagementPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -Rule $rule + + The first command create a ManagementPolicy Action Group object, the following 5 commands add 5 actions on snapshot and blob version to the object. Then add it to a management policy rule and set to a Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/Az.storage/add-Azstorageaccountmanagementpolicyaction + + + + + + Add-AzStorageAccountNetworkRule + Add + AzStorageAccountNetworkRule + + Add IpRules or VirtualNetworkRules to the NetworkRule property of a Storage account + + + + The Add-AzStorageAccountNetworkRule cmdlet adds IpRules or VirtualNetworkRules to the NetworkRule property of a Storage account + + + + Add-AzStorageAccountNetworkRule + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IPAddressOrRange + + The Array of IpAddressOrRange, add IpRules with the input IpAddressOrRange and default Action Allow to NetworkRule Property. + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Add-AzStorageAccountNetworkRule + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IPRule + + The Array of IpRule objects to add to the NetworkRule Property. + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Add-AzStorageAccountNetworkRule + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ResourceAccessRule + + Storage Account NetworkRule ResourceAccessRules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSResourceAccessRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSResourceAccessRule[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Add-AzStorageAccountNetworkRule + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ResourceId + + Storage Account ResourceAccessRule ResourceId in string. + + System.String + + System.String + + + None + + + TenantId + + Storage Account ResourceAccessRule TenantId in string. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Add-AzStorageAccountNetworkRule + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + VirtualNetworkResourceId + + The Array of VirtualNetworkResourceId, will add VirtualNetworkRule with input VirtualNetworkResourceId and default Action Allow to NetworkRule Property. + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Add-AzStorageAccountNetworkRule + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + VirtualNetworkRule + + The Array of VirtualNetworkRule objects to add to the NetworkRule Property. + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IPAddressOrRange + + The Array of IpAddressOrRange, add IpRules with the input IpAddressOrRange and default Action Allow to NetworkRule Property. + + System.String[] + + System.String[] + + + None + + + IPRule + + The Array of IpRule objects to add to the NetworkRule Property. + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + ResourceAccessRule + + Storage Account NetworkRule ResourceAccessRules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSResourceAccessRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSResourceAccessRule[] + + + None + + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + ResourceId + + Storage Account ResourceAccessRule ResourceId in string. + + System.String + + System.String + + + None + + + TenantId + + Storage Account ResourceAccessRule TenantId in string. + + System.String + + System.String + + + None + + + VirtualNetworkResourceId + + The Array of VirtualNetworkResourceId, will add VirtualNetworkRule with input VirtualNetworkResourceId and default Action Allow to NetworkRule Property. + + System.String[] + + System.String[] + + + None + + + VirtualNetworkRule + + The Array of VirtualNetworkRule objects to add to the NetworkRule Property. + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule + + + + + + + + + + + + + + ----- Example 1: Add several IpRules with IPAddressOrRange ----- + Add-AzStorageAccountNetworkRule -ResourceGroupName "myResourceGroup" -Name "mystorageaccount" -IPAddressOrRange "10.0.0.0/7","28.2.0.0/16" + + This command add several IpRules with IPAddressOrRange. + + + + + + Example 2: Add a VirtualNetworkRule with VirtualNetworkResourceID + $subnet = Get-AzVirtualNetwork -ResourceGroupName "myResourceGroup" -Name "myvirtualnetwork" | Get-AzVirtualNetworkSubnetConfig +Add-AzStorageAccountNetworkRule -ResourceGroupName "myResourceGroup" -Name "mystorageaccount" -VirtualNetworkResourceId $subnet[0].Id + + This command add a VirtualNetworkRule with VirtualNetworkResourceID. + + + + + + Example 3: Add VirtualNetworkRules with VirtualNetworkRule Objects from another account + $networkrule = Get-AzStorageAccountNetworkRuleSet -ResourceGroupName "myResourceGroup" -Name "mystorageaccount1" +Add-AzStorageAccountNetworkRule -ResourceGroupName "myResourceGroup" -Name "mystorageaccount2" -VirtualNetworkRule $networkrule.VirtualNetworkRules + + This command add VirtualNetworkRules with VirtualNetworkRule Objects from another account. + + + + + + Example 4: Add several IpRule with IpRule objects, input with JSON + Add-AzStorageAccountNetworkRule -ResourceGroupName "myResourceGroup" -Name "mystorageaccount" -IPRule (@{IPAddressOrRange="10.0.0.0/7";Action="allow"},@{IPAddressOrRange="28.2.0.0/16";Action="allow"}) + + This command add several IpRule with IpRule objects, input with JSON. + + + + + + ------------ Example 5: Add a resource access rule ------------ + Add-AzStorageAccountNetworkRule -ResourceGroupName "myResourceGroup" -Name "mystorageaccount" -TenantId $tenantId -ResourceId $ResourceId + + This command adds a resource access rule with TenantId and ResourceId. + + + + + + Example 6: Add all resource access rules of one storage account to another storage account + (Get-AzStorageAccountNetworkRuleSet -ResourceGroupName "myResourceGroup" -Name "mystorageaccount1").ResourceAccessRules | Add-AzStorageAccountNetworkRule -ResourceGroupName "myResourceGroup" -Name "mystorageaccount2" + + This command gets all resource access rules from one storage account, and adds them to another storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/add-azstorageaccountnetworkrule + + + + + + Disable-AzStorageBlobDeleteRetentionPolicy + Disable + AzStorageBlobDeleteRetentionPolicy + + Disable delete retention policy for the Azure Storage Blob service. + + + + The Disable-AzStorageBlobDeleteRetentionPolicy cmdlet disables delete retention policy for the Azure Storage Blob service. + + + + Disable-AzStorageBlobDeleteRetentionPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Disable-AzStorageBlobDeleteRetentionPolicy + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Disable-AzStorageBlobDeleteRetentionPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSDeleteRetentionPolicy + + + + + + + + + + + + + + Example 1: Disable delete retention policy for the Blob services + Disable-AzStorageBlobDeleteRetentionPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -PassThru + +Enabled Days +------- ---- + False + + This command disables delete retention policy for the Blob service. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/disable-azstorageblobdeleteretentionpolicy + + + + + + Disable-AzStorageBlobLastAccessTimeTracking + Disable + AzStorageBlobLastAccessTimeTracking + + Disable last access time tracking for the Azure Storage Blob service. + + + + The Disable-AzStorageBlobDeleteRetentionPolicy cmdlet disables delete retention policy for the Azure Storage Blob service. + + + + Disable-AzStorageBlobLastAccessTimeTracking + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Disable-AzStorageBlobLastAccessTimeTracking + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSRestorePolicy + + + + + + + + + + + + + + Example 1: Disable last access time tracking for the Blob service + Disable-AzStorageBlobLastAccessTimeTracking -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" + + This command disables last access time tracking for the Blob service. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/disable-azstoragebloblastaccesstimetracking + + + + + + Disable-AzStorageBlobRestorePolicy + Disable + AzStorageBlobRestorePolicy + + Disables Blob Restore Policy on a Storage account. + + + + The Disable-AzStorageBlobRestorePolicy cmdlet disables Blob Restore Policy for the Azure Storage Blob service. + + + + Disable-AzStorageBlobRestorePolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Disable-AzStorageBlobRestorePolicy + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Disable-AzStorageBlobRestorePolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSRestorePolicy + + + + + + + + + + + + + + Example 1: Disables Blob Restore Policy for the Azure Storage Blob service on a Storage account + Disable-AzStorageBlobRestorePolicy -ResourceGroupName "myresourcegoup" -StorageAccountName "mystorageaccount" + + This command Disables Blob Restore Policy for the Azure Storage Blob service on a Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/disable-azstorageblobrestorepolicy + + + + + + Disable-AzStorageContainerDeleteRetentionPolicy + Disable + AzStorageContainerDeleteRetentionPolicy + + Disable delete retention policy for Azure Storage blob containers. + + + + The Disable-AzStorageContainerDeleteRetentionPolicy cmdlet disables delete retention policy for Azure Storage blob containers. + + + + Disable-AzStorageContainerDeleteRetentionPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Disable-AzStorageContainerDeleteRetentionPolicy + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Disable-AzStorageContainerDeleteRetentionPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSDeleteRetentionPolicy + + + + + + + + + + + + + + Example 1: Disable delete retention policy for blob containers + Disable-AzStorageContainerDeleteRetentionPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -PassThru + +Enabled Days +------- ---- + False + + This command disables delete retention policy for blob containers. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/disable-azstoragecontainerdeleteretentionpolicy + + + + + + Enable-AzStorageBlobDeleteRetentionPolicy + Enable + AzStorageBlobDeleteRetentionPolicy + + Enable delete retention policy for the Azure Storage Blob service. + + + + The Enable-AzStorageBlobDeleteRetentionPolicy cmdlet enables delete retention policy for the Azure Storage Blob service. + + + + Enable-AzStorageBlobDeleteRetentionPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + AllowPermanentDelete + + Allow deletion of the soft deleted blob versions and snapshots. + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + RetentionDays + + Sets the number of retention days for the DeleteRetentionPolicy. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Enable-AzStorageBlobDeleteRetentionPolicy + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + AllowPermanentDelete + + Allow deletion of the soft deleted blob versions and snapshots. + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + RetentionDays + + Sets the number of retention days for the DeleteRetentionPolicy. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Enable-AzStorageBlobDeleteRetentionPolicy + + AllowPermanentDelete + + Allow deletion of the soft deleted blob versions and snapshots. + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + RetentionDays + + Sets the number of retention days for the DeleteRetentionPolicy. + + System.Int32 + + System.Int32 + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AllowPermanentDelete + + Allow deletion of the soft deleted blob versions and snapshots. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + RetentionDays + + Sets the number of retention days for the DeleteRetentionPolicy. + + System.Int32 + + System.Int32 + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobServiceProperties + + + + + + + + + + + + + + Example 1: Enable delete retention policy for the Blob service + Enable-AzStorageBlobDeleteRetentionPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -AllowPermanentDelete -PassThru -RetentionDays 4 + +Enabled Days AllowPermanentDelete +------- ---- -------------------- + True 4 True + + This command enables delete retention policy for the Blob service, and set deleted blob retention days to 4. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/enable-azstorageblobdeleteretentionpolicy + + + + + + Enable-AzStorageBlobLastAccessTimeTracking + Enable + AzStorageBlobLastAccessTimeTracking + + Enable last access time tracking for the Azure Storage Blob service. + + + + The Enable-AzStorageBlobLastAccessTimeTracking cmdlet enables last access time tracking for the Azure Storage Blob service. + + + + Enable-AzStorageBlobLastAccessTimeTracking + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Enable-AzStorageBlobLastAccessTimeTracking + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSRestorePolicy + + + + + + + + + + + + + + Example 1: Enable last access time tracking for the Blob service + Enable-AzStorageBlobLastAccessTimeTracking -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -PassThru + +Enable Name TrackingGranularityInDays BlobType +------ ---- ------------------------- -------- + True AccessTimeTracking 1 {blockBlob} + + This command enables last access time tracking for the Blob service, and show the last access time tracking policy properties. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/enable-azstoragebloblastaccesstimetracking + + + + + + Enable-AzStorageBlobRestorePolicy + Enable + AzStorageBlobRestorePolicy + + Enables Blob Restore Policy on a Storage account. + + + + The Enable-AzStorageBlobRestorePolicy cmdlet enables Blob Restore Policy for the Azure Storage Blob service. + + + + Enable-AzStorageBlobRestorePolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + RestoreDays + + Sets the number of days for the blob can be restored.. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Enable-AzStorageBlobRestorePolicy + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + RestoreDays + + Sets the number of days for the blob can be restored.. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Enable-AzStorageBlobRestorePolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + RestoreDays + + Sets the number of days for the blob can be restored.. + + System.Int32 + + System.Int32 + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + RestoreDays + + Sets the number of days for the blob can be restored.. + + System.Int32 + + System.Int32 + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSRestorePolicy + + + + + + + + + + + + + + Example 1: Enables Blob Restore Policy for the Azure Storage Blob service on a Storage account + PS C:\> Enable-AzStorageBlobDeleteRetentionPolicy -ResourceGroupName "myresourcegoup" -StorageAccountName "mystorageaccount" -RetentionDays 5 + +PS C:\> Update-AzStorageBlobServiceProperty -ResourceGroupName "myresourcegoup" -StorageAccountName "mystorageaccount" -EnableChangeFeed $true + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegoup +DefaultServiceVersion : +DeleteRetentionPolicy.Enabled : True +DeleteRetentionPolicy.Days : 5 +RestorePolicy.Enabled : False +RestorePolicy.Days : +RestorePolicy.MinRestoreTime : +ChangeFeed : True +IsVersioningEnabled : True + +PS C:\> Enable-AzStorageBlobRestorePolicy -ResourceGroupName "myresourcegoup" -StorageAccountName "mystorageaccount" -RestoreDays 4 + +PS C:\> Get-AzStorageBlobServiceProperty -ResourceGroupName "myresourcegoup" -StorageAccountName "mystorageaccount" + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegoup +DefaultServiceVersion : +DeleteRetentionPolicy.Enabled : True +DeleteRetentionPolicy.Days : 5 +RestorePolicy.Enabled : True +RestorePolicy.Days : 4 +RestorePolicy.MinRestoreTime : 8/28/2020 6:00:59 AM +ChangeFeed : True +IsVersioningEnabled : True + + This command first enable Blob softdelete and changefeed, then enables Blob Restore Policy, finally check the setting in Blob service properties. The Blob service RestorePolicy.Days must be smaller than DeleteRetentionPolicy.Days. Blob softdelete and ChangeFeed must be enabled before enable blob Restore Policy. If softdelete and Changefeed are just enabled, might need wait for some time for server to handle the setting, before enable Blob restore policy. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/enable-azstorageblobrestorepolicy + + + + + + Enable-AzStorageContainerDeleteRetentionPolicy + Enable + AzStorageContainerDeleteRetentionPolicy + + Enable delete retention policy for Azure Storage blob containers. + + + + The Enable-AzStorageContainerDeleteRetentionPolicy cmdlet enables delete retention policy for Azure Storage blob containers. + + + + Enable-AzStorageContainerDeleteRetentionPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + RetentionDays + + Sets the number of retention days for the DeleteRetentionPolicy. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Enable-AzStorageContainerDeleteRetentionPolicy + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + RetentionDays + + Sets the number of retention days for the DeleteRetentionPolicy. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Enable-AzStorageContainerDeleteRetentionPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + RetentionDays + + Sets the number of retention days for the DeleteRetentionPolicy. + + System.Int32 + + System.Int32 + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display ServiceProperties + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + RetentionDays + + Sets the number of retention days for the DeleteRetentionPolicy. + + System.Int32 + + System.Int32 + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobServiceProperties + + + + + + + + + + + + + + Example 1: Enable delete retention policy for Blob containers + Enable-AzStorageContainerDeleteRetentionPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -PassThru -RetentionDays 3 + +Enabled Days +------- ---- + True 3 + + This command enables delete retention policy for Blob containers, and set deleted blob retention days to 3. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/enable-azstoragecontainerdeleteretentionpolicy + + + + + + Get-AzRmStorageContainer + Get + AzRmStorageContainer + + Gets or lists Storage blob containers + + + + The Get-AzRmStorageContainer cmdlet gets or lists Storage blob containers + + + + Get-AzRmStorageContainer + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include deleted containers, by default list containers won't include deleted containers + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Container Name + + System.String + + System.String + + + None + + + + Get-AzRmStorageContainer + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include deleted containers, by default list containers won't include deleted containers + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Container Name + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include deleted containers, by default list containers won't include deleted containers + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Container Name + + System.String + + System.String + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + + + + + + + Example 1: Get a Storage blob container with Storage account name and container name + Get-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" + + This command gets a Storage blob container with Storage account name and container name. + + + + + + Example 2: List all Storage blob containers of a Storage account + Get-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" + + This command lists all Storage blob containers of a Storage account with Storage account name. + + + + + + Example 3: Get a Storage blob container with Storage account object and container name. + $accountObject = Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" +Get-AzRmStorageContainer -StorageAccount $accountObject -ContainerName "myContainer" + + This command gets a Storage blob container with Storage account object and container name. + + + + + + Example 4: List Storage blob container of a Storage account, include deleted containers. + Get-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -IncludeDeleted + +ResourceGroupName: myResourceGroup, StorageAccountName: myStorageAccount + +Name PublicAccess LastModified HasLegalHold HasImmutabilityPolicy Deleted VersionId +---- ------------ ------------ ------------ --------------------- ------- --------- +testcon None 2020-08-28 10:18:13Z False False False 01D685BC91A88F22 +testcon2 None 2020-09-04 12:52:37Z False False True 01D67D248986B6DA + + This example lists all containers of a storage account, include deleted containers. Deleted containers will only exist after enabled Container softdelete with Enable-AzStorageBlobDeleteRetentionPolicy. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azrmstoragecontainer + + + + + + Get-AzRmStorageContainerImmutabilityPolicy + Get + AzRmStorageContainerImmutabilityPolicy + + Gets ImmutabilityPolicy of a Storage blob containers + + + + The Get-AzRmStorageContainerImmutabilityPolicy cmdlet gets ImmutabilityPolicy of a Storage blob containers + + + + Get-AzRmStorageContainerImmutabilityPolicy + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. + + System.String + + System.String + + + None + + + + Get-AzRmStorageContainerImmutabilityPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. + + System.String + + System.String + + + None + + + + Get-AzRmStorageContainerImmutabilityPolicy + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + + + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. + + System.String + + System.String + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + + + + + + + + + + + + Example 1: Get ImmutabilityPolicy of a Storage blob container with Storage account name and container name + Get-AzRmStorageContainerImmutabilityPolicy -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" + + This command gets ImmutabilityPolicy of a Storage blob container with Storage account name and container name. + + + + + + Example 2: Get ImmutabilityPolicy of a Storage blob container with Storage account object and container name + $accountObject = Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" +Get-AzRmStorageContainerImmutabilityPolicy -StorageAccount $accountObject -ContainerName "myContainer" + + This command gets ImmutabilityPolicy of a Storage blob containers with Storage account object and container name. + + + + + + Example 3: Get ImmutabilityPolicy of a Storage blob container with Storage container object + $containerObject = Get-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -Name "myContainer" +Get-AzRmStorageContainerImmutabilityPolicy -Container $containerObject + + This command gets ImmutabilityPolicy of a Storage blob container with Storage container object. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azrmstoragecontainerimmutabilitypolicy + + + + + + Get-AzRmStorageShare + Get + AzRmStorageShare + + Gets or lists Storage file shares. + + + + The Get-AzRmStorageShare cmdlet gets or lists Storage file shares. + + + + Get-AzRmStorageShare + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + GetShareUsage + + Specify this parameter to get the Share Usage in Bytes. + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Share Name + + System.String + + System.String + + + None + + + SnapshotTime + + Share SnapshotTime + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + Get-AzRmStorageShare + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + GetShareUsage + + Specify this parameter to get the Share Usage in Bytes. + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Share Name + + System.String + + System.String + + + None + + + SnapshotTime + + Share SnapshotTime + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + + Get-AzRmStorageShare + + ResourceId + + Input a File Share Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + GetShareUsage + + Specify this parameter to get the Share Usage in Bytes. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzRmStorageShare + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include deleted shares, by default list shares won't include deleted shares + + + System.Management.Automation.SwitchParameter + + + False + + + IncludeSnapshot + + Include share snapshots, by default list shares won't include share snapshots. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzRmStorageShare + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include deleted shares, by default list shares won't include deleted shares + + + System.Management.Automation.SwitchParameter + + + False + + + IncludeSnapshot + + Include share snapshots, by default list shares won't include share snapshots. + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + GetShareUsage + + Specify this parameter to get the Share Usage in Bytes. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IncludeDeleted + + Include deleted shares, by default list shares won't include deleted shares + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IncludeSnapshot + + Include share snapshots, by default list shares won't include share snapshots. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Share Name + + System.String + + System.String + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Input a File Share Resource Id. + + System.String + + System.String + + + None + + + SnapshotTime + + Share SnapshotTime + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + + + + + + + + + + + + Example 1: Get a Storage file share with Storage account name and share name + Get-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" -Name "myshare" + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes +---- -------- ---------------- ---------- ------- ------- --------------- +myshare 5120 + + This command gets a Storage file share with Storage account name and share name. + + + + + + - Example 2: List all Storage file shares of a Storage account - + Get-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes +---- -------- ---------------- ---------- ------- ------- --------------- +share1 5120 TransactionOptimized +share2 5120 TransactionOptimized + + This command lists all Storage file shares of a Storage account with Storage account name. + + + + + + Example 3: Get a Storage blob container with Storage account object and container name. + Get-AzStorageAccount -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" | Get-AzRmStorageShare -Name "myshare" + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes +---- -------- ---------------- ---------- ------- ------- --------------- +myshare 5120 + + This command gets a Storage blob container with Storage account object and container name. + + + + + + Example 4: Get a Storage file share with the share usage in bytes + Get-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" -Name "myshare" -GetShareUsage + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes +---- -------- ---------------- ---------- ------- ------- --------------- +myshare 5120 2097152 + + This command gets a Storage file share with Storage account name and share name, and include the share usage in bytes. + + + + + + Example 5: List all Storage file shares of a Storage account, include the deleted shares, include the share snapshots + Get-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" -IncludeDeleted -IncludeSnapshot + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes snapshotTime +---- -------- ---------------- ---------- ------- ------- --------------- ------------ +testshare1 5120 TransactionOptimized 2021-05-10T08:04:08Z +testshare1 5120 TransactionOptimized +share1 100 TransactionOptimized True 01D61FD1FC5498B6 + + This command lists all Storage file shares include the deleted shares and share snapshots. + + + + + + ------------ Example 6: Get a single share snapshot ------------ + Get-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" -Name "testshare1" -SnapshotTime "2021-05-10T08:04:08Z" + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes snapshotTime +---- -------- ---------------- ---------- ------- ------- --------------- ------------ +testshare1 5120 TransactionOptimized 2021-05-10T08:04:08Z + + This command gets a single file share snapshot with share name and snapshot time. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azrmstorageshare + + + + + + Get-AzStorageAccount + Get + AzStorageAccount + + Gets a Storage account. + + + + The Get-AzStorageAccount cmdlet gets a specified Storage account or all of the Storage accounts in a resource group or the subscription. + + + + Get-AzStorageAccount + + ResourceGroupName + + Specifies the name of the resource group that contains the Storage account to get. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account to get. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeBlobRestoreStatus + + Get the BlobRestoreStatus of the Storage account. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageAccount + + ResourceGroupName + + Specifies the name of the resource group that contains the Storage account to get. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account to get. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeGeoReplicationStats + + Get the GeoReplicationStats of the Storage account. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageAccount + + ResourceGroupName + + Specifies the name of the resource group that contains the Storage account to get. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeBlobRestoreStatus + + Get the BlobRestoreStatus of the Storage account. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IncludeGeoReplicationStats + + Get the GeoReplicationStats of the Storage account. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Specifies the name of the Storage account to get. + + System.String + + System.String + + + None + + + ResourceGroupName + + Specifies the name of the resource group that contains the Storage account to get. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + + + + + ---------- Example 1: Get a specified Storage account ---------- + Get-AzStorageAccount -ResourceGroupName "RG01" -Name "mystorageaccount" + + This command gets the specified Storage account. + + + + + + --- Example 2: Get all Storage accounts in a resource group --- + Get-AzStorageAccount -ResourceGroupName "RG01" + + This command gets all of the Storage accounts in a resource group. + + + + + + --- Example 3: Get all Storage accounts in the subscription --- + Get-AzStorageAccount + + This command gets all of the Storage accounts in the subscription. + + + + + + Example 4: Get a Storage accounts with its blob restore status + $account = Get-AzStorageAccount -ResourceGroupName "myresourcegoup" -Name "mystorageaccount" -IncludeBlobRestoreStatus + +$account.BlobRestoreStatus + +Status RestoreId FailureReason Parameters.TimeToRestore Parameters.BlobRanges +------ --------- ------------- ------------------------ --------------------- +InProgress a70cd4a1-f223-4c86-959f-cc13eb4795a8 2020-02-10T13:45:04.7155962Z [container1/blob1 -> container2/blob2] + + This command gets a Storage accounts with its blob restore status, and show the blob restore status. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageaccount + + + New-AzStorageAccount + + + + Remove-AzStorageAccount + + + + Set-AzStorageAccount + + + + + + + Get-AzStorageAccountKey + Get + AzStorageAccountKey + + Gets the access keys for an Azure Storage account. + + + + The Get-AzStorageAccountKey cmdlet gets the access keys for an Azure Storage account. + + + + Get-AzStorageAccountKey + + ResourceGroupName + + Specifies the name of the resource group that contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account for which this cmdlet gets keys. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ListKerbKey + + Lists the Kerberos keys (if active directory enabled) for the specified storage account. Kerberos key is generated per storage account for Azure Files identity based authentication either with Azure Active Directory Domain Service (Azure AD DS) or Active Directory Domain Service (AD DS). It is used as the password of the identity registered in the domain service that represents the storage account. Kerberos key does not provide access permission to perform any control or data plane read or write operations against the storage account. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ListKerbKey + + Lists the Kerberos keys (if active directory enabled) for the specified storage account. Kerberos key is generated per storage account for Azure Files identity based authentication either with Azure Active Directory Domain Service (Azure AD DS) or Active Directory Domain Service (AD DS). It is used as the password of the identity registered in the domain service that represents the storage account. Kerberos key does not provide access permission to perform any control or data plane read or write operations against the storage account. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Specifies the name of the Storage account for which this cmdlet gets keys. + + System.String + + System.String + + + None + + + ResourceGroupName + + Specifies the name of the resource group that contains the Storage account. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Management.Storage.Models.StorageAccountKey + + + + + + + + + + + + + + ----- Example 1: Get the access keys for a Storage account ----- + Get-AzStorageAccountKey -ResourceGroupName "RG01" -Name "mystorageaccount" + + This command gets the keys for the specified Azure Storage account. + + + + + + -- Example 2: Get a specific access key for a Storage account -- + This command gets a specific key for a Storage account. +PS C:\>(Get-AzStorageAccountKey -ResourceGroupName "RG01" -Name "mystorageaccount")| Where-Object {$_.KeyName -eq "key1"} + +KeyName Value Permissions CreationTime +------- ----- ----------- ------------ +key1 <KeyValue> Full + +This command gets a specific key value for a Storage account. +PS C:\>(Get-AzStorageAccountKey -ResourceGroupName "RG01" -Name "mystorageaccount")[0].Value + +<KeyValue> + + + + + + + + Example 3: Lists the access keys for a Storage account, include the Kerberos keys (if active directory enabled) + Get-AzStorageAccountKey -ResourceGroupName "RG01" -Name "mystorageaccount" -ListKerbKey + + This command gets the keys for the specified Azure Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageaccountkey + + + New-AzStorageAccountKey + + + + + + + Get-AzStorageAccountManagementPolicy + Get + AzStorageAccountManagementPolicy + + Gets the management policy of an Azure Storage account. + + + + The Get-AzStorageAccountManagementPolicy cmdlet gets the management policy of an Azure Storage account. + + + + Get-AzStorageAccountManagementPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + Get-AzStorageAccountManagementPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + + Get-AzStorageAccountManagementPolicy + + StorageAccountResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + StorageAccountResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Management.Storage.Models.StorageAccountKey + + + + + + + + + + + + + + -- Example 1: Get the management policy of a Storage account. -- + Get-AzStorageAccountManagementPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" + +ResourceGroupName : myresourcegroup +StorageAccountName : mystorageaccount +Id : /subscriptions/{subscription-id}/resourceGroups/myresourcegroup/providers/Microsoft.Storage/storageAccounts/mystorageaccount/managementPolicies/default +Type : Microsoft.Storage/storageAccounts/managementPolicies +LastModifiedTime : 3/12/2019 7:04:05 AM +Rules : [ + { + "Enabled": true, + "Name": "Test", + "Definition": { + "Actions": { + "BaseBlob": { + "TierToCool": { + "DaysAfterModificationGreaterThan": 30 + }, + "TierToArchive": { + "DaysAfterModificationGreaterThan": 50 + }, + "Delete": { + "DaysAfterModificationGreaterThan": 100 + } + }, + "Snapshot": { + "Delete": { + "DaysAfterCreationGreaterThan": 100 + } + } + }, + "Filters": { + "PrefixMatch": [ + "prefix1", + "prefix2" + ], + "BlobTypes": [ + "blockBlob" + ] + } + } + }, + { + "Enabled": true, + "Name": "Test2", + "Definition": { + "Actions": { + "BaseBlob": { + "TierToCool": null, + "TierToArchive": null, + "Delete": { + "DaysAfterModificationGreaterThan": 100 + } + }, + "Snapshot": null + }, + "Filters": { + "PrefixMatch": null, + "BlobTypes": [ + "blockBlob" + ] + } + } + } + ] + + This command gets the management policy of a Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/Az.storage/get-Azstorageaccountmanagementpolicy + + + + + + Get-AzStorageAccountNameAvailability + Get + AzStorageAccountNameAvailability + + Checks the availability of a Storage account name. + + + + The Get-AzStorageAccountNameAvailability cmdlet checks whether the name of an Azure Storage account is valid and available to use. + + + + Get-AzStorageAccountNameAvailability + + Name + + Specifies the name of the Storage account that this cmdlet checks. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies the name of the Storage account that this cmdlet checks. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Management.Storage.Models.CheckNameAvailabilityResult + + + + + + + + + + + + + + --- Example 1: Check availability of a Storage account name --- + Get-AzStorageAccountNameAvailability -Name 'contosostorage03' + + This command checks the availability of the name ContosoStorage03. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageaccountnameavailability + + + Azure Storage Manager Cmdlets + + + + + + + Get-AzStorageAccountNetworkRuleSet + Get + AzStorageAccountNetworkRuleSet + + Get the NetWorkRule property of a Storage account + + + + The Get-AzStorageAccountNetworkRuleSet cmdlet gets the NetworkRule property of a Storage account + + + + Get-AzStorageAccountNetworkRuleSet + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + + + + + + + + + + + + + Example 1: Get NetworkRule property of a specified Storage account + Get-AzStorageAccountNetworkRuleSet -ResourceGroupName "rg1" -Name "mystorageaccount" + + This command gets NetworkRule property of a specified Storage account + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageaccountnetworkruleset + + + + + + Get-AzStorageBlobInventoryPolicy + Get + AzStorageBlobInventoryPolicy + + Gets blob inventory policy from a Storage account. + + + + The Get-AzStorageBlobInventoryPolicy cmdlet gets blob inventory policy from a Storage account. + + + + Get-AzStorageBlobInventoryPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + Get-AzStorageBlobInventoryPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + + Get-AzStorageBlobInventoryPolicy + + StorageAccountResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + StorageAccountResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + + + + + + + + + + + + + - Example 1: Get blob inventory policy from a Storage account - + PS C:\> $policy = Get-AzStorageBlobInventoryPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" + +PS C:\> $policy + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegroup +Name : DefaultInventoryPolicy +Id : /subscriptions/{subscription-Id}/resourceGroups/myresourcegroup/providers/Microsoft.Storage/storageAccounts/mystorageaccount/inventoryPolicies/default +Type : Microsoft.Storage/storageAccounts/inventoryPolicies +LastModifiedTime : 11/4/2020 9:18:30 AM +Enabled : True +Rules : {Test1, Test2} + +PS C:\> $policy.Rules + +Name Enabled Destination ObjectType Format Schedule IncludeSnapshots IncludeBlobVersions BlobTypes PrefixMatch SchemaFields +---- ------- ----------- ---------- ------ -------- ---------------- ------------------- --------- ----------- ------------ +Test1 False containername Container Csv Daily {aaa, bbb} {Name, Metadata, PublicAccess, Last-Modified...} +Test2 True containername Blob Parquet Weekly True True {blockBlob, appendBlob} {ccc, ddd} {Name, Creation-Time, Last-Modified, Content-Length...} + + This command gets blob inventory policy from a Storage account, and show its proeprties. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageblobinventorypolicy + + + + + + Get-AzStorageBlobServiceProperty + Get + AzStorageBlobServiceProperty + + Gets service properties for Azure Storage Blob services. + + + + The Get-AzStorageBlobServiceProperty cmdlet gets the service properties for Azure Storage Blob services. + + + + Get-AzStorageBlobServiceProperty + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + Get-AzStorageBlobServiceProperty + + ResourceId + + Blob Service Properties Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + Get-AzStorageBlobServiceProperty + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Blob Service Properties Resource Id. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobServiceProperties + + + + + + + + + + + + + + Example 1: Get Azure Storage Blob services property of a specified Storage Account + Get-AzStorageBlobServiceProperty -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegroup +DefaultServiceVersion : +DeleteRetentionPolicy.Enabled : False +DeleteRetentionPolicy.Days : +RestorePolicy.Enabled : +RestorePolicy.Days : +ChangeFeed : True +IsVersioningEnabled : True + + This command gets the Blob services property of a specified Storage Account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageblobserviceproperty + + + + + + Get-AzStorageEncryptionScope + Get + AzStorageEncryptionScope + + Get or list encryption scopes from a Storage account. + + + + The Get-AzStorageEncryptionScope cmdlet gets or lists encryption scopes from a Storage account. + + + + Get-AzStorageEncryptionScope + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + Filter + + The filter of encryption scope name. When specified, only encryption scope names starting with the filter will be listed. + + System.String + + System.String + + + None + + + Include + + The filter of encryption scope name. When specified, only encryption scope names starting with the filter will be listed. + + + All + Enabled + Disabled + + System.String + + System.String + + + None + + + MaxPageSize + + The maximum number of encryption scopes that will be included in the list response + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + Get-AzStorageEncryptionScope + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + Filter + + The filter of encryption scope name. When specified, only encryption scope names starting with the filter will be listed. + + System.String + + System.String + + + None + + + Include + + The filter of encryption scope name. When specified, only encryption scope names starting with the filter will be listed. + + + All + Enabled + Disabled + + System.String + + System.String + + + None + + + MaxPageSize + + The maximum number of encryption scopes that will be included in the list response + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + Filter + + The filter of encryption scope name. When specified, only encryption scope names starting with the filter will be listed. + + System.String + + System.String + + + None + + + Include + + The filter of encryption scope name. When specified, only encryption scope names starting with the filter will be listed. + + System.String + + System.String + + + None + + + MaxPageSize + + The maximum number of encryption scopes that will be included in the list response + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSEncryptionScope + + + + + + + + + + + + + + ----------- Example 1: Get a single encryption scope ----------- + Get-AzStorageEncryptionScope -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -EncryptionScopeName $scopename + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name State Source KeyVaultKeyUri +---- ----- ------ -------------- +testscope Disabled Microsoft.Keyvault https://keyvalutname.vault.azure.net:443/keys/keyname + + This command gets a single encryption scope. + + + + + + -- Example 2: List all encryption scopes of a Storage account -- + PS C:\> Get-AzStorageEncryptionScope -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" + + + ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name State Source KeyVaultKeyUri +---- ----- ------ -------------- +testscope Disabled Microsoft.Keyvault https://keyvalutname.vault.azure.net:443/keys/keyname +scope2 Enabled Microsoft.Storage + + This command lists all encryption scopes of a Storage account. + + + + + + Example 3: List all enabled encryption scopes of a Storage account with a max page size of 10 for each request + Get-AzStorageEncryptionScope -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -MaxPageSize 10 -Include Enabled + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name State Source KeyVaultKeyUri +---- ----- ------ -------------- +scope1 Enabled Microsoft.Keyvault https://keyvalutname.vault.azure.net:443/keys/keyname +scope2 Enabled Microsoft.Storage + + This command lists all enabled encryption scopes of a Storage account, with a max page size of 10 encryption scopes included in each list response. If there are more than 10 encryption scopes to be listed, the command will still list all the encryption scopes, but with multiple requests sent and responses received. + + + + + + Example 4: List all disabled encryption scopes with names starting with "test" of a Storage account + Get-AzStorageEncryptionScope -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -Include Disabled -Filter "startswith(name, test)" + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name State Source KeyVaultKeyUri +---- ----- ------ -------------- +testscope1 Disabled Microsoft.Keyvault https://keyvalutname.vault.azure.net:443/keys/keyname +testscope2 Disabled Microsoft.Storage + + This command lists all disabled encryption scopes with names starting with "test" of a Storage account. The parameter "Filter" specifies the prefix of the encryption scopes listed, and it should be in format of "startswith(name, {prefixValue})". + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageencryptionscope + + + + + + Get-AzStorageFileServiceProperty + Get + AzStorageFileServiceProperty + + Gets service properties for Azure Storage File services. + + + + The Get-AzStorageFileServiceProperty cmdlet gets the service properties for Azure Storage File services. + + + + Get-AzStorageFileServiceProperty + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + Get-AzStorageFileServiceProperty + + ResourceId + + Input a Storage account Resource Id, or a File service properties Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + Get-AzStorageFileServiceProperty + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Input a Storage account Resource Id, or a File service properties Resource Id. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSFileServiceProperties + + + + + + + + + + + + + + Example 1: Get Azure Storage File services property of a specified Storage Account + Get-AzStorageFileServiceProperty -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegroup +ShareDeleteRetentionPolicy.Enabled : True +ShareDeleteRetentionPolicy.Days : 3 +ProtocolSettings.Smb.Multichannel.Enabled : False +ProtocolSettings.Smb.Versions : {SMB2.1, SMB3.0, SMB3.1.1} +ProtocolSettings.Smb.AuthenticationMethods : {Kerberos, NTLMv2} +ProtocolSettings.Smb.KerberosTicketEncryption : {RC4-HMAC, AES-256} +ProtocolSettings.Smb.ChannelEncryption : {AES-128-CCM, AES-128-GCM, AES-256-GCM} + + This command gets the File services property of a specified Storage Account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragefileserviceproperty + + + + + + Get-AzStorageLocalUser + Get + AzStorageLocalUser + + Gets a specified local user or lists all local users in a storage account. + + + + The Get-AzStorageLocalUser cmdlet gets a specified local user or lists all local users in a storage account. + + + + Get-AzStorageLocalUser + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + + Get-AzStorageLocalUser + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + + + + + + + + + + + + + ------------ Example 1: Get a specified local user ------------ + PS C:\> $localUser = Get-AzStorageLocalUser -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -UserName testuser1 + +PS C:\> $localUser + + ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name Sid HomeDirectory HasSharedKey HasSshKey HasSshPassword PermissionScopes +---- --- ------------- ------------ --------- -------------- ---------------- +testuser1 S-1-2-0-0000000000-000000000-0000000000-0000 / True True True [container1,...] + +PS C:\> $localUser.PermissionScopes + +Permissions Service ResourceName +----------- ------- ------------ +rw blob container1 +rw file share2 + + This command gets a specified local user, and show the properties of it. + + + + + + ----- Example 2: List all local users in a storage account ----- + Get-AzStorageLocalUser -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name Sid HomeDirectory HasSharedKey HasSshKey HasSshPassword PermissionScopes SshAuthorizedKeys +---- --- ------------- ------------ --------- -------------- ---------------- ----------------- +testuser1 S-1-2-0-0000000000-000000000-0000000000-0000 / True True True [container1,...] +testuser2 S-1-2-0-0000000000-000000000-0000000000-0002 /dir True True False + + This command lists all local users in a storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragelocaluser + + + + + + Get-AzStorageLocalUserKey + Get + AzStorageLocalUserKey + + Lists SSH authorized keys and shared key of a specified local user. + + + + The Get-AzStorageLocalUserKey cmdlet lists SSH authorized keys and shared key of a specified local user in a storage account. + + + + Get-AzStorageLocalUserKey + + InputObject + + Local User Object to get Keys. + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageLocalUserKey + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageLocalUserKey + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Local User Object to get Keys. + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUserKeys + + + + + + + + + + + + + + Example 1: List SSH authorized keys and shared key of a specified local user. + Get-AzStorageLocalUserKey -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -UserName testuser1 + +SshAuthorizedKeys SharedKey +----------------- --------- +{ssh-rsa keykeykeykeykew=, ssh-rsa keykeykeykeykew=} <hidden> + + This command lists SSH authorized keys and shared key of a specified local user. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragelocaluserkey + + + + + + Get-AzStorageObjectReplicationPolicy + Get + AzStorageObjectReplicationPolicy + + Gets or lists object replication policy of a Storage account. + + + + The Get-AzStorageObjectReplicationPolicy cmdlet gets or lists object replication policy of a Storage account. + + + + Get-AzStorageObjectReplicationPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PolicyId + + Object Replication Policy Id. + + System.String + + System.String + + + None + + + + Get-AzStorageObjectReplicationPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PolicyId + + Object Replication Policy Id. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PolicyId + + Object Replication Policy Id. + + System.String + + System.String + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + + + + + + + + + + + + + Example 1: Get an object replication policy with specific policy Id and show its rules. + PS C:\> $policy = Get-AzStorageObjectReplicationPolicy -ResourceGroupName "myresourcegroup" -AccountName "mydestaccount" -PolicyId 56bfa11c-81ef-4f8d-b307-5e5386e16fba + +PS C:\> $policy + +ResourceGroupName StorageAccountName PolicyId EnabledTime SourceAccount DestinationAccount Rules +----------------- ------------------ -------- ----------- ------------- ------------------ ----- +myresourcegroup mydestaccount 56bfa11c-81ef-4f8d-b307-5e5386e16fba mysourceaccount mydestaccount [5fa8b1d6-4985-4abd-a0b3-ec4d07295a43,...] + +PS C:\> $policy.Rules + +RuleId SourceContainer DestinationContainer Filters.PrefixMatch Filters.MinCreationTime +------ --------------- -------------------- ------------------- ----------------------- +d3d39a01-8d92-40e5-849f-e56209ae5cf5 src1 dest1 {} +2407de9a-3301-4656-858f-359d185565e0 src dest {a, abc, dd} 2019-01-01T16:00:00Z + + This command gets an object replication policy with specific policy Id and show its rules. + + + + + + Example 2:List object replication policy from a Storage account + $policies = Get-AzStorageObjectReplicationPolicy -ResourceGroupName "myresourcegroup" -AccountName "mydestaccount" + +$policies + +ResourceGroupName StorageAccountName PolicyId EnabledTime SourceAccount DestinationAccount Rules +----------------- ------------------ -------- ----------- ------------- ------------------ ----- +myresourcegroup mydestaccount 56bfa11c-81ef-4f8d-b307-5e5386e16fba mysrcaccount1 mydestaccount [5fa8b1d6-4985-4abd-a0b3-ec4d07295a43,...] +myresourcegroup mydestaccount 68434c7a-20d0-4282-b75c-43b5a243435e mysrcaccount2 mydestaccount [d3d39a01-8d92-40e5-849f-e56209ae5cf5,...] + + This command lists object replication policy from a Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageobjectreplicationpolicy + + + + + + Get-AzStorageUsage + Get + AzStorageUsage + + Gets the Storage resource usage of the current subscription. + + + + The Get-AzStorageUsage cmdlet gets the resource usage for Azure Storage for the current subscription. + + + + Get-AzStorageUsage + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Location + + Indicate to get Storage resources usage on the specified location. If not specified, will get Storage resources usage on all locations under the subscription. + + System.String + + System.String + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Location + + Indicate to get Storage resources usage on the specified location. If not specified, will get Storage resources usage on all locations under the subscription. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSUsage + + + + + + + + + + + + + + Example 1: Get the storage resources usage of specified location + Get-AzStorageUsage -Location 'West US' + +LocalizedName : Storage Accounts +Name : StorageAccounts +Unit : Count +CurrentValue : 18 +Limit : 250 + + This command gets the Storage resources usage of specified location under the current subscription. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageusage + + + Azure Storage Manager Cmdlets + + + + + + + Invoke-AzRmStorageContainerImmutableStorageWithVersioningMigration + Invoke + AzRmStorageContainerImmutableStorageWithVersioningMigration + + Migrate an existing Storage blob containers to enable immutable Storage with versioning. + + + + The Invoke-AzRmStorageContainerImmutableStorageWithVersioningMigration cmdlet migrates an existing Storage blob containers to enable immutable Storage with versioning. The cmdlet only works when the Storage account has already enabled blob versioning, and the containers already has ImmutabilityPolicy. + + + + Invoke-AzRmStorageContainerImmutableStorageWithVersioningMigration + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Invoke-AzRmStorageContainerImmutableStorageWithVersioningMigration + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Invoke-AzRmStorageContainerImmutableStorageWithVersioningMigration + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + + + + + + + Example 1: Migrates an existing Storage blob containers to enable immutable Storage with versioning. + $t = Invoke-AzRmStorageContainerImmutableStorageWithVersioningMigration -ResourceGroupName "myResourceGroup" -AccountName "mystorageaccount" -Name testcontainer -asjob + +$t | Wait-Job + + This command migrates an existing Storage blob containers to enable immutable Storage with versioning. The command only works when the Storage account has already enabled blob versioning, and the containers already has ImmutabilityPolicy. Since the command ussually will run for a long time, you can run it asynchronously with '-Asjob'. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/invoke-azrmstoragecontainerimmutablestoragewithversioningmigration + + + + + + Invoke-AzStorageAccountFailover + Invoke + AzStorageAccountFailover + + Invokes failover of a Storage account. + + + + Invokes failover of a Storage account. Failover request can be triggered for a storage account in case of availability issues. The failover occurs from the storage account's primary cluster to secondary cluster for RA-GRS accounts. The secondary cluster will become primary after failover. Please understand the following impact to your storage account before you initiate the failover: 1.1. Please check the Last Sync Time using GET Blob Service Stats (https://learn.microsoft.com/rest/api/storageservices/get-blob-service-stats), GET Table Service Stats (https://learn.microsoft.com/rest/api/storageservices/get-table-service-stats) and GET Queue Service Stats (https://learn.microsoft.com/rest/api/storageservices/get-queue-service-stats) for your account. This is the data you may lose if you initiate the failover. 2.After the failover, your storage account type will be converted to locally redundant storage(LRS). You can convert your account to use geo-redundant storage(GRS). 3.Once you re-enable GRS for your storage account, Microsoft will replicate data to your new secondary region. Replication time is dependent on the amount of data to replicate. Please note that there are bandwidth charges for the bootstrap. https://azure.microsoft.com/en-us/pricing/details/bandwidth/ + + + + Invoke-AzStorageAccountFailover + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to Failover the Account + + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Invoke-AzStorageAccountFailover + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + Name + + Storage Account Name. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to Failover the Account + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to Failover the Account + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Name + + Storage Account Name. + + System.String + + System.String + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + + + + + ------- Example 1: Invoke failover of a Storage account ------- + PS C:\>$account = Get-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -IncludeGeoReplicationStats +PS C:\>$account.GeoReplicationStats + +Status LastSyncTime +------ ------------ +Live 11/13/2018 2:44:22 AM + +PS C:\>$job = Invoke-AzStorageAccountFailover -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -Force -AsJob +PS C:\>$job | Wait-Job + + This command check the last sync time of a Storage account then invokes failover of it, the secondary cluster will become primary after failover. Since failover takes a long time, suggest to run it in the backend with -Asjob parameter, and then wait for the job complete. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/Az.storage/invoke-Azstorageaccountfailover + + + + + + Invoke-AzStorageAccountHierarchicalNamespaceUpgrade + Invoke + AzStorageAccountHierarchicalNamespaceUpgrade + + Validates if a storage account can be upgraded to enable HierarchicalNamespace, or upgrades a Storage account to enabled HierarchicalNamespace. + + + + The Invoke-AzStorageAccountHierarchicalNamespaceUpgrade cmdlet can validate if a storage account can be upgraded to enable HierarchicalNamespace, or upgrades a Storage account to enabled HierarchicalNamespace. + + + + Invoke-AzStorageAccountHierarchicalNamespaceUpgrade + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to Failover the Account + + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + RequestType + + The HierarchicalNamespaceUpgrade requestType to run: - Validation: Validate if the account can be upgrade to enable HierarchicalNamespace. + - Upgrade: Upgrade the storage account to enable HierarchicalNamespace. + + + Validation + Upgrade + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Invoke-AzStorageAccountHierarchicalNamespaceUpgrade + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + Name + + Storage Account Name. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to Failover the Account + + + System.Management.Automation.SwitchParameter + + + False + + + RequestType + + The HierarchicalNamespaceUpgrade requestType to run: - Validation: Validate if the account can be upgrade to enable HierarchicalNamespace. + - Upgrade: Upgrade the storage account to enable HierarchicalNamespace. + + + Validation + Upgrade + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to Failover the Account + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Name + + Storage Account Name. + + System.String + + System.String + + + None + + + RequestType + + The HierarchicalNamespaceUpgrade requestType to run: - Validation: Validate if the account can be upgrade to enable HierarchicalNamespace. + - Upgrade: Upgrade the storage account to enable HierarchicalNamespace. + + System.String + + System.String + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + + + + + Example 1: Validate a stroage account can be upgrade to enable HierarchicalNamespace, then upgrade it to enabled HierarchicalNamespace + PS C:\> Invoke-AzStorageAccountHierarchicalNamespaceUpgrade -ResourceGroupName $rgname -Name $accountName -RequestType Validation +True + +PS C:\> $task = Invoke-AzStorageAccountHierarchicalNamespaceUpgrade -ResourceGroupName $rgname -Name $accountName -RequestType Upgrade -Force -AsJob + +PS C:\> $task | Wait-Job + + The first command validates if a stroage account can be upgrade to enable HierarchicalNamespace. The second command upgrade the storage account to enable HierarchicalNamespace. Since the upgrade will take time, use '-Asjob' to run it in backend, and return a task. Then wait for the task finish. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/invoke-azstorageaccounthierarchicalnamespaceupgrade + + + + + + Lock-AzRmStorageContainerImmutabilityPolicy + Lock + AzRmStorageContainerImmutabilityPolicy + + Locks ImmutabilityPolicy of a Storage blob containers + + + + The Lock-AzRmStorageContainerImmutabilityPolicy cmdlet locks ImmutabilityPolicy of a Storage blob containers. + + + + Lock-AzRmStorageContainerImmutabilityPolicy + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. + + System.String + + System.String + + + None + + + Force + + Force to remove the ImmutabilityPolicy. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Lock-AzRmStorageContainerImmutabilityPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. + + System.String + + System.String + + + None + + + Force + + Force to remove the ImmutabilityPolicy. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Lock-AzRmStorageContainerImmutabilityPolicy + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. + + System.String + + System.String + + + None + + + Force + + Force to remove the ImmutabilityPolicy. + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Lock-AzRmStorageContainerImmutabilityPolicy + + InputObject + + ImmutabilityPolicy Object to Remove + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the ImmutabilityPolicy. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. + + System.String + + System.String + + + None + + + Force + + Force to remove the ImmutabilityPolicy. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + ImmutabilityPolicy Object to Remove + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + + + + + + + + + + + + Example 1: Lock ImmutabilityPolicy of a Storage blob container with Storage account name and container name + $policy = Get-AzRmStorageContainerImmutabilityPolicy -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" +Lock-AzRmStorageContainerImmutabilityPolicy -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" -Etag $policy.Etag + + This command Locks ImmutabilityPolicy of a Storage blob container with Storage account name and container name. + + + + + + Example 2: Lock ImmutabilityPolicy of a Storage blob container, with Storage account object + $accountObject = Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" +$policy = Get-AzRmStorageContainerImmutabilityPolicy -StorageAccount $accountObject -ContainerName "myContainer" +Lock-AzRmStorageContainerImmutabilityPolicy -StorageAccount $accountObject -ContainerName "myContainer" -Etag $policy.Etag -Force + + This command locks ImmutabilityPolicy of a Storage blob container, with Storage account object. + + + + + + Example 3: Lock ImmutabilityPolicyof a Storage blob container, with container object + $containerObject = Get-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -Name "myContainer" +$policy = Get-AzRmStorageContainerImmutabilityPolicy -Container $containerObject +Lock-AzRmStorageContainerImmutabilityPolicy -Container $containerObject -Etag $policy.Etag -Force + + This command locks ImmutabilityPolicy of a Storage blob container with Storage container object. + + + + + + Example 4: Lock ImmutabilityPolicy of a Storage blob container, with ImmutabilityPolicy object + Get-AzRmStorageContainerImmutabilityPolicy -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" | Lock-AzRmStorageContainerImmutabilityPolicy -Force + + This command locks ImmutabilityPolicy of a Storage blob container, with ImmutabilityPolicy object. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/lock-azrmstoragecontainerimmutabilitypolicy + + + + + + New-AzRmStorageContainer + New + AzRmStorageContainer + + Creates a Storage blob container + + + + The New-AzRmStorageContainer cmdlet creates a Storage blob container + + + + New-AzRmStorageContainer + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultEncryptionScope + + Default the container to use specified encryption scope for all writes. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableImmutableStorageWithVersioning + + Enable immutable Storage with versioning at the container level. + + + System.Management.Automation.SwitchParameter + + + False + + + Metadata + + Container Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + PreventEncryptionScopeOverride + + Block override of encryption scope from the container default. + + System.Boolean + + System.Boolean + + + None + + + PublicAccess + + Container PublicAccess + + + Container + Blob + None + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzRmStorageContainer + + DefaultEncryptionScope + + Default the container to use specified encryption scope for all writes. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableImmutableStorageWithVersioning + + Enable immutable Storage with versioning at the container level. + + + System.Management.Automation.SwitchParameter + + + False + + + Metadata + + Container Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + PreventEncryptionScopeOverride + + Block override of encryption scope from the container default. + + System.Boolean + + System.Boolean + + + None + + + PublicAccess + + Container PublicAccess + + + Container + Blob + None + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzRmStorageContainer + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableImmutableStorageWithVersioning + + Enable immutable Storage with versioning at the container level. + + + System.Management.Automation.SwitchParameter + + + False + + + Metadata + + Container Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + PublicAccess + + Container PublicAccess + + + Container + Blob + None + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzRmStorageContainer + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableImmutableStorageWithVersioning + + Enable immutable Storage with versioning at the container level. + + + System.Management.Automation.SwitchParameter + + + False + + + Metadata + + Container Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + PublicAccess + + Container PublicAccess + + + Container + Blob + None + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultEncryptionScope + + Default the container to use specified encryption scope for all writes. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableImmutableStorageWithVersioning + + Enable immutable Storage with versioning at the container level. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Metadata + + Container Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + PreventEncryptionScopeOverride + + Block override of encryption scope from the container default. + + System.Boolean + + System.Boolean + + + None + + + PublicAccess + + Container PublicAccess + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + + + + + + + Example 1: Create a Storage blob container with Storage account name and container name, with metadata + New-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" -Metadata @{tag0="value0";tag1="value1";tag2="value2"} + + This command creates a Storage blob container with Storage account name and container name, with metadata. + + + + + + Example 2: Create a Storage blob container with Storage account object and container name, with public access as Blob + $accountObject = Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" +New-AzRmStorageContainer -StorageAccount $accountObject -ContainerName "myContainer" -PublicAccess Blob + + This command creates a Storage blob container with Storage account object and container name, with public access as Blob. + + + + + + Example 3: Create a storage container with EncryptionScope setting + PS C:\> $c = New-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "mystorageaccount" -Name testcontainer -DefaultEncryptionScope "testscope" -PreventEncryptionScopeOverride $true + +PS C:\> $c + + ResourceGroupName: myResourceGroup, StorageAccountName: mystorageaccount + +Name PublicAccess LastModified HasLegalHold HasImmutabilityPolicy +---- ------------ ------------ ------------ --------------------- +testcontainer False False + +PS C:\> $c.DefaultEncryptionScope +testscope + +PS C:\> $c.DenyEncryptionScopeOverride +True + + This command creates a storage container with a defalt encryptionScope, and blocks override of encryption scope from the container default. Then show the related container properties. + + + + + + - Example 4: Create an Azure storage container with RootSquash - + PS C:\> $container = New-AzRmStorageContainer -ResourceGroupName "myersourcegroup" -AccountName "mystorageaccount" -Name "mycontainer" -RootSquash AllSquash + +PS C:\> $container.EnableNfsV3AllSquash +True + +PS C:\> $container.EnableNfsV3RootSquash +False + + This command creates a storage container, with RootSquash property set as AllSquash. RootSquash only works on a storage account that enabled NfsV3. + + + + + + Example 5: Create a storage container and enable immutable Storage with versioning + $c = New-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "mystorageaccount" -Name testcontainer -EnableImmutableStorageWithVersioning + +$c + +ResourceGroupName: myResourceGroup, StorageAccountName: mystorageaccount + +Name PublicAccess LastModified HasLegalHold HasImmutabilityPolicy Deleted VersionId ImmutableStorageWithVersioning +---- ------------ ------------ ------------ --------------------- ------- --------- ------------------------------ +testcontainer None 2021-07-19 08:26:19Z False False False True + + This command creates a storage container and enable immutable Storage with versioning. The command only works when the Storage account has already enabled blob versioning. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azrmstoragecontainer + + + + + + New-AzRmStorageShare + New + AzRmStorageShare + + Creates a Storage file share. + + + + The New-AzRmStorageShare cmdlet creates a Storage file share. + + + + New-AzRmStorageShare + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + AccessTier + + Access tier for specific share. StorageV2 account can choose between TransactionOptimized (default), Hot, and Cool. FileStorage account can choose Premium. + + + TransactionOptimized + Premium + Hot + Cool + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnabledProtocol + + Sets protocols for file shares. It cannot be changed after file share creation. Possible values include: 'SMB', 'NFS' + + + NFS + SMB + + System.String + + System.String + + + None + + + Metadata + + Share Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Azure File share name + + System.String + + System.String + + + None + + + QuotaGiB + + Share Quota in Gibibyte. + + System.Int32 + + System.Int32 + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + Snapshot + + Create a snapshot of existing share with same name. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzRmStorageShare + + AccessTier + + Access tier for specific share. StorageV2 account can choose between TransactionOptimized (default), Hot, and Cool. FileStorage account can choose Premium. + + + TransactionOptimized + Premium + Hot + Cool + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnabledProtocol + + Sets protocols for file shares. It cannot be changed after file share creation. Possible values include: 'SMB', 'NFS' + + + NFS + SMB + + System.String + + System.String + + + None + + + Metadata + + Share Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Azure File share name + + System.String + + System.String + + + None + + + QuotaGiB + + Share Quota in Gibibyte. + + System.Int32 + + System.Int32 + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + Snapshot + + Create a snapshot of existing share with same name. + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AccessTier + + Access tier for specific share. StorageV2 account can choose between TransactionOptimized (default), Hot, and Cool. FileStorage account can choose Premium. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnabledProtocol + + Sets protocols for file shares. It cannot be changed after file share creation. Possible values include: 'SMB', 'NFS' + + System.String + + System.String + + + None + + + Metadata + + Share Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Azure File share name + + System.String + + System.String + + + None + + + QuotaGiB + + Share Quota in Gibibyte. + + System.Int32 + + System.Int32 + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + System.String + + System.String + + + None + + + Snapshot + + Create a snapshot of existing share with same name. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + + + + + + + + + + + + Example 1: Create a Storage file share with Storage account name and share name, with metadata and share quota as 100 GiB. + New-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" -Name "myshare" -QuotaGiB 100 -Metadata @{"tag1" = "value1"; "tag2" = "value2" } + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocol AccessTier Deleted Version ShareUsageBytes +---- -------- --------------- ---------- ------- ------- --------------- +myshare + + This command creates a Storage file share with metadata and share quota as 100 GiB. + + + + + + Example 2: Create a Storage file share with Storage account object + Get-AzStorageAccount -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" | New-AzRmStorageShare -Name "myshare" + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocol AccessTier Deleted Version ShareUsageBytes +---- -------- --------------- ---------- ------- ------- --------------- +myshare + + This command creates a Storage file share with Storage account object and share name. + + + + + + Example 3: Create a Storage file share with accesstier as Hot + PS C:\>$share = New-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" -Name "myshare" -AccessTier Hot + + ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes +---- -------- ---------------- ---------- ------- ------- --------------- +myshare Hot + + This command creates a Storage file share with accesstier as Hot. + + + + + + Example 4: Create a Storage file share snapshot of an existing share + PS C:\>$shareSnapshot = New-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" -Name "myshare" -Snapshot + + ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes snapshotTime +---- -------- ---------------- ---------- ------- ------- --------------- ------------ +myshare 2021-05-10T08:04:08 + + This command creates a Storage file share snapshot of an existing base file share. + + + + + + Example 5: Create a Storage file share with EnabledProtocol proeprty as NFS, and RootSquash property as NoRootSquash + PS C:\>$share = New-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" -Name "myshare" -EnabledProtocol NFS -RootSquash NoRootSquash + +PS C:\> $share + + ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes +---- -------- ---------------- ---------- ------- ------- --------------- +myshare NFS + +PS C:\> $share.RootSquash +NoRootSquash + + This command creates a Storage file share with EnabledProtocol proeprty as NFS, and RootSquash proeprty as NoRootSquash. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azrmstorageshare + + + + + + New-AzStorageAccount + New + AzStorageAccount + + Creates a Storage account. + + + + The New-AzStorageAccount cmdlet creates an Azure Storage account. + + + + New-AzStorageAccount + + ResourceGroupName + + Specifies the name of the resource group in which to add the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account to create. + + System.String + + System.String + + + None + + + SkuName + + Specifies the SKU name of the Storage account that this cmdlet creates. The acceptable values for this parameter are: - Standard_LRS. Locally-redundant storage. + - Standard_ZRS. Zone-redundant storage. + - Standard_GRS. Geo-redundant storage. + - Standard_RAGRS. Read access geo-redundant storage. + - Premium_LRS. Premium locally-redundant storage. + - Premium_ZRS. Premium zone-redundant storage. + - Standard_GZRS - Geo-redundant zone-redundant storage. + - Standard_RAGZRS - Read access geo-redundant zone-redundant storage. + + + Standard_LRS + Standard_ZRS + Standard_GRS + Standard_RAGRS + Premium_LRS + Premium_ZRS + Standard_GZRS + Standard_RAGZRS + + System.String + + System.String + + + None + + + Location + + Specifies the location of the Storage account to create. + + System.String + + System.String + + + None + + + AccessTier + + Specifies the access tier of the Storage account that this cmdlet creates. The acceptable values for this parameter are: Hot and Cool. If you specify a value of BlobStorage for the Kind parameter, you must specify a value for the AccessTier parameter. If you specify a value of Storage for this Kind parameter, do not specify the AccessTier parameter. + + + Hot + Cool + + System.String + + System.String + + + None + + + ActiveDirectoryAccountType + + Specifies the Active Directory account type for Azure Storage. Possible values include: 'User', 'Computer'. + + System.String + + System.String + + + None + + + ActiveDirectoryAzureStorageSid + + Specifies the security identifier (SID) for Azure Storage. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainGuid + + Specifies the domain GUID. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainName + + Specifies the primary domain that the AD DNS server is authoritative for. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainSid + + Specifies the security identifier (SID). This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryForestName + + Specifies the Active Directory forest to get. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryNetBiosDomainName + + Specifies the NetBIOS domain name. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectorySamAccountName + + Specifies the Active Directory SAMAccountName for Azure Storage. + + System.String + + System.String + + + None + + + AllowBlobPublicAccess + + Allow public access to all blobs or containers in the storage account. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowCrossTenantReplication + + Gets or sets allow or disallow cross AAD tenant object replication. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowedCopyScope + + Set restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values include: 'PrivateLink', 'AAD' + + System.String + + System.String + + + None + + + AllowSharedKeyAccess + + Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true. + + System.Boolean + + System.Boolean + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + AssignIdentity + + Generate and assign a new Storage account Identity for this Storage account for use with key management services like Azure KeyVault. + + + System.Management.Automation.SwitchParameter + + + False + + + CustomDomainName + + Specifies the name of the custom domain of the Storage account. The default value is Storage. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSharePermission + + Default share permission for users using Kerberos authentication if RBAC role is not assigned. + + + None + StorageFileDataSmbShareContributor + StorageFileDataSmbShareReader + StorageFileDataSmbShareElevatedContributor + + System.String + + System.String + + + None + + + DnsEndpointType + + Specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier. Possible values include: 'Standard', 'AzureDnsZone'. + + System.String + + System.String + + + None + + + EdgeZone + + Set the extended location name for EdgeZone. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location + + System.String + + System.String + + + None + + + EnableAccountLevelImmutability + + Enables account-level immutability, then all the containers under this account will have object-level immutability enabled by default. + + + System.Management.Automation.SwitchParameter + + + False + + + EnableActiveDirectoryDomainServicesForFile + + Enable Azure Files Active Directory Domain Service Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableHierarchicalNamespace + + Indicates whether or not the Storage account enables Hierarchical Namespace. + + System.Boolean + + System.Boolean + + + None + + + EnableHttpsTrafficOnly + + Indicates whether or not the Storage account only enables HTTPS traffic. + + System.Boolean + + System.Boolean + + + None + + + EnableLargeFileShare + + Indicates whether or not the storage account can support large file shares with more than 5 TiB capacity. Once the account is enabled, the feature cannot be disabled. Currently only supported for LRS and ZRS replication types, hence account conversions to geo-redundant accounts would not be possible. Learn more in https://go.microsoft.com/fwlink/?linkid=2086047 + + + System.Management.Automation.SwitchParameter + + + False + + + EnableLocalUser + + Enable local users feature for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableNfsV3 + + Enable NFS 3.0 protocol support if sets to true + + System.Boolean + + System.Boolean + + + None + + + EnableSftp + + Enable Secure File Transfer Protocol for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EncryptionKeyTypeForQueue + + Set the Encryption KeyType for Queue. The default value is Service. -Account: Queue will be encrypted with account-scoped encryption key. -Service: Queue will always be encrypted with Service-Managed keys. + + + Service + Account + + System.String + + System.String + + + None + + + EncryptionKeyTypeForTable + + Set the Encryption KeyType for Table. The default value is Service. - Account: Table will be encrypted with account-scoped encryption key. + - Service: Table will always be encrypted with Service-Managed keys. + + + Service + Account + + System.String + + System.String + + + None + + + IdentityType + + Set the new Storage Account Identity type, the idenetity is for use with key management services like Azure KeyVault. + + + SystemAssigned + UserAssigned + SystemAssignedUserAssigned + None + + System.String + + System.String + + + None + + + ImmutabilityPeriod + + The immutability period for the blobs in the container since the policy creation in days. This property can only be only be specified with '-EnableAccountLevelImmutability'. + + System.Int32 + + System.Int32 + + + None + + + ImmutabilityPolicyState + + The mode of the policy. Possible values include: 'Unlocked', 'Disabled. Disabled state disablesthe policy. Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. This property can only be specified with '-EnableAccountLevelImmutability'. + + System.String + + System.String + + + None + + + KeyExpirationPeriodInDay + + The Key expiration period of this account, it is accurate to days. + + System.Int32 + + System.Int32 + + + None + + + KeyName + + Storage Account encryption keySource KeyVault KeyName + + System.String + + System.String + + + None + + + KeyVaultFederatedClientId + + Set ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account. + + System.String + + System.String + + + None + + + KeyVaultUri + + Storage Account encryption keySource KeyVault KeyVaultUri + + System.String + + System.String + + + None + + + KeyVaultUserAssignedIdentityId + + Set resource id for user assigned Identity used to access Azure KeyVault of Storage Account Encryption, the id must in UserAssignIdentityId. + + System.String + + System.String + + + None + + + KeyVersion + + Storage Account encryption keySource KeyVault KeyVersion + + System.String + + System.String + + + None + + + Kind + + Specifies the kind of Storage account that this cmdlet creates. The acceptable values for this parameter are: - Storage. General purpose Storage account that supports storage of Blobs, Tables, Queues, Files and Disks. + - StorageV2. General Purpose Version 2 (GPv2) Storage account that supports Blobs, Tables, Queues, Files, and Disks, with advanced features like data tiering. + - BlobStorage. Blob Storage account which supports storage of Blobs only. + - BlockBlobStorage. Block Blob Storage account which supports storage of Block Blobs only. + - FileStorage. File Storage account which supports storage of Files only. + The default value is StorageV2. + + + Storage + StorageV2 + BlobStorage + BlockBlobStorage + FileStorage + + System.String + + System.String + + + StorageV2 + + + MinimumTlsVersion + + The minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property. + + + TLS1_0 + TLS1_1 + TLS1_2 + + System.String + + System.String + + + None + + + NetworkRuleSet + + NetworkRuleSet is used to define a set of configuration rules for firewalls and virtual networks, as well as to set values for network properties such as services allowed to bypass the rules and how to handle requests that don't match any of the defined rules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + + None + + + PublicNetworkAccess + + Allow or disallow public network access to Storage Account.Possible values include: 'Enabled', 'Disabled'. + + System.String + + System.String + + + None + + + PublishInternetEndpoint + + Indicates whether internet routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + PublishMicrosoftEndpoint + + Indicates whether microsoft routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + RequireInfrastructureEncryption + + The service will apply a secondary layer of encryption with platform managed keys for data at rest. + + + System.Management.Automation.SwitchParameter + + + False + + + RoutingChoice + + Routing Choice defines the kind of network routing opted by the user. Possible values include: 'MicrosoftRouting', 'InternetRouting' + + + MicrosoftRouting + InternetRouting + + System.String + + System.String + + + None + + + SasExpirationPeriod + + The SAS expiration period of this account, it is a timespan and accurate to seconds. + + System.TimeSpan + + System.TimeSpan + + + None + + + Tag + + Key-value pairs in the form of a hash table set as tags on the server. For example: @{key0="value0";key1=$null;key2="value2"} + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + UserAssignedIdentityId + + Set resource ids for the the new Storage Account user assigned Identity, the identity will be used with key management services like Azure KeyVault. + + System.String + + System.String + + + None + + + UseSubDomain + + Indicates whether to enable indirect CName validation. + + System.Nullable`1[System.Boolean] + + System.Nullable`1[System.Boolean] + + + None + + + + New-AzStorageAccount + + ResourceGroupName + + Specifies the name of the resource group in which to add the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account to create. + + System.String + + System.String + + + None + + + SkuName + + Specifies the SKU name of the Storage account that this cmdlet creates. The acceptable values for this parameter are: - Standard_LRS. Locally-redundant storage. + - Standard_ZRS. Zone-redundant storage. + - Standard_GRS. Geo-redundant storage. + - Standard_RAGRS. Read access geo-redundant storage. + - Premium_LRS. Premium locally-redundant storage. + - Premium_ZRS. Premium zone-redundant storage. + - Standard_GZRS - Geo-redundant zone-redundant storage. + - Standard_RAGZRS - Read access geo-redundant zone-redundant storage. + + + Standard_LRS + Standard_ZRS + Standard_GRS + Standard_RAGRS + Premium_LRS + Premium_ZRS + Standard_GZRS + Standard_RAGZRS + + System.String + + System.String + + + None + + + Location + + Specifies the location of the Storage account to create. + + System.String + + System.String + + + None + + + AccessTier + + Specifies the access tier of the Storage account that this cmdlet creates. The acceptable values for this parameter are: Hot and Cool. If you specify a value of BlobStorage for the Kind parameter, you must specify a value for the AccessTier parameter. If you specify a value of Storage for this Kind parameter, do not specify the AccessTier parameter. + + + Hot + Cool + + System.String + + System.String + + + None + + + ActiveDirectoryDomainGuid + + Specifies the domain GUID. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainName + + Specifies the primary domain that the AD DNS server is authoritative for. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + AllowBlobPublicAccess + + Allow public access to all blobs or containers in the storage account. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowCrossTenantReplication + + Gets or sets allow or disallow cross AAD tenant object replication. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowedCopyScope + + Set restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values include: 'PrivateLink', 'AAD' + + System.String + + System.String + + + None + + + AllowSharedKeyAccess + + Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true. + + System.Boolean + + System.Boolean + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + AssignIdentity + + Generate and assign a new Storage account Identity for this Storage account for use with key management services like Azure KeyVault. + + + System.Management.Automation.SwitchParameter + + + False + + + CustomDomainName + + Specifies the name of the custom domain of the Storage account. The default value is Storage. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSharePermission + + Default share permission for users using Kerberos authentication if RBAC role is not assigned. + + + None + StorageFileDataSmbShareContributor + StorageFileDataSmbShareReader + StorageFileDataSmbShareElevatedContributor + + System.String + + System.String + + + None + + + DnsEndpointType + + Specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier. Possible values include: 'Standard', 'AzureDnsZone'. + + System.String + + System.String + + + None + + + EdgeZone + + Set the extended location name for EdgeZone. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location + + System.String + + System.String + + + None + + + EnableAccountLevelImmutability + + Enables account-level immutability, then all the containers under this account will have object-level immutability enabled by default. + + + System.Management.Automation.SwitchParameter + + + False + + + EnableAzureActiveDirectoryKerberosForFile + + Enable Azure Files Active Directory Domain Service Kerberos Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableHierarchicalNamespace + + Indicates whether or not the Storage account enables Hierarchical Namespace. + + System.Boolean + + System.Boolean + + + None + + + EnableHttpsTrafficOnly + + Indicates whether or not the Storage account only enables HTTPS traffic. + + System.Boolean + + System.Boolean + + + None + + + EnableLargeFileShare + + Indicates whether or not the storage account can support large file shares with more than 5 TiB capacity. Once the account is enabled, the feature cannot be disabled. Currently only supported for LRS and ZRS replication types, hence account conversions to geo-redundant accounts would not be possible. Learn more in https://go.microsoft.com/fwlink/?linkid=2086047 + + + System.Management.Automation.SwitchParameter + + + False + + + EnableLocalUser + + Enable local users feature for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableNfsV3 + + Enable NFS 3.0 protocol support if sets to true + + System.Boolean + + System.Boolean + + + None + + + EnableSftp + + Enable Secure File Transfer Protocol for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EncryptionKeyTypeForQueue + + Set the Encryption KeyType for Queue. The default value is Service. -Account: Queue will be encrypted with account-scoped encryption key. -Service: Queue will always be encrypted with Service-Managed keys. + + + Service + Account + + System.String + + System.String + + + None + + + EncryptionKeyTypeForTable + + Set the Encryption KeyType for Table. The default value is Service. - Account: Table will be encrypted with account-scoped encryption key. + - Service: Table will always be encrypted with Service-Managed keys. + + + Service + Account + + System.String + + System.String + + + None + + + IdentityType + + Set the new Storage Account Identity type, the idenetity is for use with key management services like Azure KeyVault. + + + SystemAssigned + UserAssigned + SystemAssignedUserAssigned + None + + System.String + + System.String + + + None + + + ImmutabilityPeriod + + The immutability period for the blobs in the container since the policy creation in days. This property can only be only be specified with '-EnableAccountLevelImmutability'. + + System.Int32 + + System.Int32 + + + None + + + ImmutabilityPolicyState + + The mode of the policy. Possible values include: 'Unlocked', 'Disabled. Disabled state disablesthe policy. Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. This property can only be specified with '-EnableAccountLevelImmutability'. + + System.String + + System.String + + + None + + + KeyExpirationPeriodInDay + + The Key expiration period of this account, it is accurate to days. + + System.Int32 + + System.Int32 + + + None + + + KeyName + + Storage Account encryption keySource KeyVault KeyName + + System.String + + System.String + + + None + + + KeyVaultFederatedClientId + + Set ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account. + + System.String + + System.String + + + None + + + KeyVaultUri + + Storage Account encryption keySource KeyVault KeyVaultUri + + System.String + + System.String + + + None + + + KeyVaultUserAssignedIdentityId + + Set resource id for user assigned Identity used to access Azure KeyVault of Storage Account Encryption, the id must in UserAssignIdentityId. + + System.String + + System.String + + + None + + + KeyVersion + + Storage Account encryption keySource KeyVault KeyVersion + + System.String + + System.String + + + None + + + Kind + + Specifies the kind of Storage account that this cmdlet creates. The acceptable values for this parameter are: - Storage. General purpose Storage account that supports storage of Blobs, Tables, Queues, Files and Disks. + - StorageV2. General Purpose Version 2 (GPv2) Storage account that supports Blobs, Tables, Queues, Files, and Disks, with advanced features like data tiering. + - BlobStorage. Blob Storage account which supports storage of Blobs only. + - BlockBlobStorage. Block Blob Storage account which supports storage of Block Blobs only. + - FileStorage. File Storage account which supports storage of Files only. + The default value is StorageV2. + + + Storage + StorageV2 + BlobStorage + BlockBlobStorage + FileStorage + + System.String + + System.String + + + StorageV2 + + + MinimumTlsVersion + + The minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property. + + + TLS1_0 + TLS1_1 + TLS1_2 + + System.String + + System.String + + + None + + + NetworkRuleSet + + NetworkRuleSet is used to define a set of configuration rules for firewalls and virtual networks, as well as to set values for network properties such as services allowed to bypass the rules and how to handle requests that don't match any of the defined rules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + + None + + + PublicNetworkAccess + + Allow or disallow public network access to Storage Account.Possible values include: 'Enabled', 'Disabled'. + + System.String + + System.String + + + None + + + PublishInternetEndpoint + + Indicates whether internet routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + PublishMicrosoftEndpoint + + Indicates whether microsoft routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + RequireInfrastructureEncryption + + The service will apply a secondary layer of encryption with platform managed keys for data at rest. + + + System.Management.Automation.SwitchParameter + + + False + + + RoutingChoice + + Routing Choice defines the kind of network routing opted by the user. Possible values include: 'MicrosoftRouting', 'InternetRouting' + + + MicrosoftRouting + InternetRouting + + System.String + + System.String + + + None + + + SasExpirationPeriod + + The SAS expiration period of this account, it is a timespan and accurate to seconds. + + System.TimeSpan + + System.TimeSpan + + + None + + + Tag + + Key-value pairs in the form of a hash table set as tags on the server. For example: @{key0="value0";key1=$null;key2="value2"} + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + UserAssignedIdentityId + + Set resource ids for the the new Storage Account user assigned Identity, the identity will be used with key management services like Azure KeyVault. + + System.String + + System.String + + + None + + + UseSubDomain + + Indicates whether to enable indirect CName validation. + + System.Nullable`1[System.Boolean] + + System.Nullable`1[System.Boolean] + + + None + + + + New-AzStorageAccount + + ResourceGroupName + + Specifies the name of the resource group in which to add the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account to create. + + System.String + + System.String + + + None + + + SkuName + + Specifies the SKU name of the Storage account that this cmdlet creates. The acceptable values for this parameter are: - Standard_LRS. Locally-redundant storage. + - Standard_ZRS. Zone-redundant storage. + - Standard_GRS. Geo-redundant storage. + - Standard_RAGRS. Read access geo-redundant storage. + - Premium_LRS. Premium locally-redundant storage. + - Premium_ZRS. Premium zone-redundant storage. + - Standard_GZRS - Geo-redundant zone-redundant storage. + - Standard_RAGZRS - Read access geo-redundant zone-redundant storage. + + + Standard_LRS + Standard_ZRS + Standard_GRS + Standard_RAGRS + Premium_LRS + Premium_ZRS + Standard_GZRS + Standard_RAGZRS + + System.String + + System.String + + + None + + + Location + + Specifies the location of the Storage account to create. + + System.String + + System.String + + + None + + + AccessTier + + Specifies the access tier of the Storage account that this cmdlet creates. The acceptable values for this parameter are: Hot and Cool. If you specify a value of BlobStorage for the Kind parameter, you must specify a value for the AccessTier parameter. If you specify a value of Storage for this Kind parameter, do not specify the AccessTier parameter. + + + Hot + Cool + + System.String + + System.String + + + None + + + AllowBlobPublicAccess + + Allow public access to all blobs or containers in the storage account. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowCrossTenantReplication + + Gets or sets allow or disallow cross AAD tenant object replication. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowedCopyScope + + Set restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values include: 'PrivateLink', 'AAD' + + System.String + + System.String + + + None + + + AllowSharedKeyAccess + + Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true. + + System.Boolean + + System.Boolean + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + AssignIdentity + + Generate and assign a new Storage account Identity for this Storage account for use with key management services like Azure KeyVault. + + + System.Management.Automation.SwitchParameter + + + False + + + CustomDomainName + + Specifies the name of the custom domain of the Storage account. The default value is Storage. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSharePermission + + Default share permission for users using Kerberos authentication if RBAC role is not assigned. + + + None + StorageFileDataSmbShareContributor + StorageFileDataSmbShareReader + StorageFileDataSmbShareElevatedContributor + + System.String + + System.String + + + None + + + DnsEndpointType + + Specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier. Possible values include: 'Standard', 'AzureDnsZone'. + + System.String + + System.String + + + None + + + EdgeZone + + Set the extended location name for EdgeZone. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location + + System.String + + System.String + + + None + + + EnableAccountLevelImmutability + + Enables account-level immutability, then all the containers under this account will have object-level immutability enabled by default. + + + System.Management.Automation.SwitchParameter + + + False + + + EnableAzureActiveDirectoryDomainServicesForFile + + Enable Azure Files Azure Active Directory Domain Service Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableHierarchicalNamespace + + Indicates whether or not the Storage account enables Hierarchical Namespace. + + System.Boolean + + System.Boolean + + + None + + + EnableHttpsTrafficOnly + + Indicates whether or not the Storage account only enables HTTPS traffic. + + System.Boolean + + System.Boolean + + + None + + + EnableLargeFileShare + + Indicates whether or not the storage account can support large file shares with more than 5 TiB capacity. Once the account is enabled, the feature cannot be disabled. Currently only supported for LRS and ZRS replication types, hence account conversions to geo-redundant accounts would not be possible. Learn more in https://go.microsoft.com/fwlink/?linkid=2086047 + + + System.Management.Automation.SwitchParameter + + + False + + + EnableLocalUser + + Enable local users feature for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableNfsV3 + + Enable NFS 3.0 protocol support if sets to true + + System.Boolean + + System.Boolean + + + None + + + EnableSftp + + Enable Secure File Transfer Protocol for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EncryptionKeyTypeForQueue + + Set the Encryption KeyType for Queue. The default value is Service. -Account: Queue will be encrypted with account-scoped encryption key. -Service: Queue will always be encrypted with Service-Managed keys. + + + Service + Account + + System.String + + System.String + + + None + + + EncryptionKeyTypeForTable + + Set the Encryption KeyType for Table. The default value is Service. - Account: Table will be encrypted with account-scoped encryption key. + - Service: Table will always be encrypted with Service-Managed keys. + + + Service + Account + + System.String + + System.String + + + None + + + IdentityType + + Set the new Storage Account Identity type, the idenetity is for use with key management services like Azure KeyVault. + + + SystemAssigned + UserAssigned + SystemAssignedUserAssigned + None + + System.String + + System.String + + + None + + + ImmutabilityPeriod + + The immutability period for the blobs in the container since the policy creation in days. This property can only be only be specified with '-EnableAccountLevelImmutability'. + + System.Int32 + + System.Int32 + + + None + + + ImmutabilityPolicyState + + The mode of the policy. Possible values include: 'Unlocked', 'Disabled. Disabled state disablesthe policy. Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. This property can only be specified with '-EnableAccountLevelImmutability'. + + System.String + + System.String + + + None + + + KeyExpirationPeriodInDay + + The Key expiration period of this account, it is accurate to days. + + System.Int32 + + System.Int32 + + + None + + + KeyName + + Storage Account encryption keySource KeyVault KeyName + + System.String + + System.String + + + None + + + KeyVaultFederatedClientId + + Set ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account. + + System.String + + System.String + + + None + + + KeyVaultUri + + Storage Account encryption keySource KeyVault KeyVaultUri + + System.String + + System.String + + + None + + + KeyVaultUserAssignedIdentityId + + Set resource id for user assigned Identity used to access Azure KeyVault of Storage Account Encryption, the id must in UserAssignIdentityId. + + System.String + + System.String + + + None + + + KeyVersion + + Storage Account encryption keySource KeyVault KeyVersion + + System.String + + System.String + + + None + + + Kind + + Specifies the kind of Storage account that this cmdlet creates. The acceptable values for this parameter are: - Storage. General purpose Storage account that supports storage of Blobs, Tables, Queues, Files and Disks. + - StorageV2. General Purpose Version 2 (GPv2) Storage account that supports Blobs, Tables, Queues, Files, and Disks, with advanced features like data tiering. + - BlobStorage. Blob Storage account which supports storage of Blobs only. + - BlockBlobStorage. Block Blob Storage account which supports storage of Block Blobs only. + - FileStorage. File Storage account which supports storage of Files only. + The default value is StorageV2. + + + Storage + StorageV2 + BlobStorage + BlockBlobStorage + FileStorage + + System.String + + System.String + + + StorageV2 + + + MinimumTlsVersion + + The minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property. + + + TLS1_0 + TLS1_1 + TLS1_2 + + System.String + + System.String + + + None + + + NetworkRuleSet + + NetworkRuleSet is used to define a set of configuration rules for firewalls and virtual networks, as well as to set values for network properties such as services allowed to bypass the rules and how to handle requests that don't match any of the defined rules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + + None + + + PublicNetworkAccess + + Allow or disallow public network access to Storage Account.Possible values include: 'Enabled', 'Disabled'. + + System.String + + System.String + + + None + + + PublishInternetEndpoint + + Indicates whether internet routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + PublishMicrosoftEndpoint + + Indicates whether microsoft routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + RequireInfrastructureEncryption + + The service will apply a secondary layer of encryption with platform managed keys for data at rest. + + + System.Management.Automation.SwitchParameter + + + False + + + RoutingChoice + + Routing Choice defines the kind of network routing opted by the user. Possible values include: 'MicrosoftRouting', 'InternetRouting' + + + MicrosoftRouting + InternetRouting + + System.String + + System.String + + + None + + + SasExpirationPeriod + + The SAS expiration period of this account, it is a timespan and accurate to seconds. + + System.TimeSpan + + System.TimeSpan + + + None + + + Tag + + Key-value pairs in the form of a hash table set as tags on the server. For example: @{key0="value0";key1=$null;key2="value2"} + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + UserAssignedIdentityId + + Set resource ids for the the new Storage Account user assigned Identity, the identity will be used with key management services like Azure KeyVault. + + System.String + + System.String + + + None + + + UseSubDomain + + Indicates whether to enable indirect CName validation. + + System.Nullable`1[System.Boolean] + + System.Nullable`1[System.Boolean] + + + None + + + + + + AccessTier + + Specifies the access tier of the Storage account that this cmdlet creates. The acceptable values for this parameter are: Hot and Cool. If you specify a value of BlobStorage for the Kind parameter, you must specify a value for the AccessTier parameter. If you specify a value of Storage for this Kind parameter, do not specify the AccessTier parameter. + + System.String + + System.String + + + None + + + ActiveDirectoryAccountType + + Specifies the Active Directory account type for Azure Storage. Possible values include: 'User', 'Computer'. + + System.String + + System.String + + + None + + + ActiveDirectoryAzureStorageSid + + Specifies the security identifier (SID) for Azure Storage. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainGuid + + Specifies the domain GUID. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainName + + Specifies the primary domain that the AD DNS server is authoritative for. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainSid + + Specifies the security identifier (SID). This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryForestName + + Specifies the Active Directory forest to get. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryNetBiosDomainName + + Specifies the NetBIOS domain name. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectorySamAccountName + + Specifies the Active Directory SAMAccountName for Azure Storage. + + System.String + + System.String + + + None + + + AllowBlobPublicAccess + + Allow public access to all blobs or containers in the storage account. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowCrossTenantReplication + + Gets or sets allow or disallow cross AAD tenant object replication. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowedCopyScope + + Set restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values include: 'PrivateLink', 'AAD' + + System.String + + System.String + + + None + + + AllowSharedKeyAccess + + Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true. + + System.Boolean + + System.Boolean + + + None + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + AssignIdentity + + Generate and assign a new Storage account Identity for this Storage account for use with key management services like Azure KeyVault. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + CustomDomainName + + Specifies the name of the custom domain of the Storage account. The default value is Storage. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSharePermission + + Default share permission for users using Kerberos authentication if RBAC role is not assigned. + + System.String + + System.String + + + None + + + DnsEndpointType + + Specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier. Possible values include: 'Standard', 'AzureDnsZone'. + + System.String + + System.String + + + None + + + EdgeZone + + Set the extended location name for EdgeZone. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location + + System.String + + System.String + + + None + + + EnableAccountLevelImmutability + + Enables account-level immutability, then all the containers under this account will have object-level immutability enabled by default. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + EnableActiveDirectoryDomainServicesForFile + + Enable Azure Files Active Directory Domain Service Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableAzureActiveDirectoryDomainServicesForFile + + Enable Azure Files Azure Active Directory Domain Service Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableAzureActiveDirectoryKerberosForFile + + Enable Azure Files Active Directory Domain Service Kerberos Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableHierarchicalNamespace + + Indicates whether or not the Storage account enables Hierarchical Namespace. + + System.Boolean + + System.Boolean + + + None + + + EnableHttpsTrafficOnly + + Indicates whether or not the Storage account only enables HTTPS traffic. + + System.Boolean + + System.Boolean + + + None + + + EnableLargeFileShare + + Indicates whether or not the storage account can support large file shares with more than 5 TiB capacity. Once the account is enabled, the feature cannot be disabled. Currently only supported for LRS and ZRS replication types, hence account conversions to geo-redundant accounts would not be possible. Learn more in https://go.microsoft.com/fwlink/?linkid=2086047 + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + EnableLocalUser + + Enable local users feature for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableNfsV3 + + Enable NFS 3.0 protocol support if sets to true + + System.Boolean + + System.Boolean + + + None + + + EnableSftp + + Enable Secure File Transfer Protocol for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EncryptionKeyTypeForQueue + + Set the Encryption KeyType for Queue. The default value is Service. -Account: Queue will be encrypted with account-scoped encryption key. -Service: Queue will always be encrypted with Service-Managed keys. + + System.String + + System.String + + + None + + + EncryptionKeyTypeForTable + + Set the Encryption KeyType for Table. The default value is Service. - Account: Table will be encrypted with account-scoped encryption key. + - Service: Table will always be encrypted with Service-Managed keys. + + System.String + + System.String + + + None + + + IdentityType + + Set the new Storage Account Identity type, the idenetity is for use with key management services like Azure KeyVault. + + System.String + + System.String + + + None + + + ImmutabilityPeriod + + The immutability period for the blobs in the container since the policy creation in days. This property can only be only be specified with '-EnableAccountLevelImmutability'. + + System.Int32 + + System.Int32 + + + None + + + ImmutabilityPolicyState + + The mode of the policy. Possible values include: 'Unlocked', 'Disabled. Disabled state disablesthe policy. Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. This property can only be specified with '-EnableAccountLevelImmutability'. + + System.String + + System.String + + + None + + + KeyExpirationPeriodInDay + + The Key expiration period of this account, it is accurate to days. + + System.Int32 + + System.Int32 + + + None + + + KeyName + + Storage Account encryption keySource KeyVault KeyName + + System.String + + System.String + + + None + + + KeyVaultFederatedClientId + + Set ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account. + + System.String + + System.String + + + None + + + KeyVaultUri + + Storage Account encryption keySource KeyVault KeyVaultUri + + System.String + + System.String + + + None + + + KeyVaultUserAssignedIdentityId + + Set resource id for user assigned Identity used to access Azure KeyVault of Storage Account Encryption, the id must in UserAssignIdentityId. + + System.String + + System.String + + + None + + + KeyVersion + + Storage Account encryption keySource KeyVault KeyVersion + + System.String + + System.String + + + None + + + Kind + + Specifies the kind of Storage account that this cmdlet creates. The acceptable values for this parameter are: - Storage. General purpose Storage account that supports storage of Blobs, Tables, Queues, Files and Disks. + - StorageV2. General Purpose Version 2 (GPv2) Storage account that supports Blobs, Tables, Queues, Files, and Disks, with advanced features like data tiering. + - BlobStorage. Blob Storage account which supports storage of Blobs only. + - BlockBlobStorage. Block Blob Storage account which supports storage of Block Blobs only. + - FileStorage. File Storage account which supports storage of Files only. + The default value is StorageV2. + + System.String + + System.String + + + StorageV2 + + + Location + + Specifies the location of the Storage account to create. + + System.String + + System.String + + + None + + + MinimumTlsVersion + + The minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account to create. + + System.String + + System.String + + + None + + + NetworkRuleSet + + NetworkRuleSet is used to define a set of configuration rules for firewalls and virtual networks, as well as to set values for network properties such as services allowed to bypass the rules and how to handle requests that don't match any of the defined rules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + + None + + + PublicNetworkAccess + + Allow or disallow public network access to Storage Account.Possible values include: 'Enabled', 'Disabled'. + + System.String + + System.String + + + None + + + PublishInternetEndpoint + + Indicates whether internet routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + PublishMicrosoftEndpoint + + Indicates whether microsoft routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + RequireInfrastructureEncryption + + The service will apply a secondary layer of encryption with platform managed keys for data at rest. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Specifies the name of the resource group in which to add the Storage account. + + System.String + + System.String + + + None + + + RoutingChoice + + Routing Choice defines the kind of network routing opted by the user. Possible values include: 'MicrosoftRouting', 'InternetRouting' + + System.String + + System.String + + + None + + + SasExpirationPeriod + + The SAS expiration period of this account, it is a timespan and accurate to seconds. + + System.TimeSpan + + System.TimeSpan + + + None + + + SkuName + + Specifies the SKU name of the Storage account that this cmdlet creates. The acceptable values for this parameter are: - Standard_LRS. Locally-redundant storage. + - Standard_ZRS. Zone-redundant storage. + - Standard_GRS. Geo-redundant storage. + - Standard_RAGRS. Read access geo-redundant storage. + - Premium_LRS. Premium locally-redundant storage. + - Premium_ZRS. Premium zone-redundant storage. + - Standard_GZRS - Geo-redundant zone-redundant storage. + - Standard_RAGZRS - Read access geo-redundant zone-redundant storage. + + System.String + + System.String + + + None + + + Tag + + Key-value pairs in the form of a hash table set as tags on the server. For example: @{key0="value0";key1=$null;key2="value2"} + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + UserAssignedIdentityId + + Set resource ids for the the new Storage Account user assigned Identity, the identity will be used with key management services like Azure KeyVault. + + System.String + + System.String + + + None + + + UseSubDomain + + Indicates whether to enable indirect CName validation. + + System.Nullable`1[System.Boolean] + + System.Nullable`1[System.Boolean] + + + None + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + + + + + ------------- Example 1: Create a Storage account ------------- + New-AzStorageAccount -ResourceGroupName MyResourceGroup -Name mystorageaccount -Location westus -SkuName Standard_GRS + + This command creates a Storage account for the resource group name MyResourceGroup. + + + + + + Example 2: Create a Blob Storage account with BlobStorage Kind and hot AccessTier + New-AzStorageAccount -ResourceGroupName MyResourceGroup -Name mystorageaccount -Location westus -SkuName Standard_GRS -Kind BlobStorage -AccessTier Hot + + This command creates a Blob Storage account that with BlobStorage Kind and hot AccessTier + + + + + + Example 3: Create a Storage account with Kind StorageV2, and Generate and Assign an Identity for Azure KeyVault. + New-AzStorageAccount -ResourceGroupName MyResourceGroup -Name mystorageaccount -Location westus -SkuName Standard_GRS -Kind StorageV2 -AssignIdentity + + This command creates a Storage account with Kind StorageV2. It also generates and assigns an identity that can be used to manage account keys through Azure KeyVault. + + + + + + Example 4: Create a Storage account with NetworkRuleSet from JSON + New-AzStorageAccount -ResourceGroupName MyResourceGroup -Name mystorageaccount -Location westus -Type Standard_LRS -NetworkRuleSet (@{bypass="Logging,Metrics"; + ipRules=(@{IPAddressOrRange="20.11.0.0/16";Action="allow"}, + @{IPAddressOrRange="10.0.0.0/7";Action="allow"}); + virtualNetworkRules=(@{VirtualNetworkResourceId="/subscriptions/s1/resourceGroups/g1/providers/Microsoft.Network/virtualNetworks/vnet1/subnets/subnet1";Action="allow"}, + @{VirtualNetworkResourceId="/subscriptions/s1/resourceGroups/g1/providers/Microsoft.Network/virtualNetworks/vnet2/subnets/subnet2";Action="allow"}); + defaultAction="Deny"}) + + This command creates a Storage account that has NetworkRuleSet property from JSON + + + + + + Example 5: Create a Storage account with Hierarchical Namespace enabled, Sftp enabled, and localuser enabled. + New-AzStorageAccount -ResourceGroupName "MyResourceGroup" -AccountName "mystorageaccount" -Location "US West" -SkuName "Standard_GRS" -Kind StorageV2 -EnableHierarchicalNamespace $true -EnableSftp $true -EnableLocalUser $true + + This command creates a Storage account with Hierarchical Namespace enabled, Sftp enabled, and localuser enabled. + + + + + + Example 6: Create a Storage account with Azure Files AAD DS Authentication, and enable large file share. + New-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -Location "eastus2euap" -SkuName "Standard_LRS" -Kind StorageV2 -EnableAzureActiveDirectoryDomainServicesForFile $true -EnableLargeFileShare + + This command creates a Storage account with Azure Files AAD DS Authentication, and enable large file share. + + + + + + Example 7: Create a Storage account with enable Files Active Directory Domain Service Authentication and DefaultSharePermission. + New-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -Location "eastus2euap" -SkuName "Standard_LRS" -Kind StorageV2 -EnableActiveDirectoryDomainServicesForFile $true ` + -ActiveDirectoryDomainName "mydomain.com" ` + -ActiveDirectoryNetBiosDomainName "mydomain.com" ` + -ActiveDirectoryForestName "mydomain.com" ` + -ActiveDirectoryDomainGuid "12345678-1234-1234-1234-123456789012" ` + -ActiveDirectoryDomainSid "S-1-5-21-1234567890-1234567890-1234567890" ` + -ActiveDirectoryAzureStorageSid "S-1-5-21-1234567890-1234567890-1234567890-1234" ` + -ActiveDirectorySamAccountName "samaccountname" ` + -ActiveDirectoryAccountType User ` + -DefaultSharePermission StorageFileDataSmbShareElevatedContributor + + This command creates a Storage account withenable Files Active Directory Domain Service Authentication and DefaultSharePermission. + + + + + + Example 8: Create a Storage account with Queue and Table Service use account-scoped encryption key, and Require Infrastructure Encryption. + PS C:\>New-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -Location "eastus2euap" -SkuName "Standard_LRS" -Kind StorageV2 -EncryptionKeyTypeForTable Account -EncryptionKeyTypeForQueue Account -RequireInfrastructureEncryption + +PS C:\>$account = Get-AzStorageAccount -ResourceGroupName $rgname -Name $accountName + +PS C:\>$account.Encryption.Services.Queue + +Enabled LastEnabledTime KeyType +------- --------------- ------- + True 1/9/2020 6:09:11 AM Account + +PS C:\>$account.Encryption.Services.Table + +Enabled LastEnabledTime KeyType +------- --------------- ------- + True 1/9/2020 6:09:11 AM Account + +PS C:\> $account.Encryption.RequireInfrastructureEncryption +True + + This command creates a Storage account with Queue and Table Service use account-scoped encryption key and Require Infrastructure Encryption, so Queue and Table will use same encryption key with Blob and File service, and the service will apply a secondary layer of encryption with platform managed keys for data at rest. Then get the Storage account properties, and view the encryption keytype of Queue and Table Service, and RequireInfrastructureEncryption value. + + + + + + Example 9: Create account MinimumTlsVersion and AllowBlobPublicAccess, and disable SharedKey Access + PS C:\> $account = New-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -Location "eastus2euap" -SkuName "Standard_LRS" -Kind StorageV2 -MinimumTlsVersion TLS1_1 -AllowBlobPublicAccess $false -AllowSharedKeyAccess $false + +PS C:\> $account.MinimumTlsVersion +TLS1_1 + +PS C:\> $account.AllowBlobPublicAccess +False + +PS C:\> $a.AllowSharedKeyAccess +False + + The command create account with MinimumTlsVersion, AllowBlobPublicAccess, and disable SharedKey access to the account, and then show the the 3 properties of the created account + + + + + + Example 10: Create a Storage account with RoutingPreference setting + PS C:\>$account = New-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -Location "eastus2euap" -SkuName "Standard_LRS" -PublishMicrosoftEndpoint $true -PublishInternetEndpoint $true -RoutingChoice MicrosoftRouting + +PS C:\>$account.RoutingPreference + +RoutingChoice PublishMicrosoftEndpoints PublishInternetEndpoints +------------- ------------------------- ------------------------ +MicrosoftRouting True True + +PS C:\>$account.PrimaryEndpoints + +Blob : https://mystorageaccount.blob.core.windows.net/ +Queue : https://mystorageaccount.queue.core.windows.net/ +Table : https://mystorageaccount.table.core.windows.net/ +File : https://mystorageaccount.file.core.windows.net/ +Web : https://mystorageaccount.z2.web.core.windows.net/ +Dfs : https://mystorageaccount.dfs.core.windows.net/ +MicrosoftEndpoints : {"Blob":"https://mystorageaccount-microsoftrouting.blob.core.windows.net/","Queue":"https://mystorageaccount-microsoftrouting.queue.core.windows.net/","Table":"https://mystorageaccount-microsoftrouting.table.core.windows.net/","File":"ht + tps://mystorageaccount-microsoftrouting.file.core.windows.net/","Web":"https://mystorageaccount-microsoftrouting.z2.web.core.windows.net/","Dfs":"https://mystorageaccount-microsoftrouting.dfs.core.windows.net/"} +InternetEndpoints : {"Blob":"https://mystorageaccount-internetrouting.blob.core.windows.net/","File":"https://mystorageaccount-internetrouting.file.core.windows.net/","Web":"https://mystorageaccount-internetrouting.z2.web.core.windows.net/","Dfs":"https://w + eirp3-internetrouting.dfs.core.windows.net/"} + + This command creates a Storage account with RoutingPreference setting: PublishMicrosoftEndpoint and PublishInternetEndpoint as true, and RoutingChoice as MicrosoftRouting. + + + + + + Example 11: Create a Storage account with EdgeZone and AllowCrossTenantReplication + PS C:\>$account = New-AzStorageAccount -ResourceGroupName "myresourcegroup" -Name "mystorageaccount" -SkuName Premium_LRS -Location westus -EdgeZone "microsoftlosangeles1" -AllowCrossTenantReplication $false + +PS C:\>$account.ExtendedLocation + +Name Type +---- ---- +microsoftlosangeles1 EdgeZone + +PS C:\> $account.AllowCrossTenantReplication +False + + This command creates a Storage account with EdgeZone as "microsoftlosangeles1" and AllowCrossTenantReplication as false, then show the created account related properties. + + + + + + Example 12: Create a Storage account with KeyExpirationPeriod and SasExpirationPeriod + PS C:\> $account = New-AzStorageAccount -ResourceGroupName "myresourcegroup" -Name "mystorageaccount" -SkuName Premium_LRS -Location eastus -KeyExpirationPeriodInDay 5 -SasExpirationPeriod "1.12:05:06" + +PS C:\> $account.KeyPolicy.KeyExpirationPeriodInDays +5 + +PS C:\> $account.SasPolicy.SasExpirationPeriod +1.12:05:06 + + This command creates a Storage account with KeyExpirationPeriod and SasExpirationPeriod, then show the created account related properties. + + + + + + Example 12: Create a Storage account with Keyvault encryption (access Keyvault with user assigned identity) + # Create KeyVault (no need if using exist keyvault) +PS C:\> $keyVault = New-AzKeyVault -VaultName $keyvaultName -ResourceGroupName $resourceGroupName -Location eastus2euap -EnablePurgeProtection +PS C:\> $key = Add-AzKeyVaultKey -VaultName $keyvaultName -Name $keyname -Destination 'Software' + +# create user assigned identity and grant access to keyvault (no need if using exist user assigned identity) +PS C:\> $userId = New-AzUserAssignedIdentity -ResourceGroupName $resourceGroupName -Name $userIdName +PS C:\> Set-AzKeyVaultAccessPolicy -VaultName $keyvaultName -ResourceGroupName $resourceGroupName -ObjectId $userId.PrincipalId -PermissionsToKeys get,wrapkey,unwrapkey -BypassObjectIdValidation +PS C:\> $useridentityId= $userId.Id + +# create Storage account with Keyvault encryption (access Keyvault with user assigned identity), then show properties +PS C:\> $account = New-AzStorageAccount -ResourceGroupName $resourceGroupName -Name $storageAccountName -Kind StorageV2 -SkuName Standard_LRS -Location eastus2euap ` + -IdentityType SystemAssignedUserAssigned -UserAssignedIdentityId $useridentityId ` + -KeyVaultUri $keyVault.VaultUri -KeyName $keyname -KeyVaultUserAssignedIdentityId $useridentityId + +PS C:\> $account.Encryption.EncryptionIdentity + +EncryptionUserAssignedIdentity +------------------------------ +/subscriptions/{subscription-id}/resourceGroups/myresourcegroup/providers/Microsoft.ManagedIdentity/userAssignedIdentities/myuserid + +PS C:\> $account.Encryption.KeyVaultProperties + +KeyName : wrappingKey +KeyVersion : +KeyVaultUri : https://mykeyvault.vault.azure.net:443 +CurrentVersionedKeyIdentifier : https://mykeyvault.vault.azure.net/keys/wrappingKey/8e74036e0d534e58b3bd84b319e31d8f +LastKeyRotationTimestamp : 4/12/2021 8:17:57 AM + + This command first create a keyvault and a user assigned identity, then create a storage account with keyvault encryption (the storage access access keyvault with the user assigned identity). + + + + + + --------- Example 13: Create account with EnableNfsV3 --------- + $account = New-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -SkuName Standard_LRS -Location centraluseuap -Kind StorageV2 -EnableNfsV3 $true -EnableHierarchicalNamespace $true -EnableHttpsTrafficOnly $false -NetworkRuleSet (@{bypass="Logging,Metrics"; + virtualNetworkRules=(@{VirtualNetworkResourceId="$vnet1";Action="allow"}); + defaultAction="deny"}) +$account.EnableNfsV3 + +True + + The command create account with EnableNfsV3 as true, and then show the EnableNfsV3 property of the created account + + + + + + - Example 14: Create account with disable PublicNetworkAccess - + $account = New-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -SkuName Standard_LRS -Location centraluseuap -Kind StorageV2 -PublicNetworkAccess Disabled + +$account.PublicNetworkAccess + +Disabled + + The command creates account with disable PublicNetworkAccess of the account. + + + + + + Example 15: Create account with account level mmutability policy + PS C:\> $account = New-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -SkuName Standard_LRS -Location centraluseuap -Kind StorageV2 -EnableAccountLevelImmutability -ImmutabilityPeriod 1 -ImmutabilityPolicyState Unlocked + +PS C:\> $account.ImmutableStorageWithVersioning.Enabled +True + +PS C:\> $account.ImmutableStorageWithVersioning.ImmutabilityPolicy + +ImmutabilityPeriodSinceCreationInDays State +------------------------------------- ----- + 1 Unlocked + + The command creates an account and enable account level immutability with versioning by '-EnableAccountLevelImmutability', then all the containers under this account will have object-level immutability enabled by default. The account is also created with a default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. + + + + + + Example 16: Create a Storage account with enable Azure Files Active Directory Domain Service Kerberos Authentication. + New-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -Location "eastus2euap" -SkuName "Standard_LRS" -Kind StorageV2 -EnableAzureActiveDirectoryKerberosForFile $true ` + -ActiveDirectoryDomainName "mydomain.com" ` + -ActiveDirectoryDomainGuid "12345678-1234-1234-1234-123456789012" + + This command creates a Storage account with enable Azure Files Active Directory Domain Service Kerberos Authentication. + + + + + + Example 17: Create a Storage account with Keyvault from another tenant (access Keyvault with FederatedClientId) + # create Storage account with Keyvault encryption (access Keyvault with FederatedClientId), then show properties +PS C:\> $account = New-AzStorageAccount -ResourceGroupName $resourceGroupName -Name $storageAccountName -Kind StorageV2 -SkuName Standard_LRS -Location eastus2euap ` + -IdentityType SystemAssignedUserAssigned -UserAssignedIdentityId $useridentityId ` + -KeyVaultUri $keyVault.VaultUri -KeyName $keyname -KeyVaultUserAssignedIdentityId $useridentityId -KeyVaultFederatedClientId $federatedClientId + +PS C:\> $account.Encryption.EncryptionIdentity + +EncryptionUserAssignedIdentity EncryptionFederatedIdentityClientId +------------------------------ ----------------------------------- +/subscriptions/{subscription-id}/resourceGroups/myresourcegroup/providers/Microsoft.ManagedIdentity/userAssignedIdentities/myuserid ********-****-****-****-************ + +PS C:\> $account.Encryption.KeyVaultProperties + +KeyName : wrappingKey +KeyVersion : +KeyVaultUri : https://mykeyvault.vault.azure.net:443 +CurrentVersionedKeyIdentifier : https://mykeyvault.vault.azure.net/keys/wrappingKey/8e74036e0d534e58b3bd84b319e31d8f +LastKeyRotationTimestamp : 3/3/2022 2:07:34 AM + + This command creates a storage account with Keyvault from another tenant (access Keyvault with FederatedClientId). + + + + + + Example 18: Create account with DnsEndpointType as AzureDnsZone + New-AzStorageAccount -ResourceGroupName "MyResourceGroup" -AccountName "mystorageaccount" -SkuName Standard_LRS -Location centraluseuap -Kind StorageV2 -DnsEndpointType AzureDnsZone + + The command creates a storage account with DnsEndpointType as AzureDnsZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstorageaccount + + + Get-AzStorageAccount + + + + Remove-AzStorageAccount + + + + Set-AzStorageAccount + + + + + + + New-AzStorageAccountKey + New + AzStorageAccountKey + + Regenerates a storage key for an Azure Storage account. + + + + The New-AzStorageAccountKey cmdlet regenerates a storage key for an Azure Storage account. + + + + New-AzStorageAccountKey + + ResourceGroupName + + Specifies the name of the resource group that contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account for which to regenerate a storage key. + + System.String + + System.String + + + None + + + KeyName + + Specifies which key to regenerate. The acceptable values for this parameter are: - key1 + - key2 + - kerb1 + - kerb2 + + + key1 + key2 + kerb1 + kerb2 + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + KeyName + + Specifies which key to regenerate. The acceptable values for this parameter are: - key1 + - key2 + - kerb1 + - kerb2 + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account for which to regenerate a storage key. + + System.String + + System.String + + + None + + + ResourceGroupName + + Specifies the name of the resource group that contains the Storage account. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Management.Storage.Models.StorageAccountListKeysResult + + + + + + + + + + + + + + ------------- Example 1: Regenerate a storage key ------------- + New-AzStorageAccountKey -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -KeyName "key1" + + This command regenerates a storage key for the specified Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstorageaccountkey + + + Get-AzStorageAccountKey + + + + + + + New-AzStorageAccountManagementPolicyBlobIndexMatchObject + New + AzStorageAccountManagementPolicyBlobIndexMatchObject + + Creates a ManagementPolicy BlobIndexMatch object, which can be used in New-AzStorageAccountManagementPolicyFilter. + + + + The New-AzStorageAccountManagementPolicyBlobIndexMatchObject cmdlet creates a ManagementPolicy BlobIndexMatch object, which can be used in New-AzStorageAccountManagementPolicyFilter. + + + + New-AzStorageAccountManagementPolicyBlobIndexMatchObject + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Gets or sets this is the filter tag name, it can have 1 - 128 characters + + System.String + + System.String + + + None + + + Value + + Gets or sets this is the filter tag value field used for tag based filtering, it can have 0 - 256 characters. + + System.String + + System.String + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Gets or sets this is the filter tag name, it can have 1 - 128 characters + + System.String + + System.String + + + None + + + Value + + Gets or sets this is the filter tag value field used for tag based filtering, it can have 0 - 256 characters. + + System.String + + System.String + + + None + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSTagFilter + + + + + + + + + + + + + + Example 1: Creates 2 ManagementPolicy BlobIndexMatch object3, then add them to a management policy rule filter + PS C:\> $blobindexmatch1 = New-AzStorageAccountManagementPolicyBlobIndexMatchObject -Name "tag1" -Value "value1" +PS C:\> $blobindexmatch1 + +Name Op Value +---- -- ----- +tag1 == value1 + +PS C:\> $blobindexmatch2 = New-AzStorageAccountManagementPolicyBlobIndexMatchObject -Name "tag2" -Value "value2" + +PS C:\> New-AzStorageAccountManagementPolicyFilter -PrefixMatch prefix1,prefix2 -BlobType blockBlob ` + -BlobIndexMatch $blobindexmatch1,$blobindexmatch2 + +PrefixMatch BlobTypes BlobIndexMatch +----------- --------- -------------- +{prefix1, prefix2} {blockBlob} {tag1, tag2} + + This command creates 2 ManagementPolicy BlobIndexMatch objects, then add themto a management policy rule filter. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/Az.storage/new-Azstorageaccountmanagementpolicyblobindexmatchobject + + + + + + New-AzStorageAccountManagementPolicyFilter + New + AzStorageAccountManagementPolicyFilter + + Creates a ManagementPolicy rule filter object, which can be used in New-AzStorageAccountManagementPolicyRule. + + + + The New-AzStorageAccountManagementPolicyFilter cmdlet creates a ManagementPolicy rule filter object, which can be used in New-AzStorageAccountManagementPolicyRule. + + + + New-AzStorageAccountManagementPolicyFilter + + BlobIndexMatch + + An array of blob index tag based filters, there can be at most 10 tag filters. + + Microsoft.Azure.Commands.Management.Storage.Models.PSTagFilter[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSTagFilter[] + + + None + + + BlobType + + An array of strings for blobtypes to be match. Currently blockBlob supports all tiering and delete actions. Only delete actions are supported for appendBlob. + + + blockBlob + appendBlob + + System.String[] + + System.String[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PrefixMatch + + An array of strings for prefixes to be match. A prefix string must start with a container name. + + System.String[] + + System.String[] + + + None + + + + + + BlobIndexMatch + + An array of blob index tag based filters, there can be at most 10 tag filters. + + Microsoft.Azure.Commands.Management.Storage.Models.PSTagFilter[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSTagFilter[] + + + None + + + BlobType + + An array of strings for blobtypes to be match. Currently blockBlob supports all tiering and delete actions. Only delete actions are supported for appendBlob. + + System.String[] + + System.String[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PrefixMatch + + An array of strings for prefixes to be match. A prefix string must start with a container name. + + System.String[] + + System.String[] + + + None + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyRuleFilter + + + + + + + + + + + + + + Example 1: Creates a ManagementPolicy rule filter object, then add it to a management policy rule and set to a Storage account + PS C:\>$blobindexmatch1 = New-AzStorageAccountManagementPolicyBlobIndexMatchObject -Name "tag1" -Value "value1" +PS C:\>$blobindexmatch2 = New-AzStorageAccountManagementPolicyBlobIndexMatchObject -Name "tag2" -Value "value2" +PS C:\>$filter = New-AzStorageAccountManagementPolicyFilter -PrefixMatch blobprefix1,blobprefix2 -BlobType appendBlob,blockBlob -BlobIndexMatch $blobindexmatch1,$blobindexmatch2 +PS C:\>$filter + +PrefixMatch BlobTypes BlobIndexMatch +----------- --------- -------------- +{blobprefix1, blobprefix2} {appendBlob, blockBlob} {tag1, tag2} + +PS C:\>$action = Add-AzStorageAccountManagementPolicyAction -BaseBlobAction Delete -daysAfterModificationGreaterThan 100 +PS C:\>$rule = New-AzStorageAccountManagementPolicyRule -Name Test -Action $action -Filter $filter +PS C:\>$policy = Set-AzStorageAccountManagementPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -Rule $rule + + This command create a ManagementPolicy rule filter object. Then add it to a management policy rule and set to a Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/Az.storage/new-Azstorageaccountmanagementpolicyfilter + + + + + + New-AzStorageAccountManagementPolicyRule + New + AzStorageAccountManagementPolicyRule + + Creates a ManagementPolicy rule object, which can be used in Set-AzStorageAccountManagementPolicy. + + + + The New-AzStorageAccountManagementPolicyRule cmdlet creates a ManagementPolicy rule object, which can be used in Set-AzStorageAccountManagementPolicy. + + + + New-AzStorageAccountManagementPolicyRule + + Name + + A rule name can contain any combination of alpha numeric characters. Rule name is case-sensitive. It must be unique within a policy. + + System.String + + System.String + + + None + + + Action + + An object that defines the action set. Get the Object with cmdlet Add-AzureStorageAccountManagementPolicyAction + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Disabled + + The rule is disabled if set it. + + + System.Management.Automation.SwitchParameter + + + False + + + Filter + + An object that defines the filter set. Get the Object with cmdlet New-AzureStorageAccountManagementPolicyFilter + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyRuleFilter + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyRuleFilter + + + None + + + + + + Action + + An object that defines the action set. Get the Object with cmdlet Add-AzureStorageAccountManagementPolicyAction + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Disabled + + The rule is disabled if set it. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Filter + + An object that defines the filter set. Get the Object with cmdlet New-AzureStorageAccountManagementPolicyFilter + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyRuleFilter + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyRuleFilter + + + None + + + Name + + A rule name can contain any combination of alpha numeric characters. Rule name is case-sensitive. It must be unique within a policy. + + System.String + + System.String + + + None + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyRule + + + + + + + + + + + + + + Example 1: Creates a ManagementPolicy rule object, then set to a Storage Account + PS C:\>$action = Add-AzStorageAccountManagementPolicyAction -BaseBlobAction Delete -daysAfterModificationGreaterThan 100 +PS C:\>$action = Add-AzStorageAccountManagementPolicyAction -BaseBlobAction TierToArchive -daysAfterModificationGreaterThan 50 -InputObject $action +PS C:\>$action = Add-AzStorageAccountManagementPolicyAction -BaseBlobAction TierToCool -daysAfterModificationGreaterThan 30 -InputObject $action +PS C:\>$action = Add-AzStorageAccountManagementPolicyAction -SnapshotAction Delete -daysAfterCreationGreaterThan 100 -InputObject $action + +PS C:\>$filter = New-AzStorageAccountManagementPolicyFilter -PrefixMatch blobprefix1,blobprefix2 + +PS C:\>$rule = New-AzStorageAccountManagementPolicyRule -Name rule1 -Action $action -Filter $filter +PS C:\>$rule + +Enabled : True +Name : rule1 +Definition : { + "Actions": { + "BaseBlob": { + "TierToCool": { + "DaysAfterModificationGreaterThan": 30 + }, + "TierToArchive": { + "DaysAfterModificationGreaterThan": 50 + }, + "Delete": { + "DaysAfterModificationGreaterThan": 100 + } + }, + "Snapshot": { + "Delete": { + "DaysAfterCreationGreaterThan": 100 + } + } + }, + "Filters": { + "PrefixMatch": [ + "blobprefix1", + "blobprefix2" + ], + "BlobTypes": [ + "blockBlob" + ] + } + } + +PS C:\>$policy = Set-AzStorageAccountManagementPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -Rule $rule + + This command create a ManagementPolicy rule object, with a ManagementPolicy action group object contains 4 actions, a ManagementPolicy rule filter object, then set the rule to a Storage Account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/Az.storage/new-Azstorageaccountmanagementpolicyrule + + + + + + New-AzStorageBlobInventoryPolicyRule + New + AzStorageBlobInventoryPolicyRule + + Creates a blob inventory policy rule object, which can be used in Set-AzStorageBlobInventoryPolicy. + + + + The New-AzStorageBlobInventoryPolicyRule cmdlet creates a blob inventory policy rule object, which can be used in Set-AzStorageBlobInventoryPolicy. + + + + New-AzStorageBlobInventoryPolicyRule + + Name + + A rule name can contain any combination of alpha numeric characters. Rule name is case-sensitive. It must be unique within a policy. + + System.String + + System.String + + + None + + + BlobSchemaField + + Specifies the fields and properties of the Blob object to be included in the inventory. Valid values include: Name, Creation-Time, Last-Modified, Content-Length, Content-MD5, BlobType, AccessTier, AccessTierChangeTime, Expiry-Time, hdi_isfolder, Owner, Group, Permissions, Acl, Metadata, LastAccessTime, AccessTierInferred, Tags. 'Name' is a required schemafield. Schema field values 'Expiry-Time, hdi_isfolder, Owner, Group, Permissions, Acl' are valid only for HierarchicalNamespace enabled accounts.'Tags' field is only valid for non HierarchicalNamespace accounts. If specify '-IncludeSnapshot', will include 'Snapshot' in the inventory. If specify '-IncludeBlobVersion', will include 'VersionId, 'IsCurrentVersion' in the inventory. + + + Name + Creation-Time + Last-Modified + Content-Length + Content-MD5 + BlobType + AccessTier + AccessTierChangeTime + Expiry-Time + hdi_isfolder + Owner + Group + Permissions + Acl + Metadata + LastAccessTime + AccessTierInferred + Tags + Etag + Content-Type + Content-Encoding + Content-Language + Content-CRC64 + Cache-Control + Content-Disposition + LeaseStatus + LeaseState + LeaseDuration + ServerEncrypted + Deleted + RemainingRetentionDays + ImmutabilityPolicyUntilDate + ImmutabilityPolicyMode + LegalHold + CopyId + CopyStatus + CopySource + CopyProgress + CopyCompletionTime + CopyStatusDescription + CustomerProvidedKeySha256 + RehydratePriority + ArchiveStatus + x-ms-blob-sequence-number + EncryptionScope + IncrementalCopy + DeletionId + DeletedTime + TagCount + + System.String[] + + System.String[] + + + None + + + BlobType + + Sets the blob types for the blob inventory policy rule. Valid values include blockBlob, appendBlob, pageBlob. Hns accounts does not support pageBlobs. + + + blockBlob + pageBlob + appendBlob + + System.String[] + + System.String[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Destination + + The container name where blob inventory files are stored. Must be pre-created. + + System.String + + System.String + + + None + + + Disabled + + The rule is disabled if set it. + + + System.Management.Automation.SwitchParameter + + + False + + + ExcludePrefix + + Sets an array of strings with maximum 10 blob prefixes to be excluded from the inventory. + + System.String[] + + System.String[] + + + None + + + Format + + Specifies the format for the inventory files. Possible values include: 'Csv', 'Parquet' + + + Csv + Parquet + + System.String + + System.String + + + None + + + IncludeBlobVersion + + The rule is disabled if set it. + + + System.Management.Automation.SwitchParameter + + + False + + + IncludeDeleted + + Includes deleted blob in blob inventory. When include delete blob, for ContainerSchemaFields, must include 'Deleted, Version, DeletedTime and RemainingRetentionDays'. For BlobSchemaFields, on HNS enabled storage accounts, must include 'DeletionId, Deleted, DeletedTime and RemainingRetentionDays', and on Hns disabled accounts must include 'Deleted and RemainingRetentionDays', else they must be excluded. + + + System.Management.Automation.SwitchParameter + + + False + + + IncludeSnapshot + + The rule is disabled if set it. + + + System.Management.Automation.SwitchParameter + + + False + + + PrefixMatch + + Sets an array of strings for blob prefixes to be matched.. + + System.String[] + + System.String[] + + + None + + + Schedule + + This field is used to schedule an inventory formation. Possible values include: 'Daily', 'Weekly' + + + Daily + Weekly + + System.String + + System.String + + + None + + + + New-AzStorageBlobInventoryPolicyRule + + Name + + A rule name can contain any combination of alpha numeric characters. Rule name is case-sensitive. It must be unique within a policy. + + System.String + + System.String + + + None + + + ContainerSchemaField + + Specifies the fields and properties of the container object to be included in the inventory. Valid values include: Name, Last-Modified, Metadata, LeaseStatus, LeaseState, LeaseDuration, PublicAccess, HasImmutabilityPolicy, HasLegalHold. 'Name' is a required schemafield. + + + Name + Last-Modified + Metadata + LeaseStatus + LeaseState + LeaseDuration + PublicAccess + HasImmutabilityPolicy + HasLegalHold + Etag + DefaultEncryptionScope + DenyEncryptionScopeOverride + ImmutableStorageWithVersioningEnabled + Deleted + Version + DeletedTime + RemainingRetentionDays + + System.String[] + + System.String[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Destination + + The container name where blob inventory files are stored. Must be pre-created. + + System.String + + System.String + + + None + + + Disabled + + The rule is disabled if set it. + + + System.Management.Automation.SwitchParameter + + + False + + + ExcludePrefix + + Sets an array of strings with maximum 10 blob prefixes to be excluded from the inventory. + + System.String[] + + System.String[] + + + None + + + Format + + Specifies the format for the inventory files. Possible values include: 'Csv', 'Parquet' + + + Csv + Parquet + + System.String + + System.String + + + None + + + PrefixMatch + + Sets an array of strings for blob prefixes to be matched.. + + System.String[] + + System.String[] + + + None + + + Schedule + + This field is used to schedule an inventory formation. Possible values include: 'Daily', 'Weekly' + + + Daily + Weekly + + System.String + + System.String + + + None + + + + + + BlobSchemaField + + Specifies the fields and properties of the Blob object to be included in the inventory. Valid values include: Name, Creation-Time, Last-Modified, Content-Length, Content-MD5, BlobType, AccessTier, AccessTierChangeTime, Expiry-Time, hdi_isfolder, Owner, Group, Permissions, Acl, Metadata, LastAccessTime, AccessTierInferred, Tags. 'Name' is a required schemafield. Schema field values 'Expiry-Time, hdi_isfolder, Owner, Group, Permissions, Acl' are valid only for HierarchicalNamespace enabled accounts.'Tags' field is only valid for non HierarchicalNamespace accounts. If specify '-IncludeSnapshot', will include 'Snapshot' in the inventory. If specify '-IncludeBlobVersion', will include 'VersionId, 'IsCurrentVersion' in the inventory. + + System.String[] + + System.String[] + + + None + + + BlobType + + Sets the blob types for the blob inventory policy rule. Valid values include blockBlob, appendBlob, pageBlob. Hns accounts does not support pageBlobs. + + System.String[] + + System.String[] + + + None + + + ContainerSchemaField + + Specifies the fields and properties of the container object to be included in the inventory. Valid values include: Name, Last-Modified, Metadata, LeaseStatus, LeaseState, LeaseDuration, PublicAccess, HasImmutabilityPolicy, HasLegalHold. 'Name' is a required schemafield. + + System.String[] + + System.String[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Destination + + The container name where blob inventory files are stored. Must be pre-created. + + System.String + + System.String + + + None + + + Disabled + + The rule is disabled if set it. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ExcludePrefix + + Sets an array of strings with maximum 10 blob prefixes to be excluded from the inventory. + + System.String[] + + System.String[] + + + None + + + Format + + Specifies the format for the inventory files. Possible values include: 'Csv', 'Parquet' + + System.String + + System.String + + + None + + + IncludeBlobVersion + + The rule is disabled if set it. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IncludeDeleted + + Includes deleted blob in blob inventory. When include delete blob, for ContainerSchemaFields, must include 'Deleted, Version, DeletedTime and RemainingRetentionDays'. For BlobSchemaFields, on HNS enabled storage accounts, must include 'DeletionId, Deleted, DeletedTime and RemainingRetentionDays', and on Hns disabled accounts must include 'Deleted and RemainingRetentionDays', else they must be excluded. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IncludeSnapshot + + The rule is disabled if set it. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + A rule name can contain any combination of alpha numeric characters. Rule name is case-sensitive. It must be unique within a policy. + + System.String + + System.String + + + None + + + PrefixMatch + + Sets an array of strings for blob prefixes to be matched.. + + System.String[] + + System.String[] + + + None + + + Schedule + + This field is used to schedule an inventory formation. Possible values include: 'Daily', 'Weekly' + + System.String + + System.String + + + None + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicyRule + + + + + + + + + + + + + + Example 1: Create blob inventory policy rule objects, then sets blob inventory policy with the rule objects. + PS C:\> $rule1 = New-AzStorageBlobInventoryPolicyRule -Name Test1 -Destination $containerName -Disabled -Format Csv -Schedule Daily -ContainerSchemaField Name,Metadata,PublicAccess,Last-mOdified,LeaseStatus,LeaseState,LeaseDuration,HasImmutabilityPolicy,HasLegalHold -PrefixMatch con1,con2 + +PS C:\> $rule2 = New-AzStorageBlobInventoryPolicyRule -Name Test2 -Destination $containerName -Format Parquet -Schedule Weekly -IncludeBlobVersion -IncludeSnapshot -BlobType blockBlob,appendBlob -PrefixMatch aaa,bbb ` + -BlobSchemaField name,Creation-Time,Last-Modified,Content-Length,Content-MD5,BlobType,AccessTier,AccessTierChangeTime,Expiry-Time,hdi_isfolder,Owner,Group,Permissions,Acl,Metadata +PS C:\> $rule3 = New-AzStorageBlobInventoryPolicyRule -Name Test3 -Destination $containerName -Format Parquet -Schedule Weekly -IncludeBlobVersion -IncludeSnapshot -IncludeDeleted -BlobType blockBlob,appendBlob -PrefixMatch aaa,bbb ` + -ExcludePrefix ccc,ddd -BlobSchemaField name,Last-Modified,BlobType,AccessTier,AccessTierChangeTime,Content-Type,Content-CRC64,CopyId,x-ms-blob-sequence-number,TagCount + +PS C:\> $policy = Set-AzStorageBlobInventoryPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -Disabled -Rule $rule1,$rule2 + +PS C:\> $policy + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegroup +Name : DefaultInventoryPolicy +Id : /subscriptions/{subscription-Id}/resourceGroups/myresourcegroup/providers/Microsoft.Storage/storageAccounts/mystorageaccount/inventoryPolicies/default +Type : Microsoft.Storage/storageAccounts/inventoryPolicies +LastModifiedTime : 5/12/2021 8:53:38 AM +Enabled : False +Rules : {Test1, Test2, Test3} + +PS C:\> $policy.Rules + +Name Enabled Destination ObjectType Format Schedule IncludeSnapshots IncludeBlobVersions IncludeDeleted BlobTypes PrefixMatch ExcludePrefix SchemaFields +---- ------- ----------- ---------- ------ -------- ---------------- ------------------- -------------- --------- ----------- ------------- ------------ +Test1 False containername Container Csv Daily {con1, con2} {Name, Metadata, PublicAccess, Last-Modified...} +Test2 True containername Blob Parquet Weekly True True {blockBlob, appendBlob} {aaa, bbb} {Name, Creation-Time, Last-Modified, Content-Length...} +Test3 True containername Blob Parquet Weekly True True True {blockBlob, appendBlob} {aaa, bbb} {ccc, ddd} {Name, Content-Type, Content-CRC64, Last-Modified...} + + This first 3 commands create 3 BlobInventoryPolicy rule objects: rule "Test1" for contaienr inventory; rule "Test2" for blob inventory; rule "Test3" for blob inventory with more schema fields, excludePrefix specified, and IncludeDeleted enabled. The following command sets blob inventory policy to a Storage account with the 3 rule objects, then show the updated policy and rules properties. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstorageblobinventorypolicyrule + + + + + + New-AzStorageBlobRangeToRestore + New + AzStorageBlobRangeToRestore + + Creates a Blob Range object to restores a Storage account. + + + + The New-AzStorageBlobRangeToRestore cmdlet creates a Blob range object, which can be used in Restore-AzStorageBlobRange. + + + + New-AzStorageBlobRangeToRestore + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EndRange + + Specify the blob restore End range. End range will be excluded in restore blobs. Set it as empty strng to restore to the end. + + System.String + + System.String + + + None + + + StartRange + + Specify the blob restore start range. Start range will be included in restore blobs. Set it as empty string to restore from begining. + + System.String + + System.String + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EndRange + + Specify the blob restore End range. End range will be excluded in restore blobs. Set it as empty strng to restore to the end. + + System.String + + System.String + + + None + + + StartRange + + Specify the blob restore start range. Start range will be included in restore blobs. Set it as empty string to restore from begining. + + System.String + + System.String + + + None + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobRestoreRange + + + + + + + + + + + + + + ---------- Example 1: Creates a blob range to restore ---------- + $range = New-AzStorageBlobRangeToRestore -StartRange container1/blob1 -EndRange container2/blob2 + + This command creates a blob range to restore, which starts at container1/blob1 (include), and ends at container2/blob2 (exclude). + + + + + + Example 2: Creates a blob range which will restore from first blob in alphabetical order, to a specific blob (exclude) + $range = New-AzStorageBlobRangeToRestore -StartRange "" -EndRange container2/blob2 + + This command creates a blob range which will restore from first blob of alphabetical order, to a specific blob container2/blob2 (exclude) + + + + + + Example 3: Creates a blob range which will restore from a specific blob (include), to the last blob in alphabetical order + $range = New-AzStorageBlobRangeToRestore -StartRange container1/blob1 -EndRange "" + + This command creates a blob range which will restore from a specific blob container1/blob1 (include), to the last blob in alphabetical order. + + + + + + - Example 4: Creates a blob range which will restore all blobs - + $range = New-AzStorageBlobRangeToRestore -StartRange "" -EndRange "" + + This command creates a blob range which will restore all blobs. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstorageblobrangetorestore + + + + + + New-AzStorageEncryptionScope + New + AzStorageEncryptionScope + + Creates an encryption scope for a Storage account. + + + + The New-AzStorageEncryptionScope cmdlet creates an encryption scope for a Storage account. + + + + New-AzStorageEncryptionScope + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + KeyUri + + The key Uri + + System.String + + System.String + + + None + + + KeyvaultEncryption + + Create encryption scope with keySource as Microsoft.Keyvault + + + System.Management.Automation.SwitchParameter + + + False + + + RequireInfrastructureEncryption + + The encryption scope will apply a secondary layer of encryption with platform managed keys for data at rest. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzStorageEncryptionScope + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + KeyUri + + The key Uri + + System.String + + System.String + + + None + + + KeyvaultEncryption + + Create encryption scope with keySource as Microsoft.Keyvault + + + System.Management.Automation.SwitchParameter + + + False + + + RequireInfrastructureEncryption + + The encryption scope will apply a secondary layer of encryption with platform managed keys for data at rest. + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzStorageEncryptionScope + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + RequireInfrastructureEncryption + + The encryption scope will apply a secondary layer of encryption with platform managed keys for data at rest. + + + System.Management.Automation.SwitchParameter + + + False + + + StorageEncryption + + Create encryption scope with keySource as Microsoft.Storage. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzStorageEncryptionScope + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + RequireInfrastructureEncryption + + The encryption scope will apply a secondary layer of encryption with platform managed keys for data at rest. + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageEncryption + + Create encryption scope with keySource as Microsoft.Storage. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + KeyUri + + The key Uri + + System.String + + System.String + + + None + + + KeyvaultEncryption + + Create encryption scope with keySource as Microsoft.Keyvault + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + RequireInfrastructureEncryption + + The encryption scope will apply a secondary layer of encryption with platform managed keys for data at rest. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + StorageEncryption + + Create encryption scope with keySource as Microsoft.Storage. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSEncryptionScope + + + + + + + + + + + + + + Example 1: Create an encryption scope with Storage Encryption + New-AzStorageEncryptionScope -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -EncryptionScopeName testscope -StorageEncryption + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name State Source KeyVaultKeyUri RequireInfrastructureEncryption +---- ----- ------ -------------- ------------------------------- +testscope Enabled Microsoft.Storage + + This command creates an encryption scope with Storage Encryption. + + + + + + Example 2: Create an encryption scope with Keyvault Encryption, and RequireInfrastructureEncryption + New-AzStorageEncryptionScope -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" ` + -EncryptionScopeName testscope -KeyvaultEncryption -KeyUri "https://keyvalutname.vault.azure.net:443/keys/keyname/34a0ba563b4243d9a0ef2b1d3c0c7d57" ` + -RequireInfrastructureEncryption + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name State Source KeyVaultKeyUri RequireInfrastructureEncryption +---- ----- ------ -------------- ------------------------------- +testscope Enabled Microsoft.Keyvault https://keyvalutname.vault.azure.net:443/keys/keyname/34a0ba563b4243d9a0ef2b1d3c0c7d57 True + + This command creates an encryption scope with Keyvault Encryption and RequireInfrastructureEncryption. The Storage account Identity need have get,wrapkey,unwrapkey permissions to the keyvault key. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstorageencryptionscope + + + + + + New-AzStorageLocalUserPermissionScope + New + AzStorageLocalUserPermissionScope + + Creates a permission scope object, which can be used in Set-AzStorageLocalUser. + + + + The New-AzStorageLocalUserPermissionScope cmdlet creates a permission scope object, which can be used in Set-AzStorageLocalUser. + + + + New-AzStorageLocalUserPermissionScope + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Permission + + Specify the permissions for the local user. Possible values include: Read(r), Write (w), Delete (d), List (l), and Create (c). + + System.String + + System.String + + + None + + + ResourceName + + Specify the name of resource, normally the container name or the file share name, used by the local user. + + System.String + + System.String + + + None + + + Service + + Specify the service used by the local user, e.g. blob, file. + + System.String + + System.String + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Permission + + Specify the permissions for the local user. Possible values include: Read(r), Write (w), Delete (d), List (l), and Create (c). + + System.String + + System.String + + + None + + + ResourceName + + Specify the name of resource, normally the container name or the file share name, used by the local user. + + System.String + + System.String + + + None + + + Service + + Specify the service used by the local user, e.g. blob, file. + + System.String + + System.String + + + None + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSPermissionScope + + + + + + + + + + + + + + Example 1: Create permission scope objects, then create or update local user with the permission scope objects. + PS C:\> $permissionScope1 = New-AzStorageLocalUserPermissionScope -Permission rw -Service blob -ResourceName container1 + +PS C:\> $permissionScope2 = New-AzStorageLocalUserPermissionScope -Permission rwd -Service file -ResourceName share2 + +PS C:\> $localuser = Set-AzStorageLocalUser -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -UserName testuser1 -HomeDirectory "/" -PermissionScope $permissionScope1,$permissionScope2 + +PS C:\> $localuser + + ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name Sid HomeDirectory HasSharedKey HasSshKey HasSshPassword PermissionScopes SshAuthorizedKeys +---- --- ------------- ------------ --------- -------------- ---------------- ----------------- +testuser1 S-1-2-0-0000000000-000000000-0000000000-0000 / [container1,...] + +PS C:\> $localuser.PermissionScopes + +Permissions Service ResourceName +----------- ------- ------------ +rw blob container1 +rwd file share2 + + This first 2 commands create 2 permission scope objects. The following commands create or update a local user with the permission scope objects, then show the updated local user properties. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragelocaluserpermissionscope + + + + + + New-AzStorageLocalUserSshPassword + New + AzStorageLocalUserSshPassword + + Regenerate SSH password of a specified local user in a storage account. + + + + The New-AzStorageLocalUserSshPassword cmdlet regenerates SSH password of a specified local user in a storage account. + + + + New-AzStorageLocalUserSshPassword + + InputObject + + Local User Object to Regenerate Password Keys. + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzStorageLocalUserSshPassword + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzStorageLocalUserSshPassword + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Local User Object to Regenerate Password Keys. + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUserKeys + + + + + + + + + + + + + + - Example 1: Regenerate SSH password of a specified local user - + New-AzStorageLocalUserSshPassword -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -UserName testuser1 + +SshPassword +----------- +<hidden> + + This command regenerates SSH password of a specified local user. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragelocalusersshpassword + + + + + + New-AzStorageLocalUserSshPublicKey + New + AzStorageLocalUserSshPublicKey + + Creates a SSH public key object, which can be used in Set-AzStorageLocalUser. + + + + The New-AzStorageLocalUserSshPublicKey cmdlet creates a SSH public key object, which can be used in Set-AzStorageLocalUser. + + + + New-AzStorageLocalUserSshPublicKey + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Description + + The description of the key. It is used to store the function/usage of the key. + + System.String + + System.String + + + None + + + Key + + Specify ssh public key, the key data is base64 encoded. The format should be: '<keyType> <keyData>', e.g. ssh-rsa AAAABBBB + + System.String + + System.String + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Description + + The description of the key. It is used to store the function/usage of the key. + + System.String + + System.String + + + None + + + Key + + Specify ssh public key, the key data is base64 encoded. The format should be: '<keyType> <keyData>', e.g. ssh-rsa AAAABBBB + + System.String + + System.String + + + None + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSSshPublicKey + + + + + + + + + + + + + + Example 1: Create SSH public key objects, then create or update local user with the SSH public key objects. + PS C:\> $sshkey1 = New-AzStorageLocalUserSshPublicKey -Key "ssh-rsa keykeykeykeykey=" -Description "sshpulickey name1" + +PS C:\> $sshkey2 = New-AzStorageLocalUserSshPublicKey -Key "ssh-rsa keykeykeykeykew=" -Description "sshpulickey name2" + +PS C:\> $localuser = Set-AzStorageLocalUser -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -UserName testuser1 -HomeDirectory "/" -SshAuthorizedKey $sshkey1,$sshkey2 + +PS C:\> $localuser + + ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name Sid HomeDirectory HasSharedKey HasSshKey HasSshPassword PermissionScopes SshAuthorizedKeys +---- --- ------------- ------------ --------- -------------- ---------------- ----------------- +testuser1 S-1-2-0-0000000000-000000000-0000000000-0000 / [ssh-rsa keykeykeykeykey=,...] + +PS C:\> $localuser.SshAuthorizedKeys + +Description Key +----------- --- +sshpulickey name1 ssh-rsa keykeykeykeykey= +sshpulickey name2 ssh-rsa keykeykeykeykew= + + This first 2 commands create 2 SSH public key objects. The following commands create or update a local user with the SSH public key objects, then show the updated local user properties. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragelocalusersshpublickey + + + + + + New-AzStorageObjectReplicationPolicyRule + New + AzStorageObjectReplicationPolicyRule + + Creates an object replication policy rule. + + + + The Get-AzStorageObjectReplicationPolicy cmdlet creates an object replication policy rule, which will be used in Set-AzStorageObjectReplicationPolicy cmdlet. + + + + New-AzStorageObjectReplicationPolicyRule + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestinationContainer + + The Destination Container name to replicate to. + + System.String + + System.String + + + None + + + MinCreationTime + + Blobs created after the time will be replicated to the destination.. + + System.DateTime + + System.DateTime + + + None + + + PrefixMatch + + Filters the results to replicate only blobs whose names begin with the specified prefix. + + System.String[] + + System.String[] + + + None + + + RuleId + + Object Replication Rule Id. + + System.String + + System.String + + + None + + + SourceContainer + + The Source Container name to replicate from. + + System.String + + System.String + + + None + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestinationContainer + + The Destination Container name to replicate to. + + System.String + + System.String + + + None + + + MinCreationTime + + Blobs created after the time will be replicated to the destination.. + + System.DateTime + + System.DateTime + + + None + + + PrefixMatch + + Filters the results to replicate only blobs whose names begin with the specified prefix. + + System.String[] + + System.String[] + + + None + + + RuleId + + Object Replication Rule Id. + + System.String + + System.String + + + None + + + SourceContainer + + The Source Container name to replicate from. + + System.String + + System.String + + + None + + + + + + None + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicyRule + + + + + + + + + + + + + + Example 1: Create an object replication policy rule with only source and destination account, and show its properties + $rule1 = New-AzStorageObjectReplicationPolicyRule -SourceContainer src1 -DestinationContainer dest1 + +$rule1 + +RuleId SourceContainer DestinationContainer Filters.PrefixMatch Filters.MinCreationTime +------ --------------- -------------------- ------------------- ----------------------- + src1 dest1 {} + + This command creates an object replication policy rule with only source and destination account, and show its properties. + + + + + + Example 2: Create an object replication policy rule with all properties, and show its properties + $rule2 = New-AzStorageObjectReplicationPolicyRule -SourceContainer src -DestinationContainer dest -MinCreationTime 2019-01-01T16:00:00Z -PrefixMatch a,abc,dd + +$rule2 + +RuleId SourceContainer DestinationContainer Filters.PrefixMatch Filters.MinCreationTime +------ --------------- -------------------- ------------------- ----------------------- + src dest {a, abc, dd} 2019-01-01T16:00:00Z + + This command an object replication policy rule with all properties, and show its properties. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/New-azstorageobjectreplicationpolicyrule + + + + + + Remove-AzRmStorageContainer + Remove + AzRmStorageContainer + + Removes a Storage blob container + + + + The Remove-AzRmStorageContainer cmdlet removes a Storage blob container + + + + Remove-AzRmStorageContainer + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the container and all content in it + + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzRmStorageContainer + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the container and all content in it + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Container Name + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzRmStorageContainer + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the container and all content in it + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Container Name + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the container and all content in it + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + Example 1: Remove a Storage blob container with Storage account name and container name + Remove-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" + + This command removes a Storage blob container with Storage account name and container name. + + + + + + Example 2: Remove a Storage blob container with Storage account object and container name + $accountObject = Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" +Remove-AzRmStorageContainer -StorageAccount $accountObject -ContainerName "myContainer" + + This command removes a Storage blob container with Storage account object and container name. + + + + + + Example 3: Remove all Storage blob containers in a Storage account with pipeline + Get-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" | Remove-AzRmStorageContainer -Force + + This command removes all Storage blob containers in a Storage account with pipeline. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azrmstoragecontainer + + + + + + Remove-AzRmStorageContainerImmutabilityPolicy + Remove + AzRmStorageContainerImmutabilityPolicy + + Removes ImmutabilityPolicy of a Storage blob container with an unlocked policy + + + + The Remove-AzRmStorageContainerImmutabilityPolicy cmdlet removes ImmutabilityPolicy of a Storage blob container with an unlocked policy. + + + + Remove-AzRmStorageContainerImmutabilityPolicy + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzRmStorageContainerImmutabilityPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzRmStorageContainerImmutabilityPolicy + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzRmStorageContainerImmutabilityPolicy + + InputObject + + Unlocked ImmutabilityPolicy Object to Remove + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. + + System.String + + System.String + + + None + + + InputObject + + Unlocked ImmutabilityPolicy Object to Remove + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + + + + + + + + + + + + Example 1: Remove unlocked ImmutabilityPolicy of a Storage blob container with Storage account name and container name + $policy = Get-AzRmStorageContainerImmutabilityPolicy -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" +Remove-AzRmStorageContainerImmutabilityPolicy -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" -Etag $policy.Etag + + This command removes unlocked ImmutabilityPolicy of a Storage blob container with Storage account name and container name. + + + + + + Example 2: Remove unlocked ImmutabilityPolicy of a Storage blob container, with Storage account object + $accountObject = Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" +$policy = Get-AzRmStorageContainerImmutabilityPolicy -StorageAccount $accountObject -ContainerName "myContainer" +Remove-AzRmStorageContainerImmutabilityPolicy -StorageAccount $accountObject -ContainerName "myContainer" -Etag $policy.Etag + + This command removes unlocked ImmutabilityPolicy of a Storage blob container, with Storage account object. + + + + + + Example 3: Remove unlocked ImmutabilityPolicy of a Storage blob container, with container object + $containerObject = Get-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -Name "myContainer" +$policy = Get-AzRmStorageContainerImmutabilityPolicy -Container $containerObject +Remove-AzRmStorageContainerImmutabilityPolicy -Container $containerObject -Etag $policy.Etag + + This command removes unlocked ImmutabilityPolicy of a Storage blob container with Storage container object. + + + + + + Example 4: Remove unlocked ImmutabilityPolicy of a Storage blob container, with ImmutabilityPolicy object + Get-AzRmStorageContainerImmutabilityPolicy -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" | Remove-AzRmStorageContainerImmutabilityPolicy + + This command removes unlocked ImmutabilityPolicy of a Storage blob container, with ImmutabilityPolicy object. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azrmstoragecontainerimmutabilitypolicy + + + + + + Remove-AzRmStorageContainerLegalHold + Remove + AzRmStorageContainerLegalHold + + Removes legal hold tags from a Storage blob container + + + + The Remove-AzRmStorageContainerLegalHold cmdlet removes legal hold tags from a Storage blob container + + + + Remove-AzRmStorageContainerLegalHold + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Tag + + Container LegalHold Tags + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzRmStorageContainerLegalHold + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + Tag + + Container LegalHold Tags + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzRmStorageContainerLegalHold + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Tag + + Container LegalHold Tags + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Tag + + Container LegalHold Tags + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSLegalHold + + + + + + + + + + + + + + Example 1: Remove legal hold tags from a Storage blob container with Storage account name and container name + Remove-AzRmStorageContainerLegalHold -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" -Tag tag1 + + This command removes legal hold tags from a Storage blob container with Storage account name and container name. + + + + + + Example 2: Remove legal hold tags from a Storage blob container with Storage account object and container name + $accountObject = Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" +Remove-AzRmStorageContainerLegalHold -StorageAccount $accountObject -ContainerName "myContainer" -Tag tag1,tag2 + + This command removes legal hold tags from a Storage blob container with Storage account object and container name. + + + + + + Example 3: Remove legal hold tags from all Storage blob containers in a Storage account with pipeline + Get-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" | Remove-AzRmStorageContainerLegalHold -Tag tag1 + + This command removes legal hold tags from all Storage blob containers in a Storage account with pipeline. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azrmstoragecontainerlegalhold + + + + + + Remove-AzRmStorageShare + Remove + AzRmStorageShare + + Removes a Storage file share. + + + + The New-AzRmStorageShare cmdlet removes a Storage file share. + + + + Remove-AzRmStorageShare + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the Share and all content in it + + + System.Management.Automation.SwitchParameter + + + False + + + Include + + Valid values are: snapshots, leased-snapshots, none. The default value is none. For 'none', the file share is deleted if it has no share snapshots.If the file share contains any snapshots(leased or unleased), the deletion fails. For 'snapshots', the file share is deleted including all of its file share snapshots. If the file share contains leased snapshots, the deletion fails. For 'leased-snapshots', the file share is deleted included all of its file share snapshots (leased / unleased). + + + None + Snapshots + Leased-Snapshots + + System.String + + System.String + + + None + + + Name + + Share Name + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzRmStorageShare + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the Share and all content in it + + + System.Management.Automation.SwitchParameter + + + False + + + Include + + Valid values are: snapshots, leased-snapshots, none. The default value is none. For 'none', the file share is deleted if it has no share snapshots.If the file share contains any snapshots(leased or unleased), the deletion fails. For 'snapshots', the file share is deleted including all of its file share snapshots. If the file share contains leased snapshots, the deletion fails. For 'leased-snapshots', the file share is deleted included all of its file share snapshots (leased / unleased). + + + None + Snapshots + Leased-Snapshots + + System.String + + System.String + + + None + + + Name + + Share Name + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzRmStorageShare + + ResourceId + + Input a File Share Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the Share and all content in it + + + System.Management.Automation.SwitchParameter + + + False + + + Include + + Valid values are: snapshots, leased-snapshots, none. The default value is none. For 'none', the file share is deleted if it has no share snapshots.If the file share contains any snapshots(leased or unleased), the deletion fails. For 'snapshots', the file share is deleted including all of its file share snapshots. If the file share contains leased snapshots, the deletion fails. For 'leased-snapshots', the file share is deleted included all of its file share snapshots (leased / unleased). + + + None + Snapshots + Leased-Snapshots + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzRmStorageShare + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the Share and all content in it + + + System.Management.Automation.SwitchParameter + + + False + + + Include + + Valid values are: snapshots, leased-snapshots, none. The default value is none. For 'none', the file share is deleted if it has no share snapshots.If the file share contains any snapshots(leased or unleased), the deletion fails. For 'snapshots', the file share is deleted including all of its file share snapshots. If the file share contains leased snapshots, the deletion fails. For 'leased-snapshots', the file share is deleted included all of its file share snapshots (leased / unleased). + + + None + Snapshots + Leased-Snapshots + + System.String + + System.String + + + None + + + InputObject + + Storage Share object + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzRmStorageShare + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the Share and all content in it + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Share Name + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + SnapshotTime + + Share SnapshotTime + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzRmStorageShare + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the Share and all content in it + + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Share Name + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + SnapshotTime + + Share SnapshotTime + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the Share and all content in it + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Include + + Valid values are: snapshots, leased-snapshots, none. The default value is none. For 'none', the file share is deleted if it has no share snapshots.If the file share contains any snapshots(leased or unleased), the deletion fails. For 'snapshots', the file share is deleted including all of its file share snapshots. If the file share contains leased snapshots, the deletion fails. For 'leased-snapshots', the file share is deleted included all of its file share snapshots (leased / unleased). + + System.String + + System.String + + + None + + + InputObject + + Storage Share object + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + None + + + Name + + Share Name + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Input a File Share Resource Id. + + System.String + + System.String + + + None + + + SnapshotTime + + Share SnapshotTime + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + Example 1: Remove a Storage file share with Storage account name and share name + Remove-AzRmStorageShare -ResourceGroupName "myResourceGroup" -StorageAccountName "myStorageAccount" -Name "myshare" + + This command removes a Storage file share with Storage account name and share name. + + + + + + Example 2: Remove a Storage file share with Storage account object and share name + $accountObject = Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -StorageAccountName "myStorageAccount" +Remove-AzRmStorageShare -StorageAccount $accountObject -Name "myshare" + + This command removes a Storage file share with Storage account object and share name. + + + + + + Example 3: Remove all Storage file shares in a Storage account with pipeline + Get-AzRmStorageShare -ResourceGroupName "myResourceGroup" -StorageAccountName "myStorageAccount" | Remove-AzRmStorageShare -Force + + This command removes all Storage file shares in a Storage account with pipeline. + + + + + + ---- Example 4: Remove a single Storage file share snapshot ---- + Remove-AzRmStorageShare -ResourceGroupName "myResourceGroup" -StorageAccountName "myStorageAccount" -Name "myshare" -SnapshotTime "2021-05-10T08:04:08Z" + + This command removes a single Storage file share snapshot with the specific share name and snapshot time + + + + + + -- Example 5: Remove a Storage file share and it's snapshots -- + Remove-AzRmStorageShare -ResourceGroupName "myResourceGroup" -StorageAccountName "myStorageAccount" -Name "myshare" -Include Snapshots + + This command removes a Storage file share and it's snapshots By default, the cmdlet will fail if the file share has snapshots without "-include" parameter. + + + + + + Example 6: Remove a Storage file share and all it's snapshots (include leased snapshots) + Remove-AzRmStorageShare -ResourceGroupName "myResourceGroup" -StorageAccountName "myStorageAccount" -Name "myshare" -Include Leased-Snapshots + + This command removes a Storage file share and all it's snapshots, include leased and not leased snapshots. By default, the cmdlet will fail if the file share has snapshots without "-include" parameter. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azrmstorageshare + + + + + + Remove-AzStorageAccount + Remove + AzStorageAccount + + Removes a Storage account from Azure. + + + + The Remove-AzStorageAccount cmdlet removes a Storage account from Azure. + + + + Remove-AzStorageAccount + + ResourceGroupName + + Specifies the name of the resource group that contains the Storage account to remove. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account to remove. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Specifies the name of the Storage account to remove. + + System.String + + System.String + + + None + + + ResourceGroupName + + Specifies the name of the resource group that contains the Storage account to remove. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + + + System.Void + + + + + + + + + + + + + + ------------- Example 1: Remove a Storage account ------------- + Remove-AzStorageAccount -ResourceGroupName "RG01" -Name "mystorageaccount" + + This command removes the specified Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstorageaccount + + + Get-AzStorageAccount + + + + New-AzStorageAccount + + + + Set-AzStorageAccount + + + + + + + Remove-AzStorageAccountManagementPolicy + Remove + AzStorageAccountManagementPolicy + + Removes the management policy of an Azure Storage account. + + + + The Remove-AzStorageAccountManagementPolicy cmdlet removes the management policy of an Azure Storage account. + + + + Remove-AzStorageAccountManagementPolicy + + InputObject + + Management Object to Remove + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicy + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageAccountManagementPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageAccountManagementPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageAccountManagementPolicy + + StorageAccountResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Management Object to Remove + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicy + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + StorageAccountResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + Example 1: Remove the management policy of a Storage account. + Remove-AzStorageAccountManagementPolicy -ResourceGroupName "MyResourceGroup" -AccountName "mystorageaccount" + + This command removes the management policy of a Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/Az.storage/remove-Azstorageaccountmanagementpolicy + + + + + + Remove-AzStorageAccountNetworkRule + Remove + AzStorageAccountNetworkRule + + Remove IpRules or VirtualNetworkRules from the NetWorkRule property of a Storage account + + + + The Remove-AzStorageAccountNetworkRule cmdlet removes IpRules or VirtualNetworkRules from the NetWorkRule property of a Storage account + + + + Remove-AzStorageAccountNetworkRule + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IPAddressOrRange + + The Array of IpAddressOrRange, will remove IpRule with same IpAddressOrRange from the NetWorkRule Property. + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageAccountNetworkRule + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IPRule + + The Array of IpRule objects to remove from the NetWorkRule Property. + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageAccountNetworkRule + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ResourceAccessRule + + Storage Account NetworkRule ResourceAccessRules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSResourceAccessRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSResourceAccessRule[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageAccountNetworkRule + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ResourceId + + Storage Account ResourceAccessRule ResourceId in string. + + System.String + + System.String + + + None + + + TenantId + + Storage Account ResourceAccessRule TenantId in string. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageAccountNetworkRule + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + VirtualNetworkResourceId + + The Array of VirtualNetworkResourceId, will remove VirtualNetworkRule with same VirtualNetworkResourceId from the NetWorkRule Property. + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageAccountNetworkRule + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + VirtualNetworkRule + + The Array of VirtualNetworkRule objects to remove from the NetWorkRule Property. + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IPAddressOrRange + + The Array of IpAddressOrRange, will remove IpRule with same IpAddressOrRange from the NetWorkRule Property. + + System.String[] + + System.String[] + + + None + + + IPRule + + The Array of IpRule objects to remove from the NetWorkRule Property. + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + ResourceAccessRule + + Storage Account NetworkRule ResourceAccessRules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSResourceAccessRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSResourceAccessRule[] + + + None + + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + ResourceId + + Storage Account ResourceAccessRule ResourceId in string. + + System.String + + System.String + + + None + + + TenantId + + Storage Account ResourceAccessRule TenantId in string. + + System.String + + System.String + + + None + + + VirtualNetworkResourceId + + The Array of VirtualNetworkResourceId, will remove VirtualNetworkRule with same VirtualNetworkResourceId from the NetWorkRule Property. + + System.String[] + + System.String[] + + + None + + + VirtualNetworkRule + + The Array of VirtualNetworkRule objects to remove from the NetWorkRule Property. + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule + + + + + + + + + + + + + + --- Example 1: Remove several IpRules with IPAddressOrRange --- + Remove-AzStorageAccountNetworkRule -ResourceGroupName "myResourceGroup" -Name "mystorageaccount" -IPAddressOrRange "10.0.0.0/7,28.1.0.0/16" + + This command remove several IpRules with IPAddressOrRange. + + + + + + Example 2: Remove a VirtualNetworkRule with VirtualNetworkRule Object input with JSON + Remove-AzStorageAccountNetworkRule -ResourceGroupName "myResourceGroup" -Name "mystorageaccount" -VirtualNetworkRule (@{VirtualNetworkResourceId="/subscriptions/s1/resourceGroups/g1/providers/Microsoft.Network/virtualNetworks/vnet1/subnets/subnet1";Action="allow"}) + + This command remove a VirtualNetworkRule with VirtualNetworkRule Object input with JSON. + + + + + + --------- Example 3: Remove first IpRule with pipeline --------- + (Get-AzStorageAccountNetworkRuleSet -ResourceGroupName "myResourceGroup" -Name "mystorageaccount").IpRules[0] | Remove-AzStorageAccountNetworkRule -ResourceGroupName "myResourceGroup" -Name "myStorageAccount" + + This command remove first IpRule with pipeline. + + + + + + Example 4: Remove several VirtualNetworkRules with VirtualNetworkResourceID + Remove-AzStorageAccountNetworkRule -ResourceGroupName "myResourceGroup" -Name "mystorageaccount" -VirtualNetworkResourceId "/subscriptions/s1/resourceGroups/g1/providers/Microsoft.Network/virtualNetworks/vnet1/subnets/subnet1","/subscriptions/s1/resourceGroups/g1/providers/Microsoft.Network/virtualNetworks/vnet2/subnets/subnet2" + + This command remove several VirtualNetworkRules with VirtualNetworkResourceID. + + + + + + Example 5: Remove a resource access rule with TenantId and ResourceId. + Remove-AzStorageAccountNetworkRule -ResourceGroupName "myResourceGroup" -Name "mystorageaccount" -TenantId $tenantId -ResourceId $ResourceId + + This command removes a resource access rule with TenantId and ResourceId. + + + + + + Example 6: Remove the first 3 resource access rules from a storage account + (Get-AzStorageAccountNetworkRuleSet -ResourceGroupName "myResourceGroup" -Name "mystorageaccount").ResourceAccessRules | Select-Object -First 3 | Remove-AzStorageAccountNetworkRule -ResourceGroupName "myResourceGroup" -Name "mystorageaccount" + + This command removes the first 3 resource access rules from a storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstorageaccountnetworkrule + + + + + + Remove-AzStorageBlobInventoryPolicy + Remove + AzStorageBlobInventoryPolicy + + Removes blob inventory policy from a Storage account. + + + + The Remove-AzStorageBlobInventoryPolicy cmdlet removes blob inventory policy from a Storage account. + + + + Remove-AzStorageBlobInventoryPolicy + + InputObject + + Management Object to Remove + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + {{Fill PassThru Description}} + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageBlobInventoryPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + {{Fill PassThru Description}} + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageBlobInventoryPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + {{Fill PassThru Description}} + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageBlobInventoryPolicy + + StorageAccountResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + {{Fill PassThru Description}} + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Management Object to Remove + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + + None + + + PassThru + + {{Fill PassThru Description}} + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + StorageAccountResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicy + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + Example 1: Remove blob inventory policy from a Storage account + Remove-AzStorageBlobInventoryPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" + + This command removes blob inventory policy from a Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstorageblobinventorypolicy + + + + + + Remove-AzStorageLocalUser + Remove + AzStorageLocalUser + + Removes a specified local user in a storage account. + + + + The Remove-AzStorageLocalUser cmdlet removes a specified local user from a storage account. + + + + Remove-AzStorageLocalUser + + InputObject + + Local User Object to Remove + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + {{ Fill PassThru Description }} + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageLocalUser + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + {{ Fill PassThru Description }} + + + System.Management.Automation.SwitchParameter + + + False + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageLocalUser + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + {{ Fill PassThru Description }} + + + System.Management.Automation.SwitchParameter + + + False + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Local User Object to Remove + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + + None + + + PassThru + + {{ Fill PassThru Description }} + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + ----------- Example 1: Remove a specified local user ----------- + Remove-AzStorageLocalUser -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -UserName testuser1 + + This command removes a specified local user. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstoragelocaluser + + + + + + Remove-AzStorageObjectReplicationPolicy + Remove + AzStorageObjectReplicationPolicy + + Removes the specified object replication policy from a Storage account. + + + + The Remove-AzStorageObjectReplicationPolicy cmdlet removes the specified object replication policy from a Storage account. + + + + Remove-AzStorageObjectReplicationPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Object Replication Policy object to Delete. + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + + None + + + PassThru + + {{Fill PassThru Description}} + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageObjectReplicationPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + {{Fill PassThru Description}} + + + System.Management.Automation.SwitchParameter + + + False + + + PolicyId + + Object Replication Policy Id. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageObjectReplicationPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + {{Fill PassThru Description}} + + + System.Management.Automation.SwitchParameter + + + False + + + PolicyId + + Object Replication Policy Id. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Object Replication Policy object to Delete. + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + + None + + + PassThru + + {{Fill PassThru Description}} + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + PolicyId + + Object Replication Policy Id. + + System.String + + System.String + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + Example 1: Remove an object replication policy with specific policyId from a storage account. + Remove-AzStorageObjectReplicationPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -PolicyId $policyId + + This command removes an object replication policy with specific policyId from a storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstorageobjectreplicationpolicy + + + + + + Restore-AzRmStorageShare + Restore + AzRmStorageShare + + Restores a deleted file share. + + + + The Restore-AzRmStorageShare cmdlet restores a deleted file share within a valid retention days if share soft delete is enabled. + + + + Restore-AzRmStorageShare + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DeletedShareVersion + + Deleted Share Version, which will be restored from. + + System.String + + System.String + + + None + + + Name + + Deleted Share Name, which will be restored. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Restore-AzRmStorageShare + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DeletedShareVersion + + Deleted Share Version, which will be restored from. + + System.String + + System.String + + + None + + + Name + + Deleted Share Name, which will be restored. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Restore-AzRmStorageShare + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Deleted Share object + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DeletedShareVersion + + Deleted Share Version, which will be restored from. + + System.String + + System.String + + + None + + + InputObject + + Deleted Share object + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + None + + + Name + + Deleted Share Name, which will be restored. + + System.String + + System.String + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + + + + + + + + + + + + ------------ Example 1: Remove and restore a share ------------ + PS C:\> Remove-AzRmStorageShare -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -Name $shareName -Force + +PS C:\> Get-AzRmStorageShare -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -IncludeDeleted + + ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocol AccessTier Deleted Version ShareUsageBytes +---- -------- --------------- ---------- ------- ------- --------------- +test 100 TransactionOptimized +share1 100 TransactionOptimized True 01D61FD1FC5498B6 + +PS C:\> Restore-AzRmStorageShare -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -Name $shareName -DeletedShareVersion 01D61FD1FC5498B6 + + ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocol AccessTier Deleted Version ShareUsageBytes +---- -------- --------------- ---------- ------- ------- --------------- +share1 100 + + This command first delete a file share, and then list shares and see the deleted share version, finally restore it back to a normal share. Need enabled share soft delete with Update-AzStorageFileServiceProperty, before delete the share. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/restore-azrmstorageshare + + + + + + Restore-AzStorageBlobRange + Restore + AzStorageBlobRange + + Restores a Storage account for specific blob ranges. + + + + The Restore-AzStorageBlobRange cmdlet restores blobs in a Storage account for specific blob ranges. The start range is included, and the end range is excluded in blob restore. + + + + Restore-AzStorageBlobRange + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + BlobRestoreRange + + The blob range to Restore. If not specify this parameter, will restore all blobs. + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobRestoreRange[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobRestoreRange[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + TimeToRestore + + The Time to Restore Blob. + + System.DateTime + + System.DateTime + + + None + + + WaitForComplete + + Wait for Restore task complete + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Restore-AzStorageBlobRange + + ResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + BlobRestoreRange + + The blob range to Restore. If not specify this parameter, will restore all blobs. + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobRestoreRange[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobRestoreRange[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + TimeToRestore + + The Time to Restore Blob. + + System.DateTime + + System.DateTime + + + None + + + WaitForComplete + + Wait for Restore task complete + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Restore-AzStorageBlobRange + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + BlobRestoreRange + + The blob range to Restore. If not specify this parameter, will restore all blobs. + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobRestoreRange[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobRestoreRange[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + TimeToRestore + + The Time to Restore Blob. + + System.DateTime + + System.DateTime + + + None + + + WaitForComplete + + Wait for Restore task complete + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + BlobRestoreRange + + The blob range to Restore. If not specify this parameter, will restore all blobs. + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobRestoreRange[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobRestoreRange[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + TimeToRestore + + The Time to Restore Blob. + + System.DateTime + + System.DateTime + + + None + + + WaitForComplete + + Wait for Restore task complete + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobRestoreStatus + + + + + + + + + + + + + + Example 1: Start restores blobs in a Storage account with specific blob ranges + PS C:\> $range1 = New-AzStorageBlobRangeToRestore -StartRange container1/blob1 -EndRange container2/blob2 +PS C:\> $range2 = New-AzStorageBlobRangeToRestore -StartRange container3/blob3 -EndRange container4/blob4 +PS C:\> Restore-AzStorageBlobRange -ResourceGroupName "myresourcegoup" -StorageAccountName "mystorageaccount" -TimeToRestore (Get-Date).AddDays(-1) -BlobRestoreRange $range1,$range2 + +Status RestoreId FailureReason Parameters.TimeToRestore Parameters.BlobRanges +------ --------- ------------- ------------------------ --------------------- +InProgress 6ca55a8b-fca0-461a-8e4c-13927a9707e6 2020-02-10T13:58:44.6841810Z ["container1/blob1" -> "container2/blob2",...] + +PS C:\> (Get-AzStorageAccount -ResourceGroupName $rgname -StorageAccountName $accountName -IncludeBlobRestoreStatus).BlobRestoreStatus + +Status RestoreId FailureReason Parameters.TimeToRestore Parameters.BlobRanges +------ --------- ------------- ------------------------ --------------------- +Complete 6ca55a8b-fca0-461a-8e4c-13927a9707e6 2020-02-10T13:58:44.6841810Z ["container1/blob1" -> "container2/blob2",...] + + This command first creates 2 blob ranges, then start restores blobs in a Storage account with the 2 blob ranges from 1 day ago. User can use Get-AzStorageAccount to trace the restore status later. + + + + + + Example 2: Restores all blobs in a Storage account in the backend + $job = Restore-AzStorageBlobRange -ResourceGroupName "myresourcegoup" -StorageAccountName "mystorageaccount" -TimeToRestore (Get-Date).AddMinutes(-30) -WaitForComplete -asjob + +$job | Wait-Job + +$job.Output + +Status RestoreId FailureReason Parameters.TimeToRestore Parameters.BlobRanges +------ --------- ------------- ------------------------ --------------------- +Complete 0387953a-bbe6-4602-818d-e661581ee44b 2020-08-28T07:11:33.9843100Z ["" -> ""] + + This command restores all blobs in a Storage account from 30 minutes ago, and wait for the restore complete. Since restore blobs might take a long time, run it in the backend with -Asjob parameter, and then wait for the job complete and show the result. + + + + + + Example 3: Restores blobs by input blob ranges directly, and wait for complete + Restore-AzStorageBlobRange -ResourceGroupName "myresourcegoup" -StorageAccountName "mystorageaccount" -WaitForComplete ` + -TimeToRestore (Get-Date).AddSeconds(-1) ` + -BlobRestoreRange @{StartRange="aaa/abc";EndRange="bbb/abc"},@{StartRange="bbb/acc";EndRange=""} + +WARNING: Restore blob rang with Id 'd66d1d02-6e48-47ef-b516-0155dd8319c6' started. Restore blob ranges time to complete is dependent on the size of the restore. + +Status RestoreId FailureReason Parameters.TimeToRestore Parameters.BlobRanges +------ --------- ------------- ------------------------ --------------------- +Complete d66d1d02-6e48-47ef-b516-0155dd8319c6 2020-02-10T14:17:46.8189116Z ["aaa/abc" -> "bbb/abc",...] + + This command restores blobs in a Storage account from 1 day ago, by input 2 blob ranges directly to the Restore-AzStorageBlobRange cmdlet. This command will wait for the restore complete. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/restore-azstorageblobrange + + + + + + Revoke-AzStorageAccountUserDelegationKeys + Revoke + AzStorageAccountUserDelegationKeys + + Revoke all User Delegation keys of a Storage account. + + + + The Revoke-AzStorageAccountUserDelegationKeys cmdlet revokes all User Delegation keys of a Storage account, so all Identity SAS token of the Storage account will also be revoked. + + + + Revoke-AzStorageAccountUserDelegationKeys + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + A storage account object, returned by Get_AzStorageAccount, New-AzStorageAccount. + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + PassThru + + Normally this cmdlet returns no output on successful completion, this parameter forces the cmdlet to return a value ($true) on successful completion. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Revoke-AzStorageAccountUserDelegationKeys + + ResourceGroupName + + The resource group name containing the storage account resource. + + System.String + + System.String + + + None + + + StorageAccountName + + The name of the storage account resource. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Normally this cmdlet returns no output on successful completion, this parameter forces the cmdlet to return a value ($true) on successful completion. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Revoke-AzStorageAccountUserDelegationKeys + + ResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Normally this cmdlet returns no output on successful completion, this parameter forces the cmdlet to return a value ($true) on successful completion. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + A storage account object, returned by Get_AzStorageAccount, New-AzStorageAccount. + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + PassThru + + Normally this cmdlet returns no output on successful completion, this parameter forces the cmdlet to return a value ($true) on successful completion. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + The resource group name containing the storage account resource. + + System.String + + System.String + + + None + + + ResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + StorageAccountName + + The name of the storage account resource. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + Example 1: Revoke all User Delegation keys of a Storage account + Revoke-AzStorageAccountUserDelegationKeys -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" + + This example revokes all User Delegation keys of a Storage account, so all Identity SAS token generated from the User Delegation keys will also be revoked. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/revoke-azstorageaccountuserdelegationkeys + + + + + + Set-AzCurrentStorageAccount + Set + AzCurrentStorageAccount + + Modifies the current Storage account of the specified subscription. + + + + The Set-AzCurrentStorageAccount cmdlet modifies the current Azure Storage account of the specified Azure subscription in Azure PowerShell. The current Storage account is used as the default when you access Storage without specifying a Storage account name. + + + + Set-AzCurrentStorageAccount + + Context + + Specifies an AzureStorageContext object for the current Storage account. To obtain a storage context object, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + Set-AzCurrentStorageAccount + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies the name of the Storage account that this cmdlet modifies. + + System.String + + System.String + + + None + + + ResourceGroupName + + Specifies the resource group that contains the Storage account to modify. + + System.String + + System.String + + + None + + + + + + Context + + Specifies an AzureStorageContext object for the current Storage account. To obtain a storage context object, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies the name of the Storage account that this cmdlet modifies. + + System.String + + System.String + + + None + + + ResourceGroupName + + Specifies the resource group that contains the Storage account to modify. + + System.String + + System.String + + + None + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + System.String + + + + + + + + + + System.String + + + + + + + + + + + + + + ---------- Example 1: Set the current Storage account ---------- + Set-AzCurrentStorageAccount -ResourceGroupName "RG01" -Name "mystorageaccount" + + This command sets the default Storage account for the specified subscription. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azcurrentstorageaccount + + + Set-AzStorageAccount + + + + + + + Set-AzRmStorageContainerImmutabilityPolicy + Set + AzRmStorageContainerImmutabilityPolicy + + Creates or updates ImmutabilityPolicy of a Storage blob containers + + + + The Set-AzRmStorageContainerImmutabilityPolicy cmdlet creates or updates ImmutabilityPolicy of a Storage blob containers + + + + Set-AzRmStorageContainerImmutabilityPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + AllowProtectedAppendWrite + + This property can only be changed for unlocked time-based retention policies. With this property enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. '-AllowProtectedAppendWrites' and '-AllowProtectedAppendWritesAll' are mutually exclusive. + + System.Boolean + + System.Boolean + + + None + + + AllowProtectedAppendWriteAll + + This property can only be changed for unlocked policies. When enabled, new blocks can be written to both 'Appened and Block Blobs' while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. This property cannot be changed with ExtendImmutabilityPolicy API. '-AllowProtectedAppendWrites' and '-AllowProtectedAppendWritesAll' are mutually exclusive. + + System.Boolean + + System.Boolean + + + None + + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. If -ExtendPolicy is not specified, Etag is optional; else Etag is required. + + System.String + + System.String + + + None + + + ImmutabilityPeriod + + Immutability period since creation in days. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzRmStorageContainerImmutabilityPolicy + + AllowProtectedAppendWrite + + This property can only be changed for unlocked time-based retention policies. With this property enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. '-AllowProtectedAppendWrites' and '-AllowProtectedAppendWritesAll' are mutually exclusive. + + System.Boolean + + System.Boolean + + + None + + + AllowProtectedAppendWriteAll + + This property can only be changed for unlocked policies. When enabled, new blocks can be written to both 'Appened and Block Blobs' while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. This property cannot be changed with ExtendImmutabilityPolicy API. '-AllowProtectedAppendWrites' and '-AllowProtectedAppendWritesAll' are mutually exclusive. + + System.Boolean + + System.Boolean + + + None + + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. If -ExtendPolicy is not specified, Etag is optional; else Etag is required. + + System.String + + System.String + + + None + + + ImmutabilityPeriod + + Immutability period since creation in days. + + System.Int32 + + System.Int32 + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzRmStorageContainerImmutabilityPolicy + + AllowProtectedAppendWrite + + This property can only be changed for unlocked time-based retention policies. With this property enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. '-AllowProtectedAppendWrites' and '-AllowProtectedAppendWritesAll' are mutually exclusive. + + System.Boolean + + System.Boolean + + + None + + + AllowProtectedAppendWriteAll + + This property can only be changed for unlocked policies. When enabled, new blocks can be written to both 'Appened and Block Blobs' while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. This property cannot be changed with ExtendImmutabilityPolicy API. '-AllowProtectedAppendWrites' and '-AllowProtectedAppendWritesAll' are mutually exclusive. + + System.Boolean + + System.Boolean + + + None + + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. If -ExtendPolicy is not specified, Etag is optional; else Etag is required. + + System.String + + System.String + + + None + + + ImmutabilityPeriod + + Immutability period since creation in days. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzRmStorageContainerImmutabilityPolicy + + InputObject + + Container Name + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + None + + + AllowProtectedAppendWrite + + This property can only be changed for unlocked time-based retention policies. With this property enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. '-AllowProtectedAppendWrites' and '-AllowProtectedAppendWritesAll' are mutually exclusive. + + System.Boolean + + System.Boolean + + + None + + + AllowProtectedAppendWriteAll + + This property can only be changed for unlocked policies. When enabled, new blocks can be written to both 'Appened and Block Blobs' while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. This property cannot be changed with ExtendImmutabilityPolicy API. '-AllowProtectedAppendWrites' and '-AllowProtectedAppendWritesAll' are mutually exclusive. + + System.Boolean + + System.Boolean + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ImmutabilityPeriod + + Immutability period since creation in days. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzRmStorageContainerImmutabilityPolicy + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. If -ExtendPolicy is not specified, Etag is optional; else Etag is required. + + System.String + + System.String + + + None + + + ExtendPolicy + + Indicate ExtendPolicy to Extend an existing ImmutabilityPolicy. After ImmutabilityPolicy is locked, it can only be extend. + + + System.Management.Automation.SwitchParameter + + + False + + + ImmutabilityPeriod + + Immutability period since creation in days. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzRmStorageContainerImmutabilityPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. If -ExtendPolicy is not specified, Etag is optional; else Etag is required. + + System.String + + System.String + + + None + + + ExtendPolicy + + Indicate ExtendPolicy to Extend an existing ImmutabilityPolicy. After ImmutabilityPolicy is locked, it can only be extend. + + + System.Management.Automation.SwitchParameter + + + False + + + ImmutabilityPeriod + + Immutability period since creation in days. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzRmStorageContainerImmutabilityPolicy + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. If -ExtendPolicy is not specified, Etag is optional; else Etag is required. + + System.String + + System.String + + + None + + + ExtendPolicy + + Indicate ExtendPolicy to Extend an existing ImmutabilityPolicy. After ImmutabilityPolicy is locked, it can only be extend. + + + System.Management.Automation.SwitchParameter + + + False + + + ImmutabilityPeriod + + Immutability period since creation in days. + + System.Int32 + + System.Int32 + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzRmStorageContainerImmutabilityPolicy + + InputObject + + Container Name + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExtendPolicy + + Indicate ExtendPolicy to Extend an existing ImmutabilityPolicy. After ImmutabilityPolicy is locked, it can only be extend. + + + System.Management.Automation.SwitchParameter + + + False + + + ImmutabilityPeriod + + Immutability period since creation in days. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AllowProtectedAppendWrite + + This property can only be changed for unlocked time-based retention policies. With this property enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. '-AllowProtectedAppendWrites' and '-AllowProtectedAppendWritesAll' are mutually exclusive. + + System.Boolean + + System.Boolean + + + None + + + AllowProtectedAppendWriteAll + + This property can only be changed for unlocked policies. When enabled, new blocks can be written to both 'Appened and Block Blobs' while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted. This property cannot be changed with ExtendImmutabilityPolicy API. '-AllowProtectedAppendWrites' and '-AllowProtectedAppendWritesAll' are mutually exclusive. + + System.Boolean + + System.Boolean + + + None + + + Container + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + ContainerName + + Container Name + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Etag + + Immutability policy etag. If -ExtendPolicy is not specified, Etag is optional; else Etag is required. + + System.String + + System.String + + + None + + + ExtendPolicy + + Indicate ExtendPolicy to Extend an existing ImmutabilityPolicy. After ImmutabilityPolicy is locked, it can only be extend. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ImmutabilityPeriod + + Immutability period since creation in days. + + System.Int32 + + System.Int32 + + + None + + + InputObject + + Container Name + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSImmutabilityPolicy + + + + + + + + + + + + + + Example 1: Create or update ImmutabilityPolicy of a Storage blob container with Storage account name and container name + Set-AzRmStorageContainerImmutabilityPolicy -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" -ImmutabilityPeriod 10 + + This command creates or updates ImmutabilityPolicy of a Storage blob container with Storage account name and container name. + + + + + + Example 2: Extend ImmutabilityPolicy of a Storage blob container, with Storage account object + $accountObject = Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" +$policy = Get-AzRmStorageContainerImmutabilityPolicy -StorageAccount $accountObject -ContainerName "myContainer" +Set-AzRmStorageContainerImmutabilityPolicy -StorageAccount $accountObject -ContainerName "myContainer" -ImmutabilityPeriod 20 -Etag $policy.Etag -ExtendPolicy + + This command extend ImmutabilityPolicy of a Storage blob container, with Storage account object. Extend ImmutabilityPolicy can only run after ImmutabilityPolicy is locked. + + + + + + Example 3: Update ImmutabilityPolicy of a Storage blob container + $containerObject = Get-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -Name "myContainer" +$policy = Set-AzRmStorageContainerImmutabilityPolicy -Container $containerObject -ImmutabilityPeriod 12 +$policy = Set-AzRmStorageContainerImmutabilityPolicy -Container $containerObject -ImmutabilityPeriod 9 -Etag $policy.Etag +$policy = Set-AzRmStorageContainerImmutabilityPolicy -Container $containerObject -AllowProtectedAppendWrite $true +$policy = Set-AzRmStorageContainerImmutabilityPolicy -Container $containerObject -AllowProtectedAppendWrite $false -AllowProtectedAppendWriteAll $true + + This command updates ImmutabilityPolicy of a Storage blob container with Storage container object 3 times: First to ImmutabilityPeriod 12 days without etag, then to ImmutabilityPeriod 9 days with etag, then enabled AllowProtectedAppendWrite, finally enabled AllowProtectedAppendWriteAll. + + + + + + Example 4: Extend ImmutabilityPolicy of a Storage blob container, with ImmutabilityPolicy object + Get-AzRmStorageContainerImmutabilityPolicy -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" | Set-AzRmStorageContainerImmutabilityPolicy -ImmutabilityPeriod 15 -ExtendPolicy + + This command extend ImmutabilityPolicy of a Storage blob container, with ImmutabilityPolicy object. Extend ImmutabilityPolicy can only run after ImmutabilityPolicy is locked. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azrmstoragecontainerimmutabilitypolicy + + + + + + Set-AzStorageAccount + Set + AzStorageAccount + + Modifies a Storage account. + + + + The Set-AzStorageAccount cmdlet modifies an Azure Storage account. You can use this cmdlet to modify the account type, update a customer domain, or set tags on a Storage account. + + + + Set-AzStorageAccount + + ResourceGroupName + + Specifies the name of the resource group in which to modify the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account to modify. + + System.String + + System.String + + + None + + + AccessTier + + Specifies the access tier of the Storage account that this cmdlet modifies. The acceptable values for this parameter are: Hot and Cool. If you change the access tier, it may result in additional charges. For more information, see Azure Blob Storage: Hot and cool storage tiers (http://go.microsoft.com/fwlink/?LinkId=786482). If the Storage account has Kind as StorageV2 or BlobStorage, you can specify the AccessTier parameter. If the Storage account has Kind as Storage, do not specify the AccessTier parameter. + + + Hot + Cool + + System.String + + System.String + + + None + + + ActiveDirectoryAccountType + + Specifies the Active Directory account type for Azure Storage. Possible values include: 'User', 'Computer'. + + System.String + + System.String + + + None + + + ActiveDirectoryAzureStorageSid + + Specifies the security identifier (SID) for Azure Storage. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainGuid + + Specifies the domain GUID. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainName + + Specifies the primary domain that the AD DNS server is authoritative for. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainSid + + Specifies the security identifier (SID). This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryForestName + + Specifies the Active Directory forest to get. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryNetBiosDomainName + + Specifies the NetBIOS domain name. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectorySamAccountName + + Specifies the Active Directory SAMAccountName for Azure Storage. + + System.String + + System.String + + + None + + + AllowBlobPublicAccess + + Allow or disallow public access to all blobs or containers in the storage account. + + System.Boolean + + System.Boolean + + + None + + + AllowCrossTenantReplication + + Gets or sets allow or disallow cross AAD tenant object replication. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowedCopyScope + + Set restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values include: 'PrivateLink', 'AAD' + + System.String + + System.String + + + None + + + AllowSharedKeyAccess + + Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true. + + System.Boolean + + System.Boolean + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + AssignIdentity + + Generate and assign a new Storage account Identity for this Storage account for use with key management services like Azure KeyVault. + + + System.Management.Automation.SwitchParameter + + + False + + + CustomDomainName + + Specifies the name of the custom domain. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSharePermission + + Default share permission for users using Kerberos authentication if RBAC role is not assigned. + + + None + StorageFileDataSmbShareContributor + StorageFileDataSmbShareReader + StorageFileDataSmbShareElevatedContributor + + System.String + + System.String + + + None + + + EnableActiveDirectoryDomainServicesForFile + + Enable Azure Files Active Directory Domain Service Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableHttpsTrafficOnly + + Indicates whether or not the Storage account only enables HTTPS traffic. + + System.Boolean + + System.Boolean + + + None + + + EnableLargeFileShare + + Indicates whether or not the storage account can support large file shares with more than 5 TiB capacity. Once the account is enabled, the feature cannot be disabled. Currently only supported for LRS and ZRS replication types, hence account conversions to geo-redundant accounts would not be possible. Learn more in https://go.microsoft.com/fwlink/?linkid=2086047 + + + System.Management.Automation.SwitchParameter + + + False + + + EnableLocalUser + + Enable local users feature for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableSftp + + Enable Secure File Transfer Protocol for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + Force + + Forces the change to be written to the Storage account. + + + System.Management.Automation.SwitchParameter + + + False + + + IdentityType + + Set the new Storage Account Identity type, the idenetity is for use with key management services like Azure KeyVault. + + + SystemAssigned + UserAssigned + SystemAssignedUserAssigned + None + + System.String + + System.String + + + None + + + ImmutabilityPeriod + + The immutability period for the blobs in the container since the policy creation in days. This property can only be changed when account is created with '-EnableAccountLevelImmutability'. + + System.Int32 + + System.Int32 + + + None + + + ImmutabilityPolicyState + + The mode of the policy. Possible values include: 'Unlocked', 'Locked', 'Disabled. Disabled state disablesthe policy. Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property. Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted. This property can only be changed when account is created with '-EnableAccountLevelImmutability'. + + System.String + + System.String + + + None + + + KeyExpirationPeriodInDay + + The Key expiration period of this account, it is accurate to days. + + System.Int32 + + System.Int32 + + + None + + + KeyVaultFederatedClientId + + Set ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account. + + System.String + + System.String + + + None + + + KeyVaultUserAssignedIdentityId + + Set resource id for user assigned Identity used to access Azure KeyVault of Storage Account Encryption, the id must in the storage account's UserAssignIdentityId. + + System.String + + System.String + + + None + + + MinimumTlsVersion + + The minimum TLS version to be permitted on requests to storage. + + + TLS1_0 + TLS1_1 + TLS1_2 + + System.String + + System.String + + + None + + + NetworkRuleSet + + NetworkRuleSet is used to define a set of configuration rules for firewalls and virtual networks, as well as to set values for network properties such as services allowed to bypass the rules and how to handle requests that don't match any of the defined rules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + + None + + + PublicNetworkAccess + + Allow or disallow public network access to Storage Account.Possible values include: 'Enabled', 'Disabled'. + + System.String + + System.String + + + None + + + PublishInternetEndpoint + + Indicates whether internet routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + PublishMicrosoftEndpoint + + Indicates whether microsoft routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + RoutingChoice + + Routing Choice defines the kind of network routing opted by the user. Possible values include: 'MicrosoftRouting', 'InternetRouting' + + + MicrosoftRouting + InternetRouting + + System.String + + System.String + + + None + + + SasExpirationPeriod + + The SAS expiration period of this account, it is a timespan and accurate to seconds. + + System.TimeSpan + + System.TimeSpan + + + None + + + SkuName + + Specifies the SKU name of the Storage account. The acceptable values for this parameter are: - Standard_LRS - Locally-redundant storage. + - Standard_ZRS - Zone-redundant storage. + - Standard_GRS - Geo-redundant storage. + - Standard_RAGRS - Read access geo-redundant storage. + - Premium_LRS - Premium locally-redundant storage. + - Standard_GZRS - Geo-redundant zone-redundant storage. + - Standard_RAGZRS - Read access geo-redundant zone-redundant storage. + You cannot change Standard_ZRS and Premium_LRS types to other account types. You cannot change other account types to Standard_ZRS or Premium_LRS. + + + Standard_LRS + Standard_ZRS + Standard_GRS + Standard_RAGRS + Premium_LRS + Standard_GZRS + Standard_RAGZRS + + System.String + + System.String + + + None + + + Tag + + Key-value pairs in the form of a hash table set as tags on the server. For example: @{key0="value0";key1=$null;key2="value2"} + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + UpgradeToStorageV2 + + Upgrade Storage account Kind from Storage or BlobStorage to StorageV2. + + + System.Management.Automation.SwitchParameter + + + False + + + UserAssignedIdentityId + + Set resource ids for the the new Storage Account user assignedd Identity, the identity will be used with key management services like Azure KeyVault. + + System.String + + System.String + + + None + + + UseSubDomain + + Indicates whether to enable indirect CName validation. + + System.Nullable`1[System.Boolean] + + System.Nullable`1[System.Boolean] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageAccount + + ResourceGroupName + + Specifies the name of the resource group in which to modify the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account to modify. + + System.String + + System.String + + + None + + + AccessTier + + Specifies the access tier of the Storage account that this cmdlet modifies. The acceptable values for this parameter are: Hot and Cool. If you change the access tier, it may result in additional charges. For more information, see Azure Blob Storage: Hot and cool storage tiers (http://go.microsoft.com/fwlink/?LinkId=786482). If the Storage account has Kind as StorageV2 or BlobStorage, you can specify the AccessTier parameter. If the Storage account has Kind as Storage, do not specify the AccessTier parameter. + + + Hot + Cool + + System.String + + System.String + + + None + + + ActiveDirectoryDomainGuid + + Specifies the domain GUID. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainName + + Specifies the primary domain that the AD DNS server is authoritative for. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + AllowBlobPublicAccess + + Allow or disallow public access to all blobs or containers in the storage account. + + System.Boolean + + System.Boolean + + + None + + + AllowCrossTenantReplication + + Gets or sets allow or disallow cross AAD tenant object replication. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowedCopyScope + + Set restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values include: 'PrivateLink', 'AAD' + + System.String + + System.String + + + None + + + AllowSharedKeyAccess + + Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true. + + System.Boolean + + System.Boolean + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + AssignIdentity + + Generate and assign a new Storage account Identity for this Storage account for use with key management services like Azure KeyVault. + + + System.Management.Automation.SwitchParameter + + + False + + + CustomDomainName + + Specifies the name of the custom domain. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSharePermission + + Default share permission for users using Kerberos authentication if RBAC role is not assigned. + + + None + StorageFileDataSmbShareContributor + StorageFileDataSmbShareReader + StorageFileDataSmbShareElevatedContributor + + System.String + + System.String + + + None + + + EnableAzureActiveDirectoryKerberosForFile + + Enable Azure Files Active Directory Domain Service Kerberos Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableHttpsTrafficOnly + + Indicates whether or not the Storage account only enables HTTPS traffic. + + System.Boolean + + System.Boolean + + + None + + + EnableLargeFileShare + + Indicates whether or not the storage account can support large file shares with more than 5 TiB capacity. Once the account is enabled, the feature cannot be disabled. Currently only supported for LRS and ZRS replication types, hence account conversions to geo-redundant accounts would not be possible. Learn more in https://go.microsoft.com/fwlink/?linkid=2086047 + + + System.Management.Automation.SwitchParameter + + + False + + + EnableLocalUser + + Enable local users feature for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableSftp + + Enable Secure File Transfer Protocol for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + Force + + Forces the change to be written to the Storage account. + + + System.Management.Automation.SwitchParameter + + + False + + + IdentityType + + Set the new Storage Account Identity type, the idenetity is for use with key management services like Azure KeyVault. + + + SystemAssigned + UserAssigned + SystemAssignedUserAssigned + None + + System.String + + System.String + + + None + + + ImmutabilityPeriod + + The immutability period for the blobs in the container since the policy creation in days. This property can only be changed when account is created with '-EnableAccountLevelImmutability'. + + System.Int32 + + System.Int32 + + + None + + + ImmutabilityPolicyState + + The mode of the policy. Possible values include: 'Unlocked', 'Locked', 'Disabled. Disabled state disablesthe policy. Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property. Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted. This property can only be changed when account is created with '-EnableAccountLevelImmutability'. + + System.String + + System.String + + + None + + + KeyExpirationPeriodInDay + + The Key expiration period of this account, it is accurate to days. + + System.Int32 + + System.Int32 + + + None + + + KeyVaultFederatedClientId + + Set ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account. + + System.String + + System.String + + + None + + + KeyVaultUserAssignedIdentityId + + Set resource id for user assigned Identity used to access Azure KeyVault of Storage Account Encryption, the id must in the storage account's UserAssignIdentityId. + + System.String + + System.String + + + None + + + MinimumTlsVersion + + The minimum TLS version to be permitted on requests to storage. + + + TLS1_0 + TLS1_1 + TLS1_2 + + System.String + + System.String + + + None + + + NetworkRuleSet + + NetworkRuleSet is used to define a set of configuration rules for firewalls and virtual networks, as well as to set values for network properties such as services allowed to bypass the rules and how to handle requests that don't match any of the defined rules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + + None + + + PublicNetworkAccess + + Allow or disallow public network access to Storage Account.Possible values include: 'Enabled', 'Disabled'. + + System.String + + System.String + + + None + + + PublishInternetEndpoint + + Indicates whether internet routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + PublishMicrosoftEndpoint + + Indicates whether microsoft routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + RoutingChoice + + Routing Choice defines the kind of network routing opted by the user. Possible values include: 'MicrosoftRouting', 'InternetRouting' + + + MicrosoftRouting + InternetRouting + + System.String + + System.String + + + None + + + SasExpirationPeriod + + The SAS expiration period of this account, it is a timespan and accurate to seconds. + + System.TimeSpan + + System.TimeSpan + + + None + + + SkuName + + Specifies the SKU name of the Storage account. The acceptable values for this parameter are: - Standard_LRS - Locally-redundant storage. + - Standard_ZRS - Zone-redundant storage. + - Standard_GRS - Geo-redundant storage. + - Standard_RAGRS - Read access geo-redundant storage. + - Premium_LRS - Premium locally-redundant storage. + - Standard_GZRS - Geo-redundant zone-redundant storage. + - Standard_RAGZRS - Read access geo-redundant zone-redundant storage. + You cannot change Standard_ZRS and Premium_LRS types to other account types. You cannot change other account types to Standard_ZRS or Premium_LRS. + + + Standard_LRS + Standard_ZRS + Standard_GRS + Standard_RAGRS + Premium_LRS + Standard_GZRS + Standard_RAGZRS + + System.String + + System.String + + + None + + + Tag + + Key-value pairs in the form of a hash table set as tags on the server. For example: @{key0="value0";key1=$null;key2="value2"} + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + UpgradeToStorageV2 + + Upgrade Storage account Kind from Storage or BlobStorage to StorageV2. + + + System.Management.Automation.SwitchParameter + + + False + + + UserAssignedIdentityId + + Set resource ids for the the new Storage Account user assignedd Identity, the identity will be used with key management services like Azure KeyVault. + + System.String + + System.String + + + None + + + UseSubDomain + + Indicates whether to enable indirect CName validation. + + System.Nullable`1[System.Boolean] + + System.Nullable`1[System.Boolean] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageAccount + + ResourceGroupName + + Specifies the name of the resource group in which to modify the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account to modify. + + System.String + + System.String + + + None + + + AccessTier + + Specifies the access tier of the Storage account that this cmdlet modifies. The acceptable values for this parameter are: Hot and Cool. If you change the access tier, it may result in additional charges. For more information, see Azure Blob Storage: Hot and cool storage tiers (http://go.microsoft.com/fwlink/?LinkId=786482). If the Storage account has Kind as StorageV2 or BlobStorage, you can specify the AccessTier parameter. If the Storage account has Kind as Storage, do not specify the AccessTier parameter. + + + Hot + Cool + + System.String + + System.String + + + None + + + AllowBlobPublicAccess + + Allow or disallow public access to all blobs or containers in the storage account. + + System.Boolean + + System.Boolean + + + None + + + AllowCrossTenantReplication + + Gets or sets allow or disallow cross AAD tenant object replication. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowedCopyScope + + Set restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values include: 'PrivateLink', 'AAD' + + System.String + + System.String + + + None + + + AllowSharedKeyAccess + + Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true. + + System.Boolean + + System.Boolean + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + AssignIdentity + + Generate and assign a new Storage account Identity for this Storage account for use with key management services like Azure KeyVault. + + + System.Management.Automation.SwitchParameter + + + False + + + CustomDomainName + + Specifies the name of the custom domain. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSharePermission + + Default share permission for users using Kerberos authentication if RBAC role is not assigned. + + + None + StorageFileDataSmbShareContributor + StorageFileDataSmbShareReader + StorageFileDataSmbShareElevatedContributor + + System.String + + System.String + + + None + + + EnableAzureActiveDirectoryDomainServicesForFile + + Enable Azure Files Active Directory Domain Service Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableHttpsTrafficOnly + + Indicates whether or not the Storage account only enables HTTPS traffic. + + System.Boolean + + System.Boolean + + + None + + + EnableLargeFileShare + + Indicates whether or not the storage account can support large file shares with more than 5 TiB capacity. Once the account is enabled, the feature cannot be disabled. Currently only supported for LRS and ZRS replication types, hence account conversions to geo-redundant accounts would not be possible. Learn more in https://go.microsoft.com/fwlink/?linkid=2086047 + + + System.Management.Automation.SwitchParameter + + + False + + + EnableLocalUser + + Enable local users feature for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableSftp + + Enable Secure File Transfer Protocol for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + Force + + Forces the change to be written to the Storage account. + + + System.Management.Automation.SwitchParameter + + + False + + + IdentityType + + Set the new Storage Account Identity type, the idenetity is for use with key management services like Azure KeyVault. + + + SystemAssigned + UserAssigned + SystemAssignedUserAssigned + None + + System.String + + System.String + + + None + + + ImmutabilityPeriod + + The immutability period for the blobs in the container since the policy creation in days. This property can only be changed when account is created with '-EnableAccountLevelImmutability'. + + System.Int32 + + System.Int32 + + + None + + + ImmutabilityPolicyState + + The mode of the policy. Possible values include: 'Unlocked', 'Locked', 'Disabled. Disabled state disablesthe policy. Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property. Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted. This property can only be changed when account is created with '-EnableAccountLevelImmutability'. + + System.String + + System.String + + + None + + + KeyExpirationPeriodInDay + + The Key expiration period of this account, it is accurate to days. + + System.Int32 + + System.Int32 + + + None + + + KeyVaultFederatedClientId + + Set ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account. + + System.String + + System.String + + + None + + + KeyVaultUserAssignedIdentityId + + Set resource id for user assigned Identity used to access Azure KeyVault of Storage Account Encryption, the id must in the storage account's UserAssignIdentityId. + + System.String + + System.String + + + None + + + MinimumTlsVersion + + The minimum TLS version to be permitted on requests to storage. + + + TLS1_0 + TLS1_1 + TLS1_2 + + System.String + + System.String + + + None + + + NetworkRuleSet + + NetworkRuleSet is used to define a set of configuration rules for firewalls and virtual networks, as well as to set values for network properties such as services allowed to bypass the rules and how to handle requests that don't match any of the defined rules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + + None + + + PublicNetworkAccess + + Allow or disallow public network access to Storage Account.Possible values include: 'Enabled', 'Disabled'. + + System.String + + System.String + + + None + + + PublishInternetEndpoint + + Indicates whether internet routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + PublishMicrosoftEndpoint + + Indicates whether microsoft routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + RoutingChoice + + Routing Choice defines the kind of network routing opted by the user. Possible values include: 'MicrosoftRouting', 'InternetRouting' + + + MicrosoftRouting + InternetRouting + + System.String + + System.String + + + None + + + SasExpirationPeriod + + The SAS expiration period of this account, it is a timespan and accurate to seconds. + + System.TimeSpan + + System.TimeSpan + + + None + + + SkuName + + Specifies the SKU name of the Storage account. The acceptable values for this parameter are: - Standard_LRS - Locally-redundant storage. + - Standard_ZRS - Zone-redundant storage. + - Standard_GRS - Geo-redundant storage. + - Standard_RAGRS - Read access geo-redundant storage. + - Premium_LRS - Premium locally-redundant storage. + - Standard_GZRS - Geo-redundant zone-redundant storage. + - Standard_RAGZRS - Read access geo-redundant zone-redundant storage. + You cannot change Standard_ZRS and Premium_LRS types to other account types. You cannot change other account types to Standard_ZRS or Premium_LRS. + + + Standard_LRS + Standard_ZRS + Standard_GRS + Standard_RAGRS + Premium_LRS + Standard_GZRS + Standard_RAGZRS + + System.String + + System.String + + + None + + + StorageEncryption + + Indicates whether or not to set the Storage account encryption to use Microsoft-managed keys. + + + System.Management.Automation.SwitchParameter + + + False + + + Tag + + Key-value pairs in the form of a hash table set as tags on the server. For example: @{key0="value0";key1=$null;key2="value2"} + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + UpgradeToStorageV2 + + Upgrade Storage account Kind from Storage or BlobStorage to StorageV2. + + + System.Management.Automation.SwitchParameter + + + False + + + UserAssignedIdentityId + + Set resource ids for the the new Storage Account user assignedd Identity, the identity will be used with key management services like Azure KeyVault. + + System.String + + System.String + + + None + + + UseSubDomain + + Indicates whether to enable indirect CName validation. + + System.Nullable`1[System.Boolean] + + System.Nullable`1[System.Boolean] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageAccount + + ResourceGroupName + + Specifies the name of the resource group in which to modify the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account to modify. + + System.String + + System.String + + + None + + + AccessTier + + Specifies the access tier of the Storage account that this cmdlet modifies. The acceptable values for this parameter are: Hot and Cool. If you change the access tier, it may result in additional charges. For more information, see Azure Blob Storage: Hot and cool storage tiers (http://go.microsoft.com/fwlink/?LinkId=786482). If the Storage account has Kind as StorageV2 or BlobStorage, you can specify the AccessTier parameter. If the Storage account has Kind as Storage, do not specify the AccessTier parameter. + + + Hot + Cool + + System.String + + System.String + + + None + + + AllowBlobPublicAccess + + Allow or disallow public access to all blobs or containers in the storage account. + + System.Boolean + + System.Boolean + + + None + + + AllowCrossTenantReplication + + Gets or sets allow or disallow cross AAD tenant object replication. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowedCopyScope + + Set restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values include: 'PrivateLink', 'AAD' + + System.String + + System.String + + + None + + + AllowSharedKeyAccess + + Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true. + + System.Boolean + + System.Boolean + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + AssignIdentity + + Generate and assign a new Storage account Identity for this Storage account for use with key management services like Azure KeyVault. + + + System.Management.Automation.SwitchParameter + + + False + + + CustomDomainName + + Specifies the name of the custom domain. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSharePermission + + Default share permission for users using Kerberos authentication if RBAC role is not assigned. + + + None + StorageFileDataSmbShareContributor + StorageFileDataSmbShareReader + StorageFileDataSmbShareElevatedContributor + + System.String + + System.String + + + None + + + EnableAzureActiveDirectoryDomainServicesForFile + + Enable Azure Files Active Directory Domain Service Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableHttpsTrafficOnly + + Indicates whether or not the Storage account only enables HTTPS traffic. + + System.Boolean + + System.Boolean + + + None + + + EnableLargeFileShare + + Indicates whether or not the storage account can support large file shares with more than 5 TiB capacity. Once the account is enabled, the feature cannot be disabled. Currently only supported for LRS and ZRS replication types, hence account conversions to geo-redundant accounts would not be possible. Learn more in https://go.microsoft.com/fwlink/?linkid=2086047 + + + System.Management.Automation.SwitchParameter + + + False + + + EnableLocalUser + + Enable local users feature for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableSftp + + Enable Secure File Transfer Protocol for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + Force + + Forces the change to be written to the Storage account. + + + System.Management.Automation.SwitchParameter + + + False + + + IdentityType + + Set the new Storage Account Identity type, the idenetity is for use with key management services like Azure KeyVault. + + + SystemAssigned + UserAssigned + SystemAssignedUserAssigned + None + + System.String + + System.String + + + None + + + ImmutabilityPeriod + + The immutability period for the blobs in the container since the policy creation in days. This property can only be changed when account is created with '-EnableAccountLevelImmutability'. + + System.Int32 + + System.Int32 + + + None + + + ImmutabilityPolicyState + + The mode of the policy. Possible values include: 'Unlocked', 'Locked', 'Disabled. Disabled state disablesthe policy. Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property. Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted. This property can only be changed when account is created with '-EnableAccountLevelImmutability'. + + System.String + + System.String + + + None + + + KeyExpirationPeriodInDay + + The Key expiration period of this account, it is accurate to days. + + System.Int32 + + System.Int32 + + + None + + + KeyName + + If using -KeyvaultEncryption to enable encryption with Key Vault, specify the Keyname property with this option. + + System.String + + System.String + + + None + + + KeyvaultEncryption + + Indicates whether or not to use Microsoft KeyVault for the encryption keys when using Storage Service Encryption. If KeyName, KeyVersion, and KeyVaultUri are all set, KeySource will be set to Microsoft.Keyvault whether this parameter is set or not. + + + System.Management.Automation.SwitchParameter + + + False + + + KeyVaultFederatedClientId + + Set ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account. + + System.String + + System.String + + + None + + + KeyVaultUri + + When using Key Vault Encryption by specifying the -KeyvaultEncryption parameter, use this option to specify the URI to the Key Vault. + + System.String + + System.String + + + None + + + KeyVaultUserAssignedIdentityId + + Set resource id for user assigned Identity used to access Azure KeyVault of Storage Account Encryption, the id must in the storage account's UserAssignIdentityId. + + System.String + + System.String + + + None + + + KeyVersion + + When using Key Vault Encryption by specifying the -KeyvaultEncryption parameter, use this option to specify the URI to the Key Version. + + System.String + + System.String + + + None + + + MinimumTlsVersion + + The minimum TLS version to be permitted on requests to storage. + + + TLS1_0 + TLS1_1 + TLS1_2 + + System.String + + System.String + + + None + + + NetworkRuleSet + + NetworkRuleSet is used to define a set of configuration rules for firewalls and virtual networks, as well as to set values for network properties such as services allowed to bypass the rules and how to handle requests that don't match any of the defined rules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + + None + + + PublicNetworkAccess + + Allow or disallow public network access to Storage Account.Possible values include: 'Enabled', 'Disabled'. + + System.String + + System.String + + + None + + + PublishInternetEndpoint + + Indicates whether internet routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + PublishMicrosoftEndpoint + + Indicates whether microsoft routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + RoutingChoice + + Routing Choice defines the kind of network routing opted by the user. Possible values include: 'MicrosoftRouting', 'InternetRouting' + + + MicrosoftRouting + InternetRouting + + System.String + + System.String + + + None + + + SasExpirationPeriod + + The SAS expiration period of this account, it is a timespan and accurate to seconds. + + System.TimeSpan + + System.TimeSpan + + + None + + + SkuName + + Specifies the SKU name of the Storage account. The acceptable values for this parameter are: - Standard_LRS - Locally-redundant storage. + - Standard_ZRS - Zone-redundant storage. + - Standard_GRS - Geo-redundant storage. + - Standard_RAGRS - Read access geo-redundant storage. + - Premium_LRS - Premium locally-redundant storage. + - Standard_GZRS - Geo-redundant zone-redundant storage. + - Standard_RAGZRS - Read access geo-redundant zone-redundant storage. + You cannot change Standard_ZRS and Premium_LRS types to other account types. You cannot change other account types to Standard_ZRS or Premium_LRS. + + + Standard_LRS + Standard_ZRS + Standard_GRS + Standard_RAGRS + Premium_LRS + Standard_GZRS + Standard_RAGZRS + + System.String + + System.String + + + None + + + Tag + + Key-value pairs in the form of a hash table set as tags on the server. For example: @{key0="value0";key1=$null;key2="value2"} + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + UpgradeToStorageV2 + + Upgrade Storage account Kind from Storage or BlobStorage to StorageV2. + + + System.Management.Automation.SwitchParameter + + + False + + + UserAssignedIdentityId + + Set resource ids for the the new Storage Account user assignedd Identity, the identity will be used with key management services like Azure KeyVault. + + System.String + + System.String + + + None + + + UseSubDomain + + Indicates whether to enable indirect CName validation. + + System.Nullable`1[System.Boolean] + + System.Nullable`1[System.Boolean] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AccessTier + + Specifies the access tier of the Storage account that this cmdlet modifies. The acceptable values for this parameter are: Hot and Cool. If you change the access tier, it may result in additional charges. For more information, see Azure Blob Storage: Hot and cool storage tiers (http://go.microsoft.com/fwlink/?LinkId=786482). If the Storage account has Kind as StorageV2 or BlobStorage, you can specify the AccessTier parameter. If the Storage account has Kind as Storage, do not specify the AccessTier parameter. + + System.String + + System.String + + + None + + + ActiveDirectoryAccountType + + Specifies the Active Directory account type for Azure Storage. Possible values include: 'User', 'Computer'. + + System.String + + System.String + + + None + + + ActiveDirectoryAzureStorageSid + + Specifies the security identifier (SID) for Azure Storage. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainGuid + + Specifies the domain GUID. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainName + + Specifies the primary domain that the AD DNS server is authoritative for. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryDomainSid + + Specifies the security identifier (SID). This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryForestName + + Specifies the Active Directory forest to get. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectoryNetBiosDomainName + + Specifies the NetBIOS domain name. This parameter must be set when -EnableActiveDirectoryDomainServicesForFile is set to true. + + System.String + + System.String + + + None + + + ActiveDirectorySamAccountName + + Specifies the Active Directory SAMAccountName for Azure Storage. + + System.String + + System.String + + + None + + + AllowBlobPublicAccess + + Allow or disallow public access to all blobs or containers in the storage account. + + System.Boolean + + System.Boolean + + + None + + + AllowCrossTenantReplication + + Gets or sets allow or disallow cross AAD tenant object replication. The default interpretation is true for this property. + + System.Boolean + + System.Boolean + + + None + + + AllowedCopyScope + + Set restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values include: 'PrivateLink', 'AAD' + + System.String + + System.String + + + None + + + AllowSharedKeyAccess + + Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true. + + System.Boolean + + System.Boolean + + + None + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + AssignIdentity + + Generate and assign a new Storage account Identity for this Storage account for use with key management services like Azure KeyVault. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + CustomDomainName + + Specifies the name of the custom domain. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultSharePermission + + Default share permission for users using Kerberos authentication if RBAC role is not assigned. + + System.String + + System.String + + + None + + + EnableActiveDirectoryDomainServicesForFile + + Enable Azure Files Active Directory Domain Service Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableAzureActiveDirectoryDomainServicesForFile + + Enable Azure Files Active Directory Domain Service Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableAzureActiveDirectoryKerberosForFile + + Enable Azure Files Active Directory Domain Service Kerberos Authentication for the storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableHttpsTrafficOnly + + Indicates whether or not the Storage account only enables HTTPS traffic. + + System.Boolean + + System.Boolean + + + None + + + EnableLargeFileShare + + Indicates whether or not the storage account can support large file shares with more than 5 TiB capacity. Once the account is enabled, the feature cannot be disabled. Currently only supported for LRS and ZRS replication types, hence account conversions to geo-redundant accounts would not be possible. Learn more in https://go.microsoft.com/fwlink/?linkid=2086047 + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + EnableLocalUser + + Enable local users feature for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + EnableSftp + + Enable Secure File Transfer Protocol for the Storage account. + + System.Boolean + + System.Boolean + + + None + + + Force + + Forces the change to be written to the Storage account. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IdentityType + + Set the new Storage Account Identity type, the idenetity is for use with key management services like Azure KeyVault. + + System.String + + System.String + + + None + + + ImmutabilityPeriod + + The immutability period for the blobs in the container since the policy creation in days. This property can only be changed when account is created with '-EnableAccountLevelImmutability'. + + System.Int32 + + System.Int32 + + + None + + + ImmutabilityPolicyState + + The mode of the policy. Possible values include: 'Unlocked', 'Locked', 'Disabled. Disabled state disablesthe policy. Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property. Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted. This property can only be changed when account is created with '-EnableAccountLevelImmutability'. + + System.String + + System.String + + + None + + + KeyExpirationPeriodInDay + + The Key expiration period of this account, it is accurate to days. + + System.Int32 + + System.Int32 + + + None + + + KeyName + + If using -KeyvaultEncryption to enable encryption with Key Vault, specify the Keyname property with this option. + + System.String + + System.String + + + None + + + KeyvaultEncryption + + Indicates whether or not to use Microsoft KeyVault for the encryption keys when using Storage Service Encryption. If KeyName, KeyVersion, and KeyVaultUri are all set, KeySource will be set to Microsoft.Keyvault whether this parameter is set or not. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + KeyVaultFederatedClientId + + Set ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account. + + System.String + + System.String + + + None + + + KeyVaultUri + + When using Key Vault Encryption by specifying the -KeyvaultEncryption parameter, use this option to specify the URI to the Key Vault. + + System.String + + System.String + + + None + + + KeyVaultUserAssignedIdentityId + + Set resource id for user assigned Identity used to access Azure KeyVault of Storage Account Encryption, the id must in the storage account's UserAssignIdentityId. + + System.String + + System.String + + + None + + + KeyVersion + + When using Key Vault Encryption by specifying the -KeyvaultEncryption parameter, use this option to specify the URI to the Key Version. + + System.String + + System.String + + + None + + + MinimumTlsVersion + + The minimum TLS version to be permitted on requests to storage. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account to modify. + + System.String + + System.String + + + None + + + NetworkRuleSet + + NetworkRuleSet is used to define a set of configuration rules for firewalls and virtual networks, as well as to set values for network properties such as services allowed to bypass the rules and how to handle requests that don't match any of the defined rules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + + None + + + PublicNetworkAccess + + Allow or disallow public network access to Storage Account.Possible values include: 'Enabled', 'Disabled'. + + System.String + + System.String + + + None + + + PublishInternetEndpoint + + Indicates whether internet routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + PublishMicrosoftEndpoint + + Indicates whether microsoft routing storage endpoints are to be published + + System.Boolean + + System.Boolean + + + None + + + ResourceGroupName + + Specifies the name of the resource group in which to modify the Storage account. + + System.String + + System.String + + + None + + + RoutingChoice + + Routing Choice defines the kind of network routing opted by the user. Possible values include: 'MicrosoftRouting', 'InternetRouting' + + System.String + + System.String + + + None + + + SasExpirationPeriod + + The SAS expiration period of this account, it is a timespan and accurate to seconds. + + System.TimeSpan + + System.TimeSpan + + + None + + + SkuName + + Specifies the SKU name of the Storage account. The acceptable values for this parameter are: - Standard_LRS - Locally-redundant storage. + - Standard_ZRS - Zone-redundant storage. + - Standard_GRS - Geo-redundant storage. + - Standard_RAGRS - Read access geo-redundant storage. + - Premium_LRS - Premium locally-redundant storage. + - Standard_GZRS - Geo-redundant zone-redundant storage. + - Standard_RAGZRS - Read access geo-redundant zone-redundant storage. + You cannot change Standard_ZRS and Premium_LRS types to other account types. You cannot change other account types to Standard_ZRS or Premium_LRS. + + System.String + + System.String + + + None + + + StorageEncryption + + Indicates whether or not to set the Storage account encryption to use Microsoft-managed keys. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Tag + + Key-value pairs in the form of a hash table set as tags on the server. For example: @{key0="value0";key1=$null;key2="value2"} + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + UpgradeToStorageV2 + + Upgrade Storage account Kind from Storage or BlobStorage to StorageV2. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + UserAssignedIdentityId + + Set resource ids for the the new Storage Account user assignedd Identity, the identity will be used with key management services like Azure KeyVault. + + System.String + + System.String + + + None + + + UseSubDomain + + Indicates whether to enable indirect CName validation. + + System.Nullable`1[System.Boolean] + + System.Nullable`1[System.Boolean] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + System.Collections.Hashtable + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + + + + + ----------- Example 1: Set the Storage account type ----------- + Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -SkuName "Standard_RAGRS" + + This command sets the Storage account type to Standard_RAGRS. + + + + + + ----- Example 2: Set a custom domain for a Storage account ----- + Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -CustomDomainName "www.contoso.com" -UseSubDomain $true + + This command sets a custom domain for a Storage account. + + + + + + ------------- Example 3: Set the access tier value ------------- + Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -AccessTier Cool + + The command sets the Access Tier value to be cool. + + + + + + ---------- Example 4: Set the custom domain and tags ---------- + Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -CustomDomainName "www.domainname.com" -UseSubDomain $true -Tag @{tag0="value0";tag1="value1";tag2="value2"} + + The command sets the custom domain and tags for a Storage account. + + + + + + ------- Example 5: Set Encryption KeySource to Keyvault ------- + Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -AssignIdentity +$account = Get-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" + +$keyVault = New-AzKeyVault -VaultName "MyKeyVault" -ResourceGroupName "MyResourceGroup" -Location "EastUS2" +$key = Add-AzKeyVaultKey -VaultName "MyKeyVault" -Name "MyKey" -Destination 'Software' +Set-AzKeyVaultAccessPolicy -VaultName "MyKeyVault" -ObjectId $account.Identity.PrincipalId -PermissionsToKeys wrapkey,unwrapkey,get + +# In case to enable key auto rotation, don't set KeyVersion +Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -KeyvaultEncryption -KeyName $key.Name -KeyVersion $key.Version -KeyVaultUri $keyVault.VaultUri + +# In case to enable key auto rotation after set keyvault proeprites with KeyVersion, can update account by set KeyVersion to empty +Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -KeyvaultEncryption -KeyName $key.Name -KeyVersion "" -KeyVaultUri $keyVault.VaultUri + + This command set Encryption KeySource with a new created Keyvault. If want to enable key auto rotation, don't set keyversion when set Keyvault properties for the first time, or clean up it by set keyvault properties again with keyversion as empty. + + + + + + -- Example 6: Set Encryption KeySource to "Microsoft.Storage" -- + Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -StorageEncryption + + This command set Encryption KeySource to "Microsoft.Storage" + + + + + + Example 7: Set NetworkRuleSet property of a Storage account with JSON + Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -NetworkRuleSet (@{bypass="Logging,Metrics"; + ipRules=(@{IPAddressOrRange="20.11.0.0/16";Action="allow"}, + @{IPAddressOrRange="10.0.0.0/7";Action="allow"}); + virtualNetworkRules=(@{VirtualNetworkResourceId="/subscriptions/s1/resourceGroups/g1/providers/Microsoft.Network/virtualNetworks/vnet1/subnets/subnet1";Action="allow"}, + @{VirtualNetworkResourceId="/subscriptions/s1/resourceGroups/g1/providers/Microsoft.Network/virtualNetworks/vnet2/subnets/subnet2";Action="allow"}); + defaultAction="allow"}) + + This command sets NetworkRuleSet property of a Storage account with JSON + + + + + + Example 8: Get NetworkRuleSet property from a Storage account, and set it to another Storage account + $networkRuleSet = (Get-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount").NetworkRuleSet +Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount2" -NetworkRuleSet $networkRuleSet + + This first command gets NetworkRuleSet property from a Storage account, and the second command sets it to another Storage account + + + + + + Example 9: Upgrade a Storage account with Kind "Storage" or "BlobStorage" to "StorageV2" kind Storage account + Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -UpgradeToStorageV2 + + The command upgrade a Storage account with Kind "Storage" or "BlobStorage" to "StorageV2" kind Storage account. + + + + + + Example 10: Update a Storage account by enable Azure Files AAD DS Authentication and set DefaultSharePermission. + $account = Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -EnableAzureActiveDirectoryDomainServicesForFile $true -DefaultSharePermission StorageFileDataSmbShareContributor + +$account.AzureFilesIdentityBasedAuth + +DirectoryServiceOptions ActiveDirectoryProperties DefaultSharePermission +----------------------- ------------------------- ---------------------- +AADDS Microsoft.Azure.Commands.Management.Storage.Models.PSActiveDirectoryProperties StorageFileDataSmbShareContributor + + The command update a Storage account by enable Azure Files AAD DS Authentication. + + + + + + Example 11: Update a Storage account by enable Files Active Directory Domain Service Authentication, and then show the File Identity Based authentication setting + PS C:\> $account = Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -EnableActiveDirectoryDomainServicesForFile $true ` + -ActiveDirectoryDomainName "mydomain.com" ` + -ActiveDirectoryNetBiosDomainName "mydomain.com" ` + -ActiveDirectoryForestName "mydomain.com" ` + -ActiveDirectoryDomainGuid "12345678-1234-1234-1234-123456789012" ` + -ActiveDirectoryDomainSid "S-1-5-21-1234567890-1234567890-1234567890" ` + -ActiveDirectoryAzureStorageSid "S-1-5-21-1234567890-1234567890-1234567890-1234" ` + -ActiveDirectorySamAccountName "samaccountname" ` + -ActiveDirectoryAccountType Computer + +PS C:\> $account.AzureFilesIdentityBasedAuth.DirectoryServiceOptions +AD + +PS C:\> $account.AzureFilesIdentityBasedAuth.ActiveDirectoryProperties + +DomainName : mydomain.com +NetBiosDomainName : mydomain.com +ForestName : mydomain.com +DomainGuid : 12345678-1234-1234-1234-123456789012 +DomainSid : S-1-5-21-1234567890-1234567890-1234567890 +AzureStorageSid : S-1-5-21-1234567890-1234567890-1234567890-1234 +SamAccountName : samaccountname +AccountType : Computer + + The command updates a Storage account by enable Azure Files Active Directory Domain Service Authentication, and then shows the File Identity Based authentication setting + + + + + + Example 12: Set MinimumTlsVersion, AllowBlobPublicAccess and AllowSharedKeyAccess + PS C:\> $account = Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -MinimumTlsVersion TLS1_1 -AllowBlobPublicAccess $false -AllowSharedKeyAccess $true + +PS C:\> $account.MinimumTlsVersion +TLS1_1 + +PS C:\> $account.AllowBlobPublicAccess +False + +PS C:\> $a.AllowSharedKeyAccess +True + + The command sets MinimumTlsVersion, AllowBlobPublicAccess and AllowSharedKeyAccess, and then show the the 3 properties of the account + + + + + + Example 13: Update a Storage account with RoutingPreference setting + PS C:\>$account = Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -PublishMicrosoftEndpoint $false -PublishInternetEndpoint $true -RoutingChoice InternetRouting + +PS C:\>$account.RoutingPreference + +RoutingChoice PublishMicrosoftEndpoints PublishInternetEndpoints +------------- ------------------------- ------------------------ +InternetRouting False True + +PS C:\>$account.PrimaryEndpoints + +Blob : https://mystorageaccount.blob.core.windows.net/ +Queue : https://mystorageaccount.queue.core.windows.net/ +Table : https://mystorageaccount.table.core.windows.net/ +File : https://mystorageaccount.file.core.windows.net/ +Web : https://mystorageaccount.z2.web.core.windows.net/ +Dfs : https://mystorageaccount.dfs.core.windows.net/ +MicrosoftEndpoints : +InternetEndpoints : {"Blob":"https://mystorageaccount-internetrouting.blob.core.windows.net/","File":"https://mystorageaccount-internetrouting.file.core.windows.net/","Web":"https://mystorageaccount-internetrouting.z2.web.core.windows.net/","Dfs":"https://w + eirp3-internetrouting.dfs.core.windows.net/"} + + This command updates a Storage account with RoutingPreference setting: PublishMicrosoftEndpoint as false, PublishInternetEndpoint as true, and RoutingChoice as MicrosoftRouting. + + + + + + Example 14: Update a Storage account with KeyExpirationPeriod and SasExpirationPeriod + PS C:\> $account = Set-AzStorageAccount -ResourceGroupName "myresourcegroup" -Name "mystorageaccount" -KeyExpirationPeriodInDay 5 -SasExpirationPeriod "1.12:05:06" -EnableHttpsTrafficOnly $true + +PS C:\> $account.KeyPolicy.KeyExpirationPeriodInDays +5 + +PS C:\> $account.SasPolicy.SasExpirationPeriod +1.12:05:06 + + This command updates a Storage account with KeyExpirationPeriod and SasExpirationPeriod, then show the updated account related properties. + + + + + + Example 15: Update a Storage account to Keyvault encryption, and access Keyvault with user assigned identity + # Create KeyVault (no need if using exist keyvault) +PS C:\> $keyVault = New-AzKeyVault -VaultName $keyvaultName -ResourceGroupName $resourceGroupName -Location eastus2euap -EnablePurgeProtection +PS C:\> $key = Add-AzKeyVaultKey -VaultName $keyvaultName -Name $keyname -Destination 'Software' + +# create user assigned identity and grant access to keyvault (no need if using exist user assigned identity) +PS C:\> $userId = New-AzUserAssignedIdentity -ResourceGroupName $resourceGroupName -Name $userIdName +PS C:\> Set-AzKeyVaultAccessPolicy -VaultName $keyvaultName -ResourceGroupName $resourceGroupName -ObjectId $userId.PrincipalId -PermissionsToKeys get,wrapkey,unwrapkey -BypassObjectIdValidation +PS C:\> $useridentityId= $userId.Id + +# Update Storage account with Keyvault encryption and access Keyvault with user assigned identity, then show properties +PS C:\> $account = Set-AzStorageAccount -ResourceGroupName $resourceGroupName -Name $storageAccountName ` + -IdentityType UserAssigned -UserAssignedIdentityId $useridentityId ` + -KeyVaultUri $keyVault.VaultUri -KeyName $keyname -KeyVaultUserAssignedIdentityId $useridentityId + +PS C:\> $account.Encryption.EncryptionIdentity.EncryptionUserAssignedIdentity +/subscriptions/{subscription-id}/resourceGroups/myresourcegroup/providers/Microsoft.ManagedIdentity/userAssignedIdentities/myuserid + +PS C:\> $account.Encryption.KeyVaultProperties + +KeyName : wrappingKey +KeyVersion : +KeyVaultUri : https://mykeyvault.vault.azure.net:443 +CurrentVersionedKeyIdentifier : https://mykeyvault.vault.azure.net/keys/wrappingKey/8e74036e0d534e58b3bd84b319e31d8f +LastKeyRotationTimestamp : 4/12/2021 8:17:57 AM + + This command first creates a keyvault and a user assigned identity, then updates a storage account with keyvault encryption, the storage access access keyvault with the user assigned identity. + + + + + + Example 16: Update a Keyvault encrypted Storage account, from access Keyvault with user assigned identity, to access Keyvault with system assigned identity + # Assign System identity to the account, and give the system assigned identity acces to the keyvault +PS C:\> $account = Set-AzStorageAccount -ResourceGroupName $resourceGroupName -Name $storageAccountName -IdentityType SystemAssignedUserAssigned +PS C:\> Set-AzKeyVaultAccessPolicy -VaultName $keyvaultName -ResourceGroupName $resourceGroupName -ObjectId $account.Identity.PrincipalId -PermissionsToKeys get,wrapkey,unwrapkey -BypassObjectIdValidation + +# Update account from access Keyvault with user assigned identity to access Keyvault with system assigned identity +$account = Set-AzStorageAccount -ResourceGroupName $resourceGroupName -Name $storageAccountName -IdentityType SystemAssignedUserAssigned -KeyName $keyname -KeyVaultUri $keyvaultUri -KeyVaultUserAssignedIdentityId "" + +# EncryptionUserAssignedIdentity is empty, so the account access keyvault with system assigned identity +PS C:\> $account.Encryption.EncryptionIdentity + +EncryptionUserAssignedIdentity +------------------------------ + +PS C:\> $account.Encryption.KeyVaultProperties + +KeyName : wrappingKey +KeyVersion : +KeyVaultUri : https://mykeyvault.vault.azure.net:443 +CurrentVersionedKeyIdentifier : https://mykeyvault.vault.azure.net/keys/wrappingKey/8e74036e0d534e58b3bd84b319e31d8f +LastKeyRotationTimestamp : 4/12/2021 8:17:57 AM + + This command first assigns System identity to the account, and give the system assigned identity access to the keyvault; then updates the Storage account to access Keyvault with system assigned identity. + + + + + + Example 17: Update both Keyvault and the user assigned identity to access keyvault + # Update to another user assigned identity +$account = Set-AzStorageAccount -ResourceGroupName $resourceGroupName -Name $storageAccountName -IdentityType SystemAssignedUserAssigned -UserAssignedIdentityId $useridentity2 -KeyVaultUserAssignedIdentityId $useridentity2 + +# Update to encrypt with another keyvault +$account = Set-AzStorageAccount -ResourceGroupName $resourceGroupName -Name $storageAccountName -KeyVaultUri $keyvaultUri2 -KeyName $keyname2 -KeyVersion $keyversion2 + + This command first update the user assigned identity to access keyvault, then update the keyvault for encryption. To update both both Keyvault and the user assigned identity, we need update with the above 2 steps. + + + + + + Example 18: Update a Storage account with AllowCrossTenantReplication + $account = Set-AzStorageAccount -ResourceGroupName "myresourcegroup" -Name "mystorageaccount" -AllowCrossTenantReplication $false -EnableHttpsTrafficOnly $true + +$account.AllowCrossTenantReplication + +False + + This command updates a Storage account by set AllowCrossTenantReplication to false, then show the updated account related properties. + + + + + + Example 18: Update a Storage account by enable PublicNetworkAccess + $account = Set-AzStorageAccount -ResourceGroupName "myresourcegroup" -Name "mystorageaccount" -PublicNetworkAccess Enabled + +$account.PublicNetworkAccess + +Enabled + + This command updates a Storage account by set PublicNetworkAccess as enabled. + + + + + + ----- Example 19: Update account level immutability policy ----- + PS C:\> $account = Set-AzStorageAccount -ResourceGroupName "MyResourceGroup" -Name "mystorageaccount" -ImmutabilityPeriod 2 -ImmutabilityPolicyState Unlocked + +PS C:\> $account.ImmutableStorageWithVersioning.Enabled +True + +PS C:\> $account.ImmutableStorageWithVersioning.ImmutabilityPolicy + +ImmutabilityPeriodSinceCreationInDays State +------------------------------------- ----- + 2 Unlocked + + The command updates account-level immutability policy properties on an existing storage account, and show the result. The storage account must be created with enable account level immutability with versioning. The account-level immutability policy will be inherited and applied to objects that do not possess an explicit immutability policy at the object level. + + + + + + Example 20: Update a Storage account by enable Sftp and localuser + PS C:\> $account = Set-AzStorageAccount -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -EnableSftp $true -EnableLocalUser $true + +PS C:\> $account.EnableSftp +True + +PS C:\> $account.EnableLocalUser +True + + This command updates a Storage account by enable Sftp and localuser. To run the command succssfully, the Storage account should already enable Hierarchical Namespace. + + + + + + Example 21: Update a Storage account with Keyvault from another tenant (access Keyvault with FederatedClientId) + # create Storage account with Keyvault encryption (access Keyvault with FederatedClientId), then show properties +PS C:\> $account = Set-AzStorageAccount -ResourceGroupName $resourceGroupName -Name $storageAccountName ` + -KeyVaultUri $keyVault.VaultUri -KeyName $keyname -KeyVaultUserAssignedIdentityId $useridentityId -KeyVaultFederatedClientId $federatedClientId + +PS C:\> $account.Encryption.EncryptionIdentity + +EncryptionUserAssignedIdentity EncryptionFederatedIdentityClientId +------------------------------ ----------------------------------- +/subscriptions/{subscription-id}/resourceGroups/myresourcegroup/providers/Microsoft.ManagedIdentity/userAssignedIdentities/myuserid ********-****-****-****-************ + +PS C:\> $account.Encryption.KeyVaultProperties + +KeyName : wrappingKey +KeyVersion : +KeyVaultUri : https://mykeyvault.vault.azure.net:443 +CurrentVersionedKeyIdentifier : https://mykeyvault.vault.azure.net/keys/wrappingKey/8e74036e0d534e58b3bd84b319e31d8f +LastKeyRotationTimestamp : 3/3/2022 2:07:34 AM + + This command updates a storage account with Keyvault from another tenant (access Keyvault with FederatedClientId). + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstorageaccount + + + Get-AzStorageAccount + + + + New-AzStorageAccount + + + + Remove-AzStorageAccount + + + + + + + Set-AzStorageAccountManagementPolicy + Set + AzStorageAccountManagementPolicy + + Creates or modifies the management policy of an Azure Storage account. + + + + The Set-AzStorageAccountManagementPolicy cmdlet creates or modifies the management policy of an Azure Storage account. + + + + Set-AzStorageAccountManagementPolicy + + + + + + + + + + + Example 1: Create or update the management policy of a Storage account with ManagementPolicy rule objects. + $action1 = Add-AzStorageAccountManagementPolicyAction -BaseBlobAction Delete -DaysAfterCreationGreaterThan 100 +$action1 = Add-AzStorageAccountManagementPolicyAction -InputObject $action1 -BaseBlobAction TierToArchive -daysAfterModificationGreaterThan 50 -DaysAfterLastTierChangeGreaterThan 30 +$action1 = Add-AzStorageAccountManagementPolicyAction -InputObject $action1 -BaseBlobAction TierToCool -DaysAfterLastAccessTimeGreaterThan 30 -EnableAutoTierToHotFromCool +$action1 = Add-AzStorageAccountManagementPolicyAction -InputObject $action1 -SnapshotAction Delete -daysAfterCreationGreaterThan 100 +$action1 = Add-AzStorageAccountManagementPolicyAction -InputObject $action1 -BlobVersionAction TierToArchive -daysAfterCreationGreaterThan 100 -DaysAfterLastTierChangeGreaterThan 14 +$filter1 = New-AzStorageAccountManagementPolicyFilter -PrefixMatch ab,cd +$rule1 = New-AzStorageAccountManagementPolicyRule -Name Test -Action $action1 -Filter $filter1 + +$action2 = Add-AzStorageAccountManagementPolicyAction -BaseBlobAction Delete -daysAfterCreationGreaterThan 100 +$blobindexmatch1 = New-AzStorageAccountManagementPolicyBlobIndexMatchObject -Name "tag1" -Value "value1" +$blobindexmatch2 = New-AzStorageAccountManagementPolicyBlobIndexMatchObject -Name "tag2" -Value "value2" +$filter2 = New-AzStorageAccountManagementPolicyFilter -BlobType appendBlob,blockBlob -BlobIndexMatch $blobindexmatch1,$blobindexmatch2 +$rule2 = New-AzStorageAccountManagementPolicyRule -Name Test2 -Action $action2 -Filter $filter2 + +Set-AzStorageAccountManagementPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -Rule $rule1,$rule2 + +ResourceGroupName : myresourcegroup +StorageAccountName : mystorageaccount +Id : /subscriptions/{subscription-id}/resourceGroups/myresourcegroup/providers/Microsoft.Storage/storageAccounts/mystorageaccount/managementPolicies/default +Type : Microsoft.Storage/storageAccounts/managementPolicies +LastModifiedTime : 7/12/2022 8:32:09 AM +Rules : [ + { + "Enabled": true, + "Name": "Test", + "Definition": { + "Actions": { + "BaseBlob": { + "TierToCool": { + "DaysAfterModificationGreaterThan": null, + "DaysAfterLastAccessTimeGreaterThan": 30, + "DaysAfterCreationGreaterThan": null, + "DaysAfterLastTierChangeGreaterThan": null + }, + "TierToArchive": { + "DaysAfterModificationGreaterThan": 50, + "DaysAfterLastAccessTimeGreaterThan": null, + "DaysAfterCreationGreaterThan": null, + "DaysAfterLastTierChangeGreaterThan": 30 + }, + "Delete": { + "DaysAfterModificationGreaterThan": null, + "DaysAfterLastAccessTimeGreaterThan": null, + "DaysAfterCreationGreaterThan": 100, + "DaysAfterLastTierChangeGreaterThan": null + }, + "EnableAutoTierToHotFromCool": true + }, + "Snapshot": { + "Delete": { + "DaysAfterCreationGreaterThan": 100, + "DaysAfterLastTierChangeGreaterThan": null + }, + "TierToCool": null, + "TierToArchive": null + }, + "Version": { + "Delete": null, + "TierToCool": null, + "TierToArchive": { + "DaysAfterCreationGreaterThan": 100, + "DaysAfterLastTierChangeGreaterThan": 14 + } + } + }, + "Filters": { + "PrefixMatch": [ + "ab", + "cd" + ], + "BlobTypes": [ + "blockBlob" + ], + "BlobIndexMatch": null + } + } + }, + { + "Enabled": true, + "Name": "Test2", + "Definition": { + "Actions": { + "BaseBlob": { + "TierToCool": null, + "TierToArchive": null, + "Delete": { + "DaysAfterModificationGreaterThan": null, + "DaysAfterLastAccessTimeGreaterThan": null, + "DaysAfterCreationGreaterThan": 100, + "DaysAfterLastTierChangeGreaterThan": null + }, + "EnableAutoTierToHotFromCool": null + }, + "Snapshot": null, + "Version": null + }, + "Filters": { + "PrefixMatch": null, + "BlobTypes": [ + "appendBlob", + "blockBlob" + ], + "BlobIndexMatch": [ + { + "Name": "tag1", + "Op": "==", + "Value": "value1" + }, + { + "Name": "tag2", + "Op": "==", + "Value": "value2" + } + ] + } + } + } + ] + + This command first create 2 ManagementPolicy rule objects, then creates or updates the management policy of a Storage account with the 2 ManagementPolicy rule objects. + + + + + + Example 2: Create or update the management policy of a Storage account with a Json format policy. + Set-AzStorageAccountManagementPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -Policy (@{ + Rules=(@{ + Enabled=$true; + Name="Test"; + Definition=(@{ + Actions=(@{ + BaseBlob=(@{ + TierToCool=@{DaysAfterLastAccessTimeGreaterThan=30}; + TierToArchive=@{DaysAfterModificationGreaterThan=50;DaysAfterLastTierChangeGreaterThan=30}; + Delete=@{DaysAfterCreationGreaterThan=100}; + EnableAutoTierToHotFromCool="true"; + }); + Snapshot=(@{ + Delete=@{DaysAfterCreationGreaterThan=100} + TierToArchive=@{DaysAfterCreationGreaterThan=50}; + TierToCool=@{DaysAfterCreationGreaterThan=60}; + }); + Version=(@{ + Delete=@{DaysAfterCreationGreaterThan=100}; + TierToArchive=@{DaysAfterCreationGreaterThan=50;DaysAfterLastTierChangeGreaterThan=20}; + TierToCool=@{DaysAfterCreationGreaterThan=60}; + }); + }); + Filters=(@{ + BlobTypes=@("blockBlob"); + PrefixMatch=@("prefix1","prefix2"); + }) + }) + }, + @{ + Enabled=$false; + Name="Test2"; + Definition=(@{ + Actions=(@{ + BaseBlob=(@{ + Delete=@{DaysAfterCreationGreaterThan=100}; + }); + }); + Filters=(@{ + BlobTypes=@("blockBlob","appendBlob"); + BlobIndexMatch=(@{Name="tag1";Op="==";Value ="value1"},@{Name="tag2";Op="==";Value="value2"}) + }) + }) + }) +}) + + ```output ResourceGroupName : myresourcegroup StorageAccountName : mystorageaccount Id : /subscriptions/{subscription-id}/resourceGroups/myresourcegroup/providers/Microsoft.Storage/storageAccounts/mystorageaccount/managementPolicies/default Type : Microsoft.Storage/storageAccounts/managementPolicies LastModifiedTime : 7/12/2022 8:34:05 AM Rules : [ { "Enabled": true, "Name": "Test", "Definition": { "Actions": { "BaseBlob": { "TierToCool": { "DaysAfterModificationGreaterThan": null, "DaysAfterLastAccessTimeGreaterThan": 30, "DaysAfterCreationGreaterThan": null, "DaysAfterLastTierChangeGreaterThan": null }, "TierToArchive": { "DaysAfterModificationGreaterThan": 50, "DaysAfterLastAccessTimeGreaterThan": null, "DaysAfterCreationGreaterThan": null, "DaysAfterLastTierChangeGreaterThan": 30 }, "Delete": { "DaysAfterModificationGreaterThan": null, "DaysAfterLastAccessTimeGreaterThan": null, "DaysAfterCreationGreaterThan": 100, "DaysAfterLastTierChangeGreaterThan": null }, "EnableAutoTierToHotFromCool": true }, "Snapshot": { "Delete": { "DaysAfterCreationGreaterThan": 100, "DaysAfterLastTierChangeGreaterThan": null }, "TierToCool": { "DaysAfterCreationGreaterThan": 60, "DaysAfterLastTierChangeGreaterThan": null }, "TierToArchive": { "DaysAfterCreationGreaterThan": 50, "DaysAfterLastTierChangeGreaterThan": null } }, "Version": { "Delete": { "DaysAfterCreationGreaterThan": 100, "DaysAfterLastTierChangeGreaterThan": null }, "TierToCool": { "DaysAfterCreationGreaterThan": 60, "DaysAfterLastTierChangeGreaterThan": null }, "TierToArchive": { "DaysAfterCreationGreaterThan": 50, "DaysAfterLastTierChangeGreaterThan": 20 } } }, "Filters": { "PrefixMatch": [ "prefix1", "prefix2" ], "BlobTypes": [ "blockBlob" ], "BlobIndexMatch": null } } }, { "Enabled": false, "Name": "Test2", "Definition": { "Actions": { "BaseBlob": { "TierToCool": null, "TierToArchive": null, "Delete": { "DaysAfterModificationGreaterThan": null, "DaysAfterLastAccessTimeGreaterThan": null, "DaysAfterCreationGreaterThan": 100, "DaysAfterLastTierChangeGreaterThan": null }, "EnableAutoTierToHotFromCool": null }, "Snapshot": null, "Version": null }, "Filters": { "PrefixMatch": null, "BlobTypes": [ "blockBlob", "appendBlob" ], "BlobIndexMatch": [ { "Name": "tag1", "Op": "==", "Value": "value1" }, { "Name": "tag2", "Op": "==", "Value": "value2" } ] } } } ] ``` + This command creates or updates the management policy of a Storage account with a json format policy. + ### Example 3: Get the management policy from a Storage account, then set it to another Storage account. ```powershell $outputPolicy = Get-AzStorageAccountManagementPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" | Set-AzStorageAccountManagementPolicy -ResourceGroupName "myresourcegroup2" -AccountName "mystorageaccount2" ``` + This command first gets the management policy from a Storage account, then set it to another Storage account. + ## PARAMETERS + ### -DefaultProfile The credentials, account, tenant, and subscription used for communication with Azure. + ```yaml Type: Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer Parameter Sets: (All) Aliases: AzContext, AzureRmContext, AzureCredential + Required: False Position: Named Default value: None Accept pipeline input: False Accept wildcard characters: False ``` + ### -Policy Management Policy Object to Set + ```yaml Type: Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicy Parameter Sets: AccountNamePolicyObject, AccountObjectPolicyObject, AccountResourceIdPolicyObject Aliases: ManagementPolicy + Required: True Position: Named Default value: None Accept pipeline input: True (ByValue) Accept wildcard characters: False ``` + ### -ResourceGroupName Resource Group Name. + ```yaml Type: System.String Parameter Sets: AccountNamePolicyRule, AccountNamePolicyObject Aliases: + Required: True Position: 0 Default value: None Accept pipeline input: False Accept wildcard characters: False ``` + ### -Rule The Management Policy rules. Get the object with New-AzStorageAccountManagementPolicyRule cmdlet. + ```yaml Type: Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyRule[] Parameter Sets: AccountNamePolicyRule, AccountObjectPolicyRule, AccountResourceIdPolicyRule Aliases: + Required: True Position: Named Default value: None Accept pipeline input: True (ByValue) Accept wildcard characters: False ``` + ### -StorageAccount Storage account object + ```yaml Type: Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount Parameter Sets: AccountObjectPolicyRule, AccountObjectPolicyObject Aliases: + Required: True Position: Named Default value: None Accept pipeline input: True (ByValue) Accept wildcard characters: False ``` + ### -StorageAccountName Storage Account Name. + ```yaml Type: System.String Parameter Sets: AccountNamePolicyRule, AccountNamePolicyObject Aliases: AccountName + Required: True Position: 1 Default value: None Accept pipeline input: False Accept wildcard characters: False ``` + ### -StorageAccountResourceId Storage Account Resource Id. + ```yaml Type: System.String Parameter Sets: AccountResourceIdPolicyRule, AccountResourceIdPolicyObject Aliases: + Required: True Position: 0 Default value: None Accept pipeline input: True (ByPropertyName) Accept wildcard characters: False ``` + ### -Confirm Prompts you for confirmation before running the cmdlet. + ```yaml Type: System.Management.Automation.SwitchParameter Parameter Sets: (All) Aliases: cf + Required: False Position: Named Default value: None Accept pipeline input: False Accept wildcard characters: False ``` + ### -WhatIf Shows what would happen if the cmdlet runs. The cmdlet is not run. + ```yaml Type: System.Management.Automation.SwitchParameter Parameter Sets: (All) Aliases: wi + Required: False Position: Named Default value: None Accept pipeline input: False Accept wildcard characters: False ``` + ### CommonParameters This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters (http://go.microsoft.com/fwlink/?LinkID=113216). + ## INPUTS + ### System.String + ## OUTPUTS + ### Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicy + ## NOTES + ## RELATED LINKS + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/Az.storage/set-Azstorageaccountmanagementpolicy + + + + + + Set-AzStorageBlobInventoryPolicy + Set + AzStorageBlobInventoryPolicy + + Creates or updates blob inventory policy in a Storage account. + + + + The Set-AzStorageBlobInventoryPolicy cmdlet creates or updates blob inventory policy in a Storage account. + + + + Set-AzStorageBlobInventoryPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Disabled + + The Blob Inventory Policy is enabled by default, specify this parameter to disable it. + + + System.Management.Automation.SwitchParameter + + + False + + + Rule + + The Blob Inventory Policy rules. Get the object with New-AzStorageBlobInventoryPolicyRule cmdlet. + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicyRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicyRule[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobInventoryPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Disabled + + The Blob Inventory Policy is enabled by default, specify this parameter to disable it. + + + System.Management.Automation.SwitchParameter + + + False + + + Rule + + The Blob Inventory Policy rules. Get the object with New-AzStorageBlobInventoryPolicyRule cmdlet. + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicyRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicyRule[] + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobInventoryPolicy + + StorageAccountResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Disabled + + The Blob Inventory Policy is enabled by default, specify this parameter to disable it. + + + System.Management.Automation.SwitchParameter + + + False + + + Rule + + The Blob Inventory Policy rules. Get the object with New-AzStorageBlobInventoryPolicyRule cmdlet. + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicyRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicyRule[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobInventoryPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Policy + + Blob Inventory Policy Object to Set + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobInventoryPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Policy + + Blob Inventory Policy Object to Set + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobInventoryPolicy + + StorageAccountResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Policy + + Blob Inventory Policy Object to Set + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Disabled + + The Blob Inventory Policy is enabled by default, specify this parameter to disable it. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Policy + + Blob Inventory Policy Object to Set + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + Rule + + The Blob Inventory Policy rules. Get the object with New-AzStorageBlobInventoryPolicyRule cmdlet. + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicyRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicyRule[] + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + StorageAccountResourceId + + Storage Account Resource Id. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicyRule[] + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicySchema + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicy + + + + + + + + + + + + + + Example 1: Create or update the blob inventory policy with BlobInventoryPolicy rule objects. + PS C:\> $rule1 = New-AzStorageBlobInventoryPolicyRule -Name Test1 -Destination $containerName -Disabled -Format Csv -Schedule Daily -ContainerSchemaField Name,Metadata,PublicAccess,Last-mOdified,LeaseStatus,LeaseState,LeaseDuration,HasImmutabilityPolicy,HasLegalHold -PrefixMatch con1,con2 + +PS C:\> $rule2 = New-AzStorageBlobInventoryPolicyRule -Name Test2 -Destination $containerName -Format Parquet -Schedule Weekly -IncludeBlobVersion -IncludeSnapshot -BlobType blockBlob,appendBlob -PrefixMatch aaa,bbb ` + -BlobSchemaField name,Creation-Time,Last-Modified,Content-Length,Content-MD5,BlobType,AccessTier,AccessTierChangeTime,Expiry-Time,hdi_isfolder,Owner,Group,Permissions,Acl,Metadata + +PS C:\> $rule3 = New-AzStorageBlobInventoryPolicyRule -Name Test3 -Destination $containerName -Format Parquet -Schedule Weekly -IncludeBlobVersion -IncludeSnapshot -IncludeDeleted -BlobType blockBlob,appendBlob -PrefixMatch aaa,bbb ` + -ExcludePrefix ccc,ddd -BlobSchemaField name,Last-Modified,BlobType,AccessTier,AccessTierChangeTime,Content-Type,Content-CRC64,CopyId,x-ms-blob-sequence-number,TagCount + +PS C:\> $policy = Set-AzStorageBlobInventoryPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -Disabled -Rule $rule1,$rule2,$rule3 + +PS C:\> $policy + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegroup +Name : DefaultInventoryPolicy +Id : /subscriptions/{subscription-Id}/resourceGroups/myresourcegroup/providers/Microsoft.Storage/storageAccounts/mystorageaccount/inventoryPolicies/default +Type : Microsoft.Storage/storageAccounts/inventoryPolicies +LastModifiedTime : 5/12/2021 8:53:38 AM +Enabled : False +Rules : {Test1, Test2, Test3} + +PS C:\> $policy.Rules + +Name Enabled Destination ObjectType Format Schedule IncludeSnapshots IncludeBlobVersions IncludeDeleted BlobTypes PrefixMatch ExcludePrefix SchemaFields +---- ------- ----------- ---------- ------ -------- ---------------- ------------------- -------------- --------- ----------- ------------- ------------ +Test1 False containername Container Csv Daily {con1, con2} {Name, Metadata, PublicAccess, Last-Modified...} +Test2 True containername Blob Parquet Weekly True True {blockBlob, appendBlob} {aaa, bbb} {Name, Creation-Time, Last-Modified, Content-Length...} +Test3 True containername Blob Parquet Weekly True True True {blockBlob, appendBlob} {aaa, bbb} {ccc, ddd} {Name, Content-Type, Content-CRC64, Last-Modified...} + + This first 2 commands create 3 BlobInventoryPolicy rule objects: rule "Test1" for contaienr inventory; rule "Test2" and "Test3" for blob inventory. The following command sets blob inventory policy to a Storage account with the 2 rule objects, then show the updated policy and rules properties. + + + + + + Example 2: Create or update the blob inventory policy of a Storage account with a Json format policy. + PS C:\> $policy = Set-AzStorageBlobInventoryPolicy -ResourceGroupName $resourceGroupName -StorageAccountName $accountName -Policy (@{ + Enabled=$true; + Rules=(@{ + Enabled=$true; + Name="Test1"; + Destination=$containerName; + Definition=(@{ + ObjectType="Blob"; + Format="Csv"; + Schedule="Weekly"; + SchemaFields=@("name","Content-Length","BlobType","Snapshot","VersionId","IsCurrentVersion"); + Filters=(@{ + BlobTypes=@("blockBlob","appendBlob"); + PrefixMatch=@("prefix1","prefix2"); + IncludeSnapshots=$true; + IncludeBlobVersions=$true; + }) + }) + }, + @{ + Enabled=$false; + Name="Test2"; + Destination=$containerName; + Definition=(@{ + ObjectType="Container"; + Format="Parquet"; + Schedule="Daily"; + SchemaFields=@("name","Metadata","PublicAccess","DefaultEncryptionScope","DenyEncryptionScopeOverride"); + Filters=(@{ + PrefixMatch=@("conpre1","conpre2"); + }) + }) + }, + @{ + Enabled=$false; + Name="Test3"; + Destination=$containerName; + Definition=(@{ + ObjectType="Blob"; + Format="Csv"; + Schedule="Weekly"; + SchemaFields=@("name","Deleted","RemainingRetentionDays","Content-Type","Content-Language","Cache-Control","Content-Disposition"); + Filters=(@{ + BlobTypes=@("blockBlob","appendBlob"); + PrefixMatch=@("conpre1","conpre2"); + ExcludePrefix=@("expre1","expre2"); + IncludeDeleted=$true + }) + }) + }) + }) + + +PS C:\> $policy + +StorageAccountName : weiadlscanary1 +ResourceGroupName : weitry +Name : DefaultInventoryPolicy +Id : /subscriptions/{subscription-Id}/resourceGroups/weitry/providers/Microsoft.Storage/storageAccounts/weiadlscanary1/inventoryPolicies/default +Type : Microsoft.Storage/storageAccounts/inventoryPolicies +LastModifiedTime : 5/12/2021 9:02:21 AM +Enabled : True +Rules : {Test1, Test2, Test3} + +PS C:\> $policy.Rules + +Name Enabled Destination ObjectType Format Schedule IncludeSnapshots IncludeBlobVersions IncludeDeleted BlobTypes PrefixMatch ExcludePrefix SchemaFields +---- ------- ----------- ---------- ------ -------- ---------------- ------------------- -------------- --------- ----------- ------------- ------------ +Test1 True containername Blob Csv Weekly True True {blockBlob, appendBlob} {prefix1, prefix2} {Name, Content-Length, BlobType, Snapshot...} +Test2 False containername Container Parquet Daily {conpre1, conpre2} {Name, Metadata, PublicAccess} +Test3 False containername Blob Csv Weekly True {blockBlob, appendBlob} {conpre1, conpre2} {expre1, expre2} {Name, Content-Type, Content-Cache, Content-Language...} {name, Metadata, PublicAccess} + + This command creates or updates the blob inventory policy of a Storage account with a json format policy. + + + + + + Example 3: Get the blob inventory policy from a Storage account, then set it to another Storage account. + $policy = Get-AzStorageBlobInventoryPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" | Set-AzStorageBlobInventoryPolicy -ResourceGroupName "myresourcegroup2" -AccountName "mystorageaccount2" + + This command first gets the blob inventory policy from a Storage account, then set it to another Storage account. The proeprties: Destination, Enabled, and Rules of the policy will be set to the destination account. + + + + + + Example 4: Get the blob inventory policy rules from a Storage account, then set it to another Storage account. + $policy = ,((Get-AzStorageBlobInventoryPolicy -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount").Rules) | Set-AzStorageBlobInventoryPolicy -ResourceGroupName "myresourcegroup2" -AccountName "mystorageaccount2" -Disabled + + This command first gets the blob inventory policy from a Storage account, then set it's rules to another Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstorageblobinventorypolicy + + + + + + Set-AzStorageLocalUser + Set + AzStorageLocalUser + + Creates or updates a specified local user in a storage account. + + + + The Set-AzStorageLocalUser cmdlet creates or updates a specified local user in a storage account. To run this cmdlet, the storage account must has already set EnableLocalUser as true. + + + + Set-AzStorageLocalUser + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + HasSharedKey + + Whether shared key exists. Set it to false to remove existing shared key. + + System.Boolean + + System.Boolean + + + None + + + HasSshKey + + Whether SSH key exists. Set it to false to remove existing SSH key. + + System.Boolean + + System.Boolean + + + None + + + HasSshPassword + + Whether SSH password exists. Set it to false to remove existing SSH password. + + System.Boolean + + System.Boolean + + + None + + + HomeDirectory + + Local user home directory + + System.String + + System.String + + + None + + + PermissionScope + + The permission scopes of the local user. Get the object with New-AzStorageLocalUserPermissionScope cmdlet. + + Microsoft.Azure.Commands.Management.Storage.Models.PSPermissionScope[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSPermissionScope[] + + + None + + + SshAuthorizedKey + + Local user ssh authorized keys for SFTP. Get the object with New-AzStorageLocalUserSshPublicKey cmdlet. + + Microsoft.Azure.Commands.Management.Storage.Models.PSSshPublicKey[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSSshPublicKey[] + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageLocalUser + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + HasSharedKey + + Whether shared key exists. Set it to false to remove existing shared key. + + System.Boolean + + System.Boolean + + + None + + + HasSshKey + + Whether SSH key exists. Set it to false to remove existing SSH key. + + System.Boolean + + System.Boolean + + + None + + + HasSshPassword + + Whether SSH password exists. Set it to false to remove existing SSH password. + + System.Boolean + + System.Boolean + + + None + + + HomeDirectory + + Local user home directory + + System.String + + System.String + + + None + + + PermissionScope + + The permission scopes of the local user. Get the object with New-AzStorageLocalUserPermissionScope cmdlet. + + Microsoft.Azure.Commands.Management.Storage.Models.PSPermissionScope[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSPermissionScope[] + + + None + + + SshAuthorizedKey + + Local user ssh authorized keys for SFTP. Get the object with New-AzStorageLocalUserSshPublicKey cmdlet. + + Microsoft.Azure.Commands.Management.Storage.Models.PSSshPublicKey[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSSshPublicKey[] + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + HasSharedKey + + Whether shared key exists. Set it to false to remove existing shared key. + + System.Boolean + + System.Boolean + + + None + + + HasSshKey + + Whether SSH key exists. Set it to false to remove existing SSH key. + + System.Boolean + + System.Boolean + + + None + + + HasSshPassword + + Whether SSH password exists. Set it to false to remove existing SSH password. + + System.Boolean + + System.Boolean + + + None + + + HomeDirectory + + Local user home directory + + System.String + + System.String + + + None + + + PermissionScope + + The permission scopes of the local user. Get the object with New-AzStorageLocalUserPermissionScope cmdlet. + + Microsoft.Azure.Commands.Management.Storage.Models.PSPermissionScope[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSPermissionScope[] + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + SshAuthorizedKey + + Local user ssh authorized keys for SFTP. Get the object with New-AzStorageLocalUserSshPublicKey cmdlet. + + Microsoft.Azure.Commands.Management.Storage.Models.PSSshPublicKey[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSSshPublicKey[] + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + UserName + + The name of local user. The username must contain lowercase letters and numbers only. It must be unique only within the storage account. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + + + + + + + + + + + + + ----------- Example 1: Create or update a local user ----------- + PS C:\> $sshkey1 = New-AzStorageLocalUserSshPublicKey -Key "ssh-rsa base64encodedkey=" -Description "sshpublickey name1" + +PS C:\> $permissionScope1 = New-AzStorageLocalUserPermissionScope -Permission rw -Service blob -ResourceName container1 + +PS C:\> $localuser = Set-AzStorageLocalUser -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -UserName testuser1 -HomeDirectory "/" -SshAuthorizedKey $sshkey1 -PermissionScope $permissionScope1 -HasSharedKey $true -HasSshKey $true -HasSshPassword $true + +PS C:\> $localuser + + ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name Sid HomeDirectory HasSharedKey HasSshKey HasSshPassword PermissionScopes +---- --- ------------- ------------ --------- -------------- ---------------- +testuser1 S-1-2-0-0000000000-000000000-0000000000-0000 / True True True [container1] + +PS C:\> $localuser.SshAuthorizedKeys + +Description Key +----------- --- +sshpublickey name1 ssh-rsa base64encodedkey= + +PS C:\> $localuser.PermissionScopes + +Permissions Service ResourceName +----------- ------- ------------ +rw blob container1 + + The first command creates a local SSH public key object. Note that the key follows the format of `<algorithm> <data>` where data is the base64 encoded contents of the public key. The second command creates a local permission scope object that defines the container level access for the local user. The third command creates or updates the local user, using the local objects from the first 2 commands. The final command shows the local user properties. + + + + + + Example 2: Create or update a local user by input permission scope and ssh key with json + Set-AzStorageLocalUser -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -UserName testuser1 -HomeDirectory "/" -HasSharedKey $true -HasSshKey $true -HasSshPassword $true ` + -SshAuthorizedKey (@{ + Description="sshpulickey name1"; + Key="ssh-rsa base64encodedkey="; + }, + @{ + Description="sshpulickey name2"; + Key="ssh-rsa otherbase64encodedkey="; + }) ` + -PermissionScope (@{ + Permissions="rw"; + Service="blob"; + ResourceName="container1"; + }, + @{ + Permissions="rwd"; + Service="share"; + ResourceName="share1"; + }) + +ResourceGroupName: weitry, StorageAccountName: weisftp3 + +Name Sid HomeDirectory HasSharedKey HasSshKey HasSshPassword PermissionScopes +---- --- ------------- ------------ --------- -------------- ---------------- +testuser1 S-1-2-0-0000000000-000000000-0000000000-0000 / True True True [container1,...] + + This command creates or updates a local user by input permission scope and ssh key with json. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstoragelocaluser + + + + + + Set-AzStorageObjectReplicationPolicy + Set + AzStorageObjectReplicationPolicy + + Creates or updates the specified object replication policy in a Storage account. + + + + The Set-AzStorageObjectReplicationPolicy cmdlet creates or updates the specified object replication policy in a Storage account. + + + + Set-AzStorageObjectReplicationPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestinationAccount + + Object Replication Policy DestinationAccount, if SourceAccount is account name it should be account name, else should be account resource id. Default value will be the input StorageAccountName, or the resouceID of the account. + + System.String + + System.String + + + None + + + PolicyId + + Object Replication Policy Id. It should be a GUID or 'default'. If not input the PolicyId, will use 'default', which means to create a new policy and the Id of the new policy will be returned in the created policy. + + System.String + + System.String + + + None + + + Rule + + Object Replication Policy Rules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicyRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicyRule[] + + + None + + + SourceAccount + + Object Replication Policy SourceAccount. It should be resource id if allowCrossTenantReplication is false.. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageObjectReplicationPolicy + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestinationAccount + + Object Replication Policy DestinationAccount, if SourceAccount is account name it should be account name, else should be account resource id. Default value will be the input StorageAccountName, or the resouceID of the account. + + System.String + + System.String + + + None + + + PolicyId + + Object Replication Policy Id. It should be a GUID or 'default'. If not input the PolicyId, will use 'default', which means to create a new policy and the Id of the new policy will be returned in the created policy. + + System.String + + System.String + + + None + + + Rule + + Object Replication Policy Rules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicyRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicyRule[] + + + None + + + SourceAccount + + Object Replication Policy SourceAccount. It should be resource id if allowCrossTenantReplication is false.. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageObjectReplicationPolicy + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Object Replication Policy Object to Set to the specified Account. + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestinationAccount + + Object Replication Policy DestinationAccount, if SourceAccount is account name it should be account name, else should be account resource id. Default value will be the input StorageAccountName, or the resouceID of the account. + + System.String + + System.String + + + None + + + InputObject + + Object Replication Policy Object to Set to the specified Account. + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + + None + + + PolicyId + + Object Replication Policy Id. It should be a GUID or 'default'. If not input the PolicyId, will use 'default', which means to create a new policy and the Id of the new policy will be returned in the created policy. + + System.String + + System.String + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + Rule + + Object Replication Policy Rules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicyRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicyRule[] + + + None + + + SourceAccount + + Object Replication Policy SourceAccount. It should be resource id if allowCrossTenantReplication is false.. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + + + + + + + + + + + + + Example 1: Set object replication policy to both destination and source account. + PS C:\> $rule1 = New-AzStorageObjectReplicationPolicyRule -SourceContainer src1 -DestinationContainer dest1 + +PS C:\> $rule2 = New-AzStorageObjectReplicationPolicyRule -SourceContainer src -DestinationContainer dest -MinCreationTime 2019-01-01T16:00:00Z -PrefixMatch a,abc,dd + +PS C:\> $srcAccount = Get-AzStorageAccount -ResourceGroupName "myresourcegroup" -AccountName "mysourceaccount" + +PS C:\> Set-AzStorageObjectReplicationPolicy -ResourceGroupName "myresourcegroup" -AccountName "mydestaccount" -PolicyId default -SourceAccount $srcAccount.Id -Rule $rule1,$rule2 + +ResourceGroupName StorageAccountName PolicyId EnabledTime SourceAccount DestinationAccount Rules +----------------- ------------------ -------- ----------- ------------- ------------------ ----- +myresourcegroup mydestaccount 56bfa11c-81ef-4f8d-b307-5e5386e16fba mysourceaccount mydestaccount [5fa8b1d6-4985-4abd-a0b3-ec4d07295a43,...] + +PS C:\> $destPolicy = Get-AzStorageObjectReplicationPolicy -ResourceGroupName "myresourcegroup" -AccountName "mydestaccount" + +PS C:\> Set-AzStorageObjectReplicationPolicy -ResourceGroupName "myresourcegroup" -AccountName "mysourceaccount" -InputObject $destPolicy + +ResourceGroupName StorageAccountName PolicyId EnabledTime SourceAccount DestinationAccount Rules +----------------- ------------------ -------- ----------- ------------- ------------------ ----- +myresourcegroup mysourceaccount 56bfa11c-81ef-4f8d-b307-5e5386e16fba mysourceaccount mydestaccount [5fa8b1d6-4985-4abd-a0b3-ec4d07295a43,...] + + This command sets object replication policy to both destination and source account. First create 2 object replication policy rules, and set policy to destination account with the 2 rules and source account resource Id. Then get the object replication policy from destination account and set to source account. Please note, when storage account has AllowCrossTenantReplication as false, SourceAccount and DestinationAccount should be account resource Id. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstorageobjectreplicationpolicy + + + + + + Stop-AzStorageAccountHierarchicalNamespaceUpgrade + Stop + AzStorageAccountHierarchicalNamespaceUpgrade + + Aborts an ongoing HierarchicalNamespace upgrade task on a storage account. + + + + The Stop-AzStorageAccountHierarchicalNamespaceUpgrade cmdlet can aborts an ongoing upgrade to enable HierarchicalNamespace task on a storage account. + + + + Stop-AzStorageAccountHierarchicalNamespaceUpgrade + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to Failover the Account + + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + PassThru + + Display the storage account. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Stop-AzStorageAccountHierarchicalNamespaceUpgrade + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + Name + + Storage Account Name. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to Failover the Account + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Display the storage account. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to Failover the Account + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Name + + Storage Account Name. + + System.String + + System.String + + + None + + + PassThru + + Display the storage account. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + Example 1: Abort HierarchicalNamespace upgrade task on a stroage account + Stop-AzStorageAccountHierarchicalNamespaceUpgrade -ResourceGroupName $rgname -Name $accountName -Force -PassThru + +True + + This command aborts an ongoing HierarchicalNamespace upgrade task on a storage account. The task can be invoke with cmdlet 'Invoke-AzStorageAccountHierarchicalNamespaceUpgrade' with '-RequestType Upgrade'. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/stop-azstorageaccounthierarchicalnamespaceupgrade + + + + + + Update-AzRmStorageContainer + Update + AzRmStorageContainer + + Modifies a Storage blob container + + + + The Update-AzRmStorageContainer cmdlet modifies a Storage blob container + + + + Update-AzRmStorageContainer + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + Metadata + + Container Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + PublicAccess + + Container PublicAccess + + + Container + Blob + None + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzRmStorageContainer + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Metadata + + Container Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + PublicAccess + + Container PublicAccess + + + Container + Blob + None + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzRmStorageContainer + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Metadata + + Container Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + PublicAccess + + Container PublicAccess + + + Container + Blob + None + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Storage container object + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + None + + + Metadata + + Container Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Container Name + + System.String + + System.String + + + None + + + PublicAccess + + Container PublicAccess + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + Microsoft.Azure.Commands.Management.Storage.Models.PSPublicAccess + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + + + + + + + + + + + + Example 1: Modifies a Storage blob container's metadata and public access with Storage account name and container name + Update-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" -ContainerName "myContainer" -PublicAccess Container -Metadata @{tag0="value0";tag1="value1"} + + This command modifies a Storage blob container's metadata and public access with Storage account name and container name. + + + + + + Example 2: Disable public access on a Storage blob container with Storage account object and container name + $accountObject = Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" +Update-AzRmStorageContainer -StorageAccount $accountObject -ContainerName "myContainer" -PublicAccess None + + This command disables public access on a Storage blob container with Storage account object and container name. + + + + + + Example 3: Set public access as Blob for all Storage blob containers in a Storage account with pipeline + Get-AzRmStorageContainer -ResourceGroupName "myResourceGroup" -AccountName "myStorageAccount" | Update-AzRmStorageContainer -PublicAccess Blob + + This command set public access as Blob for all Storage blob containers in a Storage account with pipeline. + + + + + + - Example 4: Update an Azure storage container with RootSquash - + PS C:\> $container = Update-AzRmStorageContainer -ResourceGroupName "myersourcegroup" -AccountName "mystorageaccount" -Name "mycontainer" -RootSquash NoRootSquash + +PS C:\> $container.EnableNfsV3AllSquash +False + +PS C:\> $container.EnableNfsV3RootSquash +False + + This command updates a storage container, with RootSquash property set as NoRootSquash. RootSquash only works on a storage account that enabled NfsV3. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/update-azrmstoragecontainer + + + + + + Update-AzRmStorageShare + Update + AzRmStorageShare + + Modifies a Storage file share. + + + + The New-AzRmStorageShare cmdlet modifies a Storage file share. + + + + Update-AzRmStorageShare + + AccessTier + + Access tier for specific share. StorageV2 account can choose between TransactionOptimized (default), Hot, and Cool. FileStorage account can choose Premium. + + + TransactionOptimized + Premium + Hot + Cool + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Storage Share object + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + None + + + Metadata + + Share Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + QuotaGiB + + Share Quota in Gibibyte. + + System.Int32 + + System.Int32 + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzRmStorageShare + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + AccessTier + + Access tier for specific share. StorageV2 account can choose between TransactionOptimized (default), Hot, and Cool. FileStorage account can choose Premium. + + + TransactionOptimized + Premium + Hot + Cool + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Metadata + + Share Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Share Name + + System.String + + System.String + + + None + + + QuotaGiB + + Share Quota in Gibibyte. + + System.Int32 + + System.Int32 + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzRmStorageShare + + AccessTier + + Access tier for specific share. StorageV2 account can choose between TransactionOptimized (default), Hot, and Cool. FileStorage account can choose Premium. + + + TransactionOptimized + Premium + Hot + Cool + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Metadata + + Share Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Share Name + + System.String + + System.String + + + None + + + QuotaGiB + + Share Quota in Gibibyte. + + System.Int32 + + System.Int32 + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzRmStorageShare + + ResourceId + + Input a File Share Resource Id. + + System.String + + System.String + + + None + + + AccessTier + + Access tier for specific share. StorageV2 account can choose between TransactionOptimized (default), Hot, and Cool. FileStorage account can choose Premium. + + + TransactionOptimized + Premium + Hot + Cool + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Metadata + + Share Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + QuotaGiB + + Share Quota in Gibibyte. + + System.Int32 + + System.Int32 + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + + NoRootSquash + RootSquash + AllSquash + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AccessTier + + Access tier for specific share. StorageV2 account can choose between TransactionOptimized (default), Hot, and Cool. FileStorage account can choose Premium. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Storage Share object + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + None + + + Metadata + + Share Metadata + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Name + + Share Name + + System.String + + System.String + + + None + + + QuotaGiB + + Share Quota in Gibibyte. + + System.Int32 + + System.Int32 + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Input a File Share Resource Id. + + System.String + + System.String + + + None + + + RootSquash + + Sets reduction of the access rights for the remote superuser. Possible values include: 'NoRootSquash', 'RootSquash', 'AllSquash' + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + + + + + + + + + + + + Example 1: Modifies a Storage file share's metadata and share quota with Storage account name and share name + PS C:\>$share = Update-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" -Name "myshare" -QuotaGiB 200 -Metadata @{tag0="value0";tag1="value1"} + +PS C:\>$share + + ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes +---- -------- ---------------- ---------- ------- ------- --------------- +myshare 200 + +PS C:\>$share.Metadata + +Key Value +--- ----- +tag0 value0 +tag1 value1 + + This command modifies a Storage file share's metadata and share quota with Storage account name and share name, and show the modify result with the returned file share object. + + + + + + Example 2: Modifies metadata on a Storage file share with Storage account object and share name + $accountObject = Get-AzStorageAccount -ResourceGroupName "myResourceGroup" -StorageAccountName "myStorageAccount" +$share = Update-AzRmStorageShare -StorageAccount $accountObject -Name "myshare" -Metadata @{tag0="value0";tag1="value1"} + + This command modifies metadata on a Storage file share with Storage account object and share name. + + + + + + Example 3: Modifies share quota for all Storage file shares in a Storage account with pipeline + Get-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" | Update-AzRmStorageShare -QuotaGiB 5000 + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes +---- -------- ---------------- ---------- ------- ------- --------------- +share1 5000 +share2 5000 + + This command modifies share quota as 5000 GiB for all Storage file shares in a Storage account with pipeline. + + + + + + Example 4: Modify a Storage file share with accesstier as Cool + $share = Update-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" -Name "myshare" -AccessTier Cool + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes +---- -------- ---------------- ---------- ------- ------- --------------- +myshare Cool + + This command modifies a Storage file share with accesstier as Cool. + + + + + + Example 5: Modifies rootsquash for a file shares in a Storage account + PS C:\>$share = Update-AzRmStorageShare -ResourceGroupName "myresourcegroup" -StorageAccountName "mystorageaccount" -Name "myshare" -RootSquash NoRootSquash + +PS C:\>$share + + ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name QuotaGiB EnabledProtocols AccessTier Deleted Version ShareUsageBytes +---- -------- ---------------- ---------- ------- ------- --------------- +myshare + +PS C:\> $share.RootSquash +NoRootSquash + + This command modifies share RootSquash property to NoRootSquash. RootSquash property is only avaialbe on share with EnabledProtocol as NFS. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/update-azrmstorageshare + + + + + + Update-AzStorageAccountNetworkRuleSet + Update + AzStorageAccountNetworkRuleSet + + Update the NetworkRule property of a Storage account + + + + The Update-AzStorageAccountNetworkRuleSet cmdlet updates the NetworkRule property of a Storage account + + + + Update-AzStorageAccountNetworkRuleSet + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + Bypass + + The Bypass value to update to the NetworkRule property of a Storage account. The allowed value are none or any combination of: • Logging • Metrics • Azureservices + + + None + Logging + Metrics + AzureServices + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetWorkRuleBypassEnum + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetWorkRuleBypassEnum + + + None + + + DefaultAction + + The DefaultAction value to update to the NetworkRule property of a Storage account. The allowed Options: • Allow • Deny + + + Allow + Deny + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetWorkRuleDefaultActionEnum + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetWorkRuleDefaultActionEnum + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IPRule + + The Array of IpRule objects to update to the NetworkRule Property of a Storage account. + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + + None + + + ResourceAccessRule + + Storage Account NetworkRule ResourceAccessRules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSResourceAccessRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSResourceAccessRule[] + + + None + + + VirtualNetworkRule + + The Array of VirtualNetworkRule objects to update to the NetworkRule Property of a Storage account. + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Bypass + + The Bypass value to update to the NetworkRule property of a Storage account. The allowed value are none or any combination of: • Logging • Metrics • Azureservices + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetWorkRuleBypassEnum + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetWorkRuleBypassEnum + + + None + + + DefaultAction + + The DefaultAction value to update to the NetworkRule property of a Storage account. The allowed Options: • Allow • Deny + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetWorkRuleDefaultActionEnum + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetWorkRuleDefaultActionEnum + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IPRule + + The Array of IpRule objects to update to the NetworkRule Property of a Storage account. + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + + None + + + Name + + Specifies the name of the Storage account. + + System.String + + System.String + + + None + + + ResourceAccessRule + + Storage Account NetworkRule ResourceAccessRules. + + Microsoft.Azure.Commands.Management.Storage.Models.PSResourceAccessRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSResourceAccessRule[] + + + None + + + ResourceGroupName + + Specifies the name of the resource group contains the Storage account. + + System.String + + System.String + + + None + + + VirtualNetworkRule + + The Array of VirtualNetworkRule objects to update to the NetworkRule Property of a Storage account. + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSIpRule[] + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSVirtualNetworkRule[] + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + + + + + + + + + + + + + Example 1: Update all properties of NetworkRule, input Rules with JSON + Update-AzStorageAccountNetworkRuleSet -ResourceGroupName "myResourceGroup" -Name "mystorageaccount" -Bypass Logging,Metrics -DefaultAction Allow -IpRule (@{IPAddressOrRange="10.0.0.0/7";Action="allow"},@{IPAddressOrRange="28.2.0.0/16";Action="allow"}) ` +-VirtualNetworkRule (@{VirtualNetworkResourceId="/subscriptions/s1/resourceGroups/g1/providers/Microsoft.Network/virtualNetworks/vnet1/subnets/subnet1";Action="allow"}, +@{VirtualNetworkResourceId="/subscriptions/s1/resourceGroups/g1/providers/Microsoft.Network/virtualNetworks/vnet2/subnets/subnet2";Action="allow"}) -ResourceAccessRule (@{ResourceId=$ResourceId1;TenantId=$tenantId1},@{ResourceId=$ResourceId2;TenantId=$tenantId1}) + + This command update all properties of NetworkRule, input Rules with JSON. + + + + + + ------- Example 2: Update Bypass property of NetworkRule ------- + Update-AzStorageAccountNetworkRuleSet -ResourceGroupName "myResourceGroup" -Name "mystorageaccount" -Bypass AzureServices,Metrics + + This command update Bypass property of NetworkRule (other properties won't change). + + + + + + Example 3: Clean up rules of NetworkRule of a Storage account + Update-AzStorageAccountNetworkRuleSet -ResourceGroupName "myResourceGroup" -Name "mystorageaccount" -IpRule @() -VirtualNetworkRule @() -ResourceAccessRule @() + + This command clean up rules of NetworkRule of a Storage account (other properties not change). + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/update-azstorageaccountnetworkruleset + + + + + + Update-AzStorageBlobServiceProperty + Update + AzStorageBlobServiceProperty + + Modifies the service properties for the Azure Storage Blob service. + + + + The Update-AzStorageBlobServiceProperty cmdlet modifies the service properties for the Azure Storage Blob service. + + + + Update-AzStorageBlobServiceProperty + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + ChangeFeedRetentionInDays + + Indicates the duration of changeFeed retention in days. Minimum value is 1 day and maximum value is 146000 days (400 years). Never specify it when enabled changeFeed will get null value in service properties, indicates an infinite retention of the change feed. + + System.Int32 + + System.Int32 + + + None + + + CorsRule + + Specifies CORS rules for the Blob service. + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultServiceVersion + + Default Service Version to Set + + System.String + + System.String + + + None + + + EnableChangeFeed + + Enable Change Feed logging for the storage account by set to $true, disable Change Feed logging by set to $false. + + System.Boolean + + System.Boolean + + + None + + + IsVersioningEnabled + + Gets or sets versioning is enabled if set to true. + + System.Boolean + + System.Boolean + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzStorageBlobServiceProperty + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + ChangeFeedRetentionInDays + + Indicates the duration of changeFeed retention in days. Minimum value is 1 day and maximum value is 146000 days (400 years). Never specify it when enabled changeFeed will get null value in service properties, indicates an infinite retention of the change feed. + + System.Int32 + + System.Int32 + + + None + + + CorsRule + + Specifies CORS rules for the Blob service. + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultServiceVersion + + Default Service Version to Set + + System.String + + System.String + + + None + + + EnableChangeFeed + + Enable Change Feed logging for the storage account by set to $true, disable Change Feed logging by set to $false. + + System.Boolean + + System.Boolean + + + None + + + IsVersioningEnabled + + Gets or sets versioning is enabled if set to true. + + System.Boolean + + System.Boolean + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzStorageBlobServiceProperty + + ChangeFeedRetentionInDays + + Indicates the duration of changeFeed retention in days. Minimum value is 1 day and maximum value is 146000 days (400 years). Never specify it when enabled changeFeed will get null value in service properties, indicates an infinite retention of the change feed. + + System.Int32 + + System.Int32 + + + None + + + CorsRule + + Specifies CORS rules for the Blob service. + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultServiceVersion + + Default Service Version to Set + + System.String + + System.String + + + None + + + EnableChangeFeed + + Enable Change Feed logging for the storage account by set to $true, disable Change Feed logging by set to $false. + + System.Boolean + + System.Boolean + + + None + + + IsVersioningEnabled + + Gets or sets versioning is enabled if set to true. + + System.Boolean + + System.Boolean + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ChangeFeedRetentionInDays + + Indicates the duration of changeFeed retention in days. Minimum value is 1 day and maximum value is 146000 days (400 years). Never specify it when enabled changeFeed will get null value in service properties, indicates an infinite retention of the change feed. + + System.Int32 + + System.Int32 + + + None + + + CorsRule + + Specifies CORS rules for the Blob service. + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultServiceVersion + + Default Service Version to Set + + System.String + + System.String + + + None + + + EnableChangeFeed + + Enable Change Feed logging for the storage account by set to $true, disable Change Feed logging by set to $false. + + System.Boolean + + System.Boolean + + + None + + + IsVersioningEnabled + + Gets or sets versioning is enabled if set to true. + + System.Boolean + + System.Boolean + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Input a Storage account Resource Id, or a Blob service properties Resource Id. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobServiceProperties + + + + + + + + + + + + + + Example 1: Set Blob service DefaultServiceVersion to 2018-03-28 + Update-AzStorageBlobServiceProperty -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -DefaultServiceVersion 2018-03-28 + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegroup +DefaultServiceVersion : 2018-03-28 +DeleteRetentionPolicy.Enabled : False +DeleteRetentionPolicy.Days : +RestorePolicy.Enabled : +RestorePolicy.Days : +ChangeFeed.Enabled : +ChangeFeed.RetentionInDays : +IsVersioningEnabled : + + This command sets the DefaultServiceVersion of Blob Service to 2018-03-28. + + + + + + Example 2: Enable Changefeed on Blob service of a Storage account with ChangeFeedRetentionInDays as 5 days + Update-AzStorageBlobServiceProperty -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -EnableChangeFeed $true -ChangeFeedRetentionInDays 5 + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegroup +DefaultServiceVersion : +DeleteRetentionPolicy.Enabled : False +DeleteRetentionPolicy.Days : +RestorePolicy.Enabled : +RestorePolicy.Days : +ChangeFeed.Enabled : True +ChangeFeed.RetentionInDays : 5 +IsVersioningEnabled : + + This command enables Changefeed on Blob service of a Storage account with ChangeFeedRetentionInDays as 5 days. Change feed support in Azure Blob Storage works by listening to a GPv2 or Blob storage account for any blob level creation, modification, or deletion events. It then outputs an ordered log of events for the blobs stored in the $blobchangefeed container within the storage account. The serialized changes are persisted as an Apache Avro file and can be processed asynchronously and incrementally. If not specify ChangeFeedRetentionInDays, will get null value in service properties, indicates an infinite retention of the change feed. + + + + + + Example 3: Enable Versioning on Blob service of a Storage account + Update-AzStorageBlobServiceProperty -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -IsVersioningEnabled $true + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegroup +DefaultServiceVersion : +DeleteRetentionPolicy.Enabled : False +DeleteRetentionPolicy.Days : +RestorePolicy.Enabled : +RestorePolicy.Days : +ChangeFeed : +ChangeFeed.RetentionInDays : +IsVersioningEnabled : True + + This command enables Versioning on Blob service of a Storage account + + + + + + ----------------- Example 4: Update CORS rules ----------------- + $CorsRules = (@{ + AllowedHeaders=@("x-ms-blob-content-type","x-ms-blob-content-disposition"); + ExposedHeaders=@(); + AllowedOrigins=@("*"); + AllowedMethods=@("TRACE","CONNECT")}, + @{ + AllowedOrigins=@("http://www.fabrikam.com","http://www.contoso.com"); + ExposedHeaders=@("x-ms-meta-data*","x-ms-meta-customheader"); + AllowedHeaders=@("x-ms-meta-target*","x-ms-meta-customheader"); + MaxAgeInSeconds=30; + AllowedMethods=@("PUT")}) + +$property = Update-AzStorageBlobServiceProperty -ResourceGroupName myresourcegroup -StorageAccountName mystorageaccount -CorsRule $CorsRules +$property.Cors.CorsRulesProperty + +AllowedOrigins : {*} +AllowedMethods : {TRACE, CONNECT} +MaxAgeInSeconds : 0 +ExposedHeaders : {} +AllowedHeaders : {x-ms-blob-content-type, x-ms-blob-content-disposition} + +AllowedOrigins : {http://www.fabrikam.com, http://www.contoso.com} +AllowedMethods : {PUT} +MaxAgeInSeconds : 30 +ExposedHeaders : {x-ms-meta-customheader, x-ms-meta-data*} +AllowedHeaders : {x-ms-meta-customheader, x-ms-meta-target*} + + The first command assigns an array of rules to the $CorsRules variable. This command uses standard extends over several lines in this code block. The second command sets the rules in $CorsRules to the Blob service of a Storage account. + + + + + + ---------------- Example 5: Clean up CORS rules ---------------- + Update-AzStorageBlobServiceProperty -ResourceGroupName myresourcegroup -StorageAccountName mystorageaccount -CorsRule @() + + This command cleans up the CORS rules of a Storage account by inputting @() to parameter CorsRule + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/update-azstorageblobserviceproperty + + + + + + Update-AzStorageEncryptionScope + Update + AzStorageEncryptionScope + + Modify an encryption scope for a Storage account. + + + + The Update-AzStorageEncryptionScope cmdlet modifies an encryption scope for a Storage account. + + + + Update-AzStorageEncryptionScope + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + State + + Update encryption scope State, Possible values include: 'Enabled', 'Disabled'. + + + Enabled + Disabled + + System.String + + System.String + + + None + + + StorageEncryption + + Create encryption scope with keySource as Microsoft.Storage. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzStorageEncryptionScope + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + KeyUri + + The key Uri + + System.String + + System.String + + + None + + + KeyvaultEncryption + + Create encryption scope with keySource as Microsoft.Keyvault + + + System.Management.Automation.SwitchParameter + + + False + + + State + + Update encryption scope State, Possible values include: 'Enabled', 'Disabled'. + + + Enabled + Disabled + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzStorageEncryptionScope + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + State + + Update encryption scope State, Possible values include: 'Enabled', 'Disabled'. + + + Enabled + Disabled + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageEncryption + + Create encryption scope with keySource as Microsoft.Storage. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzStorageEncryptionScope + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + KeyUri + + The key Uri + + System.String + + System.String + + + None + + + KeyvaultEncryption + + Create encryption scope with keySource as Microsoft.Keyvault + + + System.Management.Automation.SwitchParameter + + + False + + + State + + Update encryption scope State, Possible values include: 'Enabled', 'Disabled'. + + + Enabled + Disabled + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzStorageEncryptionScope + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + EncryptionScope object + + Microsoft.Azure.Commands.Management.Storage.Models.PSEncryptionScope + + Microsoft.Azure.Commands.Management.Storage.Models.PSEncryptionScope + + + None + + + State + + Update encryption scope State, Possible values include: 'Enabled', 'Disabled'. + + + Enabled + Disabled + + System.String + + System.String + + + None + + + StorageEncryption + + Create encryption scope with keySource as Microsoft.Storage. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzStorageEncryptionScope + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + EncryptionScope object + + Microsoft.Azure.Commands.Management.Storage.Models.PSEncryptionScope + + Microsoft.Azure.Commands.Management.Storage.Models.PSEncryptionScope + + + None + + + KeyUri + + The key Uri + + System.String + + System.String + + + None + + + KeyvaultEncryption + + Create encryption scope with keySource as Microsoft.Keyvault + + + System.Management.Automation.SwitchParameter + + + False + + + State + + Update encryption scope State, Possible values include: 'Enabled', 'Disabled'. + + + Enabled + Disabled + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScopeName + + Azure Storage EncryptionScope name + + System.String + + System.String + + + None + + + InputObject + + EncryptionScope object + + Microsoft.Azure.Commands.Management.Storage.Models.PSEncryptionScope + + Microsoft.Azure.Commands.Management.Storage.Models.PSEncryptionScope + + + None + + + KeyUri + + The key Uri + + System.String + + System.String + + + None + + + KeyvaultEncryption + + Create encryption scope with keySource as Microsoft.Keyvault + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + State + + Update encryption scope State, Possible values include: 'Enabled', 'Disabled'. + + System.String + + System.String + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + StorageEncryption + + Create encryption scope with keySource as Microsoft.Storage. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSEncryptionScope + + + + + + + + + + + + + + ------------ Example 1: Disable an encryption scope ------------ + Update-AzStorageEncryptionScope -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -EncryptionScopeName testscope -State Disabled + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name State Source KeyVaultKeyUri RequireInfrastructureEncryption +---- ----- ------ -------------- ------------------------------- +testscope Disabled Microsoft.Storage + + This command disables an encryption scope. + + + + + + ------------ Example 2: Enable an encryption scope ------------ + Update-AzStorageEncryptionScope -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -EncryptionScopeName testscope -State Enabled + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name State Source KeyVaultKeyUri RequireInfrastructureEncryption +---- ----- ------ -------------- ------------------------------- +testscope Enabled Microsoft.Storage + + This command enables an encryption scope. + + + + + + Example 3: Update an encryption scope to use Storage Encryption + Update-AzStorageEncryptionScope -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -EncryptionScopeName testscope -StorageEncryption + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name State Source KeyVaultKeyUri RequireInfrastructureEncryption +---- ----- ------ -------------- ------------------------------- +testscope Enabled Microsoft.Storage + + This command updates an encryption scope to use Storage Encryption. + + + + + + Example 4: Update an encryption scope to use Keyvault Encryption + Update-AzStorageEncryptionScope -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -EncryptionScopeName testscope -KeyvaultEncryption -KeyUri "https://keyvalutname.vault.azure.net:443/keys/keyname/34a0ba563b4243d9a0ef2b1d3c0c7d57" + +ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount + +Name State Source KeyVaultKeyUri RequireInfrastructureEncryption +---- ----- ------ -------------- ------------------------------- +testscope Enabled Microsoft.Keyvault https://keyvalutname.vault.azure.net:443/keys/keyname/34a0ba563b4243d9a0ef2b1d3c0c7d57 + + This command updtaes an encryption scope to use Keyvault Encryption. The Storage account Identity need have get,wrapkey,unwrapkey permissions to the keyvault key. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/update-azstorageencryptionscope + + + + + + Update-AzStorageFileServiceProperty + Update + AzStorageFileServiceProperty + + Modifies the service properties for the Azure Storage File service. + + + + The Update-AzStorageFileServiceProperty cmdlet modifies the service properties for the Azure Storage File service. + + + + Update-AzStorageFileServiceProperty + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + CorsRule + + Specifies CORS rules for the File service. + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableShareDeleteRetentionPolicy + + Enable share Delete Retention Policy for the storage account by set to $true, disable share Delete Retention Policy by set to $false. + + System.Boolean + + System.Boolean + + + None + + + EnableSmbMultichannel + + Enable Multichannel by set to $true, disable Multichannel by set to $false. Applies to Premium FileStorage only. + + System.Boolean + + System.Boolean + + + None + + + ShareRetentionDays + + Sets the number of retention days for the share DeleteRetentionPolicy. The value should only be set when enable share Delete Retention Policy. + + System.Int32 + + System.Int32 + + + None + + + SmbAuthenticationMethod + + Gets or sets SMB authentication methods supported by server. Valid values are NTLMv2, Kerberos. + + + Kerberos + NTLMv2 + + System.String[] + + System.String[] + + + None + + + SmbChannelEncryption + + Gets or sets SMB channel encryption supported by server. Valid values are AES-128-CCM, AES-128-GCM, AES-256-GCM. + + + AES-128-CCM + AES-128-GCM + AES-256-GCM + + System.String[] + + System.String[] + + + None + + + SmbKerberosTicketEncryption + + Gets or sets kerberos ticket encryption supported by server. Valid values are RC4-HMAC, AES-256. + + + AES-256 + RC4-HMAC + + System.String[] + + System.String[] + + + None + + + SmbProtocolVersion + + Gets or sets SMB protocol versions supported by server. Valid values are SMB2.1, SMB3.0, SMB3.1.1. + + + SMB2.1 + SMB3.0 + SMB3.1.1 + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzStorageFileServiceProperty + + ResourceId + + Input a Storage account Resource Id, or a File service properties Resource Id. + + System.String + + System.String + + + None + + + CorsRule + + Specifies CORS rules for the File service. + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableShareDeleteRetentionPolicy + + Enable share Delete Retention Policy for the storage account by set to $true, disable share Delete Retention Policy by set to $false. + + System.Boolean + + System.Boolean + + + None + + + EnableSmbMultichannel + + Enable Multichannel by set to $true, disable Multichannel by set to $false. Applies to Premium FileStorage only. + + System.Boolean + + System.Boolean + + + None + + + ShareRetentionDays + + Sets the number of retention days for the share DeleteRetentionPolicy. The value should only be set when enable share Delete Retention Policy. + + System.Int32 + + System.Int32 + + + None + + + SmbAuthenticationMethod + + Gets or sets SMB authentication methods supported by server. Valid values are NTLMv2, Kerberos. + + + Kerberos + NTLMv2 + + System.String[] + + System.String[] + + + None + + + SmbChannelEncryption + + Gets or sets SMB channel encryption supported by server. Valid values are AES-128-CCM, AES-128-GCM, AES-256-GCM. + + + AES-128-CCM + AES-128-GCM + AES-256-GCM + + System.String[] + + System.String[] + + + None + + + SmbKerberosTicketEncryption + + Gets or sets kerberos ticket encryption supported by server. Valid values are RC4-HMAC, AES-256. + + + AES-256 + RC4-HMAC + + System.String[] + + System.String[] + + + None + + + SmbProtocolVersion + + Gets or sets SMB protocol versions supported by server. Valid values are SMB2.1, SMB3.0, SMB3.1.1. + + + SMB2.1 + SMB3.0 + SMB3.1.1 + + System.String[] + + System.String[] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzStorageFileServiceProperty + + CorsRule + + Specifies CORS rules for the File service. + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableShareDeleteRetentionPolicy + + Enable share Delete Retention Policy for the storage account by set to $true, disable share Delete Retention Policy by set to $false. + + System.Boolean + + System.Boolean + + + None + + + EnableSmbMultichannel + + Enable Multichannel by set to $true, disable Multichannel by set to $false. Applies to Premium FileStorage only. + + System.Boolean + + System.Boolean + + + None + + + ShareRetentionDays + + Sets the number of retention days for the share DeleteRetentionPolicy. The value should only be set when enable share Delete Retention Policy. + + System.Int32 + + System.Int32 + + + None + + + SmbAuthenticationMethod + + Gets or sets SMB authentication methods supported by server. Valid values are NTLMv2, Kerberos. + + + Kerberos + NTLMv2 + + System.String[] + + System.String[] + + + None + + + SmbChannelEncryption + + Gets or sets SMB channel encryption supported by server. Valid values are AES-128-CCM, AES-128-GCM, AES-256-GCM. + + + AES-128-CCM + AES-128-GCM + AES-256-GCM + + System.String[] + + System.String[] + + + None + + + SmbKerberosTicketEncryption + + Gets or sets kerberos ticket encryption supported by server. Valid values are RC4-HMAC, AES-256. + + + AES-256 + RC4-HMAC + + System.String[] + + System.String[] + + + None + + + SmbProtocolVersion + + Gets or sets SMB protocol versions supported by server. Valid values are SMB2.1, SMB3.0, SMB3.1.1. + + + SMB2.1 + SMB3.0 + SMB3.1.1 + + System.String[] + + System.String[] + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + CorsRule + + Specifies CORS rules for the File service. + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + Microsoft.Azure.Commands.Management.Storage.Models.PSCorsRule[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableShareDeleteRetentionPolicy + + Enable share Delete Retention Policy for the storage account by set to $true, disable share Delete Retention Policy by set to $false. + + System.Boolean + + System.Boolean + + + None + + + EnableSmbMultichannel + + Enable Multichannel by set to $true, disable Multichannel by set to $false. Applies to Premium FileStorage only. + + System.Boolean + + System.Boolean + + + None + + + ResourceGroupName + + Resource Group Name. + + System.String + + System.String + + + None + + + ResourceId + + Input a Storage account Resource Id, or a File service properties Resource Id. + + System.String + + System.String + + + None + + + ShareRetentionDays + + Sets the number of retention days for the share DeleteRetentionPolicy. The value should only be set when enable share Delete Retention Policy. + + System.Int32 + + System.Int32 + + + None + + + SmbAuthenticationMethod + + Gets or sets SMB authentication methods supported by server. Valid values are NTLMv2, Kerberos. + + System.String[] + + System.String[] + + + None + + + SmbChannelEncryption + + Gets or sets SMB channel encryption supported by server. Valid values are AES-128-CCM, AES-128-GCM, AES-256-GCM. + + System.String[] + + System.String[] + + + None + + + SmbKerberosTicketEncryption + + Gets or sets kerberos ticket encryption supported by server. Valid values are RC4-HMAC, AES-256. + + System.String[] + + System.String[] + + + None + + + SmbProtocolVersion + + Gets or sets SMB protocol versions supported by server. Valid values are SMB2.1, SMB3.0, SMB3.1.1. + + System.String[] + + System.String[] + + + None + + + StorageAccount + + Storage account object + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + None + + + StorageAccountName + + Storage Account Name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + + + + System.String + + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSFileServiceProperties + + + + + + + + + + + + + + ----------- Example 1: Enable File share softdelete ----------- + Update-AzStorageFileServiceProperty -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -EnableShareDeleteRetentionPolicy $true -ShareRetentionDays 5 + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegroup +ShareDeleteRetentionPolicy.Enabled : True +ShareDeleteRetentionPolicy.Days : 5 +ProtocolSettings.Smb.Multichannel.Enabled : False +ProtocolSettings.Smb.Versions : +ProtocolSettings.Smb.AuthenticationMethods : +ProtocolSettings.Smb.KerberosTicketEncryption : +ProtocolSettings.Smb.ChannelEncryption : + + This command enables File share softdelete delete with retention days as 5 + + + + + + -------------- Example 2: Enable Smb Multichannel -------------- + Update-AzStorageFileServiceProperty -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -EnableSmbMultichannel $true + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegroup +ShareDeleteRetentionPolicy.Enabled : True +ShareDeleteRetentionPolicy.Days : 5 +ProtocolSettings.Smb.Multichannel.Enabled : True +ProtocolSettings.Smb.Versions : +ProtocolSettings.Smb.AuthenticationMethods : +ProtocolSettings.Smb.KerberosTicketEncryption : +ProtocolSettings.Smb.ChannelEncryption : + + This command enables Smb Multichannel, only supported on Premium FileStorage account. + + + + + + ------------ Example 3: Updates secure smb settings ------------ + Update-AzStorageFileServiceProperty -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" ` + -SMBProtocolVersion SMB2.1,SMB3.0,SMB3.1.1 ` + -SMBAuthenticationMethod Kerberos,NTLMv2 ` + -SMBKerberosTicketEncryption RC4-HMAC,AES-256 ` + -SMBChannelEncryption AES-128-CCM,AES-128-GCM,AES-256-GCM + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegroup +ShareDeleteRetentionPolicy.Enabled : True +ShareDeleteRetentionPolicy.Days : 5 +ProtocolSettings.Smb.Multichannel.Enabled : True +ProtocolSettings.Smb.Versions : {SMB2.1, SMB3.0, SMB3.1.1} +ProtocolSettings.Smb.AuthenticationMethods : {Kerberos, NTLMv2} +ProtocolSettings.Smb.KerberosTicketEncryption : {RC4-HMAC, AES-256} +ProtocolSettings.Smb.ChannelEncryption : {AES-128-CCM, AES-128-GCM, AES-256-GCM} + + This command updates secure smb settings. + + + + + + ------------- Example 4: Clear secure smb settings ------------- + Update-AzStorageFileServiceProperty -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" ` + -SMBProtocolVersion @() ` + -SMBAuthenticationMethod @() ` + -SMBKerberosTicketEncryption @() ` + -SMBChannelEncryption @() + +StorageAccountName : mystorageaccount +ResourceGroupName : myresourcegroup +ShareDeleteRetentionPolicy.Enabled : True +ShareDeleteRetentionPolicy.Days : 5 +ProtocolSettings.Smb.Multichannel.Enabled : True +ProtocolSettings.Smb.Versions : +ProtocolSettings.Smb.AuthenticationMethods : +ProtocolSettings.Smb.KerberosTicketEncryption : +ProtocolSettings.Smb.ChannelEncryption : + + This command clears secure smb settings. + + + + + + ----------------- Example 5: Update CORS rules ----------------- + $CorsRules = (@{ + AllowedHeaders=@("x-ms-blob-content-type","x-ms-blob-content-disposition"); + ExposedHeaders=@(); + AllowedOrigins=@("*"); + AllowedMethods=@("TRACE","CONNECT")}, + @{ + AllowedOrigins=@("http://www.fabrikam.com","http://www.contoso.com"); + ExposedHeaders=@("x-ms-meta-data*","x-ms-meta-customheader"); + AllowedHeaders=@("x-ms-meta-target*","x-ms-meta-customheader"); + MaxAgeInSeconds=30; + AllowedMethods=@("PUT")}) + +$property = Update-AzStorageFileServiceProperty -ResourceGroupName myresourcegroup -StorageAccountName mystorageaccount -CorsRule $CorsRules +$property.Cors.CorsRulesProperty + +AllowedOrigins : {*} +AllowedMethods : {TRACE, CONNECT} +MaxAgeInSeconds : 0 +ExposedHeaders : {} +AllowedHeaders : {x-ms-blob-content-type, x-ms-blob-content-disposition} + +AllowedOrigins : {http://www.fabrikam.com, http://www.contoso.com} +AllowedMethods : {PUT} +MaxAgeInSeconds : 30 +ExposedHeaders : {x-ms-meta-customheader, x-ms-meta-data*} +AllowedHeaders : {x-ms-meta-customheader, x-ms-meta-target*} + + The first command assigns an array of rules to the $CorsRules variable. This command uses standard extends over several lines in this code block. The second command sets the rules in $CorsRules to the File service of a Storage account. + + + + + + ---------------- Example 6: Clean up CORS rules ---------------- + Update-AzStorageFileServiceProperty -ResourceGroupName myresourcegroup -StorageAccountName mystorageaccount -CorsRule @() + + This command cleans up the CORS rules of a Storage account by inputting @() to parameter CorsRule. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/update-azstoragefileserviceproperty + + + + \ No newline at end of file diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Cmdlets.Storage.dll b/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Cmdlets.Storage.dll new file mode 100644 index 000000000000..1152b0f66f49 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Cmdlets.Storage.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Cmdlets.Storage.dll-Help.xml b/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Cmdlets.Storage.dll-Help.xml new file mode 100644 index 000000000000..24b16d0d30c6 --- /dev/null +++ b/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Cmdlets.Storage.dll-Help.xml @@ -0,0 +1,48179 @@ + + + + + Close-AzStorageFileHandle + Close + AzStorageFileHandle + + Closes file handles of a file share, a file directory or a file. + + + + The Close-AzStorageFileHandle cmdlet closes file handles of a file share, or file directory or a file. + + + + Close-AzStorageFileHandle + + ShareName + + Name of the file share where the files/directories would be listed. + + System.String + + System.String + + + None + + + Path + + Path to an existing file/directory. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloseAll + + Force close all File handles. + + + System.Management.Automation.SwitchParameter + + + False + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Return the count of closed file handles. + + + System.Management.Automation.SwitchParameter + + + False + + + Recursive + + List handles Recursively. Only works on File Directory. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Close-AzStorageFileHandle + + Share + + CloudFileShare object indicated the share where the files/directories would be listed. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + Path + + Path to an existing file/directory. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloseAll + + Force close all File handles. + + + System.Management.Automation.SwitchParameter + + + False + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Return the count of closed file handles. + + + System.Management.Automation.SwitchParameter + + + False + + + Recursive + + List handles Recursively. Only works on File Directory. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareClient + + ShareClient object indicated the share which contains the files/directories to closed handle. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Close-AzStorageFileHandle + + Directory + + CloudFileDirectory object indicated the base folder where the files/directories would be listed. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + Path + + Path to an existing file/directory. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloseAll + + Force close all File handles. + + + System.Management.Automation.SwitchParameter + + + False + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Return the count of closed file handles. + + + System.Management.Automation.SwitchParameter + + + False + + + Recursive + + List handles Recursively. Only works on File Directory. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the base folder which contains the files/directories to closed handle. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Close-AzStorageFileHandle + + File + + CloudFile object indicated the file to close handle. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloseAll + + Force close all File handles. + + + System.Management.Automation.SwitchParameter + + + False + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Return the count of closed file handles. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareFileClient + + ShareFileClient object indicated the file to close handle. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Close-AzStorageFileHandle + + ShareName + + Name of the file share where the files/directories would be listed. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + FileHandle + + The File Handle to close. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSFileHandle + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSFileHandle + + + None + + + PassThru + + Return the count of closed file handles. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Close-AzStorageFileHandle + + Share + + CloudFileShare object indicated the share where the files/directories would be listed. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + FileHandle + + The File Handle to close. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSFileHandle + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSFileHandle + + + None + + + PassThru + + Return the count of closed file handles. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareClient + + ShareClient object indicated the share which contains the files/directories to closed handle. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloseAll + + Force close all File handles. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Directory + + CloudFileDirectory object indicated the base folder where the files/directories would be listed. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + File + + CloudFile object indicated the file to close handle. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + FileHandle + + The File Handle to close. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSFileHandle + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSFileHandle + + + None + + + PassThru + + Return the count of closed file handles. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Path + + Path to an existing file/directory. + + System.String + + System.String + + + None + + + Recursive + + List handles Recursively. Only works on File Directory. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Share + + CloudFileShare object indicated the share where the files/directories would be listed. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + ShareClient + + ShareClient object indicated the share which contains the files/directories to closed handle. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the base folder which contains the files/directories to closed handle. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + ShareFileClient + + ShareFileClient object indicated the file to close handle. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + ShareName + + Name of the file share where the files/directories would be listed. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.File.CloudFileShare + + + + + + + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.Azure.Storage.File.CloseFileHandleResultSegment + + + + + + + + + + + + + + --------- Example 1: Close all file handles on a file --------- + Close-AzStorageFileHandle -ShareName "mysharename" -Path 'dir1/dir2/test.txt' -CloseAll + + This command closes all file handles on a file. + + + + + + Example 2: Close all file handles which is opened 1 day ago on a file directory + Get-AzStorageFileHandle -ShareName "mysharename" -Path 'dir1/dir2' -Recursive | Where-Object {$_.OpenTime.DateTime.AddDays(1) -lt (Get-Date)} | Close-AzStorageFileHandle -ShareName "mysharename" + + This command lists all file handles on a file directory recursively, filters out the handles which are opened 1 day ago, and then closes them. + + + + + + Example 3: Close all file handles on a file directory recursively and show the closed file handle count + Close-AzStorageFileHandle -ShareName "mysharename" -Path 'dir1/dir2' -Recursive -CloseAll -PassThru + +10 + + This command closes all file handles on a file directory and shows the closed file handle count. + + + + + + ------ Example 4: Close all file handles on a file share ------ + Close-AzStorageFileHandle -ShareName "mysharename" -CloseAll -Recursive + + This command closes all file handles on a specific file share recursively. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/close-azstoragefilehandle + + + + + + Copy-AzStorageBlob + Copy + AzStorageBlob + + Copy a blob synchronously. + + + + The Copy-AzStorageBlob cmdlet copies a blob synchronously, currently only support block blob. + + + + Copy-AzStorageBlob + + AbsoluteUri + + Source blob uri + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Source Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Destination blob name + + System.String + + System.String + + + None + + + DestBlobType + + Destination blob type + + + Block + Page + Append + + System.String + + System.String + + + None + + + DestContainer + + Destination container name + + System.String + + System.String + + + None + + + DestContext + + Destination Storage context object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + EncryptionScope + + Encryption scope to be used when making requests to the dest blob. + + System.String + + System.String + + + None + + + Force + + Force to overwrite the existing blob or file + + + System.Management.Automation.SwitchParameter + + + False + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/en-us/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Copy-AzStorageBlob + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + Context + + Source Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Destination blob name + + System.String + + System.String + + + None + + + DestBlobType + + Destination blob type + + + Block + Page + Append + + System.String + + System.String + + + None + + + DestContainer + + Destination container name + + System.String + + System.String + + + None + + + DestContext + + Destination Storage context object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + EncryptionScope + + Encryption scope to be used when making requests to the dest blob. + + System.String + + System.String + + + None + + + Force + + Force to overwrite the existing blob or file + + + System.Management.Automation.SwitchParameter + + + False + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/en-us/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Copy-AzStorageBlob + + SrcBlob + + Blob name + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Source Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Destination blob name + + System.String + + System.String + + + None + + + DestBlobType + + Destination blob type + + + Block + Page + Append + + System.String + + System.String + + + None + + + DestContainer + + Destination container name + + System.String + + System.String + + + None + + + DestContext + + Destination Storage context object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + EncryptionScope + + Encryption scope to be used when making requests to the dest blob. + + System.String + + System.String + + + None + + + Force + + Force to overwrite the existing blob or file + + + System.Management.Automation.SwitchParameter + + + False + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + SrcContainer + + Source Container name + + System.String + + System.String + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/en-us/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AbsoluteUri + + Source blob uri + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + Context + + Source Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Destination blob name + + System.String + + System.String + + + None + + + DestBlobType + + Destination blob type + + System.String + + System.String + + + None + + + DestContainer + + Destination container name + + System.String + + System.String + + + None + + + DestContext + + Destination Storage context object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + EncryptionScope + + Encryption scope to be used when making requests to the dest blob. + + System.String + + System.String + + + None + + + Force + + Force to overwrite the existing blob or file + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + SrcBlob + + Blob name + + System.String + + System.String + + + None + + + SrcContainer + + Source Container name + + System.String + + System.String + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/en-us/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + + + + + + + + + + + + + ----------- Example 1: Copy a named blob to another ----------- + $destBlob = Copy-AzStorageBlob -SrcContainer "sourcecontainername" -SrcBlob "srcblobname" -DestContainer "destcontainername" -DestBlob "destblobname" + + This command copies a blob from source container to the destination container with a new blob name. + + + + + + ----------- Example 2: Copy blob from a blob object ----------- + $srcBlob = Get-AzStorageBlob -Container $containerName -Blob $blobName -Context $ctx +$destBlob = $srcBlob | Copy-AzStorageBlob -DestContainer "destcontainername" -DestBlob "destblobname" + + This command copies a blob from source blob object to the destination container with a new blob name. + + + + + + ------------- Example 3: Copy blob from a blob Uri ------------- + $srcBlobUri = New-AzStorageBlobSASToken -Container $srcContainerName -Blob $srcBlobName -Permission rt -ExpiryTime (Get-Date).AddDays(7) -FullUri +$destBlob = Copy-AzStorageBlob -AbsoluteUri $srcBlobUri -DestContainer "destcontainername" -DestBlob "destblobname" + + The first command creates a blob Uri of the source blob, with sas token of permission "rt". The second command copies from source blob Uri to the destination blob. + + + + + + ------- Example 4: Update a block blob encryption scope ------- + $blob = Copy-AzStorageBlob -SrcContainer $containerName -SrcBlob $blobname -DestContainer $containername -EncryptionScope $newScopeName -Force + + This command update a block blob encryption scope by copy it to itself with a new encryption scope. + + + + + + --------- Example 5: Copy a blob to a new append blob --------- + $srcBlob = Get-AzStorageBlob -Container $containerName -Blob $blobName -Context $ctx +$destBlob = Copy-AzStorageBlob -SrcContainer "sourcecontainername" -SrcBlob "srcblobname" -DestContainer "destcontainername" -DestBlob "destblobname" -DestBlobType "Append" -DestContext $destCtx + + + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/copy-azstorageblob + + + + + + Disable-AzStorageDeleteRetentionPolicy + Disable + AzStorageDeleteRetentionPolicy + + Disable delete retention policy for the Azure Storage Blob service. + + + + The Disable-AzStorageDeleteRetentionPolicy cmdlet disables delete retention policy for the Azure Storage Blob service. + + + + Disable-AzStorageDeleteRetentionPolicy + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display DeleteRetentionPolicyProperties + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display DeleteRetentionPolicyProperties + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSDeleteRetentionPolicy + + + + + + + + + + + + + + Example 1: Disable delete retention policy for the Blob service + Disable-AzStorageDeleteRetentionPolicy + + This command disables delete retention policy for the Blob service. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/disable-azstoragedeleteretentionpolicy + + + + + + Disable-AzStorageStaticWebsite + Disable + AzStorageStaticWebsite + + Disable static website for the Azure Storage account. + + + + The Disable-AzStorageStaticWebsite cmdlet disables static website for the Azure Storage account. + + + + Disable-AzStorageStaticWebsite + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + {{Fill PassThru Description}} + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + {{Fill PassThru Description}} + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSStaticWebsiteProperties + + + + + + + + + + + + + + Example 1: Disable static website for a Azure Storage account + Disable-AzStorageStaticWebsite + + This command disables static website for a Azure Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/disable-azstoragestaticwebsite + + + + + + Enable-AzStorageDeleteRetentionPolicy + Enable + AzStorageDeleteRetentionPolicy + + Enable delete retention policy for the Azure Storage Blob service. + + + + The Enable-AzStorageDeleteRetentionPolicy cmdlet enables delete retention policy for the Azure Storage Blob service. + + + + Enable-AzStorageDeleteRetentionPolicy + + RetentionDays + + Sets the number of retention days for the DeleteRetentionPolicy. + + System.Int32 + + System.Int32 + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display DeleteRetentionPolicyProperties + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display DeleteRetentionPolicyProperties + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + RetentionDays + + Sets the number of retention days for the DeleteRetentionPolicy. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSDeleteRetentionPolicy + + + + + + + + + + + + + + Example 1: Enable delete retention policy for the Blob service + Enable-AzStorageDeleteRetentionPolicy -RetentionDays 3 + + This command enables delete retention policy for the Blob service, and set deleted blob retention days to 3. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/enable-azstoragedeleteretentionpolicy + + + + + + Enable-AzStorageStaticWebsite + Enable + AzStorageStaticWebsite + + Enable static website for the Azure Storage account. + + + + The Enable-AzStorageStaticWebsite cmdlet enables static website for the Azure Storage account. + + + + Enable-AzStorageStaticWebsite + + IndexDocument + + The name of the index document in each directory. + + System.String + + System.String + + + None + + + ErrorDocument404Path + + The path to the error document that should be shown when a 404 is issued (meaning, when a browser requests a page that does not exist.) + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Display Static Website setting in ServiceProperties. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ErrorDocument404Path + + The path to the error document that should be shown when a 404 is issued (meaning, when a browser requests a page that does not exist.) + + System.String + + System.String + + + None + + + IndexDocument + + The name of the index document in each directory. + + System.String + + System.String + + + None + + + PassThru + + Display Static Website setting in ServiceProperties. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSStaticWebsiteProperties + + + + + + + + + + + + + + Example 1: Enable static website for the Azure Storage account + Enable-AzStorageStaticWebsite -IndexDocument $indexdoc -ErrorDocument404Path $errordoc + + This command enables static website for the Azure Storage account. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/enable-azstoragestaticwebsite + + + + + + Get-AzDataLakeGen2ChildItem + Get + AzDataLakeGen2ChildItem + + Lists sub directories and files from a directory or filesystem root. + + + + The Get-AzDataLakeGen2ChildItem cmdlet lists sub directorys and files in a directory or Filesystem in an Azure storage account. This cmdlet only works if Hierarchical Namespace is enabled for the Storage account. This kind of account can be created by run "New-AzStorageAccount" cmdlet with "-EnableHierarchicalNamespace $true". + + + + Get-AzDataLakeGen2ChildItem + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Path + + The path in the specified Filesystem that should be retrieved. Should be a directory, in the format 'directory1/directory2/'. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Continuation Token. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + FetchProperty + + Fetch the datalake item properties and ACL. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxCount + + The max count of the blobs that can return. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + OutputUserPrincipalName + + If speicify this parameter, the user identity values returned in the owner and group fields of each list entry will be transformed from Azure Active Directory Object IDs to User Principal Names. If not speicify this parameter, the values will be returned as Azure Active Directory Object IDs. Note that group and application Object IDs are not translated because they do not have unique friendly names. + + + System.Management.Automation.SwitchParameter + + + False + + + Recurse + + Indicates if will recursively get the Child Item. The default is false. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Continuation Token. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + FetchProperty + + Fetch the datalake item properties and ACL. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + MaxCount + + The max count of the blobs that can return. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + OutputUserPrincipalName + + If speicify this parameter, the user identity values returned in the owner and group fields of each list entry will be transformed from Azure Active Directory Object IDs to User Principal Names. If not speicify this parameter, the values will be returned as Azure Active Directory Object IDs. Note that group and application Object IDs are not translated because they do not have unique friendly names. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Path + + The path in the specified Filesystem that should be retrieved. Should be a directory, in the format 'directory1/directory2/'. + + System.String + + System.String + + + None + + + Recurse + + Indicates if will recursively get the Child Item. The default is false. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + + + + + + + + + + ---- Example 1: List the direct sub items from a Filesystem ---- + Get-AzDataLakeGen2ChildItem -FileSystem "filesystem1" + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir1 True 2020-03-13 13:07:34Z rwxr-x--- $superuser $superuser +dir2 True 2020-03-23 09:28:36Z rwxr-x--- $superuser $superuser + + This command lists the direct sub items from a Filesystem + + + + + + Example 2: List recursively from a directory, and fetch Properties/ACL + Get-AzDataLakeGen2ChildItem -FileSystem "filesystem1" -Path "dir1/" -Recurse -FetchProperty + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir1/dir3 True 2020-03-23 09:34:31Z rwx---rwx $superuser $superuser +dir1/file1 False 1024 2020-03-23 09:29:18Z rwx---rwx $superuser $superuser +dir1/testfile_1K_0 False 1024 2020-03-23 09:29:21Z rw-r----- $superuser $superuser + + This command lists the direct sub items from a Filesystem + + + + + + Example 3: List items recursively from a Filesystem in multiple batches + $MaxReturn = 1000 +$FileSystemName = "filesystem1" +$Total = 0 +$Token = $Null +do + { + $items = Get-AzDataLakeGen2ChildItem -FileSystem $FileSystemName -Recurse -MaxCount $MaxReturn -ContinuationToken $Token + $Total += $items.Count + if($items.Length -le 0) { Break;} + $Token = $items[$items.Count -1].ContinuationToken; + } + While ($null -ne $Token) +Echo "Total $Total items in Filesystem $FileSystemName" + + This example uses the MaxCount and ContinuationToken parameters to list items recursively from a Filesystem in multiple batches. A small MaxCount can limit the items acount returned from single requst, may help on operation times out error, and limit the memory usage of Powershell. The first four commands assign values to variables to use in the example. The fifth command specifies a Do-While statement that uses the Get-AzDataLakeGen2ChildItem cmdlet to list items. The statement includes the continuation token stored in the $Token variable. $Token changes value as the loop runs. The final command uses the Echo command to display the total. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azdatalakegen2childitem + + + + + + Get-AzDataLakeGen2DeletedItem + Get + AzDataLakeGen2DeletedItem + + List all deleted files or directories from a directory or filesystem root. + + + + The Get-AzDataLakeGen2DeletedItem cmdlet lists all deleted files or directories from a directory or filesystem in an Azure storage account. This cmdlet only works if Hierarchical Namespace is enabled for the Storage account. This kind of account can be created by run "New-AzStorageAccount" cmdlet with "-EnableHierarchicalNamespace $true". + + + + Get-AzDataLakeGen2DeletedItem + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Path + + The path in the specified FileSystem that should be retrieved. Can be a directory In the format 'directory1/directory2/', Skip set this parameter to list items from root directory of the Filesystem. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Continuation Token. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + MaxCount + + The max count of the blobs that can return. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Continuation Token. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + MaxCount + + The max count of the blobs that can return. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Path + + The path in the specified FileSystem that should be retrieved. Can be a directory In the format 'directory1/directory2/', Skip set this parameter to list items from root directory of the Filesystem. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2DeletedItem + + + + + + + + + + + + + + Example 1: List all deleted files or directories from a Filesystem + Get-AzDataLakeGen2DeletedItem -FileSystem "filesystem1" + +FileSystem Name: filesystem1 + +Path DeletionId DeletedOn RemainingRetentionDays +---- ---------- --------- ---------------------- +dir0/dir1/file1 132658816156507617 2021-05-19 07:06:55Z 3 +dir0/dir2 132658834541610122 2021-05-19 07:37:34Z 3 +dir0/dir2/file3 132658834534174806 2021-05-19 07:37:33Z 3 + + This command lists all deleted files or directories from a Filesystem. + + + + + + Example 2: List all deleted files or directories from a directory + Get-AzDataLakeGen2DeletedItem -FileSystem "filesystem1" -Path dir0/dir2 + +FileSystem Name: filesystem1 + +Path DeletionId DeletedOn RemainingRetentionDays +---- ---------- --------- ---------------------- +dir0/dir2 132658834541610122 2021-05-19 07:37:34Z 3 +dir0/dir2/file3 132658834534174806 2021-05-19 07:37:33Z 3 + + This command lists all deleted files or directories from a directory. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azdatalakegen2deleteditem + + + + + + Get-AzDataLakeGen2Item + Get + AzDataLakeGen2Item + + Gets the details of a file or directory in a filesystem. + + + + The Get-AzDataLakeGen2Item cmdlet gets the details of a file or directory in a Filesystem in an Azure storage account. This cmdlet only works if Hierarchical Namespace is enabled for the Storage account. This kind of account can be created by run "New-AzStorageAccount" cmdlet with "-EnableHierarchicalNamespace $true". + + + + Get-AzDataLakeGen2Item + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Path + + The path in the specified Filesystem that should be retrieved. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/'. Not specify this parameter to get the root directory of the Filesystem. + + System.String + + System.String + + + None + + + + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Path + + The path in the specified Filesystem that should be retrieved. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/'. Not specify this parameter to get the root directory of the Filesystem. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + + + + + + + + + + Example 1: Get a directory from a Filesystem, and show the details + PS C:\> $dir1 = Get-AzDataLakeGen2Item -FileSystem "filesystem1" -Path "dir1/" +PS C:\> $dir1 + + FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir1 True 2020-03-23 09:15:56Z rwx---rwx $superuser $superuser + +PS C:\WINDOWS\system32> $dir1.ACL + +DefaultScope AccessControlType EntityId Permissions +------------ ----------------- -------- ----------- +False User rwx +False Group --- +False Other rwx + +PS C:\WINDOWS\system32> $dir1.Permissions + +Owner : Execute, Write, Read +Group : None +Other : Execute, Write, Read +StickyBit : False +ExtendedAcls : False + +PS C:\WINDOWS\system32> $dir1.Properties.Metadata + +Key Value +--- ----- +hdi_isfolder true +tag1 value1 +tag2 value2 + +PS C:\WINDOWS\system32> $dir1.Properties + +LastModified : 3/23/2020 9:15:56 AM +00:00 +CreatedOn : 3/23/2020 9:15:56 AM +00:00 +Metadata : {[hdi_isfolder, true], [tag1, value1], [tag2, value2]} +CopyCompletedOn : 1/1/0001 12:00:00 AM +00:00 +CopyStatusDescription : +CopyId : +CopyProgress : +CopySource : +CopyStatus : Pending +IsIncrementalCopy : False +LeaseDuration : Infinite +LeaseState : Available +LeaseStatus : Unlocked +ContentLength : 0 +ContentType : application/octet-stream +ETag : "0x8D7CF0ACBA35FA8" +ContentHash : +ContentEncoding : UDF12 +ContentDisposition : +ContentLanguage : +CacheControl : READ +AcceptRanges : bytes +IsServerEncrypted : True +EncryptionKeySha256 : +AccessTier : Cool +ArchiveStatus : +AccessTierChangedOn : 1/1/0001 12:00:00 AM +00:00 + + This command gets a directory from a Filesystem, and show the details. + + + + + + ----------- Example 2: Get a file from a Filesystem ----------- + Get-AzDataLakeGen2Item -FileSystem "filesystem1" -Path "dir1/file1" + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir1/file1 False 1024 2020-03-23 09:20:37Z rwx---rwx $superuser $superuser + + This command gets the details of a file from a Filesystem. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azdatalakegen2item + + + + + + Get-AzDataLakeGen2ItemContent + Get + AzDataLakeGen2ItemContent + + Download a file. + + + + The Get-AzDataLakeGen2ItemContent cmdlet download a file in a Filesystem in an Azure storage account. This cmdlet only works if Hierarchical Namespace is enabled for the Storage account. This kind of account can be created by run "New-AzStorageAccount" cmdlet with "-EnableHierarchicalNamespace $true". + + + + Get-AzDataLakeGen2ItemContent + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Path + + The path in the specified Filesystem that should be removed. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/' + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + CheckMd5 + + check the md5sum + + + System.Management.Automation.SwitchParameter + + + False + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Destination + + Destination local file path. + + System.String + + System.String + + + None + + + Force + + Force to overwrite the existing blob or file + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzDataLakeGen2ItemContent + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + CheckMd5 + + check the md5sum + + + System.Management.Automation.SwitchParameter + + + False + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Destination + + Destination local file path. + + System.String + + System.String + + + None + + + Force + + Force to overwrite the existing blob or file + + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Azure Datalake Gen2 Item Object to download. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + CheckMd5 + + check the md5sum + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Destination + + Destination local file path. + + System.String + + System.String + + + None + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Force + + Force to overwrite the existing blob or file + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Azure Datalake Gen2 Item Object to download. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + None + + + Path + + The path in the specified Filesystem that should be removed. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/' + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + + + + + + + + + + ---------- Example 1: Download a file without prompt ---------- + Get-AzDataLakeGen2ItemContent -FileSystem "filesystem1" -Path "dir1/file1" -Destination $localDestFile -Force + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir1/file1 False 1024 2020-03-23 09:29:18Z rwx---rwx $superuser $superuser + + This command downloads a file to a local file without prompt. + + + + + + Example 2: Get a file, then pipeline to download the file to a local file + Get-AzDataLakeGen2Item -FileSystem "filesystem1" -Path "dir1/file1" | Get-AzDataLakeGen2ItemContent -Destination $localDestFile + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir1/file1 False 1024 2020-03-23 09:29:18Z rwx---rwx $superuser $superuser + + This command first gets a file, then pipeline to download the file to a local file. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azdatalakegen2itemcontent + + + + + + Get-AzStorageBlob + Get + AzStorageBlob + + Lists blobs in a container. + + + + The Get-AzStorageBlob cmdlet lists blobs in the specified container in an Azure storage account. + + + + Get-AzStorageBlob + + Blob + + Specifies a name or name pattern, which can be used for a wildcard search. If no blob name is specified, the cmdlet lists all the blobs in the specified container. If a value is specified for this parameter, the cmdlet lists all blobs with names that match this parameter. This parameter supports wildcards anywhere in the string. + + System.String + + System.String + + + None + + + Container + + Specifies the name of the container. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage account from which you want to get a list of blobs. You can use the New-AzStorageContext cmdlet to create a storage context. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Specifies a continuation token for the blob list. Use this parameter and the MaxCount parameter to list blobs in multiple batches. + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include Deleted Blob, by default get blob won't include deleted blob. + + + System.Management.Automation.SwitchParameter + + + False + + + IncludeTag + + Include blob tags, by default get blob won't include blob tags. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxCount + + Specifies the maximum number of objects that this cmdlet returns. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + + Get-AzStorageBlob + + Blob + + Specifies a name or name pattern, which can be used for a wildcard search. If no blob name is specified, the cmdlet lists all the blobs in the specified container. If a value is specified for this parameter, the cmdlet lists all blobs with names that match this parameter. This parameter supports wildcards anywhere in the string. + + System.String + + System.String + + + None + + + Container + + Specifies the name of the container. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage account from which you want to get a list of blobs. You can use the New-AzStorageContext cmdlet to create a storage context. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Specifies a continuation token for the blob list. Use this parameter and the MaxCount parameter to list blobs in multiple batches. + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include Deleted Blob, by default get blob won't include deleted blob. + + + System.Management.Automation.SwitchParameter + + + False + + + IncludeTag + + Include blob tags, by default get blob won't include blob tags. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxCount + + Specifies the maximum number of objects that this cmdlet returns. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SnapshotTime + + Blob SnapshotTime + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + + Get-AzStorageBlob + + Blob + + Specifies a name or name pattern, which can be used for a wildcard search. If no blob name is specified, the cmdlet lists all the blobs in the specified container. If a value is specified for this parameter, the cmdlet lists all blobs with names that match this parameter. This parameter supports wildcards anywhere in the string. + + System.String + + System.String + + + None + + + Container + + Specifies the name of the container. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage account from which you want to get a list of blobs. You can use the New-AzStorageContext cmdlet to create a storage context. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Specifies a continuation token for the blob list. Use this parameter and the MaxCount parameter to list blobs in multiple batches. + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include Deleted Blob, by default get blob won't include deleted blob. + + + System.Management.Automation.SwitchParameter + + + False + + + IncludeTag + + Include blob tags, by default get blob won't include blob tags. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxCount + + Specifies the maximum number of objects that this cmdlet returns. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + VersionId + + Blob VersionId + + System.String + + System.String + + + None + + + + Get-AzStorageBlob + + Container + + Specifies the name of the container. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage account from which you want to get a list of blobs. You can use the New-AzStorageContext cmdlet to create a storage context. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Specifies a continuation token for the blob list. Use this parameter and the MaxCount parameter to list blobs in multiple batches. + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include Deleted Blob, by default get blob won't include deleted blob. + + + System.Management.Automation.SwitchParameter + + + False + + + IncludeTag + + Include blob tags, by default get blob won't include blob tags. + + + System.Management.Automation.SwitchParameter + + + False + + + IncludeVersion + + Blob versions will be listed only if this parameter is present, by default get blob won't include blob versions. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxCount + + Specifies the maximum number of objects that this cmdlet returns. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Prefix + + Specifies a prefix for the blob names that you want to get. This parameter does not support using regular expressions or wildcard characters to search. This means that if the container has only blobs named "My", "MyBlob1", and "MyBlob2" and you specify "-Prefix My*", the cmdlet returns no blobs. However, if you specify "-Prefix My", the cmdlet returns "My", "MyBlob1", and "MyBlob2". + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + Blob + + Specifies a name or name pattern, which can be used for a wildcard search. If no blob name is specified, the cmdlet lists all the blobs in the specified container. If a value is specified for this parameter, the cmdlet lists all blobs with names that match this parameter. This parameter supports wildcards anywhere in the string. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Specifies the name of the container. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage account from which you want to get a list of blobs. You can use the New-AzStorageContext cmdlet to create a storage context. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Specifies a continuation token for the blob list. Use this parameter and the MaxCount parameter to list blobs in multiple batches. + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include Deleted Blob, by default get blob won't include deleted blob. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IncludeTag + + Include blob tags, by default get blob won't include blob tags. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IncludeVersion + + Blob versions will be listed only if this parameter is present, by default get blob won't include blob versions. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + MaxCount + + Specifies the maximum number of objects that this cmdlet returns. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Prefix + + Specifies a prefix for the blob names that you want to get. This parameter does not support using regular expressions or wildcard characters to search. This means that if the container has only blobs named "My", "MyBlob1", and "MyBlob2" and you specify "-Prefix My*", the cmdlet returns no blobs. However, if you specify "-Prefix My", the cmdlet returns "My", "MyBlob1", and "MyBlob2". + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SnapshotTime + + Blob SnapshotTime + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + VersionId + + Blob VersionId + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + + + + + + + + + + + + + -------------- Example 1: Get a blob by blob name -------------- + Get-AzStorageBlob -Container "ContainerName" -Blob blob* + + This command uses a blob name and wildcard to get a blob. + + + + + + -- Example 2: Get blobs in a container by using the pipeline -- + Get-AzStorageContainer -Name container* | Get-AzStorageBlob -IncludeDeleted + +Container Uri: https://storageaccountname.blob.core.windows.net/container1 + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted +---- -------- ------ ----------- ------------ ---------- ------------ --------- +test1 BlockBlob 403116 application/octet-stream 2017-11-08 07:53:19Z 2017-11-08 08:19:32Z True +test1 BlockBlob 403116 application/octet-stream 2017-11-08 09:00:29Z True +test2 BlockBlob 403116 application/octet-stream 2017-11-08 07:53:00Z False + + This command uses the pipeline to get all blobs (include blobs in Deleted status) in a container. + + + + + + ------------- Example 3: Get blobs by name prefix ------------- + Get-AzStorageBlob -Container "ContainerName" -Prefix "blob" + + This command uses a name prefix to get blobs. + + + + + + ---------- Example 4: List blobs in multiple batches ---------- + $MaxReturn = 10000 +$ContainerName = "abc" +$Total = 0 +$Token = $Null +do + { + $Blobs = Get-AzStorageBlob -Container $ContainerName -MaxCount $MaxReturn -ContinuationToken $Token + $Total += $Blobs.Count + if($Blobs.Length -le 0) { Break;} + $Token = $Blobs[$blobs.Count -1].ContinuationToken; + } + While ($null -ne $Token) +Echo "Total $Total blobs in container $ContainerName" + + This example uses the MaxCount and ContinuationToken parameters to list Azure Storage blobs in multiple batches. The first four commands assign values to variables to use in the example. The fifth command specifies a Do-While statement that uses the Get-AzStorageBlob cmdlet to get blobs. The statement includes the continuation token stored in the $Token variable. $Token changes value as the loop runs. For more information, type `Get-Help About_Do`. The final command uses the Echo command to display the total. + + + + + + - Example 5: Get all blobs in a container include blob version - + Get-AzStorageBlob -Container "containername" -IncludeVersion + +AccountName: storageaccountname, ContainerName: containername + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +blob1 BlockBlob 2097152 application/octet-stream 2020-07-06 06:56:06Z Hot False 2020-07-06T06:56:06.2432658Z +blob1 BlockBlob 2097152 application/octet-stream 2020-07-06 06:56:06Z Hot 2020-07-06T06:56:06.8588431Z False +blob1 BlockBlob 2097152 application/octet-stream 2020-07-06 06:56:06Z Hot False 2020-07-06T06:56:06.8598431Z * +blob2 BlockBlob 2097152 application/octet-stream 2020-07-03 16:19:16Z Hot False 2020-07-03T16:19:16.2883167Z +blob2 BlockBlob 2097152 application/octet-stream 2020-07-03 16:19:35Z Hot False 2020-07-03T16:19:35.2381110Z * + + This command gets all blobs in a container include blob version. + + + + + + ------------- Example 6: Get a single blob version ------------- + Get-AzStorageBlob -Container "containername" -Blob blob2 -VersionId "2020-07-03T16:19:16.2883167Z" + +AccountName: storageaccountname, ContainerName: containername + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +blob2 BlockBlob 2097152 application/octet-stream 2020-07-03 16:19:16Z Hot False 2020-07-03T16:19:16.2883167Z + + This command gets a single blobs verion with VersionId. + + + + + + ------------ Example 7: Get a single blob snapshot ------------ + Get-AzStorageBlob -Container "containername" -Blob blob1 -SnapshotTime "2020-07-06T06:56:06.8588431Z" + +AccountName: storageaccountname, ContainerName: containername + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +blob1 BlockBlob 2097152 application/octet-stream 2020-07-06 06:56:06Z Hot 2020-07-06T06:56:06.8588431Z False + + This command gets a single blobs snapshot with SnapshotTime. + + + + + + ------------ Example 8: Get blob include blob tags ------------ + PS C:\> $blobs = Get-AzStorageBlob -Container "containername" -IncludeTag + +PS C:\> $blobs + + AccountName: storageaccountname, ContainerName: containername + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +testblob BlockBlob 2097152 application/octet-stream 2020-07-23 09:35:02Z Hot False 2020-07-23T09:35:02.8527357Z * +testblob2 BlockBlob 2097152 application/octet-stream 2020-07-23 09:35:04Z Hot False 2020-07-23T09:35:04.0856187Z * + + +PS C:\> $blobs[0].Tags +Name Value +---- ----- +tag1 value1 +tag2 value2 + + This command lists blobs from a container with blob tags, and show the tags of the first blob. + + + + + + ----- Example 9: Get a single blob with blob tag condition ----- + Get-AzStorageBlob -Container "containername" -Blob testblob -TagCondition """tag1""='value1'" + +AccountName: storageaccountname, ContainerName: containername + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +testblob BlockBlob 2097152 application/octet-stream 2020-07-23 09:35:02Z Hot False 2020-07-23T09:35:02.8527357Z * + + This command gets a single blob with blob tag condition. The cmdlet will only success when the blob contains a tag with name "tag1" and value "value1", else the cmdlet will fail with error code 412. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageblob + + + Get-AzStorageBlobContent + + + + Remove-AzStorageBlob + + + + Set-AzStorageBlobContent + + + + + + + Get-AzStorageBlobByTag + Get + AzStorageBlobByTag + + Lists blobs in a storage account across containers, with a blob tag filter sql expression. + + + + The Get-AzStorageBlobByTag cmdlet lists blobs in a storage account across containers, with a blob tag filter sql expression. + + + + Get-AzStorageBlobByTag + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Container name, specify this parameter to only return all blobs whose tags match a search expression in the container. + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Continuation Token. + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + GetBlobProperty + + As the blobs get by tag don't contain blob proeprties, specify tis parameter to get blob properties with an additional request on each blob. + + + System.Management.Automation.SwitchParameter + + + False + + + MaxCount + + The max count of the blobs that can return. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagFilterSqlExpression + + Filters the result set to only include blobs whose tags match the specified expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/find-blobs-by-tags#remarks. + + System.String + + System.String + + + None + + + + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Container name, specify this parameter to only return all blobs whose tags match a search expression in the container. + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Continuation Token. + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + GetBlobProperty + + As the blobs get by tag don't contain blob proeprties, specify tis parameter to get blob properties with an additional request on each blob. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + MaxCount + + The max count of the blobs that can return. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagFilterSqlExpression + + Filters the result set to only include blobs whose tags match the specified expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/find-blobs-by-tags#remarks. + + System.String + + System.String + + + None + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + + + + + + + + + + + + + Example 1: List all blobs match a specific blob tag, across containers. + Get-AzStorageBlobByTag -TagFilterSqlExpression """tag1""='value1'" -Context $ctx + +AccountName: storageaccountname, ContainerName: containername1 + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +testblob False +testblob2 False + + AccountName: storageaccountname, ContainerName: containername2 + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +testblob3 False +testblob4 False + + This command lists all blobs in a storage account, which contains a tag with name "tag1" and value "value1". + + + + + + Example 2: List blobs in a specific container and match a specific blob tag + Get-AzStorageBlobByTag -Container 'containername' -TagFilterSqlExpression """tag1""='value1'" -Context $ctx + +AccountName: storageaccountname, ContainerName: containername + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +test1 False +test2 False + + This command lists blobs in a container and match a specific blob tag. + + + + + + Example 3: List all blobs match a specific blob tag, across containers, and get the blob properties. + Get-AzStorageBlobByTag -TagFilterSqlExpression """tag1""='value1'" -GetBlobProperty + +AccountName: storageaccountname, ContainerName: containername1 + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +testblob BlockBlob 2097152 application/octet-stream 2020-07-23 09:35:02Z Hot False 2020-07-23T09:35:02.8527357Z * +testblob2 BlockBlob 1048012 application/octet-stream 2020-07-23 09:35:05Z Hot False 2020-07-23T09:35:05.2504530Z * + + AccountName: storageaccountname, ContainerName: containername2 + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +testblob3 BlockBlob 100 application/octet-stream 2020-07-01 09:55:14Z Hot False 2020-07-01T09:55:14.6507341Z * +testblob4 BlockBlob 2024 application/octet-stream 2020-07-01 09:42:11Z Hot False 2020-07-01T09:42:11.4283807Z * + + This command lists all blobs in a storage account, which contains a tag with name "tag1" and value "value1", and get the blob properties. Please note, to get blob properties with parameter -GetBlobProperty, each blob will need an addtional request, so the cmdlet runs show when there are many blobs. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageblobbytag + + + + + + Get-AzStorageBlobContent + Get + AzStorageBlobContent + + Downloads a storage blob. + + + + The Get-AzStorageBlobContent cmdlet downloads the specified storage blob. If the blob name is not valid for the local computer, this cmdlet automatically resolves it if it is possible. + + + + Get-AzStorageBlobContent + + AbsoluteUri + + Blob uri to download from. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage account from which you want to download blob content. You can use the New-AzStorageContext cmdlet to create a storage context. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Destination + + Specifies the location to store the downloaded file. + + System.String + + System.String + + + None + + + Force + + Overwrites an existing file without confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageBlobContent + + Blob + + Specifies the name of the blob to be downloaded. + + System.String + + System.String + + + None + + + Container + + Specifies the name of container that has the blob you want to download. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + CheckMd5 + + Specifies whether to check the Md5 sum for the downloaded file. + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage account from which you want to download blob content. You can use the New-AzStorageContext cmdlet to create a storage context. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Destination + + Specifies the location to store the downloaded file. + + System.String + + System.String + + + None + + + Force + + Overwrites an existing file without confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageBlobContent + + Blob + + Specifies the name of the blob to be downloaded. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + CheckMd5 + + Specifies whether to check the Md5 sum for the downloaded file. + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlobContainer + + Specifies a CloudBlobContainer object from the Azure storage client library. You can create it or use the Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage account from which you want to download blob content. You can use the New-AzStorageContext cmdlet to create a storage context. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Destination + + Specifies the location to store the downloaded file. + + System.String + + System.String + + + None + + + Force + + Overwrites an existing file without confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageBlobContent + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + CheckMd5 + + Specifies whether to check the Md5 sum for the downloaded file. + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a cloud blob. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage account from which you want to download blob content. You can use the New-AzStorageContext cmdlet to create a storage context. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Destination + + Specifies the location to store the downloaded file. + + System.String + + System.String + + + None + + + Force + + Overwrites an existing file without confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AbsoluteUri + + Blob uri to download from. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Blob + + Specifies the name of the blob to be downloaded. + + System.String + + System.String + + + None + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + CheckMd5 + + Specifies whether to check the Md5 sum for the downloaded file. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a cloud blob. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + CloudBlobContainer + + Specifies a CloudBlobContainer object from the Azure storage client library. You can create it or use the Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Specifies the name of container that has the blob you want to download. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage account from which you want to download blob content. You can use the New-AzStorageContext cmdlet to create a storage context. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Destination + + Specifies the location to store the downloaded file. + + System.String + + System.String + + + None + + + Force + + Overwrites an existing file without confirmation. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.Blob.CloudBlob + + + + + + + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + + + + + + + + * If the blob name is invalid for local computer, this cmdlet autoresolves it, if it is possible. + + + + + ----------- Example 1: Download blob content by name ----------- + Get-AzStorageBlobContent -Container "ContainerName" -Blob "Blob" -Destination "C:\test\" + + This command downloads a blob by name. + + + + + + ----- Example 2: Download blob content using the pipeline ----- + Get-AzStorageBlob -Container containername -Blob blobname | Get-AzStorageBlobContent + + This command uses the pipeline to find and download blob content. + + + + + + Example 3: Download blob content using the pipeline and a wildcard character + Get-AzStorageContainer container* | Get-AzStorageBlobContent -Blob "cbox.exe" -Destination "C:\test" + + This example uses the asterisk wildcard character and the pipeline to find and download blob content. + + + + + + Example 4: Get a blob object and save it in a variable, then download blob content with the blob object + $blob = Get-AzStorageBlob -Container containername -Blob blobname +Get-AzStorageBlobContent -CloudBlob $blob.ICloudBlob -Destination "C:\test" + + This example first get a blob object and save it in a variable, then download blob content with the blob object. + + + + + + ------- Example 5: Download a blob content with blob Uri ------- + Get-AzStorageBlobContent -Uri $blobUri -Destination "C:\test" -Force + + This example will download a blob content with Uri, the Uri can be a Uri with Sas token. If the blob is on a managed disk account, and server requires a bearer token besides Sas Uri to download, the cmdlet will try to generate a bearer token with server returned audience and the login AAD user credentail, then download blob with both Sas Uri and bearer token. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageblobcontent + + + Set-AzStorageBlobContent + + + + Get-AzStorageBlob + + + + Remove-AzStorageBlob + + + + + + + Get-AzStorageBlobCopyState + Get + AzStorageBlobCopyState + + Gets the copy status of an Azure Storage blob. + + + + The Get-AzStorageBlobCopyState cmdlet gets the copy status of an Azure Storage blob. It should run on the copy destination blob. + + + + Get-AzStorageBlobCopyState + + Blob + + Specifies the name of a blob. This cmdlet gets the state of the blob copy operation for the Azure Storage blob that this parameter specifies. + + System.String + + System.String + + + None + + + Container + + Specifies the name of a container. This cmdlet gets the copy status for a blob in the container that this parameter specifies. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + WaitForComplete + + Indicates that this cmdlet waits for the copy to finish. If you do not specify this parameter, this cmdlet returns a result immediately. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageBlobCopyState + + Blob + + Specifies the name of a blob. This cmdlet gets the state of the blob copy operation for the Azure Storage blob that this parameter specifies. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlobContainer + + Specifies a CloudBlobContainer object from the Azure Storage Client library. This cmdlet gets the copy status of a blob in the container that this parameter specifies. To obtain a CloudBlobContainer object, use the Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + WaitForComplete + + Indicates that this cmdlet waits for the copy to finish. If you do not specify this parameter, this cmdlet returns a result immediately. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageBlobCopyState + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a CloudBlob object from Azure Storage Client library. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + WaitForComplete + + Indicates that this cmdlet waits for the copy to finish. If you do not specify this parameter, this cmdlet returns a result immediately. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Blob + + Specifies the name of a blob. This cmdlet gets the state of the blob copy operation for the Azure Storage blob that this parameter specifies. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a CloudBlob object from Azure Storage Client library. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + CloudBlobContainer + + Specifies a CloudBlobContainer object from the Azure Storage Client library. This cmdlet gets the copy status of a blob in the container that this parameter specifies. To obtain a CloudBlobContainer object, use the Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Specifies the name of a container. This cmdlet gets the copy status for a blob in the container that this parameter specifies. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + WaitForComplete + + Indicates that this cmdlet waits for the copy to finish. If you do not specify this parameter, this cmdlet returns a result immediately. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.Blob.CloudBlob + + + + + + + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.Azure.Storage.Blob.CopyState + + + + + + + + + + + + + + ----------- Example 1: Get the copy status of a blob ----------- + Get-AzStorageBlobCopyState -Blob "ContosoPlanning2015" -Container "ContosoUploads" + + This command gets the copy status of the blob named ContosoPlanning2015 in the container ContosoUploads. + + + + + + Example 2: Get the copy status for of a blob by using the pipeline + Get-AzStorageBlob -Blob "ContosoPlanning2015" -Container "ContosoUploads" | Get-AzStorageBlobCopyState + + This command gets the blob named ContosoPlanning2015 in the container named ContosoUploads by using the Get-AzStorageBlob cmdlet, and then passes the result to the current cmdlet by using the pipeline operator. The Get-AzStorageBlobCopyState cmdlet gets the copy status for that blob. + + + + + + Example 3: Get the copy status for a blob in a container by using the pipeline + Get-AzStorageContainer -Name "ContosoUploads" | Get-AzStorageBlobCopyState -Blob "ContosoPlanning2015" + + This command gets the container named by using the Get-AzStorageBlob cmdlet, and then passes the result to the current cmdlet. The Get-AzStorageContainer cmdlet gets the copy status for the blob named ContosoPlanning2015 in that container. + + + + + + -- Example 4: Start Copy and pipeline to get the copy status -- + $destBlob = Start-AzStorageBlobCopy -SrcContainer "contosouploads" -SrcBlob "ContosoPlanning2015" -DestContainer "contosouploads2" -DestBlob "ContosoPlanning2015_copy" + +$destBlob | Get-AzStorageBlobCopyState + + The first command starts copy blob "ContosoPlanning2015" to "ContosoPlanning2015_copy", and output the destiantion blob object. The second command pipeline the destiantion blob object to Get-AzStorageBlobCopyState, to get blob copy state. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageblobcopystate + + + Start-AzStorageBlobCopy + + + + Stop-AzStorageBlobCopy + + + + + + + Get-AzStorageBlobQueryResult + Get + AzStorageBlobQueryResult + + Applies a simple Structured Query Language (SQL) statement on a blob's contents and save only the queried subset of the data to a local file. + + + + The Get-AzStorageBlobQueryResult cmdlet applies a simple Structured Query Language (SQL) statement on a blob's contents and save the queried subset of the data to a local file. + + + + Get-AzStorageBlobQueryResult + + Blob + + Blob name + + System.String + + System.String + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to overwrite the existing file. + + + System.Management.Automation.SwitchParameter + + + False + + + InputTextConfiguration + + The configuration used to handled the query input text. Create configuration object the with New-AzStorageBlobQueryConfig. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + + None + + + OutputTextConfiguration + + The configuration used to handled the query output text. Create configuration object the with New-AzStorageBlobQueryConfig. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + + None + + + PassThru + + Return whether the specified blob is successfully queried. + + + System.Management.Automation.SwitchParameter + + + False + + + QueryString + + Query string, see more details in: https://learn.microsoft.com/azure/storage/blobs/query-acceleration-sql-reference + + System.String + + System.String + + + None + + + ResultFile + + Local file path to save the query result. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SnapshotTime + + Blob SnapshotTime + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + VersionId + + Blob VersionId + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageBlobQueryResult + + Blob + + Blob name + + System.String + + System.String + + + None + + + BlobContainerClient + + BlobContainerClient Object + + Azure.Storage.Blobs.BlobContainerClient + + Azure.Storage.Blobs.BlobContainerClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to overwrite the existing file. + + + System.Management.Automation.SwitchParameter + + + False + + + InputTextConfiguration + + The configuration used to handled the query input text. Create configuration object the with New-AzStorageBlobQueryConfig. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + + None + + + OutputTextConfiguration + + The configuration used to handled the query output text. Create configuration object the with New-AzStorageBlobQueryConfig. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + + None + + + PassThru + + Return whether the specified blob is successfully queried. + + + System.Management.Automation.SwitchParameter + + + False + + + QueryString + + Query string, see more details in: https://learn.microsoft.com/azure/storage/blobs/query-acceleration-sql-reference + + System.String + + System.String + + + None + + + ResultFile + + Local file path to save the query result. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SnapshotTime + + Blob SnapshotTime + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + VersionId + + Blob VersionId + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageBlobQueryResult + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to overwrite the existing file. + + + System.Management.Automation.SwitchParameter + + + False + + + InputTextConfiguration + + The configuration used to handled the query input text. Create configuration object the with New-AzStorageBlobQueryConfig. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + + None + + + OutputTextConfiguration + + The configuration used to handled the query output text. Create configuration object the with New-AzStorageBlobQueryConfig. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + + None + + + PassThru + + Return whether the specified blob is successfully queried. + + + System.Management.Automation.SwitchParameter + + + False + + + QueryString + + Query string, see more details in: https://learn.microsoft.com/azure/storage/blobs/query-acceleration-sql-reference + + System.String + + System.String + + + None + + + ResultFile + + Local file path to save the query result. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Blob + + Blob name + + System.String + + System.String + + + None + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + BlobContainerClient + + BlobContainerClient Object + + Azure.Storage.Blobs.BlobContainerClient + + Azure.Storage.Blobs.BlobContainerClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to overwrite the existing file. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputTextConfiguration + + The configuration used to handled the query input text. Create configuration object the with New-AzStorageBlobQueryConfig. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + + None + + + OutputTextConfiguration + + The configuration used to handled the query output text. Create configuration object the with New-AzStorageBlobQueryConfig. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + + None + + + PassThru + + Return whether the specified blob is successfully queried. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + QueryString + + Query string, see more details in: https://learn.microsoft.com/azure/storage/blobs/query-acceleration-sql-reference + + System.String + + System.String + + + None + + + ResultFile + + Local file path to save the query result. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SnapshotTime + + Blob SnapshotTime + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + VersionId + + Blob VersionId + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + + + + + + Azure.Storage.Blobs.BlobContainerClient + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + ------------------- Example 1: Query a blob ------------------- + $inputconfig = New-AzStorageBlobQueryConfig -AsCsv -HasHeader + +$outputconfig = New-AzStorageBlobQueryConfig -AsJson + +$queryString = "SELECT * FROM BlobStorage WHERE Name = 'a'" + +$result = Get-AzStorageBlobQueryResult -Container $containerName -Blob $blobName -QueryString $queryString -ResultFile "c:\resultfile.json" -InputTextConfiguration $inputconfig -OutputTextConfiguration $outputconfig -Context $ctx + +$result + +BytesScanned FailureCount BlobQueryError +------------ ------------ -------------- + 449 0 + + This command querys a blob succsssfully with input config as csv, and output config as json, and save the output to local file "c:\resultfile.json". + + + + + + --------------- Example 2: Query a blob snapshot --------------- + PS C:\> $blob = Get-AzStorageBlob -Container $containerName -Blob $blobName -SnapshotTime "2020-07-29T11:08:21.1097874Z" -Context $ctx + +PS C:\> $inputconfig = New-AzStorageBlobQueryConfig -AsCsv -ColumnSeparator "," -QuotationCharacter """" -EscapeCharacter "\" -RecordSeparator "`n" -HasHeader + +PS C:\> $outputconfig = New-AzStorageBlobQueryConfig -AsJson -RecordSeparator "`n" + +PS C:\> $queryString = "SELECT * FROM BlobStorage WHERE _1 LIKE '1%%'" + +PS C:\> $result = $blob | Get-AzStorageBlobQueryResult -QueryString $queryString -ResultFile $localFilePath -InputTextConfiguration $inputconfig -OutputTextConfiguration $outputconfig + +PS C:\> $result + +BytesScanned FailureCount BlobQueryError +------------ ------------ -------------- + 187064971 1 {ParseError} + + + +PS C:\> $result.BlobQueryError + +Name Description IsFatal Position +---- ----------- ------- -------- +ParseError Unexpected token '1' at [byte: 3077737]. Expecting token ','. True 7270632 + + This command first gets a blob object for blob snapshot, then queries the blob snapshot and show the result include query error. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/Az.storage/get-azstorageblobqueryresult + + + + + + Get-AzStorageBlobTag + Get + AzStorageBlobTag + + Get blob tags of a specific blob. + + + + The Get-AzStorageBlobTag gets blob tags of a specific blob. + + + + Get-AzStorageBlobTag + + Blob + + Blob name + + System.String + + System.String + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageBlobTag + + Blob + + Blob name + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlobContainer + + CloudBlobContainer Object + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageBlobTag + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Blob + + Blob name + + System.String + + System.String + + + None + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlobContainer + + CloudBlobContainer Object + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + + + + + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Collections.Hashtable + + + + + + + + + + + + + + --------- Example 1: Get blob tags on a specific blob --------- + Get-AzStorageBlobTag -Container "containername" -Blob testblob + +Name Value +---- ----- +tag1 value1 +tag2 value2 + + This command gets blob tags on a specific blob. + + + + + + Example 2: Get blob tags on a specific blob with tag condition + Get-AzStorageBlobTag -Container "containername" -Blob testblob -TagCondition """tag1""='value1'" + +Name Value +---- ----- +tag1 value1 +tag2 value2 + + This command gets blob tags on a specific blob with tag condition. The cmdlet will only success when the blob contains a tag with name "tag1" and value "value1", else the cmdlet will fail with error code 412. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageblobtag + + + + + + Get-AzStorageContainer + Get + AzStorageContainer + + Lists the storage containers. + + + + The Get-AzStorageContainer cmdlet lists the storage containers associated with the storage account in Azure. + + + + Get-AzStorageContainer + + Name + + Specifies the container name. If container name is empty, the cmdlet lists all the containers. Otherwise, it lists all containers that match the specified name or the regular name pattern. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the storage context. To create it, you can use the New-AzStorageContext cmdlet. The container permissions won't be retrieved when you use a storage context created from SAS Token, because query container permissions requires Storage account key permission. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Specifies a continuation token for the blob list. + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include deleted containers, by default list containers won't include deleted containers + + + System.Management.Automation.SwitchParameter + + + False + + + MaxCount + + Specifies the maximum number of objects that this cmdlet returns. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + Get-AzStorageContainer + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the storage context. To create it, you can use the New-AzStorageContext cmdlet. The container permissions won't be retrieved when you use a storage context created from SAS Token, because query container permissions requires Storage account key permission. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Specifies a continuation token for the blob list. + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include deleted containers, by default list containers won't include deleted containers + + + System.Management.Automation.SwitchParameter + + + False + + + MaxCount + + Specifies the maximum number of objects that this cmdlet returns. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Prefix + + Specifies a prefix used in the name of the container or containers you want to get. You can use this to find all containers that start with the same string, such as "my" or "test". + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the storage context. To create it, you can use the New-AzStorageContext cmdlet. The container permissions won't be retrieved when you use a storage context created from SAS Token, because query container permissions requires Storage account key permission. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Specifies a continuation token for the blob list. + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + Microsoft.Azure.Storage.Blob.BlobContinuationToken + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include deleted containers, by default list containers won't include deleted containers + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + MaxCount + + Specifies the maximum number of objects that this cmdlet returns. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Name + + Specifies the container name. If container name is empty, the cmdlet lists all the containers. Otherwise, it lists all containers that match the specified name or the regular name pattern. + + System.String + + System.String + + + None + + + Prefix + + Specifies a prefix used in the name of the container or containers you want to get. You can use this to find all containers that start with the same string, such as "my" or "test". + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageContainer + + + + + + + + + + + + + + -------- Example 1: Get Azure Storage container by name -------- + Get-AzStorageContainer -Name container* + + This example uses a wildcard character to return a list of all containers with a name that starts with container. + + + + + + Example 2: Get Azure Storage container by container name prefix + Get-AzStorageContainer -Prefix "container" + + This example uses the Prefix parameter to return a list of all containers with a name that starts with container. + + + + + + Example 3: List Azure Storage container, include deleted containers + PS C:\> $containers = Get-AzStorageContainer -IncludeDeleted -Context $ctx + +PS C:\> $containers + + Storage Account Name: storageaccountname + +Name PublicAccess LastModified IsDeleted VersionId +---- ------------ ------------ --------- --------- +testcon Off 8/28/2020 10:18:13 AM +00:00 +testcon2 9/4/2020 12:52:37 PM +00:00 True 01D67D248986B6DA + +PS C:\> $c[1].BlobContainerProperties + +LastModified : 9/4/2020 12:52:37 PM +00:00 +LeaseStatus : Unlocked +LeaseState : Expired +LeaseDuration : +PublicAccess : +HasImmutabilityPolicy : False +HasLegalHold : False +DefaultEncryptionScope : $account-encryption-key +PreventEncryptionScopeOverride : False +DeletedOn : 9/8/2020 4:29:59 AM +00:00 +RemainingRetentionDays : 299 +ETag : "0x8D850D167059285" +Metadata : {} + + This example lists all containers of a storage account, include deleted containers. Then show the deleted container properties, include : DeletedOn, RemainingRetentionDays. Deleted containers will only exist after enabled Container softdelete with Enable-AzStorageBlobDeleteRetentionPolicy. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragecontainer + + + New-AzStorageContainer + + + + Remove-AzStorageContainer + + + + Set-AzStorageContainerAcl + + + + + + + Get-AzStorageContainerStoredAccessPolicy + Get + AzStorageContainerStoredAccessPolicy + + Gets the stored access policy or policies for an Azure storage container. + + + + The Get-AzStorageContainerStoredAccessPolicy cmdlet lists the stored access policy or policies for an Azure storage container. + + + + Get-AzStorageContainerStoredAccessPolicy + + Container + + Specifies the name of your Azure storage container. + + System.String + + System.String + + + None + + + Policy + + Specifies the Azure stored access policy. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage context. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Specifies the name of your Azure storage container. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage context. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Policy + + Specifies the Azure stored access policy. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.Azure.Storage.Blob.SharedAccessBlobPolicy + + + + + + + + + + + + + + - Example 1: Get a stored access policy in a storage container - + Get-AzStorageContainerStoredAccessPolicy -Container "Container07" -Policy "Policy22" + + This command gets the access policy named Policy22 in the storage container named Container07. + + + + + + Example 2: Get all the stored access policies in a storage container + Get-AzStorageContainerStoredAccessPolicy -Container "Container07" + + This command gets all access policies in the storage container named Container07. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragecontainerstoredaccesspolicy + + + New-AzStorageContainerStoredAccessPolicy + + + + Remove-AzStorageContainerStoredAccessPolicy + + + + Set-AzStorageContainerStoredAccessPolicy + + + + + + + Get-AzStorageCORSRule + Get + AzStorageCORSRule + + Gets CORS rules for a Storage service type. + + + + The Get-AzStorageCORSRule cmdlet gets Cross-Origin Resource Sharing (CORS) rules for an Azure Storage service type. + + + + Get-AzStorageCORSRule + + ServiceType + + Specifies the Azure Storage service type for which this cmdlet gets CORS rules. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + + + Blob + Table + Queue + File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ServiceType + + Specifies the Azure Storage service type for which this cmdlet gets CORS rules. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSCorsRule + + + + + + + + + + + + + + ---------- Example 1: Get CORS rules of blob service ---------- + Get-AzStorageCORSRule -ServiceType Blob + + This command gets the CORS rules for the Blob service type. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragecorsrule + + + Remove-AzStorageCORSRule + + + + Set-AzStorageCORSRule + + + + + + + Get-AzStorageFile + Get + AzStorageFile + + Lists directories and files for a path. + + + + The Get-AzStorageFile cmdlet lists directories and files for the share or directory that you specify. Specify the Path parameter to get an instance of a directory or file in the specified path. This cmdlet returns AzureStorageFile and AzureStorageDirectory objects. You can use the IsDirectory property to distinguish between folders and files. + + + + Get-AzStorageFile + + Directory + + Specifies a folder as a CloudFileDirectory object. This cmdlet gets the folder that this parameter specifies. To obtain a directory, use the New-AzStorageDirectory cmdlet. You can also use the Get-AzStorageFile cmdlet to obtain a directory. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + Path + + Specifies the path of a folder. If you omit the Path parameter, Get-AzStorageFile lists the directories and files in the specified file share or directory. If you include the Path parameter, Get-AzStorageFile returns an instance of a directory or file in the specified path. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client side time-out interval, in seconds, for one service request. If the previous call fails within the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help mitigate network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a Storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExcludeExtendedInfo + + Not include extended file info like timestamps, ETag, attributes, permissionKey in list file and Directory. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service-side timeout interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the Storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the base folder where the files/directories would be listed. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + + Get-AzStorageFile + + Share + + Specifies a CloudFileShare object. This cmdlet gets a file or directory from the file share that this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the Storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + Path + + Specifies the path of a folder. If you omit the Path parameter, Get-AzStorageFile lists the directories and files in the specified file share or directory. If you include the Path parameter, Get-AzStorageFile returns an instance of a directory or file in the specified path. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client side time-out interval, in seconds, for one service request. If the previous call fails within the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help mitigate network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a Storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExcludeExtendedInfo + + Not include extended file info like timestamps, ETag, attributes, permissionKey in list file and Directory. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service-side timeout interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the Storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareClient + + ShareClient object indicated the share where the files/directories would be listed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + + Get-AzStorageFile + + ShareName + + Specifies the name of the file share. This cmdlet gets a file or directory from the file share that this parameter specifies. + + System.String + + System.String + + + None + + + Path + + Specifies the path of a folder. If you omit the Path parameter, Get-AzStorageFile lists the directories and files in the specified file share or directory. If you include the Path parameter, Get-AzStorageFile returns an instance of a directory or file in the specified path. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client side time-out interval, in seconds, for one service request. If the previous call fails within the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help mitigate network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a Storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExcludeExtendedInfo + + Not include extended file info like timestamps, ETag, attributes, permissionKey in list file and Directory. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service-side timeout interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the Storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client side time-out interval, in seconds, for one service request. If the previous call fails within the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help mitigate network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a Storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Directory + + Specifies a folder as a CloudFileDirectory object. This cmdlet gets the folder that this parameter specifies. To obtain a directory, use the New-AzStorageDirectory cmdlet. You can also use the Get-AzStorageFile cmdlet to obtain a directory. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + ExcludeExtendedInfo + + Not include extended file info like timestamps, ETag, attributes, permissionKey in list file and Directory. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Path + + Specifies the path of a folder. If you omit the Path parameter, Get-AzStorageFile lists the directories and files in the specified file share or directory. If you include the Path parameter, Get-AzStorageFile returns an instance of a directory or file in the specified path. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the service-side timeout interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the Storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Share + + Specifies a CloudFileShare object. This cmdlet gets a file or directory from the file share that this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the Storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + ShareClient + + ShareClient object indicated the share where the files/directories would be listed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the base folder where the files/directories would be listed. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + ShareName + + Specifies the name of the file share. This cmdlet gets a file or directory from the file share that this parameter specifies. + + System.String + + System.String + + + None + + + + + + Microsoft.Azure.Storage.File.CloudFileShare + + + + + + + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFile + + + + + + + + + + + + + + ------------ Example 1: List directories in a share ------------ + Get-AzStorageFile -ShareName "ContosoShare06" | Where-Object {$_.GetType().Name -eq "AzureStorageFileDirectory"} + + This command lists only the directories in the share ContosoShare06. It first retrieves both files and directories, passes them to the where operator by using the pipeline operator, then discards any objects whose type is not "AzureStorageFileDirectory". + + + + + + --------------- Example 2: List a File Directory --------------- + Get-AzStorageFile -ShareName "ContosoShare06" -Path "ContosoWorkingFolder" | Get-AzStorageFile + + This command lists the files and folders in the directory ContosoWorkingFolder under the share ContosoShare06. It first gets the directory instance, and then pipelines it to the Get-AzStorageFile cmdlet to list the directory. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragefile + + + Get-AzStorageFileContent + + + + New-AzStorageDirectory + + + + Remove-AzStorageDirectory + + + + Remove-AzStorageFile + + + + Set-AzStorageFileContent + + + + + + + Get-AzStorageFileContent + Get + AzStorageFileContent + + Downloads the contents of a file. + + + + The Get-AzStorageFileContent cmdlet downloads the contents of a file, and then saves it to a destination that you specify. This cmdlet does not return the contents of the file. + + + + Get-AzStorageFileContent + + Directory + + Specifies a folder as a CloudFileDirectory object. This cmdlet gets content for a file in the folder that this parameter specifies. To obtain a directory, use the New-AzStorageDirectory cmdlet. You can also use the Get-AzStorageFile cmdlet to obtain a directory. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + Path + + Specifies the path of a file. This cmdlet gets the contents the file that this parameter specifies. If the file does not exist, this cmdlet returns an error. + + System.String + + System.String + + + None + + + Destination + + Specifies the destination path. This cmdlet downloads the file contents to the location that this parameter specifies. If you specify the path of a file that does not exist, this cmdlet creates that file, and saves the contents in the new file. If you specify a path of a file that already exists and you specify the Force parameter, the cmdlet overwrites the file. If you specify a path of an existing file and you do not specify Force , the cmdlet prompts you before it continues. If you specify the path of a folder, this cmdlet attempts to create a file that has the name of the Azure storage file. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + CheckMd5 + + Specifies whether to check the Md5 sum for the downloaded file. + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + If you specify the path of a file that does not exist, this cmdlet creates that file, and saves the contents in the new file. If you specify a path of a file that already exists and you specify the Force parameter, the cmdlet overwrites the file. If you specify a path of an existing file and you do not specify Force , the cmdlet prompts you before it continues. If you specify the path of a folder, this cmdlet attempts to create a file that has the name of the Azure storage file. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns the AzureStorageFile object that it downloads. + + + System.Management.Automation.SwitchParameter + + + False + + + PreserveSMBAttribute + + Keep the source File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in destination File. This parameter is only available on Windows. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the cloud directory where the file would be downloaded. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageFileContent + + File + + Specifies a file as a CloudFile object. This cmdlet gets the file that this parameter specifies. To obtain a CloudFile object, use the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + Destination + + Specifies the destination path. This cmdlet downloads the file contents to the location that this parameter specifies. If you specify the path of a file that does not exist, this cmdlet creates that file, and saves the contents in the new file. If you specify a path of a file that already exists and you specify the Force parameter, the cmdlet overwrites the file. If you specify a path of an existing file and you do not specify Force , the cmdlet prompts you before it continues. If you specify the path of a folder, this cmdlet attempts to create a file that has the name of the Azure storage file. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + CheckMd5 + + Specifies whether to check the Md5 sum for the downloaded file. + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + If you specify the path of a file that does not exist, this cmdlet creates that file, and saves the contents in the new file. If you specify a path of a file that already exists and you specify the Force parameter, the cmdlet overwrites the file. If you specify a path of an existing file and you do not specify Force , the cmdlet prompts you before it continues. If you specify the path of a folder, this cmdlet attempts to create a file that has the name of the Azure storage file. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns the AzureStorageFile object that it downloads. + + + System.Management.Automation.SwitchParameter + + + False + + + PreserveSMBAttribute + + Keep the source File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in destination File. This parameter is only available on Windows. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareFileClient + + ShareFileClient object indicated the cloud file to be downloaded. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageFileContent + + ShareName + + Specifies the name of the file share. This cmdlet downloads the contents of the file in the share this parameter specifies. + + System.String + + System.String + + + None + + + Path + + Specifies the path of a file. This cmdlet gets the contents the file that this parameter specifies. If the file does not exist, this cmdlet returns an error. + + System.String + + System.String + + + None + + + Destination + + Specifies the destination path. This cmdlet downloads the file contents to the location that this parameter specifies. If you specify the path of a file that does not exist, this cmdlet creates that file, and saves the contents in the new file. If you specify a path of a file that already exists and you specify the Force parameter, the cmdlet overwrites the file. If you specify a path of an existing file and you do not specify Force , the cmdlet prompts you before it continues. If you specify the path of a folder, this cmdlet attempts to create a file that has the name of the Azure storage file. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + CheckMd5 + + Specifies whether to check the Md5 sum for the downloaded file. + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + If you specify the path of a file that does not exist, this cmdlet creates that file, and saves the contents in the new file. If you specify a path of a file that already exists and you specify the Force parameter, the cmdlet overwrites the file. If you specify a path of an existing file and you do not specify Force , the cmdlet prompts you before it continues. If you specify the path of a folder, this cmdlet attempts to create a file that has the name of the Azure storage file. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns the AzureStorageFile object that it downloads. + + + System.Management.Automation.SwitchParameter + + + False + + + PreserveSMBAttribute + + Keep the source File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in destination File. This parameter is only available on Windows. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageFileContent + + Share + + Specifies a CloudFileShare object. This cmdlet downloads the contents of the file in the share this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + Path + + Specifies the path of a file. This cmdlet gets the contents the file that this parameter specifies. If the file does not exist, this cmdlet returns an error. + + System.String + + System.String + + + None + + + Destination + + Specifies the destination path. This cmdlet downloads the file contents to the location that this parameter specifies. If you specify the path of a file that does not exist, this cmdlet creates that file, and saves the contents in the new file. If you specify a path of a file that already exists and you specify the Force parameter, the cmdlet overwrites the file. If you specify a path of an existing file and you do not specify Force , the cmdlet prompts you before it continues. If you specify the path of a folder, this cmdlet attempts to create a file that has the name of the Azure storage file. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + CheckMd5 + + Specifies whether to check the Md5 sum for the downloaded file. + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + If you specify the path of a file that does not exist, this cmdlet creates that file, and saves the contents in the new file. If you specify a path of a file that already exists and you specify the Force parameter, the cmdlet overwrites the file. If you specify a path of an existing file and you do not specify Force , the cmdlet prompts you before it continues. If you specify the path of a folder, this cmdlet attempts to create a file that has the name of the Azure storage file. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns the AzureStorageFile object that it downloads. + + + System.Management.Automation.SwitchParameter + + + False + + + PreserveSMBAttribute + + Keep the source File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in destination File. This parameter is only available on Windows. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareClient + + CloudFileShare object indicated the share where the file would be downloaded. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + CheckMd5 + + Specifies whether to check the Md5 sum for the downloaded file. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Destination + + Specifies the destination path. This cmdlet downloads the file contents to the location that this parameter specifies. If you specify the path of a file that does not exist, this cmdlet creates that file, and saves the contents in the new file. If you specify a path of a file that already exists and you specify the Force parameter, the cmdlet overwrites the file. If you specify a path of an existing file and you do not specify Force , the cmdlet prompts you before it continues. If you specify the path of a folder, this cmdlet attempts to create a file that has the name of the Azure storage file. + + System.String + + System.String + + + None + + + Directory + + Specifies a folder as a CloudFileDirectory object. This cmdlet gets content for a file in the folder that this parameter specifies. To obtain a directory, use the New-AzStorageDirectory cmdlet. You can also use the Get-AzStorageFile cmdlet to obtain a directory. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + File + + Specifies a file as a CloudFile object. This cmdlet gets the file that this parameter specifies. To obtain a CloudFile object, use the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + Force + + If you specify the path of a file that does not exist, this cmdlet creates that file, and saves the contents in the new file. If you specify a path of a file that already exists and you specify the Force parameter, the cmdlet overwrites the file. If you specify a path of an existing file and you do not specify Force , the cmdlet prompts you before it continues. If you specify the path of a folder, this cmdlet attempts to create a file that has the name of the Azure storage file. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns the AzureStorageFile object that it downloads. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Path + + Specifies the path of a file. This cmdlet gets the contents the file that this parameter specifies. If the file does not exist, this cmdlet returns an error. + + System.String + + System.String + + + None + + + PreserveSMBAttribute + + Keep the source File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in destination File. This parameter is only available on Windows. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Share + + Specifies a CloudFileShare object. This cmdlet downloads the contents of the file in the share this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + ShareClient + + CloudFileShare object indicated the share where the file would be downloaded. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the cloud directory where the file would be downloaded. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + ShareFileClient + + ShareFileClient object indicated the cloud file to be downloaded. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + ShareName + + Specifies the name of the file share. This cmdlet downloads the contents of the file in the share this parameter specifies. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.File.CloudFileShare + + + + + + + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + + + + + + Microsoft.Azure.Storage.File.CloudFile + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFile + + + + + + + + + + + + + + ----------- Example 1: Download a file from a folder ----------- + Get-AzStorageFileContent -ShareName "ContosoShare06" -Path "ContosoWorkingFolder/CurrentDataFile" + + This command downloads a file that is named CurrentDataFile in the folder ContosoWorkingFolder from the file share ContosoShare06 to current folder. + + + + + + ---- Example 2: Downloads the files under sample file share ---- + Get-AzStorageFile -ShareName sample | Where-Object {$_.GetType().Name -eq "CloudFile"} | Get-AzStorageFileContent + + This example downloads the files under sample file share + + + + + + Example 3: Download an Azure file to a local file, and perserve the Azure File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in the local file. + Get-AzStorageFileContent -ShareName sample -Path "dir1/file1" -Destination $localFilePath -PreserveSMBAttribute + + This example downloads an Azure file to a local file, and perserves the Azure File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in the local file. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragefilecontent + + + Get-AzStorageFile + + + + Set-AzStorageFileContent + + + + + + + Get-AzStorageFileCopyState + Get + AzStorageFileCopyState + + Gets the state of a copy operation. + + + + The Get-AzStorageFileCopyState cmdlet gets the state of an Azure Storage file copy operation. It should run on the copy destination file. + + + + Get-AzStorageFileCopyState + + File + + Specifies a CloudFile object. You can create a cloud file or obtain one by using the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareFileClient + + ShareFileClient object indicated the file to get copy status. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + WaitForComplete + + Indicates that this cmdlet waits for the copy to finish. If you do not specify this parameter, this cmdlet returns a result immediately. + + + System.Management.Automation.SwitchParameter + + + False + + + + Get-AzStorageFileCopyState + + ShareName + + Specifies the name of a share. + + System.String + + System.String + + + None + + + FilePath + + Specifies the path of the file relative to an Azure Storage share. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + WaitForComplete + + Indicates that this cmdlet waits for the copy to finish. If you do not specify this parameter, this cmdlet returns a result immediately. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + File + + Specifies a CloudFile object. You can create a cloud file or obtain one by using the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + FilePath + + Specifies the path of the file relative to an Azure Storage share. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareFileClient + + ShareFileClient object indicated the file to get copy status. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + ShareName + + Specifies the name of a share. + + System.String + + System.String + + + None + + + WaitForComplete + + Indicates that this cmdlet waits for the copy to finish. If you do not specify this parameter, this cmdlet returns a result immediately. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.File.CloudFile + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.Azure.Storage.File.CopyState + + + + + + + + + + + + + + ---------- Example 1: Get the copy state by file name ---------- + Get-AzStorageFileCopyState -ShareName "ContosoShare" -FilePath "ContosoFile" + + This command gets the state of the copy operation for a file that has the specified name. + + + + + + -- Example 2: Start Copy and pipeline to get the copy status -- + $destfile = Start-AzStorageFileCopy -SrcShareName "contososhare" -SrcFilePath "contosofile" -DestShareName "contososhare2" -destfilepath "contosofile_copy" + +$destfile | Get-AzStorageFileCopyState + + The first command starts copy file "contosofile" to "contosofile_copy", and output the destiantion file object. The second command pipeline the destiantion file object to Get-AzStorageFileCopyState, to get file copy state. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragefilecopystate + + + Get-AzStorageFile + + + + New-AzStorageContext + + + + Start-AzStorageFileCopy + + + + Stop-AzStorageFileCopy + + + + + + + Get-AzStorageFileHandle + Get + AzStorageFileHandle + + Lists file handles of a file share, a file directory or a file. + + + + The Get-AzStorageFileHandle cmdlet lists file handles of a file share, or file directory or a file. + + + + Get-AzStorageFileHandle + + Directory + + CloudFileDirectory object indicated the base folder where the files/directories would be listed. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + Path + + Path to an existing file/directory. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Recursive + + List handles Recursively. Only works on File Directory. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the base folder where the files/directories would list File Handles + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + IncludeTotalCount + + Reports the number of objects in the data set (an integer) followed by the objects. If the cmdlet cannot determine the total count, it returns 'Unknown total count'. Currently, this parameter does nothing. + + + System.Management.Automation.SwitchParameter + + + False + + + Skip + + Ignores the first 'n' objects and then gets the remaining objects. + + System.UInt64 + + System.UInt64 + + + None + + + First + + Gets only the first 'n' objects. + + System.UInt64 + + System.UInt64 + + + None + + + + Get-AzStorageFileHandle + + File + + CloudFile object indicated the file to list File Handles. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Recursive + + List handles Recursively. Only works on File Directory. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareFileClient + + ShareFileClient object indicated the file to list File Handles. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + IncludeTotalCount + + Reports the number of objects in the data set (an integer) followed by the objects. If the cmdlet cannot determine the total count, it returns 'Unknown total count'. Currently, this parameter does nothing. + + + System.Management.Automation.SwitchParameter + + + False + + + Skip + + Ignores the first 'n' objects and then gets the remaining objects. + + System.UInt64 + + System.UInt64 + + + None + + + First + + Gets only the first 'n' objects. + + System.UInt64 + + System.UInt64 + + + None + + + + Get-AzStorageFileHandle + + ShareName + + Name of the file share where the files/directories would be listed. + + System.String + + System.String + + + None + + + Path + + Path to an existing file/directory. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Recursive + + List handles Recursively. Only works on File Directory. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + IncludeTotalCount + + Reports the number of objects in the data set (an integer) followed by the objects. If the cmdlet cannot determine the total count, it returns 'Unknown total count'. Currently, this parameter does nothing. + + + System.Management.Automation.SwitchParameter + + + False + + + Skip + + Ignores the first 'n' objects and then gets the remaining objects. + + System.UInt64 + + System.UInt64 + + + None + + + First + + Gets only the first 'n' objects. + + System.UInt64 + + System.UInt64 + + + None + + + + Get-AzStorageFileHandle + + Share + + CloudFileShare object indicated the share where the files/directories would be listed. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + Path + + Path to an existing file/directory. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Recursive + + List handles Recursively. Only works on File Directory. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareClient + + ShareClient object indicated the share where the files/directories would list File Handles + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + IncludeTotalCount + + Reports the number of objects in the data set (an integer) followed by the objects. If the cmdlet cannot determine the total count, it returns 'Unknown total count'. Currently, this parameter does nothing. + + + System.Management.Automation.SwitchParameter + + + False + + + Skip + + Ignores the first 'n' objects and then gets the remaining objects. + + System.UInt64 + + System.UInt64 + + + None + + + First + + Gets only the first 'n' objects. + + System.UInt64 + + System.UInt64 + + + None + + + + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Directory + + CloudFileDirectory object indicated the base folder where the files/directories would be listed. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + File + + CloudFile object indicated the file to list File Handles. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + Path + + Path to an existing file/directory. + + System.String + + System.String + + + None + + + Recursive + + List handles Recursively. Only works on File Directory. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Share + + CloudFileShare object indicated the share where the files/directories would be listed. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + ShareClient + + ShareClient object indicated the share where the files/directories would list File Handles + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the base folder where the files/directories would list File Handles + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + ShareFileClient + + ShareFileClient object indicated the file to list File Handles. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + ShareName + + Name of the file share where the files/directories would be listed. + + System.String + + System.String + + + None + + + IncludeTotalCount + + Reports the number of objects in the data set (an integer) followed by the objects. If the cmdlet cannot determine the total count, it returns 'Unknown total count'. Currently, this parameter does nothing. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Skip + + Ignores the first 'n' objects and then gets the remaining objects. + + System.UInt64 + + System.UInt64 + + + None + + + First + + Gets only the first 'n' objects. + + System.UInt64 + + System.UInt64 + + + None + + + + + + Microsoft.Azure.Storage.File.CloudFileShare + + + + + + + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.Azure.Storage.File.FileHandleResultSegment + + + + + + + + + + + + + + Example 1: List all file handles on a file share recursively, and sort by ClientIp and OpenTime + Get-AzStorageFileHandle -ShareName "mysharename" -Recursive | Sort-Object ClientIP,OpenTime + +HandleId Path ClientIp ClientPort OpenTime LastReconnectTime FileId ParentId SessionId +-------- ---- -------- ---------- -------- ----------------- ------ -------- --------- +28506980357 104.46.105.229 49805 2019-07-29 08:37:36Z 0 0 9297571480349046273 +28506980537 dir1 104.46.105.229 49805 2019-07-30 09:28:48Z 10376363910205800448 0 9297571480349046273 +28506980538 dir1 104.46.105.229 49805 2019-07-30 09:28:48Z 10376363910205800448 0 9297571480349046273 +28582543365 104.46.119.170 51675 2019-07-30 09:29:32Z 0 0 9477733061320772929 +28582543375 dir1 104.46.119.170 51675 2019-07-30 09:29:38Z 10376363910205800448 0 9477733061320772929 +28582543376 dir1 104.46.119.170 51675 2019-07-30 09:29:38Z 10376363910205800448 0 9477733061320772929 + + This command lists file handles on a file share, and sort the output by ClientIp, then by OpenTime. + + + + + + Example 2: List first 2 file handles on a file directory recursively + Get-AzStorageFileHandle -ShareName "mysharename" -Path 'dir1/dir2' -Recursive -First 2 + +HandleId Path ClientIp ClientPort OpenTime LastReconnectTime FileId ParentId SessionId +-------- ---- -------- ---------- -------- ----------------- ------ -------- --------- +24057151779 dir1/dir2 104.46.105.229 50861 2019-06-18 07:39:23Z 16140971433240035328 11529285414812647424 9549812641162070049 +24057151780 dir1/dir2 104.46.105.229 50861 2019-06-18 07:39:23Z 16140971433240035328 11529285414812647424 9549812641162070049 + + This command lists first 2 file handles on a file directory recursively . + + + + + + -- Example 3: List the 3rd to the 6th file handles on a file -- + Get-AzStorageFileHandle -ShareName "mysharename" -Path 'dir1/dir2/test.txt' -skip 2 -First 4 + +HandleId Path ClientIp ClientPort OpenTime LastReconnectTime FileId ParentId SessionId +-------- ---- -------- ---------- -------- ----------------- ------ -------- --------- +24055513248 dir1/dir2/test.txt 104.46.105.229 49817 2019-06-18 08:21:59Z 9223407221226864640 16140971433240035328 9338416139169958321 +24055513249 dir1/dir2/test.txt 104.46.105.229 49817 2019-06-18 08:21:59Z 9223407221226864640 16140971433240035328 9338416139169958321 +24055513252 dir1/dir2/test.txt 104.46.105.229 49964 2019-06-18 08:22:54Z 9223407221226864640 16140971433240035328 9338416138431762125 +24055513253 dir1/dir2/test.txt 104.46.105.229 49964 2019-06-18 08:22:54Z 9223407221226864640 16140971433240035328 9338416138431762125 + + This command lists the 3rd to the 6th file handles on a file. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragefilehandle + + + + + + Get-AzStorageQueue + Get + AzStorageQueue + + Lists storage queues. + + + + The Get-AzStorageQueue cmdlet lists storage queues associated with an Azure Storage account. + + + + Get-AzStorageQueue + + Name + + Specifies a name. If no name is specified, the cmdlet gets a list of all the queues. If a full or partial name is specified, the cmdlet gets all queues that match the name pattern. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage context. You can create it by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + Get-AzStorageQueue + + Context + + Specifies the Azure storage context. You can create it by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Prefix + + Specifies a prefix used in the name of the queues you want to get. + + System.String + + System.String + + + None + + + + + + Context + + Specifies the Azure storage context. You can create it by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies a name. If no name is specified, the cmdlet gets a list of all the queues. If a full or partial name is specified, the cmdlet gets all queues that match the name pattern. + + System.String + + System.String + + + None + + + Prefix + + Specifies a prefix used in the name of the queues you want to get. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageQueue + + + + + + + + + + + + + + ----------- Example 1: List all Azure Storage queues ----------- + Get-AzStorageQueue + + This command gets a list of all storage queues for the current Storage account. + + + + + + Example 2: List Azure Storage queues using a wildcard character + Get-AzStorageQueue -Name queue* + + This command uses a wildcard character to get a list of storage queues whose name starts with queue. + + + + + + - Example 3: List Azure Storage queues using queue name prefix - + Get-AzStorageQueue -Prefix "queue" + + This example uses the Prefix parameter to get a list of storage queues whose name starts with queue. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragequeue + + + New-AzStorageQueue + + + + Remove-AzStorageQueue + + + + + + + Get-AzStorageQueueStoredAccessPolicy + Get + AzStorageQueueStoredAccessPolicy + + Gets the stored access policy or policies for an Azure storage queue. + + + + The Get-AzStorageQueueStoredAccessPolicy cmdlet lists the stored access policy or policies for an Azure storage queue. + + + + Get-AzStorageQueueStoredAccessPolicy + + Queue + + Specifies the Azure storage queue name. + + System.String + + System.String + + + None + + + Policy + + Specifies a stored access policy, which includes the permissions for this Shared Access Signature (SAS) token. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + Context + + Specifies the Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Policy + + Specifies a stored access policy, which includes the permissions for this Shared Access Signature (SAS) token. + + System.String + + System.String + + + None + + + Queue + + Specifies the Azure storage queue name. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.Azure.Storage.Queue.SharedAccessQueuePolicy + + + + + + + + + + + + + + ------ Example 1: Get a stored access policy in the queue ------ + Get-AzStorageQueueStoredAccessPolicy -Queue "MyQueue" -Policy "Policy12" + + This command gets the access policy named Policy12 in the storage queue named MyQueue. + + + + + + ---- Example 2: Get all stored access policies in the queue ---- + Get-AzStorageQueueStoredAccessPolicy -Queue "MyQueue" + + This command gets all stored access policies in the queue named MyQueue. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragequeuestoredaccesspolicy + + + New-AzStorageQueueStoredAccessPolicy + + + + Remove-AzStorageQueueStoredAccessPolicy + + + + Set-AzStorageQueueStoredAccessPolicy + + + + New-AzStorageContext + + + + + + + Get-AzStorageServiceLoggingProperty + Get + AzStorageServiceLoggingProperty + + Gets logging properties for Azure Storage services. + + + + The Get-AzStorageServiceLoggingProperty cmdlet gets logging properties for Azure Storage services. + + + + Get-AzStorageServiceLoggingProperty + + ServiceType + + Specifies the storage service type. This cmdlet gets the logging properties for the service type that this parameter specifies. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + The value of File is not currently supported. + + + Blob + Table + Queue + File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServiceType + + Specifies the storage service type. This cmdlet gets the logging properties for the service type that this parameter specifies. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + The value of File is not currently supported. + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.Azure.Storage.Shared.Protocol.LoggingProperties + + + + + + + + + + + + + + ---- Example 1: Get logging properties for the Blob service ---- + Get-AzStorageServiceLoggingProperty -ServiceType Blob + + This command gets logging properties for blob storage. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageserviceloggingproperty + + + New-AzStorageContext + + + + Set-AzStorageServiceLoggingProperty + + + + + + + Get-AzStorageServiceMetricsProperty + Get + AzStorageServiceMetricsProperty + + Gets metrics properties for the Azure Storage service. + + + + The Get-AzStorageServiceMetricsProperty cmdlet gets metrics properties for the Azure Storage service. + + + + Get-AzStorageServiceMetricsProperty + + ServiceType + + Specifies the storage service type. This cmdlet gets the metrics properties for the type that this parameter specifies. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + The value of File is not currently supported. + + + Blob + Table + Queue + File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + MetricsType + + Specifies a metrics type. This cmdlet gets the Azure Storage service metrics properties for the metrics type that this parameter specifies. The acceptable values for this parameter are: Hour and Minute. + + + Hour + Minute + + Microsoft.WindowsAzure.Commands.Storage.Common.ServiceMetricsType + + Microsoft.WindowsAzure.Commands.Storage.Common.ServiceMetricsType + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + MetricsType + + Specifies a metrics type. This cmdlet gets the Azure Storage service metrics properties for the metrics type that this parameter specifies. The acceptable values for this parameter are: Hour and Minute. + + Microsoft.WindowsAzure.Commands.Storage.Common.ServiceMetricsType + + Microsoft.WindowsAzure.Commands.Storage.Common.ServiceMetricsType + + + None + + + ServiceType + + Specifies the storage service type. This cmdlet gets the metrics properties for the type that this parameter specifies. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + The value of File is not currently supported. + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.Azure.Storage.Shared.Protocol.MetricsProperties + + + + + + + + + + + + + + ---- Example 1: Get metrics properties for the Blob service ---- + Get-AzStorageServiceMetricsProperty -ServiceType Blob -MetricsType Hour + + This command gets metrics properties for blob storage for the Hour metrics type. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageservicemetricsproperty + + + New-AzStorageContext + + + + Set-AzStorageServiceMetricsProperty + + + + + + + Get-AzStorageServiceProperty + Get + AzStorageServiceProperty + + Gets properties for Azure Storage services. + + + + The Get-AzStorageServiceProperty cmdlet gets the properties for Azure Storage services. + + + + Get-AzStorageServiceProperty + + ServiceType + + Specifies the storage service type. This cmdlet gets the logging properties for the service type that this parameter specifies. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + + + Blob + Table + Queue + File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServiceType + + Specifies the storage service type. This cmdlet gets the logging properties for the service type that this parameter specifies. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSSeriviceProperties + + + + + + + + + + + + + + Example 1: Get Azure Storage services property of the Blob service + Get-AzStorageServiceProperty -ServiceType Blob + +Logging.Version : 1.0 +Logging.LoggingOperations : None +Logging.RetentionDays : +HourMetrics.Version : 1.0 +HourMetrics.MetricsLevel : ServiceAndApi +HourMetrics.RetentionDays : 7 +MinuteMetrics.Version : 1.0 +MinuteMetrics.MetricsLevel : None +MinuteMetrics.RetentionDays : +DeleteRetentionPolicy.Enabled : True +DeleteRetentionPolicy.RetentionDays : 70 +Cors : +DefaultServiceVersion : 2017-07-29 + + This command gets DefaultServiceVersion property of the Blob service. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageserviceproperty + + + + + + Get-AzStorageShare + Get + AzStorageShare + + Gets a list of file shares. + + + + The Get-AzStorageShare cmdlet gets a list of file shares for a storage account. + + + + Get-AzStorageShare + + Prefix + + Specifies the prefix for file shares. This cmdlet gets file shares that match the prefix that this parameter specifies, or no file shares if no file shares match the specified prefix. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include deleted shares, by default get share won't include deleted shares + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + Get-AzStorageShare + + Name + + Specifies the name of the file share. This cmdlet gets the file share that this parameter specifies, or nothing if you specify the name of a file share that does not exist. + + System.String + + System.String + + + None + + + SnapshotTime + + SnapshotTime of the file share snapshot to be received. + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SkipGetProperty + + Specify this parameter to only generate a local share object, without get share properties from server. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + IncludeDeleted + + Include deleted shares, by default get share won't include deleted shares + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Specifies the name of the file share. This cmdlet gets the file share that this parameter specifies, or nothing if you specify the name of a file share that does not exist. + + System.String + + System.String + + + None + + + Prefix + + Specifies the prefix for file shares. This cmdlet gets file shares that match the prefix that this parameter specifies, or no file shares if no file shares match the specified prefix. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SkipGetProperty + + Specify this parameter to only generate a local share object, without get share properties from server. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + SnapshotTime + + SnapshotTime of the file share snapshot to be received. + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFileShare + + + + + + + + + + + + + + ----------------- Example 1: Get a file share ----------------- + Get-AzStorageShare -Name "ContosoShare06" + + This command gets the file share named ContosoShare06. + + + + + + --- Example 2: Get all file shares that begin with a string --- + Get-AzStorageShare -Prefix "Contoso" + + This command gets all file shares that have names that begin with Contoso. + + + + + + ---- Example 3: Get all file shares in a specified context ---- + $Context = New-AzStorageContext -Local +Get-AzStorageShare -Context $Context + + The first command uses the New-AzStorageContext cmdlet to create a context by using the Local parameter, and then stores that context object in the $Context variable. The second command gets the file shares for the context object stored in $Context. + + + + + + Example 4: Get a file share snapshot with specific share name and SnapshotTime + Get-AzStorageShare -Name "ContosoShare06" -SnapshotTime "6/16/2017 9:48:41 AM +00:00" + + This command gets a file share snapshot with specific share name and SnapshotTime. + + + + + + Example 5: Get a file share object without fetch share properties with OAuth authentication. + New-AzStorageContext -StorageAccountName "myaccountname" -UseConnectedAccount -EnableFileBackupRequestIntent +$share = Get-AzStorageShare -Name "ContosoShare06" -SkipGetProperty -Context $ctx + + This command gets a file share snapshot without get share properties with OAuth authentication. Get share properties with OAuth authentication will fail since the API not support OAuth. So to get share object with OAuth authentication must skip fetch share properties. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstorageshare + + + New-AzStorageShare + + + + Remove-AzStorageShare + + + + + + + Get-AzStorageShareStoredAccessPolicy + Get + AzStorageShareStoredAccessPolicy + + Gets stored access policies for a Storage share. + + + + The Get-AzStorageShareStoredAccessPolicy cmdlet gets stored access policies for an Azure Storage share. To get a particular policy, specify it by name. + + + + Get-AzStorageShareStoredAccessPolicy + + ShareName + + Specifies the Storage share name for which this cmdlet gets policies. + + System.String + + System.String + + + None + + + Policy + + Specifies the name of the stored access policy that this cmdlet gets. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Policy + + Specifies the name of the stored access policy that this cmdlet gets. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareName + + Specifies the Storage share name for which this cmdlet gets policies. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.Azure.Storage.File.SharedAccessFilePolicy + + + + + + + + + + + + + + ------- Example 1: Get a stored access policy in a share ------- + Get-AzStorageShareStoredAccessPolicy -ShareName "ContosoShare" -Policy "GeneralPolicy" + + This command gets a stored access policy named GeneralPolicy in ContosoShare. + + + + + + ---- Example 2: Get all the stored access policies in share ---- + Get-AzStorageShareStoredAccessPolicy -ShareName "ContosoShare" + + This command gets all stored access policies in ContosoShare. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragesharestoredaccesspolicy + + + New-AzStorageContext + + + + New-AzStorageShareStoredAccessPolicy + + + + Remove-AzStorageShareStoredAccessPolicy + + + + Set-AzStorageShareStoredAccessPolicy + + + + + + + Get-AzStorageTable + Get + AzStorageTable + + Lists the storage tables. + + + + The Get-AzStorageTable cmdlet lists the storage tables associated with the storage account in Azure. + + + + Get-AzStorageTable + + Name + + Specifies the table name. If the table name is empty, the cmdlet lists all the tables. Otherwise, it lists all tables that match the specified name or the regular name pattern. + + System.String + + System.String + + + None + + + Context + + Specifies the storage context. To create it, you can use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + Get-AzStorageTable + + Context + + Specifies the storage context. To create it, you can use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Prefix + + Specifies a prefix used in the name of the table or tables you want to get. You can use this to find all tables that start with the same string, such as table. + + System.String + + System.String + + + None + + + + + + Context + + Specifies the storage context. To create it, you can use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies the table name. If the table name is empty, the cmdlet lists all the tables. Otherwise, it lists all tables that match the specified name or the regular name pattern. + + System.String + + System.String + + + None + + + Prefix + + Specifies a prefix used in the name of the table or tables you want to get. You can use this to find all tables that start with the same string, such as table. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageTable + + + + + + + + + + + + + + ----------- Example 1: List all Azure Storage tables ----------- + Get-AzStorageTable + + This command gets all storage tables for a Storage account. + + + + + + Example 2: List Azure Storage tables using a wildcard character + Get-AzStorageTable -Name table* + + This command uses a wildcard character to get storage tables whose name starts with table. + + + + + + - Example 3: List Azure Storage tables using table name prefix - + Get-AzStorageTable -Prefix "table" + + This command uses the Prefix parameter to get storage tables whose name starts with table. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragetable + + + New-AzStorageTable + + + + Remove-AzStorageTable + + + + + + + Get-AzStorageTableStoredAccessPolicy + Get + AzStorageTableStoredAccessPolicy + + Gets the stored access policy or policies for an Azure storage table. + + + + The Get-AzStorageTableStoredAccessPolicy cmdlet lists the stored access policy or policies for an Azure storage table. + + + + Get-AzStorageTableStoredAccessPolicy + + Table + + Specifies the Azure storage table name. + + System.String + + System.String + + + None + + + Policy + + Specifies a stored access policy, which includes the permissions for this Shared Access Signature (SAS) token. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + Context + + Specifies the Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Policy + + Specifies a stored access policy, which includes the permissions for this Shared Access Signature (SAS) token. + + System.String + + System.String + + + None + + + Table + + Specifies the Azure storage table name. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Storage.Table.SharedAccessTablePolicy + + + + + + + + + + + + + + --- Example 1: Get a stored access policy in a storage table --- + Get-AzStorageTableStoredAccessPolicy -Table "Table02" -Policy "Policy50" + + This command gets the access policy named Policy50 in the storage table named Table02. + + + + + + - Example 2: Get all stored access policies in a storage table - + Get-AzStorageTableStoredAccessPolicy -Table "Table02" + + This command gets all access policies in the table named Table02. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/get-azstoragetablestoredaccesspolicy + + + New-AzStorageTableStoredAccessPolicy + + + + Remove-AzStorageTableStoredAccessPolicy + + + + Set-AzStorageTableStoredAccessPolicy + + + + New-AzStorageContext + + + + + + + Move-AzDataLakeGen2Item + Move + AzDataLakeGen2Item + + Move a file or directory to another a file or directory in same Storage account. + + + + The Move-AzDataLakeGen2Item cmdlet moves a a file or directory to another a file or directory in same Storage account. This cmdlet only works if Hierarchical Namespace is enabled for the Storage account. This kind of account can be created by run "New-AzStorageAccount" cmdlet with "-EnableHierarchicalNamespace $true". + + + + Move-AzDataLakeGen2Item + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Path + + The path in the specified Filesystem that should be move from. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/' + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestFileSystem + + Dest FileSystem name + + System.String + + System.String + + + None + + + DestPath + + Dest Blob path + + System.String + + System.String + + + None + + + Force + + Force to over write the destination. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Move-AzDataLakeGen2Item + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestFileSystem + + Dest FileSystem name + + System.String + + System.String + + + None + + + DestPath + + Dest Blob path + + System.String + + System.String + + + None + + + Force + + Force to over write the destination. + + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Azure Datalake Gen2 Item Object to move from. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestFileSystem + + Dest FileSystem name + + System.String + + System.String + + + None + + + DestPath + + Dest Blob path + + System.String + + System.String + + + None + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Force + + Force to over write the destination. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Azure Datalake Gen2 Item Object to move from. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + None + + + Path + + The path in the specified Filesystem that should be move from. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/' + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + + + + + + + + + + ---------- Example 1: Move a fold in same Filesystem ---------- + Move-AzDataLakeGen2Item -FileSystem "filesystem1" -Path "dir1/" -DestFileSystem "filesystem1" -DestPath "dir3/" + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir3 True 2020-03-13 13:07:34Z rwxrw-rw- $superuser $superuser + + This command move directory 'dir1' to directory 'dir3' in the same Filesystem. + + + + + + Example 2: Move a file by pipeline, to another Filesystem in the same Storage account without prompt + Get-AzDataLakeGen2Item -FileSystem "filesystem1" -Path "dir1/file1" | Move-AzDataLakeGen2Item -DestFileSystem "filesystem2" -DestPath "dir2/file2" -Force + +FileSystem Name: filesystem2 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir2/file2 False 1024 2020-03-23 09:57:33Z rwxrw-rw- $superuser $superuser + + This command move file 'dir1/file1' in 'filesystem1' to file 'dir2/file2' in 'filesystem2' in the same Storage account without prompt. + + + + + + ------------ Example 3: Move an item with Sas token ------------ + $sas = New-AzStorageContainerSASToken -Name $filesystemName -Permission rdw -Context $ctx + +$sasctx = New-AzStorageContext -StorageAccountName $ctx.StorageAccountName -SasToken $sas + +Move-AzDataLakeGen2Item -FileSystem $filesystemName -Path $itempath1 -DestFileSystem $filesystemName -DestPath "$($itempath2)$($sas)" -Context $sasctx + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir2/file1 False 1024 2021-03-23 09:57:33Z rwxrw-rw- $superuser $superuser + + This first command creates a Sas token with rdw permission, the second command creates a Storage context from the Sas token, the 3rd command moves an item with the Sas token. This example use same Sastoken with rdw permission on both source and destication, if use 2 SAS token for source and destication, source need permission rd, destication need permission w. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/move-azdatalakegen2item + + + + + + New-AzDataLakeGen2Item + New + AzDataLakeGen2Item + + Create a file or directory in a filesystem. + + + + The New-AzDataLakeGen2Item cmdlet creates a file or directory in a Filesystem in an Azure storage account. This cmdlet only works if Hierarchical Namespace is enabled for the Storage account. This kind of account can be created by run "New-AzStorageAccount" cmdlet with "-EnableHierarchicalNamespace $true". + + + + New-AzDataLakeGen2Item + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Path + + The path in the specified Filesystem that should be create. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/' + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Directory + + Indicates that this new item is a directory and not a file. + + + System.Management.Automation.SwitchParameter + + + False + + + Force + + If passed then new item is created without any prompt + + + System.Management.Automation.SwitchParameter + + + False + + + Metadata + + Specifies metadata for the created directory or file. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Permission + + Sets POSIX access permissions for the file owner, the file owning group, and others. Each class may be granted read, write, or execute permission. Symbolic (rwxrw-rw-) is supported. The sticky bit is also supported and its represented either by the letter t or T in the final character-place depending on whether the execution bit for the others category is set or unset respectively, absence of t or T indicates sticky bit not set. + + System.String + + System.String + + + None + + + Property + + Specifies properties for the created directory or file. The supported properties for file are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage, ContentMD5, ContentType. The supported properties for directory are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Umask + + When creating New Item and the parent directory does not have a default ACL, the umask restricts the permissions of the file or directory to be created. The resulting permission is given by p & ^u, where p is the permission and u is the umask. Symbolic (rwxrw-rw-) is supported. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzDataLakeGen2Item + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Path + + The path in the specified Filesystem that should be create. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/' + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionContext + + Encryption context of the file. Encryption context is metadata that is not encrypted when stored on the file. The primary application of this field is to store non-encrypted data that can be used to derive the customer-provided key for a file. Not applicable for directories. + + System.String + + System.String + + + None + + + Force + + If passed then new item is created without any prompt + + + System.Management.Automation.SwitchParameter + + + False + + + Metadata + + Specifies metadata for the created directory or file. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Permission + + Sets POSIX access permissions for the file owner, the file owning group, and others. Each class may be granted read, write, or execute permission. Symbolic (rwxrw-rw-) is supported. The sticky bit is also supported and its represented either by the letter t or T in the final character-place depending on whether the execution bit for the others category is set or unset respectively, absence of t or T indicates sticky bit not set. + + System.String + + System.String + + + None + + + Property + + Specifies properties for the created directory or file. The supported properties for file are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage, ContentMD5, ContentType. The supported properties for directory are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Source + + Specify the local source file path which will be upload to a Datalake Gen2 file. + + System.String + + System.String + + + None + + + Umask + + When creating New Item and the parent directory does not have a default ACL, the umask restricts the permissions of the file or directory to be created. The resulting permission is given by p & ^u, where p is the permission and u is the umask. Symbolic (rwxrw-rw-) is supported. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Directory + + Indicates that this new item is a directory and not a file. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + EncryptionContext + + Encryption context of the file. Encryption context is metadata that is not encrypted when stored on the file. The primary application of this field is to store non-encrypted data that can be used to derive the customer-provided key for a file. Not applicable for directories. + + System.String + + System.String + + + None + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Force + + If passed then new item is created without any prompt + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Metadata + + Specifies metadata for the created directory or file. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Path + + The path in the specified Filesystem that should be create. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/' + + System.String + + System.String + + + None + + + Permission + + Sets POSIX access permissions for the file owner, the file owning group, and others. Each class may be granted read, write, or execute permission. Symbolic (rwxrw-rw-) is supported. The sticky bit is also supported and its represented either by the letter t or T in the final character-place depending on whether the execution bit for the others category is set or unset respectively, absence of t or T indicates sticky bit not set. + + System.String + + System.String + + + None + + + Property + + Specifies properties for the created directory or file. The supported properties for file are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage, ContentMD5, ContentType. The supported properties for directory are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Source + + Specify the local source file path which will be upload to a Datalake Gen2 file. + + System.String + + System.String + + + None + + + Umask + + When creating New Item and the parent directory does not have a default ACL, the umask restricts the permissions of the file or directory to be created. The resulting permission is given by p & ^u, where p is the permission and u is the umask. Symbolic (rwxrw-rw-) is supported. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + + + + + + + + + + Example 1: Create a directory with specified permission, Umask, properties, and metadata + New-AzDataLakeGen2Item -FileSystem "testfilesystem" -Path "dir1/dir2/" -Directory -Permission rwxrwxrwT -Umask ---rw---- -Property @{"CacheControl" = "READ"; "ContentDisposition" = "True"} -Metadata @{"tag1" = "value1"; "tag2" = "value2" } + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir1/dir2 True 2020-03-23 09:15:56Z rwx---rwT $superuser $superuser + + This command creates a directory with specified Permission, Umask, properties, and metadata + + + + + + Example 2: Create(upload) a data lake file from a local source file, and the cmdlet runs in background + $task = New-AzDataLakeGen2Item -FileSystem "testfilesystem" -Path "dir1/dir2/file1" -Source "c:\sourcefile.txt" -Force -asjob +$task | Wait-Job +$task.Output + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir1/dir2/file1 False 14400000 2020-03-23 09:19:13Z rw-r----- $superuser $superuser + + This command creates(upload) a data lake file from a local source file, and the cmdlet runs in background. + + + + + + Example 3: Create(upload) a data lake file from a local source file and set its encryption context + $file = New-AzDataLakeGen2Item -FileSystem "testfilesystem" -Path "dir1/dir2/file1" -Source "c:\sourcefile.txt" -EncryptionContext "encryptioncontext" +$file.Properties.EncryptionContext + +encryptioncontext + + This command creates(upload) a data lake file from a local source file and sets its encryption context value to "encryptioncontext". + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azdatalakegen2item + + + + + + New-AzDataLakeGen2SasToken + New + AzDataLakeGen2SasToken + + Generates a SAS token for Azure DatalakeGen2 item. + + + + The New-AzDataLakeGen2SasToken cmdlet generates a Shared Access Signature (SAS) token for an Azure DatalakeGen2 item. + + + + New-AzDataLakeGen2SasToken + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Expiry Time + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + FullUri + + Display full uri with sas token + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + IP, or IP range ACL (access control list) that the request would be accepted by Azure Storage. + + System.String + + System.String + + + None + + + Path + + The path in the specified FileSystem that should be retrieved. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/'. Skip set this parameter to get the root directory of the Filesystem. + + System.String + + System.String + + + None + + + Permission + + Permissions for a blob. Permissions can be any not-empty subset of "racwdlmeop". + + System.String + + System.String + + + None + + + Protocol + + Protocol can be used in the request with this SAS token. + + + None + HttpsAndHttp + Https + + System.Nullable`1[Azure.Storage.Sas.SasProtocol] + + System.Nullable`1[Azure.Storage.Sas.SasProtocol] + + + None + + + StartTime + + Start Time + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + + New-AzDataLakeGen2SasToken + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Expiry Time + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + FullUri + + Display full uri with sas token + + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Azure Datalake Gen2 Item Object to remove. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + None + + + IPAddressOrRange + + IP, or IP range ACL (access control list) that the request would be accepted by Azure Storage. + + System.String + + System.String + + + None + + + Permission + + Permissions for a blob. Permissions can be any not-empty subset of "racwdlmeop". + + System.String + + System.String + + + None + + + Protocol + + Protocol can be used in the request with this SAS token. + + + None + HttpsAndHttp + Https + + System.Nullable`1[Azure.Storage.Sas.SasProtocol] + + System.Nullable`1[Azure.Storage.Sas.SasProtocol] + + + None + + + StartTime + + Start Time + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Expiry Time + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + FullUri + + Display full uri with sas token + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Azure Datalake Gen2 Item Object to remove. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + None + + + IPAddressOrRange + + IP, or IP range ACL (access control list) that the request would be accepted by Azure Storage. + + System.String + + System.String + + + None + + + Path + + The path in the specified FileSystem that should be retrieved. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/'. Skip set this parameter to get the root directory of the Filesystem. + + System.String + + System.String + + + None + + + Permission + + Permissions for a blob. Permissions can be any not-empty subset of "racwdlmeop". + + System.String + + System.String + + + None + + + Protocol + + Protocol can be used in the request with this SAS token. + + System.Nullable`1[Azure.Storage.Sas.SasProtocol] + + System.Nullable`1[Azure.Storage.Sas.SasProtocol] + + + None + + + StartTime + + Start Time + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + + + + System.String + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + ----- Example 1: Generate a SAS token with full permission ----- + New-AzDataLakeGen2SasToken -FileSystem "filesystem1" -Path "dir1/dir2" -Permission racwdlmeop + + This example generates a DatalakeGen2 SAS token with full permission. + + + + + + Example 2: Generate a SAS token with specific StartTime, ExpireTime, Protocal, IPAddressOrRange, Encryption Scope, by pipeline a datalakegen2 item + Get-AzDataLakeGen2Item -FileSystem test -Path "testdir/dir2" | New-AzDataLakeGen2SasToken -Permission rw -Protocol Https -IPAddressOrRange 10.0.0.0-12.10.0.0 -StartTime (Get-Date) -ExpiryTime (Get-Date).AddDays(6) -EncryptionScope scopename + + This example generates a DatalakeGen2 SAS token by pipeline a datalake gen2 item, and with specific StartTime, ExpireTime, Protocal, IPAddressOrRange, Encryption Scope. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azdatalakegen2sastoken + + + + + + New-AzStorageAccountSASToken + New + AzStorageAccountSASToken + + Creates an account-level SAS token. + + + + The New-AzStorageAccountSASToken cmdlet creates an account-level shared access signature (SAS) token for an Azure Storage account. You can use the SAS token to delegate permissions for multiple services, or to delegate permissions for services not available with an object-level SAS token. An account SAS is secured using the storage account key. To create an account SAS, a client application must possess the account key. + + + + New-AzStorageAccountSASToken + + Context + + Specifies the Azure storage context. You can use the New-AzStorageContext cmdlet to get an AzureStorageContext object. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Permission + + Specifies the permissions for Storage account. Permissions are valid only if they match the specified resource type. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). For more information about acceptable permission values, see Constructing an Account SAS http://go.microsoft.com/fwlink/?LinkId=799514 + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request made with the account SAS. The acceptable values for this parameter are: - HttpsOnly + - HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + ResourceType + + Specifies the resource types that are available with the SAS token. The acceptable values for this parameter are: - None + - Service + - Container + - Object + + + None + Service + Container + Object + + Microsoft.Azure.Storage.SharedAccessAccountResourceTypes + + Microsoft.Azure.Storage.SharedAccessAccountResourceTypes + + + None + + + Service + + Specifies the service. The acceptable values for this parameter are: - None + - Blob + - File + - Queue + - Table + + + None + Blob + File + Queue + Table + + Microsoft.Azure.Storage.SharedAccessAccountServices + + Microsoft.Azure.Storage.SharedAccessAccountServices + + + None + + + StartTime + + Specifies the time, as a DateTime object, at which the SAS becomes valid. To get a DateTime object, use the Get-Date cmdlet. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + Context + + Specifies the Azure storage context. You can use the New-AzStorageContext cmdlet to get an AzureStorageContext object. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Permission + + Specifies the permissions for Storage account. Permissions are valid only if they match the specified resource type. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). For more information about acceptable permission values, see Constructing an Account SAS http://go.microsoft.com/fwlink/?LinkId=799514 + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request made with the account SAS. The acceptable values for this parameter are: - HttpsOnly + - HttpsOrHttp + The default value is HttpsOrHttp. + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + ResourceType + + Specifies the resource types that are available with the SAS token. The acceptable values for this parameter are: - None + - Service + - Container + - Object + + Microsoft.Azure.Storage.SharedAccessAccountResourceTypes + + Microsoft.Azure.Storage.SharedAccessAccountResourceTypes + + + None + + + Service + + Specifies the service. The acceptable values for this parameter are: - None + - Blob + - File + - Queue + - Table + + Microsoft.Azure.Storage.SharedAccessAccountServices + + Microsoft.Azure.Storage.SharedAccessAccountServices + + + None + + + StartTime + + Specifies the time, as a DateTime object, at which the SAS becomes valid. To get a DateTime object, use the Get-Date cmdlet. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + Example 1: Create an account-level SAS token with full permission + New-AzStorageAccountSASToken -Service Blob,File,Table,Queue -ResourceType Service,Container,Object -Permission "racwdlup" + + This command creates an account-level SAS token with full permission. + + + + + + Example 2: Create an account-level SAS token for a range of IP addresses and EncryptionScope + New-AzStorageAccountSASToken -Service Blob,File,Table,Queue -ResourceType Service,Container,Object -Permission "racwdlup" -Protocol HttpsOnly -IPAddressOrRange 168.1.5.60-168.1.5.70 -EncryptionScope scopename + + This command creates an account-level SAS token for HTTPS-only requests from the specified range of IP addresses, with a specific EncryptionScope. + + + + + + Example 3: Create an account-level SAS token valid for 24 hours + New-AzStorageAccountSASToken -Service Blob -ResourceType Service,Container,Object -Permission "rl" -ExpiryTime (Get-Date).AddDays(1) + + This command creates an read-only account-level SAS token that is valid for 24 hours. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstorageaccountsastoken + + + New-AzStorageBlobSASToken + + + + New-AzStorageContainerSASToken + + + + New-AzStorageFileSASToken + + + + New-AzStorageQueueSASToken + + + + New-AzStorageShareSASToken + + + + New-AzStorageTableSASToken + + + + + + + New-AzStorageBlobQueryConfig + New + AzStorageBlobQueryConfig + + Creates a blob query configuration object, which can be used in Get-AzStorageBlobQueryResult. + + + + The New-AzStorageBlobQueryConfig cmdlet creates a blob query configuration object, which can be used in Get-AzStorageBlobQueryResult. + + + + New-AzStorageBlobQueryConfig + + AsCsv + + Indicate to create a Blob Query Configuration for CSV. + + + System.Management.Automation.SwitchParameter + + + False + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ColumnSeparator + + Optional. The string used to separate columns. + + System.String + + System.String + + + None + + + EscapeCharacter + + Optional. The char used as an escape character. + + System.Nullable`1[System.Char] + + System.Nullable`1[System.Char] + + + None + + + HasHeader + + Optional. Indicate it represent the data has headers. + + + System.Management.Automation.SwitchParameter + + + False + + + QuotationCharacter + + Optional. The char used to quote a specific field. + + System.Char + + System.Char + + + None + + + RecordSeparator + + Optional. The string used to separate records. + + System.String + + System.String + + + None + + + + New-AzStorageBlobQueryConfig + + AsJson + + Indicate to create a Blob Query Configuration for Json. + + + System.Management.Automation.SwitchParameter + + + False + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + RecordSeparator + + Optional. The string used to separate records. + + System.String + + System.String + + + None + + + + + + AsCsv + + Indicate to create a Blob Query Configuration for CSV. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + AsJson + + Indicate to create a Blob Query Configuration for Json. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ColumnSeparator + + Optional. The string used to separate columns. + + System.String + + System.String + + + None + + + EscapeCharacter + + Optional. The char used as an escape character. + + System.Nullable`1[System.Char] + + System.Nullable`1[System.Char] + + + None + + + HasHeader + + Optional. Indicate it represent the data has headers. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + QuotationCharacter + + Optional. The char used to quote a specific field. + + System.Char + + System.Char + + + None + + + RecordSeparator + + Optional. The string used to separate records. + + System.String + + System.String + + + None + + + + + + None + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.PSBlobQueryTextConfiguration + + + + + + + + + + + + + + -- Example 1: Create blob query configures , and query a blob -- + $inputconfig = New-AzStorageBlobQueryConfig -AsCsv -ColumnSeparator "," -QuotationCharacter """" -EscapeCharacter "\" -RecordSeparator "`n" -HasHeader + +$outputconfig = New-AzStorageBlobQueryConfig -AsJson -RecordSeparator "`n" + +$queryString = "SELECT * FROM BlobStorage WHERE Name = 'a'" + +$result = Get-AzStorageBlobQueryResult -Container $containerName -Blob $blobName -QueryString $queryString -ResultFile "c:\resultfile.json" -InputTextConfiguration $inputconfig -OutputTextConfiguration $outputconfig -Context $ctx + +$result + +BytesScanned FailureCount BlobQueryError +------------ ------------ -------------- + 449 0 + + This command first create input configuration object as csv, and output configuration object as json, then use the 2 configurations to query blob. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/Az.storage/new-azstorageblobqueryconfig + + + + + + New-AzStorageBlobSASToken + New + AzStorageBlobSASToken + + Generates a SAS token for an Azure storage blob. + + + + The New-AzStorageBlobSASToken cmdlet generates a Shared Access Signature (SAS) token for an Azure storage blob. + + + + New-AzStorageBlobSASToken + + Container + + Specifies the storage container name. + + System.String + + System.String + + + None + + + Blob + + Specifies the storage blob name. + + System.String + + System.String + + + None + + + Context + + Specifies the storage context. When the storage context is based on OAuth authentication, will generates a User Identity blob SAS token. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies when the shared access signature expires. When the storage context is based on OAuth authentication, the expire time must be in 7 days from current time, and must not be earlier than current time. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Permission + + Specifies the permissions for a storage blob. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzStorageBlobSASToken + + Container + + Specifies the storage container name. + + System.String + + System.String + + + None + + + Blob + + Specifies the storage blob name. + + System.String + + System.String + + + None + + + Context + + Specifies the storage context. When the storage context is based on OAuth authentication, will generates a User Identity blob SAS token. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies when the shared access signature expires. When the storage context is based on OAuth authentication, the expire time must be in 7 days from current time, and must not be earlier than current time. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Policy + + Specifies an Azure Stored Access Policy. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzStorageBlobSASToken + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + CloudBlob + + Specifies the CloudBlob object. To obtain a CloudBlob object, use the Get-AzStorageBlob (./Get-AzStorageBlob.md)cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + Context + + Specifies the storage context. When the storage context is based on OAuth authentication, will generates a User Identity blob SAS token. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies when the shared access signature expires. When the storage context is based on OAuth authentication, the expire time must be in 7 days from current time, and must not be earlier than current time. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Policy + + Specifies an Azure Stored Access Policy. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzStorageBlobSASToken + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + CloudBlob + + Specifies the CloudBlob object. To obtain a CloudBlob object, use the Get-AzStorageBlob (./Get-AzStorageBlob.md)cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + Context + + Specifies the storage context. When the storage context is based on OAuth authentication, will generates a User Identity blob SAS token. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies when the shared access signature expires. When the storage context is based on OAuth authentication, the expire time must be in 7 days from current time, and must not be earlier than current time. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Permission + + Specifies the permissions for a storage blob. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Blob + + Specifies the storage blob name. + + System.String + + System.String + + + None + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + CloudBlob + + Specifies the CloudBlob object. To obtain a CloudBlob object, use the Get-AzStorageBlob (./Get-AzStorageBlob.md)cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + Container + + Specifies the storage container name. + + System.String + + System.String + + + None + + + Context + + Specifies the storage context. When the storage context is based on OAuth authentication, will generates a User Identity blob SAS token. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies when the shared access signature expires. When the storage context is based on OAuth authentication, the expire time must be in 7 days from current time, and must not be earlier than current time. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Permission + + Specifies the permissions for a storage blob. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Policy + + Specifies an Azure Stored Access Policy. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.Blob.CloudBlob + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + Example 1: Generate a blob SAS token with full blob permission + New-AzStorageBlobSASToken -Container "ContainerName" -Blob "BlobName" -Permission rwd + + This example generates a blob SAS token with full blob permission. + + + + + + ----- Example 2: Generate a blob SAS token with life time ----- + $StartTime = Get-Date +$EndTime = $startTime.AddHours(2.0) +New-AzStorageBlobSASToken -Container "ContainerName" -Blob "BlobName" -Permission rwd -StartTime $StartTime -ExpiryTime $EndTime + + This example generates a blob SAS token with life time. + + + + + + Example 3: Generate a User Identity SAS token with storage context based on OAuth authentication + $ctx = New-AzStorageContext -StorageAccountName $accountName -UseConnectedAccount +$StartTime = Get-Date +$EndTime = $startTime.AddDays(6) +New-AzStorageBlobSASToken -Container "ContainerName" -Blob "BlobName" -Permission rwd -StartTime $StartTime -ExpiryTime $EndTime -Context $ctx + + This example generates a User Identity blob SAS token with storage context based on OAuth authentication + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstorageblobsastoken + + + Get-AzStorageBlob + + + + New-AzStorageContainerSASToken + + + + + + + New-AzStorageContainer + New + AzStorageContainer + + Creates an Azure storage container. + + + + The New-AzStorageContainer cmdlet creates an Azure storage container. + + + + New-AzStorageContainer + + Name + + Specifies a name for the new container. + + System.String + + System.String + + + None + + + Permission + + Specifies the level of public access to this container. By default, the container and any blobs in it can be accessed only by the owner of the storage account. To grant anonymous users read permissions to a container and its blobs, you can set the container permissions to enable public access. Anonymous users can read blobs in a publicly available container without authenticating the request. The acceptable values for this parameter are: - Container. Provides full read access to a container and its blobs. Clients can enumerate blobs in the container through anonymous request, but cannot enumerate containers in the storage account. - Blob. Provides read access to blob data throughout a container through anonymous request, but does not provide access to container data. Clients cannot enumerate blobs in the container by using anonymous request. - Off. Which restricts access to only the storage account owner. + + + Off + Container + Blob + Unknown + + System.Nullable`1[Microsoft.Azure.Storage.Blob.BlobContainerPublicAccessType] + + System.Nullable`1[Microsoft.Azure.Storage.Blob.BlobContainerPublicAccessType] + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies a context for the new container. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultEncryptionScope + + Default the container to use specified encryption scope for all writes. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PreventEncryptionScopeOverride + + Block override of encryption scope from the container default. + + System.Boolean + + System.Boolean + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies a context for the new container. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultEncryptionScope + + Default the container to use specified encryption scope for all writes. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies a name for the new container. + + System.String + + System.String + + + None + + + Permission + + Specifies the level of public access to this container. By default, the container and any blobs in it can be accessed only by the owner of the storage account. To grant anonymous users read permissions to a container and its blobs, you can set the container permissions to enable public access. Anonymous users can read blobs in a publicly available container without authenticating the request. The acceptable values for this parameter are: - Container. Provides full read access to a container and its blobs. Clients can enumerate blobs in the container through anonymous request, but cannot enumerate containers in the storage account. - Blob. Provides read access to blob data throughout a container through anonymous request, but does not provide access to container data. Clients cannot enumerate blobs in the container by using anonymous request. - Off. Which restricts access to only the storage account owner. + + System.Nullable`1[Microsoft.Azure.Storage.Blob.BlobContainerPublicAccessType] + + System.Nullable`1[Microsoft.Azure.Storage.Blob.BlobContainerPublicAccessType] + + + None + + + PreventEncryptionScopeOverride + + Block override of encryption scope from the container default. + + System.Boolean + + System.Boolean + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageContainer + + + + + + + + + + + + + + --------- Example 1: Create an Azure storage container --------- + New-AzStorageContainer -Name "ContainerName" -Permission Off + + This command creates a storage container. + + + + + + ----- Example 2: Create multiple Azure storage containers ----- + "container1 container2 container3".split() | New-AzStorageContainer -Permission Container + + This example creates multiple storage containers. It uses the Split method of the .NET String class and then passes the names on the pipeline. + + + + + + Example 3: Create an Azure storage container with Encryption Scope + PS C:\> $container = New-AzStorageContainer -Name "mycontainer" -DefaultEncryptionScope "myencryptscope" -PreventEncryptionScopeOverride $true + +PS C:\> $container.BlobContainerProperties.DefaultEncryptionScope +myencryptscope + +PS C:\> $container.BlobContainerProperties.PreventEncryptionScopeOverride +True + + This command creates a storage container, with default Encryption Scope as myencryptscope, and prevert blob upload with different Encryption Scope to this container. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragecontainer + + + Get-AzStorageContainer + + + + Remove-AzStorageContainer + + + + Set-AzStorageContainerAcl + + + + + + + New-AzStorageContainerSASToken + New + AzStorageContainerSASToken + + Generates an SAS token for an Azure storage container. + + + + The New-AzStorageContainerSASToken cmdlet generates a Shared Access Signature (SAS) token for an Azure storage container. + + + + New-AzStorageContainerSASToken + + Name + + Specifies an Azure storage container name. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. You can create it by using the New-AzStorageContext cmdlet. When the storage context is based on OAuth authentication, will generates a User Identity container SAS token. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. If the user sets the start time but not the expiry time, the expiry time is set to the start time plus one hour. If neither the start time nor the expiry time is specified, the expiry time is set to the current time plus one hour. When the storage context is based on OAuth authentication, the expire time must be in 7 days from current time, and must not be earlier than current time. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Permission + + Specifies permissions for a storage container. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). The permissions that are supported for container resource type are described here (https://learn.microsoft.com/rest/api/storageservices/create-service-sas#permissions-for-a-directory-container-or-blob). + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzStorageContainerSASToken + + Name + + Specifies an Azure storage container name. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. You can create it by using the New-AzStorageContext cmdlet. When the storage context is based on OAuth authentication, will generates a User Identity container SAS token. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. If the user sets the start time but not the expiry time, the expiry time is set to the start time plus one hour. If neither the start time nor the expiry time is specified, the expiry time is set to the current time plus one hour. When the storage context is based on OAuth authentication, the expire time must be in 7 days from current time, and must not be earlier than current time. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Policy + + Specifies an Azure Stored Access Policy. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Specifies an Azure storage context. You can create it by using the New-AzStorageContext cmdlet. When the storage context is based on OAuth authentication, will generates a User Identity container SAS token. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to use when sending requests authorized with this SAS URI. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. If the user sets the start time but not the expiry time, the expiry time is set to the start time plus one hour. If neither the start time nor the expiry time is specified, the expiry time is set to the current time plus one hour. When the storage context is based on OAuth authentication, the expire time must be in 7 days from current time, and must not be earlier than current time. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Name + + Specifies an Azure storage container name. + + System.String + + System.String + + + None + + + Permission + + Specifies permissions for a storage container. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). The permissions that are supported for container resource type are described here (https://learn.microsoft.com/rest/api/storageservices/create-service-sas#permissions-for-a-directory-container-or-blob). + + System.String + + System.String + + + None + + + Policy + + Specifies an Azure Stored Access Policy. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + Example 1: Generate a container SAS token with full container permission + New-AzStorageContainerSASToken -Name "Test" -Permission rwdl + + This example generates a container SAS token with full container permission. + + + + + + - Example 2: Generate multiple container SAS token by pipeline - + Get-AzStorageContainer -Container test* | New-AzStorageContainerSASToken -Permission rwdl + + This example generates multiple container SAS tokens by using the pipeline. + + + + + + Example 3: Generate container SAS token with shared access policy + New-AzStorageContainerSASToken -Name "Test" -Policy "PolicyName" + + This example generates a container SAS token with shared access policy. + + + + + + Example 3: Generate a User Identity container SAS token with storage context based on OAuth authentication + $ctx = New-AzStorageContext -StorageAccountName $accountName -UseConnectedAccount +$StartTime = Get-Date +$EndTime = $startTime.AddDays(6) +New-AzStorageContainerSASToken -Name "ContainerName" -Permission rwd -StartTime $StartTime -ExpiryTime $EndTime -context $ctx + + This example generates a User Identity container SAS token with storage context based on OAuth authentication + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragecontainersastoken + + + New-AzStorageBlobSASToken + + + + + + + New-AzStorageContainerStoredAccessPolicy + New + AzStorageContainerStoredAccessPolicy + + Creates a stored access policy for an Azure storage container. + + + + The New-AzStorageContainerStoredAccessPolicy cmdlet creates a stored access policy for an Azure storage container. + + + + New-AzStorageContainerStoredAccessPolicy + + Container + + Specifies the Azure storage container name. + + System.String + + System.String + + + None + + + Policy + + Specifies a stored access policy, which includes the permissions for this SAS token. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Permission + + Specifies permissions in the stored access policy to access the container. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Specifies the Azure storage container name. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Permission + + Specifies permissions in the stored access policy to access the container. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Policy + + Specifies a stored access policy, which includes the permissions for this SAS token. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + Example 1: Create a stored access policy in a storage container + New-AzStorageContainerStoredAccessPolicy -Container "MyContainer" -Policy "Policy01" + + This command creates an access policy named Policy01 in the storage container named MyContainer. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragecontainerstoredaccesspolicy + + + Get-AzStorageContainerStoredAccessPolicy + + + + New-AzStorageContext + + + + Remove-AzStorageContainerStoredAccessPolicy + + + + Set-AzStorageContainerStoredAccessPolicy + + + + + + + New-AzStorageContext + New + AzStorageContext + + Creates an Azure Storage context. + + + + The New-AzStorageContext cmdlet creates an Azure Storage context. The default Authentication of a Storage Context is OAuth (Azure AD), if only input Storage account name. See details of authentication of the Storage Service in https://learn.microsoft.com/rest/api/storageservices/authorization-for-the-azure-storage-services. + + + + New-AzStorageContext + + StorageAccountName + + Specifies an Azure Storage account name. This cmdlet creates a context for the account that this parameter specifies. + + System.String + + System.String + + + None + + + Anonymous + + Indicates that this cmdlet creates an Azure Storage context for anonymous logon. + + + System.Management.Automation.SwitchParameter + + + False + + + Endpoint + + Specifies the endpoint for the Azure Storage context. + + System.String + + System.String + + + None + + + Protocol + + Transfer Protocol (https/http). + + + Http + Https + + System.String + + System.String + + + None + + + + New-AzStorageContext + + StorageAccountName + + Specifies an Azure Storage account name. This cmdlet creates a context for the account that this parameter specifies. + + System.String + + System.String + + + None + + + Anonymous + + Indicates that this cmdlet creates an Azure Storage context for anonymous logon. + + + System.Management.Automation.SwitchParameter + + + False + + + Environment + + Specifies the Azure environment. The acceptable values for this parameter are: AzureCloud and AzureChinaCloud. For more information, type `Get-Help Get-AzEnvironment`. + + System.String + + System.String + + + None + + + Protocol + + Transfer Protocol (https/http). + + + Http + Https + + System.String + + System.String + + + None + + + + New-AzStorageContext + + Anonymous + + Indicates that this cmdlet creates an Azure Storage context for anonymous logon. + + + System.Management.Automation.SwitchParameter + + + False + + + BlobEndpoint + + Azure storage blob service endpoint + + System.String + + System.String + + + None + + + FileEndpoint + + Azure storage file service endpoint + + System.String + + System.String + + + None + + + QueueEndpoint + + Azure storage queue service endpoint + + System.String + + System.String + + + None + + + TableEndpoint + + Azure storage table service endpoint + + System.String + + System.String + + + None + + + + New-AzStorageContext + + StorageAccountName + + Specifies an Azure Storage account name. This cmdlet creates a context for the account that this parameter specifies. + + System.String + + System.String + + + None + + + StorageAccountKey + + Specifies an Azure Storage account key. This cmdlet creates a context for the key that this parameter specifies. + + System.String + + System.String + + + None + + + BlobEndpoint + + Azure storage blob service endpoint + + System.String + + System.String + + + None + + + FileEndpoint + + Azure storage file service endpoint + + System.String + + System.String + + + None + + + QueueEndpoint + + Azure storage queue service endpoint + + System.String + + System.String + + + None + + + TableEndpoint + + Azure storage table service endpoint + + System.String + + System.String + + + None + + + + New-AzStorageContext + + BlobEndpoint + + Azure storage blob service endpoint + + System.String + + System.String + + + None + + + FileEndpoint + + Azure storage file service endpoint + + System.String + + System.String + + + None + + + QueueEndpoint + + Azure storage queue service endpoint + + System.String + + System.String + + + None + + + SasToken + + Specifies a Shared Access Signature (SAS) token for the context. + + System.String + + System.String + + + None + + + TableEndpoint + + Azure storage table service endpoint + + System.String + + System.String + + + None + + + + New-AzStorageContext + + BlobEndpoint + + Azure storage blob service endpoint + + System.String + + System.String + + + None + + + EnableFileBackupRequestIntent + + Required parameter to use with OAuth (Azure AD) Authentication for Files. This will bypass any file/directory level permission checks and allow access, based on the allowed data actions, even if there are ACLs in place for those files/directories. + + + System.Management.Automation.SwitchParameter + + + False + + + FileEndpoint + + Azure storage file service endpoint + + System.String + + System.String + + + None + + + QueueEndpoint + + Azure storage queue service endpoint + + System.String + + System.String + + + None + + + TableEndpoint + + Azure storage table service endpoint + + System.String + + System.String + + + None + + + UseConnectedAccount + + Indicates that this cmdlet creates an Azure Storage context with OAuth (Azure AD) Authentication. The cmdlet will use OAuth Authentication by default, when other authentication not specified. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzStorageContext + + ConnectionString + + Specifies a connection string for the Azure Storage context. + + System.String + + System.String + + + None + + + + New-AzStorageContext + + StorageAccountName + + Specifies an Azure Storage account name. This cmdlet creates a context for the account that this parameter specifies. + + System.String + + System.String + + + None + + + EnableFileBackupRequestIntent + + Required parameter to use with OAuth (Azure AD) Authentication for Files. This will bypass any file/directory level permission checks and allow access, based on the allowed data actions, even if there are ACLs in place for those files/directories. + + + System.Management.Automation.SwitchParameter + + + False + + + Endpoint + + Specifies the endpoint for the Azure Storage context. + + System.String + + System.String + + + None + + + Protocol + + Transfer Protocol (https/http). + + + Http + Https + + System.String + + System.String + + + None + + + UseConnectedAccount + + Indicates that this cmdlet creates an Azure Storage context with OAuth (Azure AD) Authentication. The cmdlet will use OAuth Authentication by default, when other authentication not specified. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzStorageContext + + StorageAccountName + + Specifies an Azure Storage account name. This cmdlet creates a context for the account that this parameter specifies. + + System.String + + System.String + + + None + + + EnableFileBackupRequestIntent + + Required parameter to use with OAuth (Azure AD) Authentication for Files. This will bypass any file/directory level permission checks and allow access, based on the allowed data actions, even if there are ACLs in place for those files/directories. + + + System.Management.Automation.SwitchParameter + + + False + + + Environment + + Specifies the Azure environment. The acceptable values for this parameter are: AzureCloud and AzureChinaCloud. For more information, type `Get-Help Get-AzEnvironment`. + + System.String + + System.String + + + None + + + Protocol + + Transfer Protocol (https/http). + + + Http + Https + + System.String + + System.String + + + None + + + UseConnectedAccount + + Indicates that this cmdlet creates an Azure Storage context with OAuth (Azure AD) Authentication. The cmdlet will use OAuth Authentication by default, when other authentication not specified. + + + System.Management.Automation.SwitchParameter + + + False + + + + New-AzStorageContext + + StorageAccountName + + Specifies an Azure Storage account name. This cmdlet creates a context for the account that this parameter specifies. + + System.String + + System.String + + + None + + + StorageAccountKey + + Specifies an Azure Storage account key. This cmdlet creates a context for the key that this parameter specifies. + + System.String + + System.String + + + None + + + Endpoint + + Specifies the endpoint for the Azure Storage context. + + System.String + + System.String + + + None + + + Protocol + + Transfer Protocol (https/http). + + + Http + Https + + System.String + + System.String + + + None + + + + New-AzStorageContext + + StorageAccountName + + Specifies an Azure Storage account name. This cmdlet creates a context for the account that this parameter specifies. + + System.String + + System.String + + + None + + + Endpoint + + Specifies the endpoint for the Azure Storage context. + + System.String + + System.String + + + None + + + Protocol + + Transfer Protocol (https/http). + + + Http + Https + + System.String + + System.String + + + None + + + SasToken + + Specifies a Shared Access Signature (SAS) token for the context. + + System.String + + System.String + + + None + + + + New-AzStorageContext + + StorageAccountName + + Specifies an Azure Storage account name. This cmdlet creates a context for the account that this parameter specifies. + + System.String + + System.String + + + None + + + StorageAccountKey + + Specifies an Azure Storage account key. This cmdlet creates a context for the key that this parameter specifies. + + System.String + + System.String + + + None + + + Environment + + Specifies the Azure environment. The acceptable values for this parameter are: AzureCloud and AzureChinaCloud. For more information, type `Get-Help Get-AzEnvironment`. + + System.String + + System.String + + + None + + + Protocol + + Transfer Protocol (https/http). + + + Http + Https + + System.String + + System.String + + + None + + + + New-AzStorageContext + + StorageAccountName + + Specifies an Azure Storage account name. This cmdlet creates a context for the account that this parameter specifies. + + System.String + + System.String + + + None + + + Environment + + Specifies the Azure environment. The acceptable values for this parameter are: AzureCloud and AzureChinaCloud. For more information, type `Get-Help Get-AzEnvironment`. + + System.String + + System.String + + + None + + + SasToken + + Specifies a Shared Access Signature (SAS) token for the context. + + System.String + + System.String + + + None + + + + New-AzStorageContext + + Local + + Indicates that this cmdlet creates a context by using the local development storage account. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Anonymous + + Indicates that this cmdlet creates an Azure Storage context for anonymous logon. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + BlobEndpoint + + Azure storage blob service endpoint + + System.String + + System.String + + + None + + + ConnectionString + + Specifies a connection string for the Azure Storage context. + + System.String + + System.String + + + None + + + EnableFileBackupRequestIntent + + Required parameter to use with OAuth (Azure AD) Authentication for Files. This will bypass any file/directory level permission checks and allow access, based on the allowed data actions, even if there are ACLs in place for those files/directories. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Endpoint + + Specifies the endpoint for the Azure Storage context. + + System.String + + System.String + + + None + + + Environment + + Specifies the Azure environment. The acceptable values for this parameter are: AzureCloud and AzureChinaCloud. For more information, type `Get-Help Get-AzEnvironment`. + + System.String + + System.String + + + None + + + FileEndpoint + + Azure storage file service endpoint + + System.String + + System.String + + + None + + + Local + + Indicates that this cmdlet creates a context by using the local development storage account. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Protocol + + Transfer Protocol (https/http). + + System.String + + System.String + + + None + + + QueueEndpoint + + Azure storage queue service endpoint + + System.String + + System.String + + + None + + + SasToken + + Specifies a Shared Access Signature (SAS) token for the context. + + System.String + + System.String + + + None + + + StorageAccountKey + + Specifies an Azure Storage account key. This cmdlet creates a context for the key that this parameter specifies. + + System.String + + System.String + + + None + + + StorageAccountName + + Specifies an Azure Storage account name. This cmdlet creates a context for the account that this parameter specifies. + + System.String + + System.String + + + None + + + TableEndpoint + + Azure storage table service endpoint + + System.String + + System.String + + + None + + + UseConnectedAccount + + Indicates that this cmdlet creates an Azure Storage context with OAuth (Azure AD) Authentication. The cmdlet will use OAuth Authentication by default, when other authentication not specified. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + + + Microsoft.WindowsAzure.Commands.Storage.AzureStorageContext + + + + + + + + + + + + + + Example 1: Create a context by specifying a storage account name and key + New-AzStorageContext -StorageAccountName "ContosoGeneral" -StorageAccountKey "< Storage Key for ContosoGeneral ends with == >" + + This command creates a context for the account named ContosoGeneral that uses the specified key. + + + + + + Example 2: Create a context by specifying a connection string + New-AzStorageContext -ConnectionString "DefaultEndpointsProtocol=https;AccountName=ContosoGeneral;AccountKey=< Storage Key for ContosoGeneral ends with == >;" + + This command creates a context based on the specified connection string for the account ContosoGeneral. + + + + + + - Example 3: Create a context for an anonymous storage account - + New-AzStorageContext -StorageAccountName "ContosoGeneral" -Anonymous -Protocol "http" + + This command creates a context for anonymous use for the account named ContosoGeneral. The command specifies HTTP as a connection protocol. + + + + + + Example 4: Create a context by using the local development storage account + New-AzStorageContext -Local + + This command creates a context by using the local development storage account. The command specifies the Local parameter. + + + + + + Example 5: Get the container for the local developer storage account + New-AzStorageContext -Local | Get-AzStorageContainer + + This command creates a context by using the local development storage account, and then passes the new context to the Get-AzStorageContainer cmdlet by using the pipeline operator. The command gets the Azure Storage container for the local developer storage account. + + + + + + -------------- Example 6: Get multiple containers -------------- + $Context01 = New-AzStorageContext -Local +$Context02 = New-AzStorageContext -StorageAccountName "ContosoGeneral" -StorageAccountKey "< Storage Key for ContosoGeneral ends with == >" +($Context01, $Context02) | Get-AzStorageContainer + + The first command creates a context by using the local development storage account, and then stores that context in the $Context01 variable. The second command creates a context for the account named ContosoGeneral that uses the specified key, and then stores that context in the $Context02 variable. The final command gets the containers for the contexts stored in $Context01 and $Context02 by using Get-AzStorageContainer . + + + + + + --------- Example 7: Create a context with an endpoint --------- + New-AzStorageContext -StorageAccountName "ContosoGeneral" -StorageAccountKey "< Storage Key for ContosoGeneral ends with == >" -Endpoint "contosoaccount.core.windows.net" + + This command creates an Azure Storage context that has the specified storage endpoint. The command creates the context for the account named ContosoGeneral that uses the specified key. + + + + + + --- Example 8: Create a context with a specified environment --- + New-AzStorageContext -StorageAccountName "ContosoGeneral" -StorageAccountKey "< Storage Key for ContosoGeneral ends with == >" -Environment "AzureChinaCloud" + + This command creates an Azure storage context that has the specified Azure environment. The command creates the context for the account named ContosoGeneral that uses the specified key. + + + + + + ------ Example 9: Create a context by using an SAS token ------ + $SasToken = New-AzStorageContainerSASToken -Name "ContosoMain" -Permission "rad" +$Context = New-AzStorageContext -StorageAccountName "ContosoGeneral" -SasToken $SasToken +$Context | Get-AzStorageBlob -Container "ContosoMain" + + The first command generates an SAS token by using the New-AzStorageContainerSASToken cmdlet for the container named ContosoMain, and then stores that token in the $SasToken variable. That token is for read, add, update, and delete permissions. The second command creates a context for the account named ContosoGeneral that uses the SAS token stored in $SasToken, and then stores that context in the $Context variable. The final command lists all the blobs associated with the container named ContosoMain by using the context stored in $Context. + + + + + + Example 10: Create a context by using the OAuth Authentication + Connect-AzAccount +$Context = New-AzStorageContext -StorageAccountName "myaccountname" -UseConnectedAccount + + This command creates a context by using the OAuth (Azure AD) Authentication. + + + + + + Example 11: Create a context by specifying a storage account name, storage account key and custom blob endpoint + New-AzStorageContext -StorageAccountName "myaccountname" -StorageAccountKey "< Storage Key for myaccountname ends with == >" -BlobEndpoint "https://myaccountname.blob.core.windows.net/" + + This command creates a context for the account named myaccountname with a key for the account, and specified blob endpoint. + + + + + + Example 12: Create a context for an anonymous storage account with specified blob endpoint + New-AzStorageContext -Anonymous -BlobEndpoint "https://myaccountname.blob.core.windows.net/" + + This command creates a context for anonymous use for the account named myaccountname, with specified blob enpoint. + + + + + + Example 13: Create a context by using an SAS token with specified endpoints + $SasToken = New-AzStorageContainerSASToken -Name "MyContainer" -Permission "rad" +New-AzStorageContext -SasToken $SasToken -BlobEndpoint "https://myaccountname.blob.core.windows.net/" -TableEndpoint "https://myaccountname.table.core.windows.net/" -FileEndpoint "https://myaccountname.file.core.windows.net/" -QueueEndpoint "https://myaccountname.queue.core.windows.net/" + + The first command generates an SAS token by using the New-AzStorageContainerSASToken cmdlet for the container named MyContainer, and then stores that token in the $SasToken variable. The second command creates a context that uses the SAS token and a specified blob endpoint, table endpoint, file endpoint, and queue endpoint. + + + + + + Example 14: Create a context by using the OAuth Authentication with a specified blob endpoint + New-AzStorageContext -UseConnectedAccount -BlobEndpoint "https://myaccountname.blob.core.windows.net/" + + This command creates a context by using the OAuth authentication with a specified blob endpoint. + + + + + + Example 15: Create a context by using the OAuth Authentication on File service + New-AzStorageContext -StorageAccountName "myaccountname" -UseConnectedAccount -EnableFileBackupRequestIntent + + This command creates a context to use the OAuth (Azure AD) authentication on File service. Parameter '-EnableFileBackupRequestIntent' is required to use OAuth (Azure AD) Authentication for File service. This will bypass any file/directory level permission checks and allow access, based on the allowed data actions, even if there are ACLs in place for those files/directories. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragecontext + + + Get-AzStorageBlob + + + + New-AzStorageContainerSASToken + + + + + + + New-AzStorageDirectory + New + AzStorageDirectory + + Creates a directory. + + + + The New-AzStorageDirectory cmdlet creates a directory. This cmdlet returns a CloudFileDirectory object. + + + + New-AzStorageDirectory + + Directory + + Specifies a folder as a CloudFileDirectory object. This cmdlet creates the folder in the location that this parameter specifies. To obtain a directory, use the New-AzStorageDirectory cmdlet. You can also use the Get-AzStorageFile cmdlet to obtain a directory. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + Path + + Specifies the path of a folder. This cmdlet creates a folder for the path that this cmdlet specifies. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the base folder where the files/directories would be listed. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + + New-AzStorageDirectory + + Share + + Specifies a CloudFileShare object. This cmdlet creates a folder in the file share that this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + Path + + Specifies the path of a folder. This cmdlet creates a folder for the path that this cmdlet specifies. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareClient + + ShareClient object indicated the share where the files/directories would be listed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + + New-AzStorageDirectory + + ShareName + + Specifies the name of the file share. This cmdlet creates a folder in the file share that this parameter specifies. + + System.String + + System.String + + + None + + + Path + + Specifies the path of a folder. This cmdlet creates a folder for the path that this cmdlet specifies. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Directory + + Specifies a folder as a CloudFileDirectory object. This cmdlet creates the folder in the location that this parameter specifies. To obtain a directory, use the New-AzStorageDirectory cmdlet. You can also use the Get-AzStorageFile cmdlet to obtain a directory. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + Path + + Specifies the path of a folder. This cmdlet creates a folder for the path that this cmdlet specifies. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Share + + Specifies a CloudFileShare object. This cmdlet creates a folder in the file share that this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + ShareClient + + ShareClient object indicated the share where the files/directories would be listed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the base folder where the files/directories would be listed. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + ShareName + + Specifies the name of the file share. This cmdlet creates a folder in the file share that this parameter specifies. + + System.String + + System.String + + + None + + + + + + Microsoft.Azure.Storage.File.CloudFileShare + + + + + + + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFileDirectory + + + + + + + + + + + + + + ---------- Example 1: Create a folder in a file share ---------- + New-AzStorageDirectory -ShareName "ContosoShare06" -Path "ContosoWorkingFolder" + + This command creates a folder named ContosoWorkingFolder in the file share named ContosoShare06. + + + + + + Example 2: Create a folder in a file share specified in a file share object + Get-AzStorageShare -Name "ContosoShare06" | New-AzStorageDirectory -Path "ContosoWorkingFolder" + + This command uses the Get-AzStorageShare cmdlet to get the file share named ContosoShare06, and then passes it to the current cmdlet by using the pipeline operator. The current cmdlet creates the folder named ContosoWorkingFolder in ContosoShare06. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragedirectory + + + Get-AzStorageFile + + + + Get-AzStorageShare + + + + New-AzStorageContext + + + + New-AzStorageDirectory + + + + Remove-AzStorageDirectory + + + + + + + New-AzStorageFileSASToken + New + AzStorageFileSASToken + + Generates a shared access signature token for a Storage file. + + + + The New-AzStorageFileSASToken cmdlet generates a shared access signature token for an Azure Storage file. + + + + New-AzStorageFileSASToken + + ShareName + + Specifies the name of the Storage share. + + System.String + + System.String + + + None + + + Path + + Specifies the path of the file relative to a Storage share. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Permission + + Specifies the permissions for a Storage file. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + New-AzStorageFileSASToken + + ShareName + + Specifies the name of the Storage share. + + System.String + + System.String + + + None + + + Path + + Specifies the path of the file relative to a Storage share. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Policy + + Specifies the stored access policy for a file. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + New-AzStorageFileSASToken + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + File + + Specifies a CloudFile object. You can create a cloud file or obtain one by using the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Permission + + Specifies the permissions for a Storage file. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + New-AzStorageFileSASToken + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + File + + Specifies a CloudFile object. You can create a cloud file or obtain one by using the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Policy + + Specifies the stored access policy for a file. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + File + + Specifies a CloudFile object. You can create a cloud file or obtain one by using the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Path + + Specifies the path of the file relative to a Storage share. + + System.String + + System.String + + + None + + + Permission + + Specifies the permissions for a Storage file. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Policy + + Specifies the stored access policy for a file. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + ShareName + + Specifies the name of the Storage share. + + System.String + + System.String + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Storage.File.CloudFile + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + Example 1: Generate a shared access signature token that has full file permissions + New-AzStorageFileSASToken -ShareName "ContosoShare" -Path "FilePath" -Permission "rwd" + + This command generates a shared access signature token that has full permissions for the file that is named FilePath. + + + + + + Example 2: Generate a shared access signature token that has a time limit + $StartTime = Get-Date +$EndTime = $StartTime.AddHours(2.0) +New-AzStorageFileSASToken -ShareName "ContosoShare" -Path "FilePath" -Permission "rwd" -StartTime $StartTime -ExpiryTime $EndTime + + The first command creates a DateTime object by using the Get-Date cmdlet. The command stores the current time in the $StartTime variable. The second command adds two hours to the object in $StartTime, and then stores the result in the $EndTime variable. This object is a time two hours in the future. The third command generates a shared access signature token that has the specified permissions. This token becomes valid at the current time. The token remains valid until time stored in $EndTime. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragefilesastoken + + + New-AzStorageContext + + + + New-AzStorageShareSASToken + + + + + + + New-AzStorageQueue + New + AzStorageQueue + + Creates a storage queue. + + + + The New-AzStorageQueue cmdlet creates a storage queue in Azure. + + + + New-AzStorageQueue + + Name + + Specifies a name for the queue. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage context. You can create it by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + Context + + Specifies the Azure storage context. You can create it by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies a name for the queue. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageQueue + + + + + + + + + + + + + + ----------- Example 1: Create an Azure storage queue ----------- + New-AzStorageQueue -Name "queueabc" + + This example creates a storage queue named queueabc. + + + + + + ------- Example 2: Create multiple azure storage queues ------- + "queue1 queue2 queue3".split() | New-AzStorageQueue + + This example creates multiple storage queues. It uses the Split method of the .NET String class and then passes the names on the pipeline. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragequeue + + + Get-AzStorageQueue + + + + Remove-AzStorageQueue + + + + + + + New-AzStorageQueueSASToken + New + AzStorageQueueSASToken + + Generates a shared access signature token for an Azure storage queue. + + + + The New-AzStorageQueueSASToken cmdlet generates shared access signature token for an Azure storage queue. + + + + New-AzStorageQueueSASToken + + Name + + Specifies an Azure storage queue name. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies when the shared access signature is no longer valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Permission + + Specifies permissions for a storage queue. It is important to note that this is a string, like `raup` (for Read, Add, Update and ProcessMessages). + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies when the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + New-AzStorageQueueSASToken + + Name + + Specifies an Azure storage queue name. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies when the shared access signature is no longer valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Policy + + Specifies an Azure stored access policy. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies when the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + Context + + Specifies the Azure storage context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies when the shared access signature is no longer valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Name + + Specifies an Azure storage queue name. + + System.String + + System.String + + + None + + + Permission + + Specifies permissions for a storage queue. It is important to note that this is a string, like `raup` (for Read, Add, Update and ProcessMessages). + + System.String + + System.String + + + None + + + Policy + + Specifies an Azure stored access policy. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies when the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + -- Example 1: Generate a queue SAS token with full permission -- + New-AzStorageQueueSASToken -Name "Test" -Permission raup + + This example generates a queue SAS token with full permission. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragequeuesastoken + + + + + + New-AzStorageQueueStoredAccessPolicy + New + AzStorageQueueStoredAccessPolicy + + Creates a stored access policy for an Azure storage queue. + + + + The New-AzStorageQueueStoredAccessPolicy cmdlet creates a stored access policy for an Azure storage queue. + + + + New-AzStorageQueueStoredAccessPolicy + + Queue + + Specifies the Azure storage queue name. + + System.String + + System.String + + + None + + + Policy + + Specifies a name for the stored access policy. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Permission + + Specifies permissions in the stored access policy to access the storage queue. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Permission + + Specifies permissions in the stored access policy to access the storage queue. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Policy + + Specifies a name for the stored access policy. + + System.String + + System.String + + + None + + + Queue + + Specifies the Azure storage queue name. + + System.String + + System.String + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + - Example 1: Create a stored access policy in a storage queue - + New-AzStorageQueueStoredAccessPolicy -Queue "MyQueue" -Policy "Policy01" + + This command creates an access policy named Policy01 in the storage queue named MyQueue. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragequeuestoredaccesspolicy + + + Get-AzStorageQueueStoredAccessPolicy + + + + New-AzStorageContext + + + + Remove-AzStorageQueueStoredAccessPolicy + + + + Set-AzStorageQueueStoredAccessPolicy + + + + + + + New-AzStorageShare + New + AzStorageShare + + Creates a file share. + + + + The New-AzStorageShare cmdlet creates a file share. + + + + New-AzStorageShare + + Name + + Specifies the name of a file share. This cmdlet creates a file share that has the name that this parameter specifies. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies the name of a file share. This cmdlet creates a file share that has the name that this parameter specifies. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFileShare + + + + + + + + + + + + + + ---------------- Example 1: Create a file share ---------------- + New-AzStorageShare -Name "ContosoShare06" + + This command creates a file share named ContosoShare06. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstorageshare + + + Get-AzStorageShare + + + + New-AzStorageContext + + + + Remove-AzStorageShare + + + + + + + New-AzStorageShareSASToken + New + AzStorageShareSASToken + + Generate Shared Access Signature token for Azure Storage share. + + + + The New-AzStorageShareSASToken cmdlet generates a shared access signature token for an Azure Storage share. + + + + New-AzStorageShareSASToken + + ShareName + + Specifies the name of the Storage share. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Permission + + Specifies the permissions in the token to access the share and files under the share. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + New-AzStorageShareSASToken + + ShareName + + Specifies the name of the Storage share. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Policy + + Specifies the stored access policy for a share. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the shared access signature becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet return the full blob URI and the shared access signature token. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Permission + + Specifies the permissions in the token to access the share and files under the share. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Policy + + Specifies the stored access policy for a share. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Storage.SharedAccessProtocol] + + + None + + + ShareName + + Specifies the name of the Storage share. + + System.String + + System.String + + + None + + + StartTime + + Specifies the time at which the shared access signature becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + * Keywords: common, azure, services, data, storage, blob, queue, table + + + + + Example 1: Generate a shared access signature token for a share + New-AzStorageShareSASToken -ShareName "ContosoShare" -Permission "rwdl" + + This command creates a shared access signature token for the share named ContosoShare. + + + + + + Example 2: Generate multiple shared access signature token by using the pipeline + Get-AzStorageShare -Prefix "test" | New-AzStorageShareSASToken -Permission "rwdl" + + This command gets all the Storage shares that match the prefix test. The command passes them to the current cmdlet by using the pipeline operator. The current cmdlet creates a shared access token for each Storage share that has the specified permissions. + + + + + + Example 3: Generate a shared access signature token that uses a shared access policy + New-AzStorageShareSASToken -ShareName "ContosoShare" -Policy "ContosoPolicy03" + + This command creates a shared access signature token for the Storage share named ContosoShare that has the policy named ContosoPolicy03. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragesharesastoken + + + Get-AzStorageShare + + + + New-AzStorageFileSASToken + + + + + + + New-AzStorageShareStoredAccessPolicy + New + AzStorageShareStoredAccessPolicy + + Creates a stored access policy on a Storage share. + + + + The New-AzStorageShareStoredAccessPolicy cmdlet creates a stored access policy on an Azure Storage share. + + + + New-AzStorageShareStoredAccessPolicy + + ShareName + + Specifies the name of the Storage share. + + System.String + + System.String + + + None + + + Policy + + Specifies a name for the stored access policy. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Permission + + Specifies permissions in the stored access policy to access the Storage share or files under it. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Permission + + Specifies permissions in the stored access policy to access the Storage share or files under it. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Policy + + Specifies a name for the stored access policy. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareName + + Specifies the name of the Storage share. + + System.String + + System.String + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + ----- Example 1: Create a stored access policy in a share ----- + New-AzStorageShareStoredAccessPolicy -ShareName "ContosoShare" -Policy "GeneralPolicy" -Permission "rwdl" + + This command creates a stored access policy that has full permission in a share. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragesharestoredaccesspolicy + + + Get-AzStorageShareStoredAccessPolicy + + + + New-AzStorageContext + + + + Remove-AzStorageShareStoredAccessPolicy + + + + Set-AzStorageShareStoredAccessPolicy + + + + + + + New-AzStorageTable + New + AzStorageTable + + Creates a storage table. + + + + The New-AzStorageTable cmdlet creates a storage table associated with the storage account in Azure. + + + + New-AzStorageTable + + Name + + Specifies a name for the new table. + + System.String + + System.String + + + None + + + Context + + Specifies the storage context. To create it, you can use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + + + + Context + + Specifies the storage context. To create it, you can use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies a name for the new table. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageTable + + + + + + + + + + + + + + ----------- Example 1: Create an azure storage table ----------- + New-AzStorageTable -Name "tableabc" + + This command creates a storage table with a name of tableabc. + + + + + + ------- Example 2: Create multiple azure storage tables ------- + PS C:\>"table1 table2 table3".split() | New-AzStorageTable + + This command creates multiple tables. It uses the Split method of the .NET String class and then passes the names on the pipeline. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragetable + + + Get-AzStorageTable + + + + Remove-AzStorageTable + + + + + + + New-AzStorageTableSASToken + New + AzStorageTableSASToken + + Generates an SAS token for an Azure Storage table. + + + + The New-AzStorageTableSASToken cmdlet generates a Shared Access Signature (SAS) token for an Azure Storage table. + + + + New-AzStorageTableSASToken + + Name + + Specifies the name of an Azure Storage table. This cmdlet creates an SAS token for the table that this parameter specifies. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EndPartitionKey + + Specifies the partition key of the end of the range for the token that this cmdlet creates. + + System.String + + System.String + + + None + + + EndRowKey + + Specifies the row key for the end of the range for the token that this cmdlet creates. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies when the SAS token expires. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet returns the full queue URI with the SAS token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Permission + + Specifies permissions for an Azure Storage table. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Cosmos.Table.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Cosmos.Table.SharedAccessProtocol] + + + None + + + StartPartitionKey + + Specifies the partition key of the start of the range for the token that this cmdlet creates. + + System.String + + System.String + + + None + + + StartRowKey + + Specifies the row key for the start of the range for the token that this cmdlet creates. + + System.String + + System.String + + + None + + + StartTime + + Specifies when the SAS token becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + New-AzStorageTableSASToken + + Name + + Specifies the name of an Azure Storage table. This cmdlet creates an SAS token for the table that this parameter specifies. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EndPartitionKey + + Specifies the partition key of the end of the range for the token that this cmdlet creates. + + System.String + + System.String + + + None + + + EndRowKey + + Specifies the row key for the end of the range for the token that this cmdlet creates. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies when the SAS token expires. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet returns the full queue URI with the SAS token. + + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Policy + + Specifies a stored access policy, which includes the permissions for this SAS token. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + + HttpsOnly + HttpsOrHttp + + System.Nullable`1[Microsoft.Azure.Cosmos.Table.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Cosmos.Table.SharedAccessProtocol] + + + None + + + StartPartitionKey + + Specifies the partition key of the start of the range for the token that this cmdlet creates. + + System.String + + System.String + + + None + + + StartRowKey + + Specifies the row key for the start of the range for the token that this cmdlet creates. + + System.String + + System.String + + + None + + + StartTime + + Specifies when the SAS token becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EndPartitionKey + + Specifies the partition key of the end of the range for the token that this cmdlet creates. + + System.String + + System.String + + + None + + + EndRowKey + + Specifies the row key for the end of the range for the token that this cmdlet creates. + + System.String + + System.String + + + None + + + ExpiryTime + + Specifies when the SAS token expires. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + FullUri + + Indicates that this cmdlet returns the full queue URI with the SAS token. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IPAddressOrRange + + Specifies the IP address or range of IP addresses from which to accept requests, such as 168.1.5.65 or 168.1.5.60-168.1.5.70. The range is inclusive. + + System.String + + System.String + + + None + + + Name + + Specifies the name of an Azure Storage table. This cmdlet creates an SAS token for the table that this parameter specifies. + + System.String + + System.String + + + None + + + Permission + + Specifies permissions for an Azure Storage table. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Policy + + Specifies a stored access policy, which includes the permissions for this SAS token. + + System.String + + System.String + + + None + + + Protocol + + Specifies the protocol permitted for a request. The acceptable values for this parameter are: * HttpsOnly + * HttpsOrHttp + The default value is HttpsOrHttp. + + System.Nullable`1[Microsoft.Azure.Cosmos.Table.SharedAccessProtocol] + + System.Nullable`1[Microsoft.Azure.Cosmos.Table.SharedAccessProtocol] + + + None + + + StartPartitionKey + + Specifies the partition key of the start of the range for the token that this cmdlet creates. + + System.String + + System.String + + + None + + + StartRowKey + + Specifies the row key for the start of the range for the token that this cmdlet creates. + + System.String + + System.String + + + None + + + StartTime + + Specifies when the SAS token becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + Example 1: Generate an SAS token that has full permissions for a table + New-AzStorageTableSASToken -Name "ContosoResources" -Permission "raud" + + This command generates an SAS token with full permissions for the table named ContosoResources. That token is for read, add, update, and delete permissions. + + + + + + -- Example 2: Generate an SAS token for a range of partitions -- + New-AzStorageTableSASToken -Name "ContosoResources" -Permission "raud" -StartPartitionKey "a" -EndPartitionKey "b" + + This command generates and SAS token with full permissions for the table named ContosoResources. The command limits the token to the range that the StartPartitionKey and EndPartitionKey parameters specify. + + + + + + Example 3: Generate an SAS token that has a stored access policy for a table + New-AzStorageTableSASToken -Name "ContosoResources" -Policy "ClientPolicy01" + + This command generates an SAS token for the table named ContosoResources. The command specifies the stored access policy named ClientPolicy01. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragetablesastoken + + + New-AzStorageContext + + + + + + + New-AzStorageTableStoredAccessPolicy + New + AzStorageTableStoredAccessPolicy + + Creates a stored access policy for an Azure storage table. + + + + The New-AzStorageTableStoredAccessPolicy cmdlet creates a stored access policy for an Azure storage table. + + + + New-AzStorageTableStoredAccessPolicy + + Table + + Specifies the Azure storage table name. + + System.String + + System.String + + + None + + + Policy + + Specifies a name for the stored access policy. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Permission + + Specifies permissions in the stored access policy to access the storage table. It is important to note that this is a string, like `raud` (for Read, Add, Update and Delete). + + System.String + + System.String + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Permission + + Specifies permissions in the stored access policy to access the storage table. It is important to note that this is a string, like `raud` (for Read, Add, Update and Delete). + + System.String + + System.String + + + None + + + Policy + + Specifies a name for the stored access policy. + + System.String + + System.String + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Table + + Specifies the Azure storage table name. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + ----- Example 1: Create a stored access policy in a table ----- + New-AzStorageTableStoredAccessPolicy -Table "MyTable" -Policy "Policy02" + + This command creates an access policy named Policy02 in the storage table named MyTable. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/new-azstoragetablestoredaccesspolicy + + + Get-AzStorageTableStoredAccessPolicy + + + + New-AzStorageContext + + + + Remove-AzStorageTableStoredAccessPolicy + + + + Set-AzStorageTableStoredAccessPolicy + + + + + + + Remove-AzDataLakeGen2AclRecursive + Remove + AzDataLakeGen2AclRecursive + + Remove ACL recursively on the specified path. + + + + The Remove-AzDataLakeGen2AclRecursive cmdlet removes ACL recursively on the specified path. The ACL entries in original ACL, which has same AccessControlType, DefaultScope and EntityId with input ACL entries (even with different permission) wil lbe removed. + + + + Remove-AzDataLakeGen2AclRecursive + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Path + + The path in the specified FileSystem that to change Acl recursively. Can be a file or directory. In the format 'directory/file.txt' or 'directory1/directory2/'. Skip set this parameter to change Acl recursively from root directory of the Filesystem. + + System.String + + System.String + + + None + + + Acl + + The POSIX access control list to set recursively for the file or directory. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + BatchSize + + If data set size exceeds batch size then operation will be split into multiple requests so that progress can be tracked. Batch size should be between 1 and 2000. Default is 2000. + + System.Int32 + + System.Int32 + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Continuation Token. + + System.String + + System.String + + + None + + + ContinueOnFailure + + Set this parameter to ignore failures and continue proceeing with the operation on other sub-entities of the directory. Default the operation will terminate quickly on encountering failures. + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + MaxBatchCount + + Maximum number of batches that single change Access Control operation can execute. If data set size exceeds MaxBatchCount multiply BatchSize, continuation token will be return. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Acl + + The POSIX access control list to set recursively for the file or directory. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + + None + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + BatchSize + + If data set size exceeds batch size then operation will be split into multiple requests so that progress can be tracked. Batch size should be between 1 and 2000. Default is 2000. + + System.Int32 + + System.Int32 + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Continuation Token. + + System.String + + System.String + + + None + + + ContinueOnFailure + + Set this parameter to ignore failures and continue proceeing with the operation on other sub-entities of the directory. Default the operation will terminate quickly on encountering failures. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + MaxBatchCount + + Maximum number of batches that single change Access Control operation can execute. If data set size exceeds MaxBatchCount multiply BatchSize, continuation token will be return. + + System.Int32 + + System.Int32 + + + None + + + Path + + The path in the specified FileSystem that to change Acl recursively. Can be a file or directory. In the format 'directory/file.txt' or 'directory1/directory2/'. Skip set this parameter to change Acl recursively from root directory of the Filesystem. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + Example 1: Remove ACL recursively on a root directiry of filesystem + PS C:\>$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -EntityId $id -Permission r-x -DefaultScope +PS C:\>$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -EntityId $id -Permission r-x -InputObject $acl +PS C:\> Remove-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Acl $acl -Context $ctx +WARNING: To find the ACL Entry to remove, will only compare AccessControlType, DefaultScope and EntityId, will omit Permission. + +FailedEntries : +TotalDirectoriesSuccessfulCount : 7 +TotalFilesSuccessfulCount : 5 +TotalFailureCount : 0 +ContinuationToken : + + This command first creates an ACL object with 2 acl entries, then removes ACL recursively on a root directory of a file system. + + + + + + ------- Example 2: Remove ACL recursively on a directory ------- + PS C:\> $result = Remove-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path "dir1" -Acl $acl -Context $ctx +WARNING: To find the ACL Entry to remove, will only compare AccessControlType, DefaultScope and EntityId, will omit Permission. + +PS C:\> $result + +FailedEntries : {dir1/dir2/file4} +TotalDirectoriesSuccessfulCount : 500 +TotalFilesSuccessfulCount : 2500 +TotalFailureCount : 1 +ContinuationToken : VBaHi5TfyO2ai1wYTRhIL2FjbGNibjA2c3RmATAxRDVEN0UzRENFQzZCRTAvYWRsc3Rlc3QyATAxRDY2M0ZCQTZBN0JGQTkvZGlyMC9kaXIxL2ZpbGUzFgAAAA== + +PS C:\> $result.FailedEntries + +Name IsDirectory ErrorMessage +---- ----------- ------------ +dir0/dir2/file4 False This request is not authorized to perform this operation using this permission. + +# user need fix the failed item , then can resume with ContinuationToken + +PS C:\> $result = Remove-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path "dir1" -Acl $acl -ContinuationToken $result.ContinuationToken -Context $ctx +WARNING: To find the ACL Entry to remove, will only compare AccessControlType, DefaultScope and EntityId, will omit Permission. + +PS C:\> $result + +FailedEntries : +TotalDirectoriesSuccessfulCount : 100 +TotalFilesSuccessfulCount : 1000 +TotalFailureCount : 0 +ContinuationToken : + + This command first removes ACL recursively on a directory and failed, then resume with ContinuationToken after user fix the failed file. + + + + + + ------- Example 3: Remove ACL recursively chunk by chunk ------- + $token = $null +$TotalDirectoriesSuccess = 0 +$TotalFilesSuccess = 0 +$totalFailure = 0 +$FailedEntries = New-Object System.Collections.Generic.List[System.Object] +do +{ + $result = Remove-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path "dir1" -Acl $acl -BatchSize 1000 -MaxBatchCount 50 -ContinuationToken $token -Context $ctx + + # echo $result + $TotalFilesSuccess += $result.TotalFilesSuccessfulCount + $TotalDirectoriesSuccess += $result.TotalDirectoriesSuccessfulCount + $totalFailure += $result.TotalFailureCount + $FailedEntries += $result.FailedEntries + $token = $result.ContinuationToken +}while (($token -ne $null) -and ($result.TotalFailureCount -eq 0)) +echo "" +echo "[Result Summary]" +echo "TotalDirectoriesSuccessfulCount: `t$($TotalDirectoriesSuccess)" +echo "TotalFilesSuccessfulCount: `t`t`t$($TotalFilesSuccess)" +echo "TotalFailureCount: `t`t`t`t`t$($totalFailure)" +echo "ContinuationToken: `t`t`t`t`t$($token)" +echo "FailedEntries:"$($FailedEntries | ft) + + This script will remove ACL rescursively on directory chunk by chunk, with chunk size as BatchSize * MaxBatchCount. Chunk size is 50000 in this script. + + + + + + Example 4: Remove ACL recursively on a directory and ContinueOnFailure, then resume from failures one by one + PS C:\> $result = Remove-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path "dir1" -Acl $acl -ContinueOnFailure -Context $ctx + +PS C:\> $result + +FailedEntries : {dir0/dir1/file1, dir0/dir2/file4} +TotalDirectoriesSuccessfulCount : 100 +TotalFilesSuccessfulCount : 500 +TotalFailureCount : 2 +ContinuationToken : VBaHi5TfyO2ai1wYTRhIL2FjbGNibjA2c3RmATAxRDVEN0UzRENFQzZCRTAvYWRsc3Rlc3QyATAxRDY2M0ZCQTZBN0JGQTkvZGlyMC9kaXIxL2ZpbGUzFgAAAA== + +PS C:\> $result.FailedEntries + +Name IsDirectory ErrorMessage +---- ----------- ------------ +dir0/dir1/file1 False This request is not authorized to perform this operation using this permission. +dir0/dir2/file4 False This request is not authorized to perform this operation using this permission. + +# user need fix the failed item , then can resume with ContinuationToken + +PS C:\> foreach ($path in $result.FailedEntries.Name) + { + # user code to fix failed entry in $path + + #set ACL again + Remove-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path $path -Acl $acl -Context $ctx + } + + This command first removes ACL recursively to a directory with ContinueOnFailure, and some items failed, then resume the failed items one by one. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azdatalakegen2aclrecursive + + + + + + Remove-AzDataLakeGen2Item + Remove + AzDataLakeGen2Item + + Remove a file or directory. + + + + The Remove-AzDataLakeGen2Item cmdlet removes a file or directory from a Storage account. This cmdlet only works if Hierarchical Namespace is enabled for the Storage account. This kind of account can be created by run "New-AzStorageAccount" cmdlet with "-EnableHierarchicalNamespace $true". + + + + Remove-AzDataLakeGen2Item + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Path + + The path in the specified Filesystem that should be removed. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/' + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the Filesystem and all content in it + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Return whether the specified Filesystem is successfully removed + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzDataLakeGen2Item + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the Filesystem and all content in it + + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Azure Datalake Gen2 Item Object to remove. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + None + + + PassThru + + Return whether the specified Filesystem is successfully removed + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Force + + Force to remove the Filesystem and all content in it + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + InputObject + + Azure Datalake Gen2 Item Object to remove. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + None + + + PassThru + + Return whether the specified Filesystem is successfully removed + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Path + + The path in the specified Filesystem that should be removed. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/' + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + ---------------- Example 1: Removes a directory ---------------- + Remove-AzDataLakeGen2Item -FileSystem "filesystem1" -Path "dir1/" + + This command removes a directory from a Filesystem. + + + + + + ----------- Example 2: Removes a file without prompt ----------- + Remove-AzDataLakeGen2Item -FileSystem "filesystem1" -Path "dir1/file1" -Force + + This command removes a directory from a Filesystem, without prompt. + + + + + + -- Example 3: Remove all items in a Filesystem with pipeline -- + Get-AzDataLakeGen2ChildItem -FileSystem "filesystem1" | Remove-AzDataLakeGen2Item -Force + + This command removes all items in a Filesystem with pipeline. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azdatalakegen2item + + + + + + Remove-AzStorageBlob + Remove + AzStorageBlob + + Removes the specified storage blob. + + + + The Remove-AzStorageBlob cmdlet removes the specified blob from a storage account in Azure. + + + + Remove-AzStorageBlob + + Blob + + Specifies the name of the blob you want to remove. + + System.String + + System.String + + + None + + + Container + + Specifies the name of the container. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage context. You can use the New-AzStorageContext cmdlet to create it. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DeleteSnapshot + + Specifies that all snapshots be deleted, but not the base blob. If this parameter is not specified, the base blob and its snapshots are deleted together. The user is prompted to confirm the delete operation. + + + System.Management.Automation.SwitchParameter + + + False + + + Force + + Indicates that this cmdlet removes the blob and its snapshot without confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the Azure profile for the cmdlet to read. If not specified, the cmdlet reads from the default profile. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SnapshotTime + + Blob SnapshotTime + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + VersionId + + Blob VersionId + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageBlob + + Blob + + Specifies the name of the blob you want to remove. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlobContainer + + Specifies a CloudBlobContainer object from the Azure Storage Client library. You can use the Get-AzStorageContainer cmdlet to get it. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage context. You can use the New-AzStorageContext cmdlet to create it. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DeleteSnapshot + + Specifies that all snapshots be deleted, but not the base blob. If this parameter is not specified, the base blob and its snapshots are deleted together. The user is prompted to confirm the delete operation. + + + System.Management.Automation.SwitchParameter + + + False + + + Force + + Indicates that this cmdlet removes the blob and its snapshot without confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the Azure profile for the cmdlet to read. If not specified, the cmdlet reads from the default profile. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SnapshotTime + + Blob SnapshotTime + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + VersionId + + Blob VersionId + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageBlob + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a cloud blob. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage context. You can use the New-AzStorageContext cmdlet to create it. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DeleteSnapshot + + Specifies that all snapshots be deleted, but not the base blob. If this parameter is not specified, the base blob and its snapshots are deleted together. The user is prompted to confirm the delete operation. + + + System.Management.Automation.SwitchParameter + + + False + + + Force + + Indicates that this cmdlet removes the blob and its snapshot without confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the Azure profile for the cmdlet to read. If not specified, the cmdlet reads from the default profile. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Blob + + Specifies the name of the blob you want to remove. + + System.String + + System.String + + + None + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a cloud blob. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + CloudBlobContainer + + Specifies a CloudBlobContainer object from the Azure Storage Client library. You can use the Get-AzStorageContainer cmdlet to get it. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Specifies the name of the container. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage context. You can use the New-AzStorageContext cmdlet to create it. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DeleteSnapshot + + Specifies that all snapshots be deleted, but not the base blob. If this parameter is not specified, the base blob and its snapshots are deleted together. The user is prompted to confirm the delete operation. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Force + + Indicates that this cmdlet removes the blob and its snapshot without confirmation. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the Azure profile for the cmdlet to read. If not specified, the cmdlet reads from the default profile. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SnapshotTime + + Blob SnapshotTime + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + VersionId + + Blob VersionId + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.Blob.CloudBlob + + + + + + + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + ----------- Example 1: Remove a storage blob by name ----------- + Remove-AzStorageBlob -Container "ContainerName" -Blob "BlobName" + + This command removes a blob identified by its name. + + + + + + ----- Example 2: Remove a storage blob using the pipeline ----- + Get-AzStorageBlob -Container "ContainerName" -Blob "BlobName" | Remove-AzStorageBlob + + This command uses the pipeline. + + + + + + ------ Example 3: Remove storage blobs using the pipeline ------ + Get-AzStorageContainer -Container container* | Remove-AzStorageBlob -Blob "BlobName" + + This command uses the asterisk (*) wildcard character and the pipeline to retrieve the blob or blobs and then removes them. + + + + + + ----------- Example 4: Remove a single blob version ----------- + Remove-AzStorageBlob -Container "containername" -Blob blob2 -VersionId "2020-07-03T16:19:16.2883167Z" + + This command removes a single blobs verion with VersionId. + + + + + + ----------- Example 5: Remove a single blob snapshot ----------- + Remove-AzStorageBlob -Container "containername" -Blob blob1 -SnapshotTime "2020-07-06T06:56:06.8588431Z" + + This command removes a single blobs snapshot with SnapshotTime. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstorageblob + + + Get-AzStorageBlob + + + + Get-AzStorageBlobContent + + + + Set-AzStorageBlobContent + + + + + + + Remove-AzStorageBlobImmutabilityPolicy + Remove + AzStorageBlobImmutabilityPolicy + + Removes ImmutabilityPolicy of a Storage blob. + + + + The Remove-AzStorageBlobImmutabilityPolicy cmdlet removes immutability policy of a Storage blob. + + + + Remove-AzStorageBlobImmutabilityPolicy + + Blob + + Blob name + + System.String + + System.String + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageBlobImmutabilityPolicy + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Blob + + Blob name + + System.String + + System.String + + + None + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + + + + + + + + + + + + + -- Example 1: Removes immutability policy of a Storage blob. -- + PS C:\> $blob = Remove-AzStorageBlobImmutabilityPolicy -Container $containerName -Blob $blobname + +PS C:\> $blob + + AccountName: mystorageaccount, ContainerName: mycontainer + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +testblob BlockBlob 10485760 application/octet-stream 2021-07-19 08:56:00Z Hot False 2021-07-19T08:56:01.8120788Z * + +PS C:\> $blob.BlobProperties.ImmutabilityPolicy + +ExpiresOn PolicyMode +--------- ---------- + + This command removes ImmutabilityPolicy of a Storage blob, then show the result. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstorageblobimmutabilitypolicy + + + + + + Remove-AzStorageContainer + Remove + AzStorageContainer + + Removes the specified storage container. + + + + The Remove-AzStorageContainer cmdlet removes the specified storage container in Azure. + + + + Remove-AzStorageContainer + + Name + + Specifies the name of the container to remove. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies a context for the container you want to remove. You can use the New-AzStorageContext cmdlet to create it. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies a context for the container you want to remove. You can use the New-AzStorageContext cmdlet to create it. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Specifies the name of the container to remove. + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + ---------------- Example 1: Remove a container ---------------- + Remove-AzStorageContainer -Name "MyTestContainer" + + This example removes a container named MyTestContainer. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstoragecontainer + + + Get-AzStorageContainer + + + + New-AzStorageContainer + + + + + + + Remove-AzStorageContainerStoredAccessPolicy + Remove + AzStorageContainerStoredAccessPolicy + + Removes a stored access policy from an Azure storage container. + + + + The Remove-AzStorageContainerStoredAccessPolicy cmdlet removes a stored access policy from an Azure storage container. + + + + Remove-AzStorageContainerStoredAccessPolicy + + Container + + Specifies the Azure storage container name. + + System.String + + System.String + + + None + + + Policy + + Specifies the name of the stored access policy that this cmdlet removes. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Specifies the Azure storage container name. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Policy + + Specifies the name of the stored access policy that this cmdlet removes. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + Example 1: Remove a stored access policy from a storage container + Remove-AzStorageContainerStoredAccessPolicy -Container "MyContainer" -Policy "Policy03" + + This command removes an access policy named Policy03 from the stored container named MyContainer. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstoragecontainerstoredaccesspolicy + + + Get-AzStorageContainerStoredAccessPolicy + + + + New-AzStorageContainerStoredAccessPolicy + + + + New-AzStorageContext + + + + Set-AzStorageContainerStoredAccessPolicy + + + + + + + Remove-AzStorageCORSRule + Remove + AzStorageCORSRule + + Removes CORS for a Storage service. + + + + The Remove-AzStorageCORSRule cmdlet removes Cross-Origin Resource Sharing (CORS) for an Azure Storage service. This cmdlet deletes all CORS rules in a Storage service type. The types of storage services for this cmdlet are Blob, Table, Queue, and File. + + + + Remove-AzStorageCORSRule + + ServiceType + + Specifies the Azure Storage service type for which this cmdlet removes rules. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + + + Blob + Table + Queue + File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage context. To obtain the storage context, the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage context. To obtain the storage context, the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ServiceType + + Specifies the Azure Storage service type for which this cmdlet removes rules. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Void + + + + + + + + + + + + + + ------ Example 1: Remove CORS rules for the blob service ------ + Remove-AzStorageCORSRule -ServiceType Blob + + This command removes CORS rules for the Blob service type. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstoragecorsrule + + + Get-AzStorageCORSRule + + + + Set-AzStorageCORSRule + + + + + + + Remove-AzStorageDirectory + Remove + AzStorageDirectory + + Deletes a directory. + + + + The Remove-AzStorageDirectory cmdlet deletes a directory. + + + + Remove-AzStorageDirectory + + Directory + + Specifies a folder as a CloudFileDirectory object. This cmdlet removes the folder that this parameter specifies. To obtain a directory, use the New-AzStorageDirectory cmdlet. You can also use the Get-AzStorageFile cmdlet to obtain a directory. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + Path + + Specifies the path of a folder. If the folder that this parameter specifies is empty, this cmdlet deletes that folder. If the folder is not empty, this cmdlet makes no change, and returns an error. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that, if this cmdlet succeeds, it returns a value of $True. If you specify this parameter, and if the cmdlet is unsuccessful because of an inappropriate value for the Path parameter, the cmdlet returns an error. If you do not specify this parameter, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the base folder where the directory would be removed. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageDirectory + + ShareName + + Specifies the name of the file share. This cmdlet removes a folder under the file share that this parameter specifies. + + System.String + + System.String + + + None + + + Path + + Specifies the path of a folder. If the folder that this parameter specifies is empty, this cmdlet deletes that folder. If the folder is not empty, this cmdlet makes no change, and returns an error. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that, if this cmdlet succeeds, it returns a value of $True. If you specify this parameter, and if the cmdlet is unsuccessful because of an inappropriate value for the Path parameter, the cmdlet returns an error. If you do not specify this parameter, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageDirectory + + Share + + Specifies a CloudFileShare object. This cmdlet removes a folder under the file share that this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + Path + + Specifies the path of a folder. If the folder that this parameter specifies is empty, this cmdlet deletes that folder. If the folder is not empty, this cmdlet makes no change, and returns an error. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that, if this cmdlet succeeds, it returns a value of $True. If you specify this parameter, and if the cmdlet is unsuccessful because of an inappropriate value for the Path parameter, the cmdlet returns an error. If you do not specify this parameter, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareClient + + ShareClient object indicated the share where the directory would be removed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Directory + + Specifies a folder as a CloudFileDirectory object. This cmdlet removes the folder that this parameter specifies. To obtain a directory, use the New-AzStorageDirectory cmdlet. You can also use the Get-AzStorageFile cmdlet to obtain a directory. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + PassThru + + Indicates that, if this cmdlet succeeds, it returns a value of $True. If you specify this parameter, and if the cmdlet is unsuccessful because of an inappropriate value for the Path parameter, the cmdlet returns an error. If you do not specify this parameter, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Path + + Specifies the path of a folder. If the folder that this parameter specifies is empty, this cmdlet deletes that folder. If the folder is not empty, this cmdlet makes no change, and returns an error. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Share + + Specifies a CloudFileShare object. This cmdlet removes a folder under the file share that this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + ShareClient + + ShareClient object indicated the share where the directory would be removed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the base folder where the directory would be removed. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + ShareName + + Specifies the name of the file share. This cmdlet removes a folder under the file share that this parameter specifies. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.File.CloudFileShare + + + + + + + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFileDirectory + + + + + + + + + + + + + + ------------------ Example 1: Delete a folder ------------------ + Remove-AzStorageDirectory -ShareName "ContosoShare06" -Path "ContosoWorkingFolder" + + This command deletes the folder named ContosoWorkingFolder from the file share named ContosoShare06. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstoragedirectory + + + Get-AzStorageShare + + + + New-AzStorageContext + + + + New-AzStorageDirectory + + + + + + + Remove-AzStorageFile + Remove + AzStorageFile + + Deletes a file. + + + + The Remove-AzStorageFile cmdlet deletes a file. + + + + Remove-AzStorageFile + + Directory + + Specifies a folder as a CloudFileDirectory object. This cmdlet removes a file in the folder that this parameter specifies. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + Path + + Specifies the path of a file. This cmdlet deletes the file that this parameter specifies. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the base folder where the file would be removed. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageFile + + File + + Specifies a file as a CloudFile object. This cmdlet removes the file that this parameter specifies. To obtain a CloudFile object, use the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareFileClient + + ShareFileClient object indicated the file would be removed. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageFile + + ShareName + + Specifies the name of the file share. This cmdlet removes the file in the share this parameter specifies. + + System.String + + System.String + + + None + + + Path + + Specifies the path of a file. This cmdlet deletes the file that this parameter specifies. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageFile + + Share + + Specifies a CloudFileShare object. This cmdlet removes the file in the share this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + Path + + Specifies the path of a file. This cmdlet deletes the file that this parameter specifies. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareClient + + ShareClient object indicated the share where the file would be removed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Directory + + Specifies a folder as a CloudFileDirectory object. This cmdlet removes a file in the folder that this parameter specifies. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + File + + Specifies a file as a CloudFile object. This cmdlet removes the file that this parameter specifies. To obtain a CloudFile object, use the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Path + + Specifies the path of a file. This cmdlet deletes the file that this parameter specifies. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Share + + Specifies a CloudFileShare object. This cmdlet removes the file in the share this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + ShareClient + + ShareClient object indicated the share where the file would be removed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + ShareDirectoryClient + + ShareDirectoryClient object indicated the base folder where the file would be removed. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + ShareFileClient + + ShareFileClient object indicated the file would be removed. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + ShareName + + Specifies the name of the file share. This cmdlet removes the file in the share this parameter specifies. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.File.CloudFileShare + + + + + + + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + + + + + + Microsoft.Azure.Storage.File.CloudFile + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFile + + + + + + + + + + + + + + ---------- Example 1: Delete a file from a file share ---------- + Remove-AzStorageFile -ShareName "ContosoShare06" -Path "ContosoFile22" + + This command deletes the file that is named ContosoFile22 from the file share named ContosoShare06. + + + + + + Example 2: Get a file from a file share by using a file share object + Get-AzStorageShare -Name "ContosoShare06" | Remove-AzStorageFile -Path "ContosoFile22" + + This command uses the Get-AzStorageShare cmdlet to get the file share named ContosoShare06, and then passes that object to the current cmdlet by using the pipeline operator. The current command deletes the file that is named ContosoFile22 from ContosoShare06. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstoragefile + + + Get-AzStorageFile + + + + Get-AzStorageShare + + + + New-AzStorageContext + + + + + + + Remove-AzStorageQueue + Remove + AzStorageQueue + + Removes a storage queue. + + + + The Remove-AzStorageQueue cmdlet removes a storage queue. + + + + Remove-AzStorageQueue + + Name + + Specifies the name of the queue to remove. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage context. To obtain the storage context, the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Specifies the Azure storage context. To obtain the storage context, the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Specifies the name of the queue to remove. + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + ---------- Example 1: Remove a storage queue by name ---------- + Remove-AzStorageQueue "ContosoQueue01" + + This command removes a queue named ContosoQueue01. + + + + + + ---------- Example 2: Remove multiple storage queues ---------- + Get-AzStorageQueue "Contoso*" | Remove-AzStorageQueue + + This command removes all queues with names that start with Contoso. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstoragequeue + + + Get-AzStorageQueue + + + + New-AzStorageQueue + + + + + + + Remove-AzStorageQueueStoredAccessPolicy + Remove + AzStorageQueueStoredAccessPolicy + + Removes a stored access policy from an Azure storage queue. + + + + The Remove-AzStorageQueueStoredAccessPolicy cmdlet removes a stored access policy from an Azure storage queue. + + + + Remove-AzStorageQueueStoredAccessPolicy + + Queue + + Specifies the Azure storage queue name. + + System.String + + System.String + + + None + + + Policy + + Specifies the name of the stored access policy that this cmdlet removes. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Policy + + Specifies the name of the stored access policy that this cmdlet removes. + + System.String + + System.String + + + None + + + Queue + + Specifies the Azure storage queue name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + Example 1: Remove a stored access policy from a storage queue + Remove-AzStorageQueueStoredAccessPolicy -Queue "MyQueue" -Policy "Policy04" + + This command removes an access policy named Policy04 from the storage queue named MyQueue. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstoragequeuestoredaccesspolicy + + + Get-AzStorageQueueStoredAccessPolicy + + + + New-AzStorageContext + + + + New-AzStorageQueueStoredAccessPolicy + + + + Set-AzStorageQueueStoredAccessPolicy + + + + + + + Remove-AzStorageShare + Remove + AzStorageShare + + Deletes a file share. + + + + The Remove-AzStorageShare cmdlet deletes a file share. + + + + Remove-AzStorageShare + + Name + + Specifies the name of the file share. This cmdlet deletes the file share that this parameter specifies. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the share with all of its snapshots, and all content. + + + System.Management.Automation.SwitchParameter + + + False + + + IncludeAllSnapshot + + Remove File Share with all of its snapshots + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SnapshotTime + + SnapshotTime of the file share snapshot to be removed. + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Remove-AzStorageShare + + Share + + Specifies a CloudFileShare object. This cmdlet removes the object that this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + ShareClient + + File share Client to be removed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the share with all of its snapshots, and all content. + + + System.Management.Automation.SwitchParameter + + + False + + + IncludeAllSnapshot + + Remove File Share with all of its snapshots + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to remove the share with all of its snapshots, and all content. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IncludeAllSnapshot + + Remove File Share with all of its snapshots + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Specifies the name of the file share. This cmdlet deletes the file share that this parameter specifies. + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Share + + Specifies a CloudFileShare object. This cmdlet removes the object that this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + ShareClient + + File share Client to be removed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + SnapshotTime + + SnapshotTime of the file share snapshot to be removed. + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Storage.File.CloudFileShare + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFileShare + + + + + + + + + + + + + + ---------------- Example 1: Remove a file share ---------------- + Remove-AzStorageShare -Name "ContosoShare06" + + This command removes the file share named ContosoShare06. + + + + + + ----- Example 2: Remove a file share and all its snapshots ----- + Remove-AzStorageShare -Name "ContosoShare06" -IncludeAllSnapshot + + This command removes the file share named ContosoShare06 and all its snapshots. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstorageshare + + + Get-AzStorageShare + + + + New-AzStorageContext + + + + New-AzStorageShare + + + + + + + Remove-AzStorageShareStoredAccessPolicy + Remove + AzStorageShareStoredAccessPolicy + + Removes a stored access policy from a Storage share. + + + + The Remove-AzStorageShareStoredAccessPolicy cmdlet removes a stored access policy from an Azure Storage share. + + + + Remove-AzStorageShareStoredAccessPolicy + + ShareName + + Specifies the Storage share name for which this cmdlet removes a policy. + + System.String + + System.String + + + None + + + Policy + + Specifies the name of the stored access policy that this cmdlet removes. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Policy + + Specifies the name of the stored access policy that this cmdlet removes. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareName + + Specifies the Storage share name for which this cmdlet removes a policy. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + Example 1: Remove a stored access policy from an Azure Storage share + Remove-AzStorageShareStoredAccessPolicy -ShareName "ContosoShare" -Policy "GeneralPolicy" + + This command removes a stored access policy named GeneralPolicy from ContosoShare. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstoragesharestoredaccesspolicy + + + Get-AzStorageShareStoredAccessPolicy + + + + New-AzStorageShareStoredAccessPolicy + + + + New-AzStorageContext + + + + Set-AzStorageShareStoredAccessPolicy + + + + + + + Remove-AzStorageTable + Remove + AzStorageTable + + Removes a storage table. + + + + The Remove-AzStorageTable cmdlet removes one or more storage tables from a storage account in Azure. + + + + Remove-AzStorageTable + + Name + + Specifies the name of the table to remove. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage context. You can create it by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Specifies the Azure storage context. You can create it by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Name + + Specifies the name of the table to remove. + + System.String + + System.String + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + ------------------ Example 1: Remove a table ------------------ + Remove-AzStorageTable -Name "TableABC" + + This command removes a table. + + + + + + --------------- Example 2: Remove several tables --------------- + Get-AzStorageTable table* | Remove-AzStorageTable + + This example uses a wildcard character with the Name parameter to get all tables that match the pattern table and then passes the result on the pipeline to remove the tables. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstoragetable + + + Get-AzStorageTable + + + + + + + Remove-AzStorageTableStoredAccessPolicy + Remove + AzStorageTableStoredAccessPolicy + + Removes a stored access policy from an Azure storage table. + + + + The Remove-AzStorageTableStoredAccessPolicy cmdlet removes a stored access policy from an Azure storage table. + + + + Remove-AzStorageTableStoredAccessPolicy + + Table + + Specifies the Azure table name. + + System.String + + System.String + + + None + + + Policy + + Specifies the name of the stored access policy that this cmdlet removes. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Policy + + Specifies the name of the stored access policy that this cmdlet removes. + + System.String + + System.String + + + None + + + Table + + Specifies the Azure table name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + Example 1: Remove a stored access policy from a storage table + Remove-AzStorageTableStoredAccessPolicy -Table "MyTable" -Policy "Policy05" + + This command removes policy named Policy05 from storage table named MyTable. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/remove-azstoragetablestoredaccesspolicy + + + Get-AzStorageTableStoredAccessPolicy + + + + New-AzStorageContext + + + + New-AzStorageTableStoredAccessPolicy + + + + Set-AzStorageTableStoredAccessPolicy + + + + + + + Rename-AzStorageDirectory + Rename + AzStorageDirectory + + Renames a directory. + + + + The Rename-AzStorageDirectory cmdlet renames a directory from a file share. + + + + Rename-AzStorageDirectory + + ShareClient + + ShareClienr indicated the share where the directory would be listed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + SourcePath + + Path to an existing directory. + + System.String + + System.String + + + None + + + DestinationPath + + The destination path to rename the directory to. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to overwrite the existing file. + + + System.Management.Automation.SwitchParameter + + + False + + + IgnoreReadonly + + Optional. Specifies whether the ReadOnly attribute on a preexisting destination file should be respected. If true, the rename will succeed, otherwise, a previous file at the destination with the ReadOnly attribute set will cause the rename to fail. + + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + If specified the permission (security descriptor) shall be set for the directory/file. Default value: Inherit. If SDDL is specified as input, it must have owner, group and dacl. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Rename-AzStorageDirectory + + ShareDirectoryClient + + Source directory instance + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + DestinationPath + + The destination path to rename the directory to. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to overwrite the existing file. + + + System.Management.Automation.SwitchParameter + + + False + + + IgnoreReadonly + + Optional. Specifies whether the ReadOnly attribute on a preexisting destination file should be respected. If true, the rename will succeed, otherwise, a previous file at the destination with the ReadOnly attribute set will cause the rename to fail. + + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + If specified the permission (security descriptor) shall be set for the directory/file. Default value: Inherit. If SDDL is specified as input, it must have owner, group and dacl. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Rename-AzStorageDirectory + + ShareName + + Name of the file share where the directory would be listed. + + System.String + + System.String + + + None + + + SourcePath + + Path to an existing directory. + + System.String + + System.String + + + None + + + DestinationPath + + The destination path to rename the directory to. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to overwrite the existing file. + + + System.Management.Automation.SwitchParameter + + + False + + + IgnoreReadonly + + Optional. Specifies whether the ReadOnly attribute on a preexisting destination file should be respected. If true, the rename will succeed, otherwise, a previous file at the destination with the ReadOnly attribute set will cause the rename to fail. + + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + If specified the permission (security descriptor) shall be set for the directory/file. Default value: Inherit. If SDDL is specified as input, it must have owner, group and dacl. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestinationPath + + The destination path to rename the directory to. + + System.String + + System.String + + + None + + + Force + + Force to overwrite the existing file. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IgnoreReadonly + + Optional. Specifies whether the ReadOnly attribute on a preexisting destination file should be respected. If true, the rename will succeed, otherwise, a previous file at the destination with the ReadOnly attribute set will cause the rename to fail. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + If specified the permission (security descriptor) shall be set for the directory/file. Default value: Inherit. If SDDL is specified as input, it must have owner, group and dacl. + + System.String + + System.String + + + None + + + ShareClient + + ShareClienr indicated the share where the directory would be listed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + ShareDirectoryClient + + Source directory instance + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + ShareName + + Name of the file share where the directory would be listed. + + System.String + + System.String + + + None + + + SourcePath + + Path to an existing directory. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Azure.Storage.Files.Shares.ShareClient + + + + + + + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFileDirectory + + + + + + + + + + + + + + ---------------- Example 1 : Rename a directory ---------------- + Rename-AzStorageDirectory -ShareName myshare -SourcePath testdir1 -DestinationPath testdir2 + +Directory: https://myaccount.file.core.windows.net/myshare + +Type Length Name +---- ------ ---- +Directory 1 testdir2 + + This command renames a directory from testdir1 to testdir2. + + + + + + -------- Example 2 : Rename a directory using pipeline -------- + Get-AzStorageFile -ShareName myshare -Path testdir1 | Rename-AzStorageDirectory -DestinationPath testdir2 + +Directory: https://myaccount.file.core.windows.net/myshare + +Type Length Name +---- ------ ---- +Directory 1 testdir2 + + This command gets a directory from a file share first, and then rename the directory from testdir1 to testdir2 using pipeline. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/rename-azstoragedirectory + + + + + + Rename-AzStorageFile + Rename + AzStorageFile + + Renames a file. + + + + The Rename-AzStorageFile cmdlet renames a directory from a file share. + + + + Rename-AzStorageFile + + ShareClient + + ShareClient indicated the share where the file would be listed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + DestinationPath + + The destination path to rename the file to. + + System.String + + System.String + + + None + + + SourcePath + + Path to an existing file. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ContentType + + Sets the MIME content type of the file. The default type is 'application/octet-stream'. + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to overwrite the existing file. + + + System.Management.Automation.SwitchParameter + + + False + + + IgnoreReadonly + + Optional. Specifies whether the ReadOnly attribute on a preexisting destination file should be respected. If true, the rename will succeed, otherwise, a previous file at the destination with the ReadOnly attribute set will cause the rename to fail. + + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + If specified the permission (security descriptor) shall be set for the directory/file. Default value: Inherit. If SDDL is specified as input, it must have owner, group and dacl. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Rename-AzStorageFile + + ShareDirectoryClient + + ShareDirectoryClient indicated the share where the file would be listed. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + DestinationPath + + The destination path to rename the file to. + + System.String + + System.String + + + None + + + SourcePath + + Path to an existing file. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ContentType + + Sets the MIME content type of the file. The default type is 'application/octet-stream'. + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to overwrite the existing file. + + + System.Management.Automation.SwitchParameter + + + False + + + IgnoreReadonly + + Optional. Specifies whether the ReadOnly attribute on a preexisting destination file should be respected. If true, the rename will succeed, otherwise, a previous file at the destination with the ReadOnly attribute set will cause the rename to fail. + + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + If specified the permission (security descriptor) shall be set for the directory/file. Default value: Inherit. If SDDL is specified as input, it must have owner, group and dacl. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Rename-AzStorageFile + + ShareFileClient + + Source file instance + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + DestinationPath + + The destination path to rename the file to. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ContentType + + Sets the MIME content type of the file. The default type is 'application/octet-stream'. + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to overwrite the existing file. + + + System.Management.Automation.SwitchParameter + + + False + + + IgnoreReadonly + + Optional. Specifies whether the ReadOnly attribute on a preexisting destination file should be respected. If true, the rename will succeed, otherwise, a previous file at the destination with the ReadOnly attribute set will cause the rename to fail. + + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + If specified the permission (security descriptor) shall be set for the directory/file. Default value: Inherit. If SDDL is specified as input, it must have owner, group and dacl. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Rename-AzStorageFile + + ShareName + + Name of the file share where the file would be listed. + + System.String + + System.String + + + None + + + DestinationPath + + The destination path to rename the file to. + + System.String + + System.String + + + None + + + SourcePath + + Path to an existing file. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + ContentType + + Sets the MIME content type of the file. The default type is 'application/octet-stream'. + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Force to overwrite the existing file. + + + System.Management.Automation.SwitchParameter + + + False + + + IgnoreReadonly + + Optional. Specifies whether the ReadOnly attribute on a preexisting destination file should be respected. If true, the rename will succeed, otherwise, a previous file at the destination with the ReadOnly attribute set will cause the rename to fail. + + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + If specified the permission (security descriptor) shall be set for the directory/file. Default value: Inherit. If SDDL is specified as input, it must have owner, group and dacl. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ContentType + + Sets the MIME content type of the file. The default type is 'application/octet-stream'. + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestinationPath + + The destination path to rename the file to. + + System.String + + System.String + + + None + + + Force + + Force to overwrite the existing file. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + IgnoreReadonly + + Optional. Specifies whether the ReadOnly attribute on a preexisting destination file should be respected. If true, the rename will succeed, otherwise, a previous file at the destination with the ReadOnly attribute set will cause the rename to fail. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + If specified the permission (security descriptor) shall be set for the directory/file. Default value: Inherit. If SDDL is specified as input, it must have owner, group and dacl. + + System.String + + System.String + + + None + + + ShareClient + + ShareClient indicated the share where the file would be listed. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + ShareDirectoryClient + + ShareDirectoryClient indicated the share where the file would be listed. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + ShareFileClient + + Source file instance + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + ShareName + + Name of the file share where the file would be listed. + + System.String + + System.String + + + None + + + SourcePath + + Path to an existing file. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Azure.Storage.Files.Shares.ShareFileClient + + + + + + + + Azure.Storage.Files.Shares.ShareClient + + + + + + + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFile + + + + + + + + + + + + + + --------- Example 1 : Rename a file from a file share --------- + Rename-AzStorageFile -SourcePath testfile1 -DestinationPath testfile2 -ShareName myshare + +Directory: https://myaccount.file.core.windows.net/myshare + +Type Length Name +---- ------ ---- +File 512 testfile2 + + This command renames a file from testfile1 to testfile2 under file share myshare. + + + + + + -- Example 2 : Rename a file from a file share using pipeline -- + Get-AzStorageFile -ShareName myshare -Path testfile1 | Rename-AzStorageFile -DestinationPath testfile2 + +Directory: https://myaccount.file.core.windows.net/myshare + +Type Length Name +---- ------ ---- +File 512 testfile2 + + This command gets a file client object first, and the rename the file from testfile1 to testfile2 using pipeline. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/rename-azstoragefile + + + + + + Restore-AzDataLakeGen2DeletedItem + Restore + AzDataLakeGen2DeletedItem + + Restores a deleted file or directory in a filesystem. + + + + The Restore-AzDataLakeGen2DeletedItem cmdlet restores a deleted file or directory in a filesystem in an Azure storage account. This cmdlet only works if Hierarchical Namespace is enabled for the Storage account. This kind of account can be created by run "New-AzStorageAccount" cmdlet with "-EnableHierarchicalNamespace $true". + + + + Restore-AzDataLakeGen2DeletedItem + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Path + + The deleted item path in the specified FileSystem that should be restore. In the format 'directory/file.txt' or 'directory1/directory2/' + + System.String + + System.String + + + None + + + DeletionId + + The deletion ID associated with the soft deleted path. You can get soft deleted paths and their assocaited deletion IDs with cmdlet 'Get-AzDataLakeGen2DeletedItem'. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Restore-AzDataLakeGen2DeletedItem + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + InputObject + + Azure Datalake Gen2 Deleted Item Object to restore. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2DeletedItem + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2DeletedItem + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DeletionId + + The deletion ID associated with the soft deleted path. You can get soft deleted paths and their assocaited deletion IDs with cmdlet 'Get-AzDataLakeGen2DeletedItem'. + + System.String + + System.String + + + None + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + InputObject + + Azure Datalake Gen2 Deleted Item Object to restore. + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2DeletedItem + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2DeletedItem + + + None + + + Path + + The deleted item path in the specified FileSystem that should be restore. In the format 'directory/file.txt' or 'directory1/directory2/' + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2DeletedItem + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + + + + + + + + + + Example 1: List all deleted files or directories from a Filesystem, and restore them by pipeline + PS C:\> $items = Get-AzDataLakeGen2DeletedItem -FileSystem "filesystem1" +PS C:\> $items + + FileSystem Name: filesystem1 + +Path DeletionId DeletedOn RemainingRetentionDays +---- ---------- --------- ---------------------- +dir0/dir1/file1 132658816156507617 2021-05-19 07:06:55Z 3 +dir0/dir2 132658834541610122 2021-05-19 07:37:34Z 3 +dir0/dir2/file3 132658834534174806 2021-05-19 07:37:33Z 3 + +PS C:\> $items | Restore-AzDataLakeGen2DeletedItem + + FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir0/dir1/file1 False 1024 2021-05-19 07:06:39Z rw-r----- $superuser $superuser +dir0/dir2 True 2021-05-19 07:06:37Z rwxr-x--- $superuser $superuser +dir0/dir2/file3 False 1024 2021-05-19 07:06:42Z rw-r----- $superuser $superuser + + This command lists all deleted files or directories from a Filesystem, the restore all of them by pipeline. + + + + + + -- Example 2: Restore an single file with path and DeletionId -- + Restore-AzDataLakeGen2DeletedItem -FileSystem "filesystem1" -Path dir0/dir1/file1 -DeletionId 132658838415219780 + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir0/dir1/file1 False 1024 2021-05-19 07:06:39Z rw-r----- $superuser $superuser + + This command restores an single file with path and DeletionId. The DeletionId can be get with 'Get-AzDataLakeGen2DeletedItem' cmdlet. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/restore-azdatalakegen2deleteditem + + + + + + Restore-AzStorageContainer + Restore + AzStorageContainer + + Restores a previously deleted Azure storage blob container. + + + + The Restore-AzStorageContainer cmdlet restores a previously deleted Azure storage blob container. This cmdlet only works after enabled Container softdelete with Enable-AzStorageBlobDeleteRetentionPolicy. + + + + Restore-AzStorageContainer + + Name + + The name of the previously deleted container. + + System.String + + System.String + + + None + + + VersionId + + The version of the previously deleted container. + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + The name of the previously deleted container. + + System.String + + System.String + + + None + + + VersionId + + The version of the previously deleted container. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + Example 1: List containers include deleted containers, and restore all deleted containers with pipeline + Get-AzStorageContainer -IncludeDeleted -Context $ctx | Where-Object { $_.IsDeleted } | Restore-AzStorageContainer + +Storage Account Name: storageaccountname + +Name PublicAccess LastModified IsDeleted VersionId +---- ------------ ------------ --------- --------- +container1 Off +container2 Off + + This command lists all containers include deleted containers, filter out all the deleted containers, then restore all deleted container to the same container name with pipeline. + + + + + + -------- Example 2: Restore a single deleted container -------- + PS C:\> Get-AzStorageContainer -IncludeDeleted -Context $ctx | Where-Object { $_.IsDeleted } + + Storage Account Name: storageaccountname + +Name PublicAccess LastModified IsDeleted VersionId +---- ------------ ------------ --------- --------- +container1 8/28/2020 10:18:13 AM +00:00 True 01D685BC91A88F22 +container2 9/4/2020 12:52:37 PM +00:00 True 01D67D248986B6DA + +PS C:\> Restore-AzStorageContainer -Name container1 -VersionId 01D685BC91A88F22 -Context $ctx + + Storage Account Name: storageaccountname + +Name PublicAccess LastModified IsDeleted VersionId +---- ------------ ------------ --------- --------- +container1 Off + + This first command lists all containers and filter out deleted containers. The secondary command restores a deleted container by manually input the parameters. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/restore-azstoragecontainer + + + + + + Set-AzDataLakeGen2AclRecursive + Set + AzDataLakeGen2AclRecursive + + Set ACL recursively on the specified path. + + + + The Set-AzDataLakeGen2AclRecursive cmdlet sets ACL recursively on the specified path. The input ACL will replace original ACL completely. + + + + Set-AzDataLakeGen2AclRecursive + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Path + + The path in the specified FileSystem that to change Acl recursively. Can be a file or directory. In the format 'directory/file.txt' or 'directory1/directory2/'. Skip set this parameter to change Acl recursively from root directory of the Filesystem. + + System.String + + System.String + + + None + + + Acl + + The POSIX access control list to set recursively for the file or directory. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + BatchSize + + If data set size exceeds batch size then operation will be split into multiple requests so that progress can be tracked. Batch size should be between 1 and 2000. Default is 2000. + + System.Int32 + + System.Int32 + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Continuation Token. + + System.String + + System.String + + + None + + + ContinueOnFailure + + Set this parameter to ignore failures and continue proceeing with the operation on other sub-entities of the directory. Default the operation will terminate quickly on encountering failures. + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + MaxBatchCount + + Maximum number of batches that single change Access Control operation can execute. If data set size exceeds MaxBatchCount multiply BatchSize, continuation token will be return. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Acl + + The POSIX access control list to set recursively for the file or directory. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + + None + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + BatchSize + + If data set size exceeds batch size then operation will be split into multiple requests so that progress can be tracked. Batch size should be between 1 and 2000. Default is 2000. + + System.Int32 + + System.Int32 + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Continuation Token. + + System.String + + System.String + + + None + + + ContinueOnFailure + + Set this parameter to ignore failures and continue proceeing with the operation on other sub-entities of the directory. Default the operation will terminate quickly on encountering failures. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + MaxBatchCount + + Maximum number of batches that single change Access Control operation can execute. If data set size exceeds MaxBatchCount multiply BatchSize, continuation token will be return. + + System.Int32 + + System.Int32 + + + None + + + Path + + The path in the specified FileSystem that to change Acl recursively. Can be a file or directory. In the format 'directory/file.txt' or 'directory1/directory2/'. Skip set this parameter to change Acl recursively from root directory of the Filesystem. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + -------- Example 1: Set ACL recursively on a directory -------- + $acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -Permission rwx +$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType group -Permission rw- -InputObject $acl +$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType other -Permission "rw-" -InputObject $acl +Set-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path "dir1" -Acl $acl -Context $ctx + +FailedEntries : +TotalDirectoriesSuccessfulCount : 7 +TotalFilesSuccessfulCount : 5 +TotalFailureCount : 0 +ContinuationToken : + + This command first creates an ACL object with 3 acl entries, then sets ACL recursively on a directory. + + + + + + Example 2: Set ACL recursively on a root directory of filesystem + PS C:\> $result = Set-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Acl $acl -Context $ctx + +PS C:\> $result + +FailedEntries : {dir1/dir2/file4} +TotalDirectoriesSuccessfulCount : 500 +TotalFilesSuccessfulCount : 2500 +TotalFailureCount : 1 +ContinuationToken : VBaHi5TfyO2ai1wYTRhIL2FjbGNibjA2c3RmATAxRDVEN0UzRENFQzZCRTAvYWRsc3Rlc3QyATAxRDY2M0ZCQTZBN0JGQTkvZGlyMC9kaXIxL2ZpbGUzFgAAAA== + +PS C:\> $result.FailedEntries + +Name IsDirectory ErrorMessage +---- ----------- ------------ +dir0/dir2/file4 False This request is not authorized to perform this operation using this permission. + +# user need fix the failed item , then can resume with ContinuationToken + +PS C:\> $result = Set-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Acl $acl -ContinuationToken $result.ContinuationToken -Context $ctx + +PS C:\> $result + +FailedEntries : +TotalDirectoriesSuccessfulCount : 100 +TotalFilesSuccessfulCount : 1000 +TotalFailureCount : 0 +ContinuationToken : + + This command first sets ACL recursively to a root directory and failed, then resume with ContinuationToken after user fix the failed file. + + + + + + -------- Example 3: Set ACL recursively chunk by chunk -------- + $token = $null +$TotalDirectoriesSuccess = 0 +$TotalFilesSuccess = 0 +$totalFailure = 0 +$FailedEntries = New-Object System.Collections.Generic.List[System.Object] +do +{ + $result = Set-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path "dir1" -Acl $acl -BatchSize 100 -MaxBatchCount 2 -ContinuationToken $token -Context $ctx + + # echo $result + $TotalFilesSuccess += $result.TotalFilesSuccessfulCount + $TotalDirectoriesSuccess += $result.TotalDirectoriesSuccessfulCount + $totalFailure += $result.TotalFailureCount + $FailedEntries += $result.FailedEntries + $token = $result.ContinuationToken +}while (($token -ne $null) -and ($result.TotalFailureCount -eq 0)) +echo "" +echo "[Result Summary]" +echo "TotalDirectoriesSuccessfulCount: `t$($TotalDirectoriesSuccess)" +echo "TotalFilesSuccessfulCount: `t`t`t$($TotalFilesSuccess)" +echo "TotalFailureCount: `t`t`t`t`t$($totalFailure)" +echo "ContinuationToken: `t`t`t`t`t$($token)" +echo "FailedEntries:"$($FailedEntries | ft) + + This script sets ACL rescursively on directory chunk by chunk, with chunk size as BatchSize * MaxBatchCount. Chunk size is 200 in this script. + + + + + + Example 4: Set ACL recursively on a directory and ContinueOnFailure, then resume from failures one by one + PS C:\> $result = Set-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path "dir1" -Acl $acl -ContinueOnFailure -Context $ctx + +PS C:\> $result + +FailedEntries : {dir0/dir1/file1, dir0/dir2/file4} +TotalDirectoriesSuccessfulCount : 100 +TotalFilesSuccessfulCount : 500 +TotalFailureCount : 2 +ContinuationToken : VBaHi5TfyO2ai1wYTRhIL2FjbGNibjA2c3RmATAxRDVEN0UzRENFQzZCRTAvYWRsc3Rlc3QyATAxRDY2M0ZCQTZBN0JGQTkvZGlyMC9kaXIxL2ZpbGUzFgAAAA== + +PS C:\> $result.FailedEntries + +Name IsDirectory ErrorMessage +---- ----------- ------------ +dir0/dir1/file1 False This request is not authorized to perform this operation using this permission. +dir0/dir2/file4 False This request is not authorized to perform this operation using this permission. + +# user need fix the failed item , then can resume with ContinuationToken + +PS C:\> foreach ($path in $result.FailedEntries.Name) + { + # user code to fix failed entry in $path + + #set ACL again + Set-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path $path -Acl $acl -Context $ctx + } + + This command first sets ACL recursively to a directory with ContinueOnFailure, and some items failed, then resume the failed items one by one. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azdatalakegen2aclrecursive + + + + + + Set-AzDataLakeGen2ItemAclObject + Set + AzDataLakeGen2ItemAclObject + + Creates/Updates a DataLake gen2 item ACL object, which can be used in Update-AzDataLakeGen2Item cmdlet. + + + + The Set-AzDataLakeGen2ItemAclObject cmdlet creates/updates a DataLake gen2 item ACL object, which can be used in Update-AzDataLakeGen2Item cmdlet. If the new ACL entry with same AccessControlType/EntityId/DefaultScope not exist in the input ACL, will create a new ACL entry, else update permission of existing ACL entry. + + + + Set-AzDataLakeGen2ItemAclObject + + AccessControlType + + There are four types: "user" grants rights to the owner or a named user, "group" grants rights to the owning group or a named group, "mask" restricts rights granted to named users and the members of groups, and "other" grants rights to all users not found in any of the other entries. + + + User + Group + Mask + Other + + Azure.Storage.Files.DataLake.Models.AccessControlType + + Azure.Storage.Files.DataLake.Models.AccessControlType + + + None + + + DefaultScope + + Set this parameter to indicate the ACE belongs to the default ACL for a directory; otherwise scope is implicit and the ACE belongs to the access ACL. + + + System.Management.Automation.SwitchParameter + + + False + + + EntityId + + The user or group identifier. It is omitted for entries of AccessControlType "mask" and "other". The user or group identifier is also omitted for the owner and owning group. + + System.String + + System.String + + + None + + + InputObject + + If input the PSPathAccessControlEntry[] object, will add the new ACL as a new element of the input PSPathAccessControlEntry[] object. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + + None + + + Permission + + The permission field is a 3-character sequence where the first character is 'r' to grant read access, the second character is 'w' to grant write access, and the third character is 'x' to grant execute permission. If access is not granted, the '-' character is used to denote that the permission is denied. The sticky bit is also supported and its represented either by the letter t or T in the final character-place depending on whether the execution bit for the others category is set or unset respectively, absence of t or T indicates sticky bit not set. + + System.String + + System.String + + + None + + + + + + AccessControlType + + There are four types: "user" grants rights to the owner or a named user, "group" grants rights to the owning group or a named group, "mask" restricts rights granted to named users and the members of groups, and "other" grants rights to all users not found in any of the other entries. + + Azure.Storage.Files.DataLake.Models.AccessControlType + + Azure.Storage.Files.DataLake.Models.AccessControlType + + + None + + + DefaultScope + + Set this parameter to indicate the ACE belongs to the default ACL for a directory; otherwise scope is implicit and the ACE belongs to the access ACL. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + EntityId + + The user or group identifier. It is omitted for entries of AccessControlType "mask" and "other". The user or group identifier is also omitted for the owner and owning group. + + System.String + + System.String + + + None + + + InputObject + + If input the PSPathAccessControlEntry[] object, will add the new ACL as a new element of the input PSPathAccessControlEntry[] object. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + + None + + + Permission + + The permission field is a 3-character sequence where the first character is 'r' to grant read access, the second character is 'w' to grant write access, and the third character is 'x' to grant execute permission. If access is not granted, the '-' character is used to denote that the permission is denied. The sticky bit is also supported and its represented either by the letter t or T in the final character-place depending on whether the execution bit for the others category is set or unset respectively, absence of t or T indicates sticky bit not set. + + System.String + + System.String + + + None + + + + + + None + + + + + + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry + + + + + + + + + + + + + + Example 1: Create an ACL object with 3 ACL entry, and update ACL on a directory + $acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -Permission rwx -DefaultScope +$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType group -Permission rw- -InputObject $acl +$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType other -Permission "rw-" -InputObject $acl +Update-AzDataLakeGen2Item -FileSystem "filesystem1" -Path "dir1/dir3" -ACL $acl + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir1/dir3 True 2020-03-23 09:34:31Z rwxrw-rw-+ $superuser $superuser + + This command creates an ACL object with 3 ACL entries (use -InputObject parameter to add acl entry to existing acl object), and updates ACL on a directory. + + + + + + Example 2: Create an ACL object with 4 ACL entries, and update permission of an existing ACL entry + PS C:\>$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -Permission rwx -DefaultScope +PS C:\>$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType group -Permission rw- -InputObject $acl +PS C:\>$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType other -Permission "rwt" -InputObject $acl +PS C:\>$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -EntityId $id -Permission rwx -InputObject $acl +PS C:\>$acl + +DefaultScope AccessControlType EntityId Permissions +------------ ----------------- -------- ----------- +True User rwx +False Group rw- +False Other rwt +False User ********-****-****-****-************ rwx + +PS C:\>$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -EntityId $id -Permission r-x -InputObject $acl +PS C:\>$acl + +DefaultScope AccessControlType EntityId Permissions +------------ ----------------- -------- ----------- +True User rwx +False Group rw- +False Other rw- +False User ********-****-****-****-************ r-x + + This command first creates an ACL object with 4 ACL entries, then run the cmdlet again with different permission but same AccessControlType/EntityId/DefaultScope of an existing ACL entry. Then the permission of the ACL entry is updated, but no new ACL entry is added. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azdatalakegen2itemaclobject + + + + + + Set-AzStorageBlobContent + Set + AzStorageBlobContent + + Uploads a local file to an Azure Storage blob. + + + + The Set-AzStorageBlobContent cmdlet uploads a local file to an Azure Storage blob. + + + + Set-AzStorageBlobContent + + File + + Specifies a local file path for a file to upload as blob content. + + System.String + + System.String + + + None + + + Container + + Specifies the name of a container. This cmdlet uploads a file to a blob in the container that this parameter specifies. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + Blob + + Specifies the name of a blob. This cmdlet uploads a file to the Azure Storage blob that this parameter specifies. + + System.String + + System.String + + + None + + + BlobType + + Specifies the type for the blob that this cmdlet uploads. The acceptable values for this parameter are: - Block + - Page + - Append + + The default value is Block. + + + Block + Page + Append + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. To use a storage context created from a SAS Token without read permission, need add -Force parameter to skip check blob existence. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to be used when making requests to the blob. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites an existing blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + Metadata + + Specifies metadata for the uploaded blob. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + PremiumPageBlobTier + + Page Blob Tier + + + Unknown + P4 + P6 + P10 + P20 + P30 + P40 + P50 + P60 + P70 + P80 + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + + None + + + Properties + + Specifies properties for the uploaded blob. The supported properties are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage, ContentMD5, ContentType. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobContent + + File + + Specifies a local file path for a file to upload as blob content. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + Blob + + Specifies the name of a blob. This cmdlet uploads a file to the Azure Storage blob that this parameter specifies. + + System.String + + System.String + + + None + + + BlobType + + Specifies the type for the blob that this cmdlet uploads. The acceptable values for this parameter are: - Block + - Page + - Append + + The default value is Block. + + + Block + Page + Append + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlobContainer + + Specifies a CloudBlobContainer object from the Azure Storage Client library. This cmdlet uploads content to a blob in the container that this parameter specifies. To obtain a CloudBlobContainer object, use the Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. To use a storage context created from a SAS Token without read permission, need add -Force parameter to skip check blob existence. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to be used when making requests to the blob. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites an existing blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + Metadata + + Specifies metadata for the uploaded blob. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + PremiumPageBlobTier + + Page Blob Tier + + + Unknown + P4 + P6 + P10 + P20 + P30 + P40 + P50 + P60 + P70 + P80 + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + + None + + + Properties + + Specifies properties for the uploaded blob. The supported properties are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage, ContentMD5, ContentType. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobContent + + File + + Specifies a local file path for a file to upload as blob content. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + BlobType + + Specifies the type for the blob that this cmdlet uploads. The acceptable values for this parameter are: - Block + - Page + - Append + + The default value is Block. + + + Block + Page + Append + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a CloudBlob object. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. To use a storage context created from a SAS Token without read permission, need add -Force parameter to skip check blob existence. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to be used when making requests to the blob. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites an existing blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + Metadata + + Specifies metadata for the uploaded blob. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + PremiumPageBlobTier + + Page Blob Tier + + + Unknown + P4 + P6 + P10 + P20 + P30 + P40 + P50 + P60 + P70 + P80 + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + + None + + + Properties + + Specifies properties for the uploaded blob. The supported properties are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage, ContentMD5, ContentType. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Blob + + Specifies the name of a blob. This cmdlet uploads a file to the Azure Storage blob that this parameter specifies. + + System.String + + System.String + + + None + + + BlobType + + Specifies the type for the blob that this cmdlet uploads. The acceptable values for this parameter are: - Block + - Page + - Append + + The default value is Block. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a CloudBlob object. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + CloudBlobContainer + + Specifies a CloudBlobContainer object from the Azure Storage Client library. This cmdlet uploads content to a blob in the container that this parameter specifies. To obtain a CloudBlobContainer object, use the Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Specifies the name of a container. This cmdlet uploads a file to a blob in the container that this parameter specifies. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. To use a storage context created from a SAS Token without read permission, need add -Force parameter to skip check blob existence. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EncryptionScope + + Encryption scope to be used when making requests to the blob. + + System.String + + System.String + + + None + + + File + + Specifies a local file path for a file to upload as blob content. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites an existing blob without prompting you for confirmation. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Metadata + + Specifies metadata for the uploaded blob. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + PremiumPageBlobTier + + Page Blob Tier + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + + None + + + Properties + + Specifies properties for the uploaded blob. The supported properties are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage, ContentMD5, ContentType. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + + + + + + Microsoft.Azure.Storage.Blob.CloudBlob + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + + + + + + + + + + + + + ---------------- Example 1: Upload a named file ---------------- + Set-AzStorageBlobContent -Container "ContosoUpload" -File ".\PlanningData" -Blob "Planning2015" + + This command uploads the file that is named PlanningData to a blob named Planning2015. + + + + + + ----- Example 2: Upload all files under the current folder ----- + Get-ChildItem -File -Recurse | Set-AzStorageBlobContent -Container "ContosoUploads" + + This command uses the core Windows PowerShell cmdlet Get-ChildItem to get all the files in the current folder and in subfolders, and then passes them to the current cmdlet by using the pipeline operator. The Set-AzStorageBlobContent cmdlet uploads the files to the container named ContosoUploads. + + + + + + ------------ Example 3: Overwrite an existing blob ------------ + Get-AzStorageBlob -Container "ContosoUploads" -Blob "Planning2015" | Set-AzStorageBlobContent -File "ContosoPlanning" + + This command gets the blob named Planning2015 in the ContosoUploads container by using the Get-AzStorageBlob cmdlet, and then passes that blob to the current cmdlet. The command uploads the file that is named ContosoPlanning as Planning2015. This command does not specify the Force parameter. The command prompts you for confirmation. If you confirm the command, the cmdlet overwrites the existing blob. + + + + + + Example 4: Upload a file to a container by using the pipeline + Get-AzStorageContainer -Container "ContosoUpload*" | Set-AzStorageBlobContent -File "ContosoPlanning" -Blob "Planning2015" + + This command gets the container that starts with the string ContosoUpload by using the Get-AzStorageContainer cmdlet, and then passes that blob to the current cmdlet. The command uploads the file that is named ContosoPlanning as Planning2015. + + + + + + Example 5: Upload a file to page blob with metadata and PremiumPageBlobTier as P10 + $Metadata = @{"key" = "value"; "name" = "test"} +Set-AzStorageBlobContent -File "ContosoPlanning" -Container "ContosoUploads" -Metadata $Metadata -BlobType Page -PremiumPageBlobTier P10 + + The first command creates a hash table that contains metadata for a blob, and stores that hash table in the $Metadata variable. The second command uploads the file that is named ContosoPlanning to the container named ContosoUploads. The blob includes the metadata stored in $Metadata, and has PremiumPageBlobTier as P10. + + + + + + Example 6: Upload a file to blob with specified blob properties, and set StandardBlobTier as Cool + $filepath = "c:\temp\index.html" +Set-AzStorageBlobContent -File $filepath -Container "contosouploads" -Properties @{"ContentType" = [System.Web.MimeMapping]::GetMimeMapping($filepath); "ContentMD5" = "i727sP7HigloQDsqadNLHw=="} -StandardBlobTier Cool + +AccountName: storageaccountname, ContainerName: contosouploads + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +index.html BlockBlob 403116 text/html 2020-09-22 08:06:53Z Cool False + + This command uploads the file c:\temp\index.html to the container named contosouploads with specified blob properties, and set StandardBlobTier as Cool. This command gets ContentType value set to blob properties by [System.Web.MimeMapping]::GetMimeMapping() API. + + + + + + --- Example 7: Upload a file to a blob with Encryption Scope --- + $blob = Set-AzStorageBlobContent -File "mylocalfile" -Container "mycontainer" -Blob "myblob" -EncryptionScope "myencryptscope" + +$blob.BlobProperties.EncryptionScope + +myencryptscope + + This command uploads a file to a blob with Encryption Scope. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstorageblobcontent + + + Get-AzStorageBlobContent + + + + Get-AzStorageBlob + + + + Remove-AzStorageBlob + + + + + + + Set-AzStorageBlobImmutabilityPolicy + Set + AzStorageBlobImmutabilityPolicy + + Creates or updates ImmutabilityPolicy of a Storage blob. + + + + The Set-AzStorageBlobImmutabilityPolicy cmdlet creates or updates ImmutabilityPolicy of a Storage blob. The cmdlet only works when the blob container has already enabled immutable Storage with versioning. + + + + Set-AzStorageBlobImmutabilityPolicy + + Blob + + Blob name + + System.String + + System.String + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiresOn + + Blob ImmutabilityPolicy ExpiresOn + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + PolicyMode + + Blob ImmutabilityPolicy PolicyMode + + + Unlocked + Locked + Mutable + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobImmutabilityPolicy + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiresOn + + Blob ImmutabilityPolicy ExpiresOn + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + PolicyMode + + Blob ImmutabilityPolicy PolicyMode + + + Unlocked + Locked + Mutable + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Blob + + Blob name + + System.String + + System.String + + + None + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiresOn + + Blob ImmutabilityPolicy ExpiresOn + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + PolicyMode + + Blob ImmutabilityPolicy PolicyMode + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + + + + + + + + + + + + + Example 1: Create or update immutability policy of a Storage blob. + PS C:\> $blob = Set-AzStorageBlobImmutabilityPolicy -Container $containerName -Blob $blobname -ExpiresOn (Get-Date).AddDays(100) -PolicyMode Unlocked + +PS C:\> $blob + + AccountName: mystorageaccount, ContainerName: mycontainer + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +testblob BlockBlob 10485760 application/octet-stream 2021-07-19 08:56:00Z Hot False 2021-07-19T08:56:01.8120788Z * + +PS C:\> $blob.BlobProperties.ImmutabilityPolicy + +ExpiresOn PolicyMode +--------- ---------- +10/27/2021 8:56:32 AM +00:00 Unlocked + + This command creates or updates ImmutabilityPolicy of a Storage blob, then show the blob and its ImmutabilityPolicy. The command only works when the blob container has already enabled immutable Storage with versioning. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstorageblobimmutabilitypolicy + + + + + + Set-AzStorageBlobLegalHold + Set + AzStorageBlobLegalHold + + Enables or disables legal hold on a Storage blob. + + + + The Set-AzStorageBlobLegalHold cmdlet enables or disables legal hold on a Storage blob. The cmdlet only works when the blob container has already enabled immutable Storage with versioning. + + + + Set-AzStorageBlobLegalHold + + Blob + + Blob name + + System.String + + System.String + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableLegalHold + + Enable LegalHold on the Blob. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobLegalHold + + Blob + + Blob name + + System.String + + System.String + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DisableLegalHold + + Disable LegalHold on the Blob. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobLegalHold + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + EnableLegalHold + + Enable LegalHold on the Blob. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobLegalHold + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DisableLegalHold + + Disable LegalHold on the Blob. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Blob + + Blob name + + System.String + + System.String + + + None + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DisableLegalHold + + Disable LegalHold on the Blob. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + EnableLegalHold + + Enable LegalHold on the Blob. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression.See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + + + + + + + + + + + + + ------- Example 1: Enable legal hold on a Storage blob. ------- + PS C:\> $blob = Set-AzStorageBlobLegalHold -Container $containerName -Blob $blobname -EnableLegalHold + +PS C:\> $blob + + AccountName: mystorageaccount, ContainerName: mycontainer + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +testblob BlockBlob 10485760 application/octet-stream 2021-07-19 08:56:00Z Hot False 2021-07-19T08:56:01.8120788Z * + +PS C:\> $blob.BlobProperties.HasLegalHold +True + + This command enables legal hold on a Storage blob, then show the result. The command only works when the blob container has already enabled immutable Storage with versioning. + + + + + + Example 2: Disable legal hold on a Storage blob with pipeline. + PS C:\> $blob = Get-AzStorageBlob -Container $containerName -Blob $blobname | Set-AzStorageBlobLegalHold -DisableLegalHold + +PS C:\> $blob + + AccountName: mystorageaccount, ContainerName: mycontainer + +Name BlobType Length ContentType LastModified AccessTier SnapshotTime IsDeleted VersionId +---- -------- ------ ----------- ------------ ---------- ------------ --------- --------- +testblob BlockBlob 10485760 application/octet-stream 2021-07-19 08:56:00Z Hot False 2021-07-19T08:56:01.8120788Z * + +PS C:\> $blob.BlobProperties.HasLegalHold +False + + This command disables legal hold on a Storage blob with pipeline, then show the result. The command only works when the blob container has already enabled immutable Storage with versioning. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstoragebloblegalhold + + + + + + Set-AzStorageBlobTag + Set + AzStorageBlobTag + + Set blob tags of a specific blob. + + + + The Set-AzStorageBlobTag sets blob tags of a specific blob. + + + + Set-AzStorageBlobTag + + Blob + + Blob name + + System.String + + System.String + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Tag + + Blob tags which will set to the blob. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobTag + + Blob + + Blob name + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlobContainer + + CloudBlobContainer Object + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Tag + + Blob tags which will set to the blob. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageBlobTag + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Tag + + Blob tags which will set to the blob. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Blob + + Blob name + + System.String + + System.String + + + None + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlobContainer + + CloudBlobContainer Object + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Container name + + System.String + + System.String + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Tag + + Blob tags which will set to the blob. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + + + + + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Boolean + + + + + + + + + + + + + + --------- Example 1: Set blob tags on a specific blob --------- + Set-AzStorageBlobTag -Container "containername" -Blob testblob -Tag @{"tag1" = "value1"; "tag2" = "value2" } + +Name Value +---- ----- +tag2 value2 +tag1 value1 + + This command sets blob tags on a specific blob. + + + + + + Example 2: Set blob tags on a specific blob with tag condition + Set-AzStorageBlobTag -Container "containername" -Blob testblob -Tag @{"tag1" = "value1"; "tag2" = "value2" } -TagCondition """tag1""='value1'" + +Name Value +---- ----- +tag2 value2 +tag1 value1 + + This command sets blob tags on a specific blob with tag condition. The cmdlet will only success when the blob contains a tag with name "tag1" and value "value1", else the cmdlet will fail with error code 412. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstorageblobtag + + + + + + Set-AzStorageContainerAcl + Set + AzStorageContainerAcl + + Sets the public access permission to a storage container. + + + + The Set-AzStorageContainerAcl cmdlet sets the public access permission to the specified storage container in Azure. + + + + Set-AzStorageContainerAcl + + Name + + Specifies a container name. + + System.String + + System.String + + + None + + + Permission + + Specifies the level of public access to this container. By default, the container and any blobs in it can be accessed only by the owner of the storage account. To grant anonymous users read permissions to a container and its blobs, you can set the container permissions to enable public access. Anonymous users can read blobs in a publicly available container without authenticating the request. The acceptable values for this parameter are: --Container. Provides full read access to a container and its blobs. Clients can enumerate blobs in the container through anonymous request, but cannot enumerate containers in the storage account. --Blob. Provides read access to blob data in a container through anonymous request, but does not provide access to container data. Clients cannot enumerate blobs in the container by using anonymous request. --Off. Restricts access to only the storage account owner. + + + Off + Container + Blob + Unknown + + Microsoft.Azure.Storage.Blob.BlobContainerPublicAccessType + + Microsoft.Azure.Storage.Blob.BlobContainerPublicAccessType + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage context. You can create it by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Returns an object representing the item with which you are working. By default, this cmdlet does not generate any output. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. Server side time out for each request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage context. You can create it by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Name + + Specifies a container name. + + System.String + + System.String + + + None + + + PassThru + + Returns an object representing the item with which you are working. By default, this cmdlet does not generate any output. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + Specifies the level of public access to this container. By default, the container and any blobs in it can be accessed only by the owner of the storage account. To grant anonymous users read permissions to a container and its blobs, you can set the container permissions to enable public access. Anonymous users can read blobs in a publicly available container without authenticating the request. The acceptable values for this parameter are: --Container. Provides full read access to a container and its blobs. Clients can enumerate blobs in the container through anonymous request, but cannot enumerate containers in the storage account. --Blob. Provides read access to blob data in a container through anonymous request, but does not provide access to container data. Clients cannot enumerate blobs in the container by using anonymous request. --Off. Restricts access to only the storage account owner. + + Microsoft.Azure.Storage.Blob.BlobContainerPublicAccessType + + Microsoft.Azure.Storage.Blob.BlobContainerPublicAccessType + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. Server side time out for each request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageContainer + + + + + + + + + + + + + + ------ Example 1: Set azure storage container ACL by name ------ + Set-AzStorageContainerAcl -Container "Container01" -Permission Off -PassThru + + This command creates a container that has no public access. + + + + + + Example 2: Set azure storage container ACL by using the pipeline + Get-AzStorageContainer container* | Set-AzStorageContainerAcl -Permission Blob -PassThru + + This command gets all storage containers whose name starts with container and then passes the result on the pipeline to set the permission for them all to Blob access. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstoragecontaineracl + + + Get-AzStorageContainer + + + + New-AzStorageContainer + + + + Remove-AzStorageContainer + + + + + + + Set-AzStorageContainerStoredAccessPolicy + Set + AzStorageContainerStoredAccessPolicy + + Sets a stored access policy for an Azure storage container. + + + + The Set-AzStorageContainerStoredAccessPolicy cmdlet sets a stored access policy for an Azure storage container. + + + + Set-AzStorageContainerStoredAccessPolicy + + Container + + Specifies the Azure storage container name. + + System.String + + System.String + + + None + + + Policy + + Specifies the name for the stored access policy. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + NoExpiryTime + + Indicates that the access policy has no expiration date. + + + System.Management.Automation.SwitchParameter + + + False + + + NoStartTime + + Sets the start time to be $Null. + + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + Specifies permissions in the stored access policy to access the storage container. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Specifies the Azure storage container name. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + NoExpiryTime + + Indicates that the access policy has no expiration date. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + NoStartTime + + Sets the start time to be $Null. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + Specifies permissions in the stored access policy to access the storage container. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Policy + + Specifies the name for the stored access policy. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + Example 1: Set a stored access policy in a storage container with full permission + Set-AzStorageContainerStoredAccessPolicy -Container "MyContainer" -Policy "Policy06" -Permission rwdl + + This command sets an access policy named Policy06 for storage container named MyContainer. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstoragecontainerstoredaccesspolicy + + + Get-AzStorageContainerStoredAccessPolicy + + + + New-AzStorageContext + + + + New-AzStorageContainerStoredAccessPolicy + + + + Remove-AzStorageContainerStoredAccessPolicy + + + + + + + Set-AzStorageCORSRule + Set + AzStorageCORSRule + + Sets the CORS rules for a type of Storage service. + + + + The Set-AzStorageCORSRule cmdlet sets the Cross-Origin Resource Sharing (CORS) rules for a type of Azure Storage service. The types of storage services for this cmdlet are Blob, Table, Queue, and File. This cmdlet overwrites the existing rules. To see the current rules, use the Get-AzStorageCORSRule cmdlet. + + + + Set-AzStorageCORSRule + + ServiceType + + Specifies the Azure Storage service type for which this cmdlet assigns rules. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + + + Blob + Table + Queue + File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + CorsRules + + Specifies an array of CORS rules. You can retrieve the existing rules using the Get-AzStorageCORSRule cmdlet. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSCorsRule[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSCorsRule[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + CorsRules + + Specifies an array of CORS rules. You can retrieve the existing rules using the Get-AzStorageCORSRule cmdlet. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSCorsRule[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSCorsRule[] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + PassThru + + Indicates that this cmdlet returns a Boolean that reflects the success of the operation. By default, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ServiceType + + Specifies the Azure Storage service type for which this cmdlet assigns rules. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSCorsRule + + + + + + + + + + + + + + ------- Example 1: Assign CORS rules to the blob service ------- + $CorsRules = (@{ + AllowedHeaders=@("x-ms-blob-content-type","x-ms-blob-content-disposition"); + AllowedOrigins=@("*"); + MaxAgeInSeconds=30; + AllowedMethods=@("Get","Connect")}, + @{ + AllowedOrigins=@("http://www.fabrikam.com","http://www.contoso.com"); + ExposedHeaders=@("x-ms-meta-data*","x-ms-meta-customheader"); + AllowedHeaders=@("x-ms-meta-target*","x-ms-meta-customheader"); + MaxAgeInSeconds=30; + AllowedMethods=@("Put")}) + +Set-AzStorageCORSRule -ServiceType Blob -CorsRules $CorsRules + + The first command assigns an array of rules to the $CorsRules variable. This command uses standard extends over several lines in this code block. The second command assigns the rules in $CorsRules to the Blob service type. + + + + + + - Example 2: Change properties of a CORS rule for blob service - + $CorsRules = Get-AzStorageCORSRule -ServiceType Blob +$CorsRules[0].AllowedHeaders = @("x-ms-blob-content-type", "x-ms-blob-content-disposition") +$CorsRules[0].AllowedMethods = @("Get", "Connect", "Merge") +Set-AzStorageCORSRule -ServiceType Blob -CorsRules $CorsRules + + The first command gets the current CORS rules for the Blob type by using the Get-AzStorageCORSRule cmdlet. The command stores the rules in the $CorsRules array variable. The second and third commands modify the first rule in $CorsRules. The final command assigns the rules in $CorsRules to the Blob service type. The revised rules overwrite the current CORS rules. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstoragecorsrule + + + Get-AzStorageCORSRule + + + + New-AzStorageContext + + + + Remove-AzStorageCORSRule + + + + + + + Set-AzStorageFileContent + Set + AzStorageFileContent + + Uploads the contents of a file. + + + + The Set-AzStorageFileContent cmdlet uploads the contents of a file to a file on a specified share. + + + + Set-AzStorageFileContent + + Directory + + Specifies a folder as a CloudFileDirectory object. This cmdlet uploads the file to the folder that this parameter specifies. To obtain a directory, use the New-AzStorageDirectory cmdlet. You can also use the Get-AzStorageFile cmdlet to obtain a directory. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + Source + + Specifies the source file that this cmdlet uploads. If you specify a file that does not exist, this cmdlet returns an error. + + System.String + + System.String + + + None + + + Path + + Specifies the path of a file or folder. This cmdlet uploads contents to the file that this parameter specifies, or to a file in the folder that this parameter specifies. If you specify a folder, this cmdlet creates a file that has the same name as the source file. If you specify a path of a file that does not exist, this cmdlet creates that file and saves the contents to that file. If you specify a file that already exists, and you specify the Force parameter, this cmdlet overwrites the contents of the file. If you specify a file that already exists and you do not specify Force , this cmdlet makes no change, and returns an error. If you specify a path of a folder that does not exist, this cmdlet makes no change, and returns an error. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Indicates that this cmdlet overwrites an existing Azure storage file. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns the AzureStorageFile object that it creates or uploads. + + + System.Management.Automation.SwitchParameter + + + False + + + PreserveSMBAttribute + + Keep the source File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in destination File. This parameter is only available on Windows. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareDirectoryClient + + CloudFileDirectory object indicated the cloud directory where the file would be uploaded. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageFileContent + + Share + + Specifies a CloudFileShare object. This cmdlet uploads to a file in the file share this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + Source + + Specifies the source file that this cmdlet uploads. If you specify a file that does not exist, this cmdlet returns an error. + + System.String + + System.String + + + None + + + Path + + Specifies the path of a file or folder. This cmdlet uploads contents to the file that this parameter specifies, or to a file in the folder that this parameter specifies. If you specify a folder, this cmdlet creates a file that has the same name as the source file. If you specify a path of a file that does not exist, this cmdlet creates that file and saves the contents to that file. If you specify a file that already exists, and you specify the Force parameter, this cmdlet overwrites the contents of the file. If you specify a file that already exists and you do not specify Force , this cmdlet makes no change, and returns an error. If you specify a path of a folder that does not exist, this cmdlet makes no change, and returns an error. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Indicates that this cmdlet overwrites an existing Azure storage file. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns the AzureStorageFile object that it creates or uploads. + + + System.Management.Automation.SwitchParameter + + + False + + + PreserveSMBAttribute + + Keep the source File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in destination File. This parameter is only available on Windows. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareClient + + ShareClient object indicated the share where the file would be uploaded to. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Set-AzStorageFileContent + + ShareName + + Specifies the name of the file share. This cmdlet uploads to a file in the file share this parameter specifies. + + System.String + + System.String + + + None + + + Source + + Specifies the source file that this cmdlet uploads. If you specify a file that does not exist, this cmdlet returns an error. + + System.String + + System.String + + + None + + + Path + + Specifies the path of a file or folder. This cmdlet uploads contents to the file that this parameter specifies, or to a file in the folder that this parameter specifies. If you specify a folder, this cmdlet creates a file that has the same name as the source file. If you specify a path of a file that does not exist, this cmdlet creates that file and saves the contents to that file. If you specify a file that already exists, and you specify the Force parameter, this cmdlet overwrites the contents of the file. If you specify a file that already exists and you do not specify Force , this cmdlet makes no change, and returns an error. If you specify a path of a folder that does not exist, this cmdlet makes no change, and returns an error. + + System.String + + System.String + + + None + + + AsJob + + Run cmdlet in the background. + + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Indicates that this cmdlet overwrites an existing Azure storage file. + + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns the AzureStorageFile object that it creates or uploads. + + + System.Management.Automation.SwitchParameter + + + False + + + PreserveSMBAttribute + + Keep the source File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in destination File. This parameter is only available on Windows. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AsJob + + Run cmdlet in the background. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Directory + + Specifies a folder as a CloudFileDirectory object. This cmdlet uploads the file to the folder that this parameter specifies. To obtain a directory, use the New-AzStorageDirectory cmdlet. You can also use the Get-AzStorageFile cmdlet to obtain a directory. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + Force + + Indicates that this cmdlet overwrites an existing Azure storage file. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + PassThru + + Indicates that this cmdlet returns the AzureStorageFile object that it creates or uploads. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Path + + Specifies the path of a file or folder. This cmdlet uploads contents to the file that this parameter specifies, or to a file in the folder that this parameter specifies. If you specify a folder, this cmdlet creates a file that has the same name as the source file. If you specify a path of a file that does not exist, this cmdlet creates that file and saves the contents to that file. If you specify a file that already exists, and you specify the Force parameter, this cmdlet overwrites the contents of the file. If you specify a file that already exists and you do not specify Force , this cmdlet makes no change, and returns an error. If you specify a path of a folder that does not exist, this cmdlet makes no change, and returns an error. + + System.String + + System.String + + + None + + + PreserveSMBAttribute + + Keep the source File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in destination File. This parameter is only available on Windows. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Share + + Specifies a CloudFileShare object. This cmdlet uploads to a file in the file share this parameter specifies. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. This object contains the storage context. If you specify this parameter, do not specify the Context parameter. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + ShareClient + + ShareClient object indicated the share where the file would be uploaded to. + + Azure.Storage.Files.Shares.ShareClient + + Azure.Storage.Files.Shares.ShareClient + + + None + + + ShareDirectoryClient + + CloudFileDirectory object indicated the cloud directory where the file would be uploaded. + + Azure.Storage.Files.Shares.ShareDirectoryClient + + Azure.Storage.Files.Shares.ShareDirectoryClient + + + None + + + ShareName + + Specifies the name of the file share. This cmdlet uploads to a file in the file share this parameter specifies. + + System.String + + System.String + + + None + + + Source + + Specifies the source file that this cmdlet uploads. If you specify a file that does not exist, this cmdlet returns an error. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.File.CloudFileShare + + + + + + + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFile + + + + + + + + + + + + + + -------- Example 1: Upload a file in the current folder -------- + Set-AzStorageFileContent -ShareName "ContosoShare06" -Source "DataFile37" -Path "ContosoWorkingFolder/CurrentDataFile" + + This command uploads a file that is named DataFile37 in the current folder as a file that is named CurrentDataFile in the folder named ContosoWorkingFolder. + + + + + + ---- Example 2: Upload all the files in the current folder ---- + $CurrentFolder = (Get-Item .).FullName +$Container = Get-AzStorageShare -Name "ContosoShare06" +Get-ChildItem -Recurse | Where-Object { $_.GetType().Name -eq "FileInfo"} | ForEach-Object { + $path=$_.FullName.Substring($Currentfolder.Length+1).Replace("\","/") + Set-AzStorageFileContent -Share $Container -Source $_.FullName -Path $path -Force +} + + This example uses several common Windows PowerShell cmdlets and the current cmdlet to upload all files from the current folder to the root folder of container ContosoShare06. The first command gets the name of the current folder and stores it in the $CurrentFolder variable. The second command uses the Get-AzStorageShare cmdlet to get the file share named ContosoShare06, and then stores it in the $Container variable. The final command gets the contents of the current folder and passes each one to the Where-Object cmdlet by using the pipeline operator. That cmdlet filters out objects that are not files, and then passes the files to the ForEach-Object cmdlet. That cmdlet runs a script block for each file that creates the appropriate path for it and then uses the current cmdlet to upload the file. The result has the same name and same relative position with regard to the other files that this example uploads. For more information about script blocks, type `Get-Help about_Script_Blocks`. + + + + + + Example 3: Upload a local file to an Azure file, and perserve the local File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in the Azure file. + Set-AzStorageFileContent -Source $localFilePath -ShareName sample -Path "dir1/file1" -PreserveSMBAttribute + + This example uploads a local file to an Azure file, and perserves the local File SMB properties (File Attributtes, File Creation Time, File Last Write Time) in the Azure file. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstoragefilecontent + + + Remove-AzStorageDirectory + + + + New-AzStorageDirectory + + + + Get-AzStorageFileContent + + + + + + + Set-AzStorageQueueStoredAccessPolicy + Set + AzStorageQueueStoredAccessPolicy + + Sets a stored access policy for an Azure storage queue. + + + + The Set-AzStorageQueueStoredAccessPolicy cmdlet sets a stored access policy for an Azure storage queue. + + + + Set-AzStorageQueueStoredAccessPolicy + + Queue + + Specifies the Azure storage queue name. + + System.String + + System.String + + + None + + + Policy + + Specifies the name for the stored access policy. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + NoExpiryTime + + Indicates that the access policy has no expiration date. + + + System.Management.Automation.SwitchParameter + + + False + + + NoStartTime + + Indicates that this cmdlet sets the start time to be $Null. + + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + Specifies permissions in the stored access policy to access the storage queue. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + NoExpiryTime + + Indicates that the access policy has no expiration date. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + NoStartTime + + Indicates that this cmdlet sets the start time to be $Null. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + Specifies permissions in the stored access policy to access the storage queue. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Policy + + Specifies the name for the stored access policy. + + System.String + + System.String + + + None + + + Queue + + Specifies the Azure storage queue name. + + System.String + + System.String + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + Example 1: Set a stored access policy in the queue with full permission + Set-AzStorageQueueStoredAccessPolicy -Queue "MyQueue" -Policy "Policy07" -Permission arup + + This command sets an access policy named Policy07 for storage queue named MyQueue. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstoragequeuestoredaccesspolicy + + + Get-AzStorageQueueStoredAccessPolicy + + + + New-AzStorageQueueStoredAccessPolicy + + + + Remove-AzStorageQueueStoredAccessPolicy + + + + + + + Set-AzStorageServiceLoggingProperty + Set + AzStorageServiceLoggingProperty + + Modifies logging for Azure Storage services. + + + + The Set-AzStorageServiceLoggingProperty cmdlet modifies logging for Azure Storage services. + + + + Set-AzStorageServiceLoggingProperty + + ServiceType + + Specifies the storage service type. This cmdlet modifies the logging properties for the service type that this parameter specifies. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + The value of File is not currently supported. + + + Blob + Table + Queue + File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + LoggingOperations + + Specifies an array of Azure Storage service operations. Azure Storage services logs the operations that this parameter specifies. The acceptable values for this parameter are: - None + - Read + - Write + - Delete + - All + + + None + Read + Write + Delete + All + + Microsoft.Azure.Storage.Shared.Protocol.LoggingOperations[] + + Microsoft.Azure.Storage.Shared.Protocol.LoggingOperations[] + + + None + + + PassThru + + Indicates that this cmdlet returns the updated logging properties. If you do not specify this parameter, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + RetentionDays + + Specifies the number of days that the Azure Storage service retains logged information. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Version + + Specifies the version of the Azure Storage service logging. The default value is 1.0. + + System.Nullable`1[System.Double] + + System.Nullable`1[System.Double] + + + None + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + LoggingOperations + + Specifies an array of Azure Storage service operations. Azure Storage services logs the operations that this parameter specifies. The acceptable values for this parameter are: - None + - Read + - Write + - Delete + - All + + Microsoft.Azure.Storage.Shared.Protocol.LoggingOperations[] + + Microsoft.Azure.Storage.Shared.Protocol.LoggingOperations[] + + + None + + + PassThru + + Indicates that this cmdlet returns the updated logging properties. If you do not specify this parameter, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + RetentionDays + + Specifies the number of days that the Azure Storage service retains logged information. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ServiceType + + Specifies the storage service type. This cmdlet modifies the logging properties for the service type that this parameter specifies. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + The value of File is not currently supported. + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + Version + + Specifies the version of the Azure Storage service logging. The default value is 1.0. + + System.Nullable`1[System.Double] + + System.Nullable`1[System.Double] + + + None + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.Azure.Storage.Shared.Protocol.LoggingProperties + + + + + + + + + + + + + + -- Example 1: Modify logging properties for the Blob service -- + Set-AzStorageServiceLoggingProperty -ServiceType Blob -LoggingOperations Read,Write -PassThru -RetentionDays 10 -Version 1.0 + + This command modifies version 1.0 logging for blob storage to include read and write operations. Azure Storage service logging retains entries for 10 days. Because this command specifies the PassThru parameter, the command displays the modified logging properties. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstorageserviceloggingproperty + + + Get-AzStorageServiceLoggingProperty + + + + New-AzStorageContext + + + + + + + Set-AzStorageServiceMetricsProperty + Set + AzStorageServiceMetricsProperty + + Modifies metrics properties for the Azure Storage service. + + + + The Set-AzStorageServiceMetricsProperty cmdlet modifies metrics properties for the Azure Storage service. + + + + Set-AzStorageServiceMetricsProperty + + ServiceType + + Specifies the storage service type. This cmdlet modifies the metrics properties for the service type that this parameter specifies. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + The value of File is not currently supported. + + + Blob + Table + Queue + File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + MetricsType + + Specifies a metrics type. This cmdlet sets the Azure Storage service metrics type to the value that this parameter specifies. The acceptable values for this parameter are: Hour and Minute. + + + Hour + Minute + + Microsoft.WindowsAzure.Commands.Storage.Common.ServiceMetricsType + + Microsoft.WindowsAzure.Commands.Storage.Common.ServiceMetricsType + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + MetricsLevel + + Specifies the metrics level that Azure Storage uses for the service. The acceptable values for this parameter are: - None + - Service + - ServiceAndApi + + + None + Service + ServiceAndApi + + System.Nullable`1[Microsoft.Azure.Storage.Shared.Protocol.MetricsLevel] + + System.Nullable`1[Microsoft.Azure.Storage.Shared.Protocol.MetricsLevel] + + + None + + + PassThru + + Indicates that this cmdlets returns the updated metrics properties. If you do not specify this parameter, this cmdlet does not return a value. + + + System.Management.Automation.SwitchParameter + + + False + + + RetentionDays + + Specifies the number of days that the Azure Storage service retains metrics information. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Version + + Specifies the version of the Azure Storage metrics. The default value is 1.0. + + System.Nullable`1[System.Double] + + System.Nullable`1[System.Double] + + + None + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + MetricsLevel + + Specifies the metrics level that Azure Storage uses for the service. The acceptable values for this parameter are: - None + - Service + - ServiceAndApi + + System.Nullable`1[Microsoft.Azure.Storage.Shared.Protocol.MetricsLevel] + + System.Nullable`1[Microsoft.Azure.Storage.Shared.Protocol.MetricsLevel] + + + None + + + MetricsType + + Specifies a metrics type. This cmdlet sets the Azure Storage service metrics type to the value that this parameter specifies. The acceptable values for this parameter are: Hour and Minute. + + Microsoft.WindowsAzure.Commands.Storage.Common.ServiceMetricsType + + Microsoft.WindowsAzure.Commands.Storage.Common.ServiceMetricsType + + + None + + + PassThru + + Indicates that this cmdlets returns the updated metrics properties. If you do not specify this parameter, this cmdlet does not return a value. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + RetentionDays + + Specifies the number of days that the Azure Storage service retains metrics information. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ServiceType + + Specifies the storage service type. This cmdlet modifies the metrics properties for the service type that this parameter specifies. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + The value of File is not currently supported. + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + Version + + Specifies the version of the Azure Storage metrics. The default value is 1.0. + + System.Nullable`1[System.Double] + + System.Nullable`1[System.Double] + + + None + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.Azure.Storage.Shared.Protocol.MetricsProperties + + + + + + + + + + + + + + -- Example 1: Modify metrics properties for the Blob service -- + Set-AzStorageServiceMetricsProperty -ServiceType Blob -MetricsType Hour -MetricsLevel Service -PassThru -RetentionDays 10 -Version 1.0 + + This command modifies version 1.0 metrics for blob storage to a level of Service. Azure Storage service metrics retains entries for 10 days. Because this command specifies the PassThru parameter, the command displays the modified metrics properties. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstorageservicemetricsproperty + + + Get-AzStorageServiceMetricsProperty + + + + New-AzStorageContext + + + + + + + Set-AzStorageShareQuota + Set + AzStorageShareQuota + + Sets the storage capacity for a share. + + + + The Set-AzStorageShareQuota cmdlet sets the storage capacity for a specified share. + + + + Set-AzStorageShareQuota + + Share + + Specifies a CloudFileShare object to represent the share for which this cmdlets sets a quota. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + Quota + + Specifies the quota value in gigabytes (GB). See the quota limitation in https://learn.microsoft.com/azure/azure-subscription-service-limits#azure-files-limits. + + System.Int32 + + System.Int32 + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + Set-AzStorageShareQuota + + ShareName + + Specifies the name of the file share for which to set a quota. + + System.String + + System.String + + + None + + + Quota + + Specifies the quota value in gigabytes (GB). See the quota limitation in https://learn.microsoft.com/azure/azure-subscription-service-limits#azure-files-limits. + + System.Int32 + + System.Int32 + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Quota + + Specifies the quota value in gigabytes (GB). See the quota limitation in https://learn.microsoft.com/azure/azure-subscription-service-limits#azure-files-limits. + + System.Int32 + + System.Int32 + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Share + + Specifies a CloudFileShare object to represent the share for which this cmdlets sets a quota. To obtain a CloudFileShare object, use the Get-AzStorageShare cmdlet. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + ShareName + + Specifies the name of the file share for which to set a quota. + + System.String + + System.String + + + None + + + + + + System.String + + + + + + + + Microsoft.Azure.Storage.File.CloudFileShare + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFileShare + + + + + + + + + + + + + + -------- Example 1: Set the storage capacity of a share -------- + Set-AzStorageShareQuota -ShareName "ContosoShare01" -Quota 1024 + + This command sets the storage capacity for a share named ContosoShare01 to 1024 GB. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstoragesharequota + + + Get-AzStorageFileContent + + + + Get-AzStorageShare + + + + New-AzStorageContext + + + + + + + Set-AzStorageShareStoredAccessPolicy + Set + AzStorageShareStoredAccessPolicy + + Updates a stored access policy on a Storage share. + + + + The Set-AzStorageShareStoredAccessPolicy cmdlet updates stored access policy on an Azure Storage share. + + + + Set-AzStorageShareStoredAccessPolicy + + ShareName + + Specifies the name of the Storage share. + + System.String + + System.String + + + None + + + Policy + + Specifies a name for the stored access policy. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + NoExpiryTime + + Indicates that this cmdlet clears the ExpiryTime property in the stored access policy. + + + System.Management.Automation.SwitchParameter + + + False + + + NoStartTime + + Indicates that this cmdlet clears the StartTime property in the stored access policy. + + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + Specifies permissions in the stored access policy to access the share or files under it. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy becomes invalid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + NoExpiryTime + + Indicates that this cmdlet clears the ExpiryTime property in the stored access policy. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + NoStartTime + + Indicates that this cmdlet clears the StartTime property in the stored access policy. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + Specifies permissions in the stored access policy to access the share or files under it. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Policy + + Specifies a name for the stored access policy. + + System.String + + System.String + + + None + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareName + + Specifies the name of the Storage share. + + System.String + + System.String + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + -- Example 1: Update a stored access policy in Storage share -- + Set-AzStorageShareStoredAccessPolicy -ShareName "ContosoShare" -Policy "GeneralPolicy" -Permission "rwdl" + + This command updates a stored access policy that has full permission in a share. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstoragesharestoredaccesspolicy + + + Get-AzStorageShareStoredAccessPolicy + + + + New-AzStorageContext + + + + New-AzStorageShareStoredAccessPolicy + + + + Remove-AzStorageShareStoredAccessPolicy + + + + + + + Set-AzStorageTableStoredAccessPolicy + Set + AzStorageTableStoredAccessPolicy + + Sets the stored access policy for an Azure storage table. + + + + The Set-AzStorageTableStoredAccessPolicy cmdlet set the stored access policy for an Azure storage table. + + + + Set-AzStorageTableStoredAccessPolicy + + Table + + Specifies the Azure storage table name. + + System.String + + System.String + + + None + + + Policy + + Specifies the name for the stored access policy. + + System.String + + System.String + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy expires. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + NoExpiryTime + + Indicates that the access policy has no expiration date. + + + System.Management.Automation.SwitchParameter + + + False + + + NoStartTime + + Indicates that the start time is set to $Null. + + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + Specifies permissions in the stored access policy to access the storage table. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + ExpiryTime + + Specifies the time at which the stored access policy expires. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + NoExpiryTime + + Indicates that the access policy has no expiration date. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + NoStartTime + + Indicates that the start time is set to $Null. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + Permission + + Specifies permissions in the stored access policy to access the storage table. It is important to note that this is a string, like `rwd` (for Read, Write and Delete). + + System.String + + System.String + + + None + + + Policy + + Specifies the name for the stored access policy. + + System.String + + System.String + + + None + + + StartTime + + Specifies the time at which the stored access policy becomes valid. + + System.Nullable`1[System.DateTime] + + System.Nullable`1[System.DateTime] + + + None + + + Table + + Specifies the Azure storage table name. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + Example 1: Set a stored access policy in table with full permission + Set-AzStorageTableStoredAccessPolicy -Table "MyTable" -Policy "Policy08" -Permission raud + + This command sets an access policy named Policy08 for storage table named MyTable. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/set-azstoragetablestoredaccesspolicy + + + Get-AzStorageTableStoredAccessPolicy + + + + New-AzStorageContext + + + + New-AzStorageTableStoredAccessPolicy + + + + Remove-AzStorageTableStoredAccessPolicy + + + + + + + Start-AzStorageBlobCopy + Start + AzStorageBlobCopy + + Starts to copy a blob. + + + + The Start-AzStorageBlobCopy cmdlet starts to copy a blob. + + + + Start-AzStorageBlobCopy + + AbsoluteUri + + Specifies the absolute URI of a file to copy to an Azure Storage blob. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Specifies the name of the destination blob. + + System.String + + System.String + + + None + + + DestContainer + + Specifies the name of the destination container. + + System.String + + System.String + + + None + + + DestContext + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestTagCondition + + Optional Tag expression statement to check match condition on the destination Blob. The blob request will fail when the destination blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites the destination blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition on the source blob. The blob request will fail when the source blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobCopy + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a CloudBlob object from Azure Storage Client library. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Specifies the name of the destination blob. + + System.String + + System.String + + + None + + + DestContainer + + Specifies the name of the destination container. + + System.String + + System.String + + + None + + + DestContext + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestTagCondition + + Optional Tag expression statement to check match condition on the destination Blob. The blob request will fail when the destination blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites the destination blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + PremiumPageBlobTier + + Premium Page Blob Tier + + + Unknown + P4 + P6 + P10 + P20 + P30 + P40 + P50 + P60 + P70 + P80 + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + + None + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition on the source blob. The blob request will fail when the source blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobCopy + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a CloudBlob object from Azure Storage Client library. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestCloudBlob + + Specifies a destination CloudBlob object + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + DestContext + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestTagCondition + + Optional Tag expression statement to check match condition on the destination Blob. The blob request will fail when the destination blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites the destination blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + PremiumPageBlobTier + + Premium Page Blob Tier + + + Unknown + P4 + P6 + P10 + P20 + P30 + P40 + P50 + P60 + P70 + P80 + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + + None + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition on the source blob. The blob request will fail when the source blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobCopy + + SrcBlob + + Specifies the name of the source blob. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlobContainer + + Specifies a CloudBlobContainer object from the Azure Storage Client library. This cmdlet copies a blob from the container that this parameter specifies. To obtain a CloudBlobContainer object, use the Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Specifies the name of the destination blob. + + System.String + + System.String + + + None + + + DestContainer + + Specifies the name of the destination container. + + System.String + + System.String + + + None + + + DestContext + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestTagCondition + + Optional Tag expression statement to check match condition on the destination Blob. The blob request will fail when the destination blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites the destination blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + PremiumPageBlobTier + + Premium Page Blob Tier + + + Unknown + P4 + P6 + P10 + P20 + P30 + P40 + P50 + P60 + P70 + P80 + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + + None + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition on the source blob. The blob request will fail when the source blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobCopy + + SrcBlob + + Specifies the name of the source blob. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Specifies the name of the destination blob. + + System.String + + System.String + + + None + + + DestContainer + + Specifies the name of the destination container. + + System.String + + System.String + + + None + + + DestContext + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestTagCondition + + Optional Tag expression statement to check match condition on the destination Blob. The blob request will fail when the destination blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites the destination blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + PremiumPageBlobTier + + Premium Page Blob Tier + + + Unknown + P4 + P6 + P10 + P20 + P30 + P40 + P50 + P60 + P70 + P80 + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + + None + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcContainer + + Specifies the name of the source container. + + System.String + + System.String + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition on the source blob. The blob request will fail when the source blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Specifies the name of the destination blob. + + System.String + + System.String + + + None + + + DestContainer + + Specifies the name of the destination container. + + System.String + + System.String + + + None + + + DestContext + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestTagCondition + + Optional Tag expression statement to check match condition on the destination Blob. The blob request will fail when the destination blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites the destination blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcFilePath + + Specifies the source file relative path of source directory or source share. + + System.String + + System.String + + + None + + + SrcShareName + + Specifies the source share name. + + System.String + + System.String + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Specifies the name of the destination blob. + + System.String + + System.String + + + None + + + DestContainer + + Specifies the name of the destination container. + + System.String + + System.String + + + None + + + DestContext + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestTagCondition + + Optional Tag expression statement to check match condition on the destination Blob. The blob request will fail when the destination blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites the destination blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcFilePath + + Specifies the source file relative path of source directory or source share. + + System.String + + System.String + + + None + + + SrcShare + + Specifies a CloudFileShare object from Azure Storage Client library. You can create it or use Get-AzStorageShare cmdlet. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Specifies the name of the destination blob. + + System.String + + System.String + + + None + + + DestContainer + + Specifies the name of the destination container. + + System.String + + System.String + + + None + + + DestContext + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestTagCondition + + Optional Tag expression statement to check match condition on the destination Blob. The blob request will fail when the destination blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites the destination blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcDir + + Specifies a CloudFileDirectory object from Azure Storage Client library. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + SrcFilePath + + Specifies the source file relative path of source directory or source share. + + System.String + + System.String + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Specifies the name of the destination blob. + + System.String + + System.String + + + None + + + DestContainer + + Specifies the name of the destination container. + + System.String + + System.String + + + None + + + DestContext + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestTagCondition + + Optional Tag expression statement to check match condition on the destination Blob. The blob request will fail when the destination blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites the destination blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcFile + + Specifies a CloudFile object from Azure Storage Client library. You can create it or use Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestCloudBlob + + Specifies a destination CloudBlob object + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + DestContext + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestTagCondition + + Optional Tag expression statement to check match condition on the destination Blob. The blob request will fail when the destination blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites the destination blob without prompting you for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + + Standard + High + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcFile + + Specifies a CloudFile object from Azure Storage Client library. You can create it or use Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AbsoluteUri + + Specifies the absolute URI of a file to copy to an Azure Storage blob. + + System.String + + System.String + + + None + + + BlobBaseClient + + BlobBaseClient Object + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + Azure.Storage.Blobs.Specialized.BlobBaseClient + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a CloudBlob object from Azure Storage Client library. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + CloudBlobContainer + + Specifies a CloudBlobContainer object from the Azure Storage Client library. This cmdlet copies a blob from the container that this parameter specifies. To obtain a CloudBlobContainer object, use the Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Specifies the name of the destination blob. + + System.String + + System.String + + + None + + + DestCloudBlob + + Specifies a destination CloudBlob object + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + DestContainer + + Specifies the name of the destination container. + + System.String + + System.String + + + None + + + DestContext + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestTagCondition + + Optional Tag expression statement to check match condition on the destination Blob. The blob request will fail when the destination blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Force + + Indicates that this cmdlet overwrites the destination blob without prompting you for confirmation. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + PremiumPageBlobTier + + Premium Page Blob Tier + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + Microsoft.Azure.Storage.Blob.PremiumPageBlobTier + + + None + + + RehydratePriority + + Block Blob RehydratePriority. Indicates the priority with which to rehydrate an archived blob. Valid values are High/Standard. + + Microsoft.Azure.Storage.Blob.RehydratePriority + + Microsoft.Azure.Storage.Blob.RehydratePriority + + + None + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcBlob + + Specifies the name of the source blob. + + System.String + + System.String + + + None + + + SrcContainer + + Specifies the name of the source container. + + System.String + + System.String + + + None + + + SrcDir + + Specifies a CloudFileDirectory object from Azure Storage Client library. + + Microsoft.Azure.Storage.File.CloudFileDirectory + + Microsoft.Azure.Storage.File.CloudFileDirectory + + + None + + + SrcFile + + Specifies a CloudFile object from Azure Storage Client library. You can create it or use Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + SrcFilePath + + Specifies the source file relative path of source directory or source share. + + System.String + + System.String + + + None + + + SrcShare + + Specifies a CloudFileShare object from Azure Storage Client library. You can create it or use Get-AzStorageShare cmdlet. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + SrcShareName + + Specifies the source share name. + + System.String + + System.String + + + None + + + StandardBlobTier + + Block Blob Tier, valid values are Hot/Cool/Archive/Cold. See detail in https://learn.microsoft.com/azure/storage/blobs/storage-blob-storage-tiers + + System.String + + System.String + + + None + + + Tag + + Blob Tags + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + TagCondition + + Optional Tag expression statement to check match condition on the source blob. The blob request will fail when the source blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.Blob.CloudBlob + + + + + + + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + + + + + + Microsoft.Azure.Storage.File.CloudFile + + + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + + + + + + + + + + + + + ----------------- Example 1: Copy a named blob ----------------- + Start-AzStorageBlobCopy -SrcBlob "ContosoPlanning2015" -DestContainer "ContosoArchives" -SrcContainer "ContosoUploads" + + This command starts the copy operation of the blob named ContosoPlanning2015 from the container named ContosoUploads to the container named ContosoArchives. + + + + + + ----- Example 2: Get a container to specify blobs to copy ----- + Get-AzStorageContainer -Name "ContosoUploads" | Start-AzStorageBlobCopy -SrcBlob "ContosoPlanning2015" -DestContainer "ContosoArchives" + + This command gets the container named ContosoUploads, by using the Get-AzStorageContainer cmdlet, and then passes the container to the current cmdlet by using the pipeline operator. That cmdlet starts the copy operation of the blob named ContosoPlanning2015. The previous cmdlet provides the source container. The DestContainer parameter specifies ContosoArchives as the destination container. + + + + + + ---- Example 3: Get all blobs in a container and copy them ---- + Get-AzStorageBlob -Container "ContosoUploads" | Start-AzStorageBlobCopy -DestContainer "ContosoArchives" + + This command gets the blobs in the container named ContosoUploads, by using the Get-AzStorageBlob cmdlet, and then passes the results to the current cmdlet by using the pipeline operator. That cmdlet starts the copy operation of the blobs to the container named ContosoArchives. + + + + + + -------- Example 4: Copy a blob specified as an object -------- + $SrcBlob = Get-AzStorageBlob -Container "ContosoUploads" -Blob "ContosoPlanning2015" +$DestBlob = Get-AzStorageBlob -Container "ContosoArchives" -Blob "ContosoPlanning2015Archived" +Start-AzStorageBlobCopy -ICloudBlob $SrcBlob.ICloudBlob -DestICloudBlob $DestBlob.ICloudBlob + + The first command gets the blob named ContosoPlanning2015 in the container named ContosoUploads. The command stores that object in the $SrcBlob variable. The second command gets the blob named ContosoPlanning2015Archived in the container named ContosoArchives. The command stores that object in the $DestBlob variable. The last command starts the copy operation from the source container to the destination container. The command uses standard dot notation to specify the ICloudBlob objects for the $SrcBlob and $DestBlob blobs. + + + + + + -------------- Example 5: Copy a blob from a URI -------------- + $Context = New-AzStorageContext -StorageAccountName "ContosoGeneral" -StorageAccountKey "< Storage Key for ContosoGeneral ends with == >" +Start-AzStorageBlobCopy -AbsoluteUri "http://www.contosointernal.com/planning" -DestContainer "ContosoArchive" -DestBlob "ContosoPlanning2015" -DestContext $Context + + This command creates a context for the account named ContosoGeneral that uses the specified key, and then stores that key in the $Context variable. The second command copies the file from the specified URI to the blob named ContosoPlanning in the container named ContosoArchive. The command starts the copy operation to the destination context stored in $Context. There are no source storage context, so the source Uri must have access to the source object. E.g: if the source is a none public Azure blob, the Uri should contain SAS token which has read access to the blob. + + + + + + Example 6: Copy a block blob to destination container with a new blob name, and set destination blob StandardBlobTier as Hot, RehydratePriority as High + Start-AzStorageBlobCopy -SrcContainer "ContosoUploads" -SrcBlob "BlockBlobName" -DestContainer "ContosoArchives" -DestBlob "NewBlockBlobName" -StandardBlobTier Hot -RehydratePriority High + + This command starts the copy operation of a block blob to destination container with a new blob name, and set destination blob StandardBlobTier as Hot, RehydratePriority as High + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/start-azstorageblobcopy + + + Get-AzStorageBlobCopyState + + + + Stop-AzStorageBlobCopy + + + + + + + Start-AzStorageBlobIncrementalCopy + Start + AzStorageBlobIncrementalCopy + + Start an Incremental copy operation from a Page blob snapshot to the specified destination Page blob. + + + + Start an Incremental copy operation from a Page blob snapshot to the specified destination Page blob. See more details of the feature in https://learn.microsoft.com/rest/api/storageservices/fileservices/incremental-copy-blob. + + + + Start-AzStorageBlobIncrementalCopy + + AbsoluteUri + + Absolute Uri to the source. Be noted that the credential should be provided in the Uri, if the source requires any. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Source Azure Storage Context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Destination blob name + + System.String + + System.String + + + None + + + DestContainer + + Destination container name + + System.String + + System.String + + + None + + + DestContext + + Destination Azure Storage Context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobIncrementalCopy + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + CloudBlob object from Azure Storage Client library. You can create it or use Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudPageBlob + + Microsoft.Azure.Storage.Blob.CloudPageBlob + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Source Azure Storage Context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Destination blob name + + System.String + + System.String + + + None + + + DestContainer + + Destination container name + + System.String + + System.String + + + None + + + DestContext + + Destination Azure Storage Context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobIncrementalCopy + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + CloudBlob object from Azure Storage Client library. You can create it or use Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudPageBlob + + Microsoft.Azure.Storage.Blob.CloudPageBlob + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Source Azure Storage Context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestCloudBlob + + Destination CloudBlob object + + Microsoft.Azure.Storage.Blob.CloudPageBlob + + Microsoft.Azure.Storage.Blob.CloudPageBlob + + + None + + + DestContext + + Destination Azure Storage Context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobIncrementalCopy + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlobContainer + + CloudBlobContainer object from Azure Storage Client library. You can create it or use Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Source Azure Storage Context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Destination blob name + + System.String + + System.String + + + None + + + DestContainer + + Destination container name + + System.String + + System.String + + + None + + + DestContext + + Destination Azure Storage Context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcBlob + + Source page blob name. + + System.String + + System.String + + + None + + + SrcBlobSnapshotTime + + Source page blob snapshot time. + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageBlobIncrementalCopy + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Source Azure Storage Context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Destination blob name + + System.String + + System.String + + + None + + + DestContainer + + Destination container name + + System.String + + System.String + + + None + + + DestContext + + Destination Azure Storage Context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcBlob + + Source page blob name. + + System.String + + System.String + + + None + + + SrcBlobSnapshotTime + + Source page blob snapshot time. + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + SrcContainer + + Source Container name + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AbsoluteUri + + Absolute Uri to the source. Be noted that the credential should be provided in the Uri, if the source requires any. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + The client side maximum execution time for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + CloudBlob object from Azure Storage Client library. You can create it or use Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudPageBlob + + Microsoft.Azure.Storage.Blob.CloudPageBlob + + + None + + + CloudBlobContainer + + CloudBlobContainer object from Azure Storage Client library. You can create it or use Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + The total amount of concurrent async tasks. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Source Azure Storage Context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestBlob + + Destination blob name + + System.String + + System.String + + + None + + + DestCloudBlob + + Destination CloudBlob object + + Microsoft.Azure.Storage.Blob.CloudPageBlob + + Microsoft.Azure.Storage.Blob.CloudPageBlob + + + None + + + DestContainer + + Destination container name + + System.String + + System.String + + + None + + + DestContext + + Destination Azure Storage Context. You can create it by New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ServerTimeoutPerRequest + + The server time out for each request in seconds. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcBlob + + Source page blob name. + + System.String + + System.String + + + None + + + SrcBlobSnapshotTime + + Source page blob snapshot time. + + System.Nullable`1[System.DateTimeOffset] + + System.Nullable`1[System.DateTimeOffset] + + + None + + + SrcContainer + + Source Container name + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.Blob.CloudPageBlob + + + + + + + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + + + + + + + + + + + + + Example 1: Start Incremental Copy Operation by blob name and snapshot time + Start-AzStorageBlobIncrementalCopy -SrcContainer container1 -SrcBlob blob1 -SrcBlobSnapshotTime "04/07/2017 09:55:36.1190229 AM +00:00" -DestContainer container2 -DestBlob blob2 + + This command start Incremental Copy Operation by blob name and snapshot time + + + + + + - Example 2: Start Incremental copy operation using source uri - + Start-AzStorageBlobIncrementalCopy -AbsoluteUri "http://www.somesite.com/somefile?snapshot=2017-04-07T10:05:40.2126635Z" -DestContainer container -DestBlob blob -DestContext $context + + This command start Incremental Copy Operation using source uri + + + + + + Example 3: Start Incremental copy operation using container pipeline from GetAzureStorageContainer + Get-AzStorageContainer -Container container1 | Start-AzStorageBlobIncrementalCopy -SrcBlob blob -SrcBlobSnapshotTime "04/07/2017 09:55:36.1190229 AM +00:00" -DestContainer container2 + + This command start Incremental Copy Operation using container pipeline from GetAzureStorageContainer + + + + + + Example 4: start Incremental copy operation from CloudPageBlob object to destination blob with blob name + $srcBlobSnapshot = Get-AzStorageBlob -Container container1 -prefix blob1| Where-Object ({$_.ICloudBlob.IsSnapshot})[0] +Start-AzStorageBlobIncrementalCopy -CloudBlob $srcBlobSnapshot.ICloudBlob -DestContainer container2 -DestBlob blob2 + + This command start Incremental Copy Operation from CloudPageBlob object to destination blob with blob name + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/start-azstorageblobincrementalcopy + + + + + + Start-AzStorageFileCopy + Start + AzStorageFileCopy + + Starts to copy a source file. + + + + The Start-AzStorageFileCopy cmdlet starts to copy a source file to a destination file. This cmdlet will trigger asynchronous blob copy, the copy process is handled by server. If this is a cross account blob copy, there is no SLA for the blob copy. + + + + Start-AzStorageFileCopy + + AbsoluteUri + + Specifies the URI of the source file. If the source location requires a credential, you must provide one. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestContext + + Specifies the Azure Storage context of the destination. To obtain a context, use New-AzStorageContext . + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestFilePath + + Specifies the path of the destination file relative to the destination share. + + System.String + + System.String + + + None + + + DestShareName + + Specifies the name of the destination share. + + System.String + + System.String + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageFileCopy + + AbsoluteUri + + Specifies the URI of the source file. If the source location requires a credential, you must provide one. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestContext + + Specifies the Azure Storage context of the destination. To obtain a context, use New-AzStorageContext . + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestFile + + Specifies a CloudFile object. You can create a cloud file or obtain one by using the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + DestShareFileClient + + ShareFileClient object indicated the Dest file. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageFileCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestContext + + Specifies the Azure Storage context of the destination. To obtain a context, use New-AzStorageContext . + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestFilePath + + Specifies the path of the destination file relative to the destination share. + + System.String + + System.String + + + None + + + DestShareName + + Specifies the name of the destination share. + + System.String + + System.String + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcBlobName + + Specifies the name of the source blob. + + System.String + + System.String + + + None + + + SrcContainerName + + Specifies the name of the source container. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageFileCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestContext + + Specifies the Azure Storage context of the destination. To obtain a context, use New-AzStorageContext . + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestFilePath + + Specifies the path of the destination file relative to the destination share. + + System.String + + System.String + + + None + + + DestShareName + + Specifies the name of the destination share. + + System.String + + System.String + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcFilePath + + Specifies the path of the source file relative to the source directory or source share. + + System.String + + System.String + + + None + + + SrcShareName + + Specifies the name of the source share. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageFileCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestContext + + Specifies the Azure Storage context of the destination. To obtain a context, use New-AzStorageContext . + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestFile + + Specifies a CloudFile object. You can create a cloud file or obtain one by using the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + DestShareFileClient + + ShareFileClient object indicated the Dest file. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcBlob + + Specifies a CloudBlob object. You can create a cloud blob or obtain one by using the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageFileCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestContext + + Specifies the Azure Storage context of the destination. To obtain a context, use New-AzStorageContext . + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestFile + + Specifies a CloudFile object. You can create a cloud file or obtain one by using the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + DestShareFileClient + + ShareFileClient object indicated the Dest file. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcFile + + Specifies a CloudFile object. You can create a cloud file or obtain one by using Get-AzStorageFile . + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageFileCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestContext + + Specifies the Azure Storage context of the destination. To obtain a context, use New-AzStorageContext . + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestFilePath + + Specifies the path of the destination file relative to the destination share. + + System.String + + System.String + + + None + + + DestShareName + + Specifies the name of the destination share. + + System.String + + System.String + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcBlobName + + Specifies the name of the source blob. + + System.String + + System.String + + + None + + + SrcContainer + + Specifies a cloud blob container object. You can create cloud blob container object or use the Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageFileCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestContext + + Specifies the Azure Storage context of the destination. To obtain a context, use New-AzStorageContext . + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestFilePath + + Specifies the path of the destination file relative to the destination share. + + System.String + + System.String + + + None + + + DestShareName + + Specifies the name of the destination share. + + System.String + + System.String + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcBlob + + Specifies a CloudBlob object. You can create a cloud blob or obtain one by using the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageFileCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestContext + + Specifies the Azure Storage context of the destination. To obtain a context, use New-AzStorageContext . + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestFilePath + + Specifies the path of the destination file relative to the destination share. + + System.String + + System.String + + + None + + + DestShareName + + Specifies the name of the destination share. + + System.String + + System.String + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcFilePath + + Specifies the path of the source file relative to the source directory or source share. + + System.String + + System.String + + + None + + + SrcShare + + Specifies a cloud file share object. You can create a cloud file share or obtain one by using the Get-AzStorageShare cmdlet. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Start-AzStorageFileCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestContext + + Specifies the Azure Storage context of the destination. To obtain a context, use New-AzStorageContext . + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestFilePath + + Specifies the path of the destination file relative to the destination share. + + System.String + + System.String + + + None + + + DestShareName + + Specifies the name of the destination share. + + System.String + + System.String + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcFile + + Specifies a CloudFile object. You can create a cloud file or obtain one by using Get-AzStorageFile . + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + AbsoluteUri + + Specifies the URI of the source file. If the source location requires a credential, you must provide one. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure Storage context. To obtain a context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DestContext + + Specifies the Azure Storage context of the destination. To obtain a context, use New-AzStorageContext . + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DestFile + + Specifies a CloudFile object. You can create a cloud file or obtain one by using the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + DestFilePath + + Specifies the path of the destination file relative to the destination share. + + System.String + + System.String + + + None + + + DestShareFileClient + + ShareFileClient object indicated the Dest file. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + DestShareName + + Specifies the name of the destination share. + + System.String + + System.String + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + SrcBlob + + Specifies a CloudBlob object. You can create a cloud blob or obtain one by using the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + SrcBlobName + + Specifies the name of the source blob. + + System.String + + System.String + + + None + + + SrcContainer + + Specifies a cloud blob container object. You can create cloud blob container object or use the Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + SrcContainerName + + Specifies the name of the source container. + + System.String + + System.String + + + None + + + SrcFile + + Specifies a CloudFile object. You can create a cloud file or obtain one by using Get-AzStorageFile . + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + SrcFilePath + + Specifies the path of the source file relative to the source directory or source share. + + System.String + + System.String + + + None + + + SrcShare + + Specifies a cloud file share object. You can create a cloud file share or obtain one by using the Get-AzStorageShare cmdlet. + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + None + + + SrcShareName + + Specifies the name of the source share. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.Blob.CloudBlob + + + + + + + + Microsoft.Azure.Storage.File.CloudFile + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFile + + + + + + + + + + + + + + Example 1: Start copy operation from file to file by using share name and file name + Start-AzStorageFileCopy -SrcShareName "ContosoShare01" -SrcFilePath "FilePath01" -DestShareName "ContosoShare02" -DestFilePath "FilePath02" + + This command starts a copy operation from file to file. The command specifies share name and file name + + + + + + Example 2: Start copy operation from blob to file by using container name and blob name + Start-AzStorageFileCopy -SrcContainerName "ContosoContainer01" -SrcBlobName "ContosoBlob01" -DestShareName "ContosoShare" -DestFilePath "FilePath02" + + This command starts a copy operation from blob to file. The command specifies container name and blob name + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/start-azstoragefilecopy + + + Get-AzStorageBlob + + + + Get-AzStorageContainer + + + + Get-AzStorageFile + + + + Get-AzStorageShare + + + + Get-AzStorageFileCopyState + + + + Stop-AzStorageFileCopy + + + + + + + Stop-AzStorageBlobCopy + Stop + AzStorageBlobCopy + + Stops a copy operation. + + + + The Stop-AzStorageBlobCopy cmdlet stops a copy operation to the specified destination blob. + + + + Stop-AzStorageBlobCopy + + Blob + + Specifies the name of the blob. + + System.String + + System.String + + + None + + + Container + + Specifies the name of the container. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage context. You can create the context by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + CopyId + + Specifies the copy ID. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Stops the current copy task on the specified blob without prompting for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Stop-AzStorageBlobCopy + + Blob + + Specifies the name of the blob. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlobContainer + + Specifies a CloudBlobContainer object from the Azure Storage Client library. You can create the object or use the Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage context. You can create the context by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + CopyId + + Specifies the copy ID. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Stops the current copy task on the specified blob without prompting for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Stop-AzStorageBlobCopy + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a CloudBlob object from Azure Storage Client library. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies the Azure storage context. You can create the context by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + CopyId + + Specifies the copy ID. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Stops the current copy task on the specified blob without prompting for confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Blob + + Specifies the name of the blob. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + CloudBlob + + Specifies a CloudBlob object from Azure Storage Client library. To obtain a CloudBlob object, use the Get-AzStorageBlob cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlob + + Microsoft.Azure.Storage.Blob.CloudBlob + + + None + + + CloudBlobContainer + + Specifies a CloudBlobContainer object from the Azure Storage Client library. You can create the object or use the Get-AzStorageContainer cmdlet. + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Container + + Specifies the name of the container. + + System.String + + System.String + + + None + + + Context + + Specifies the Azure storage context. You can create the context by using the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + CopyId + + Specifies the copy ID. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Stops the current copy task on the specified blob without prompting for confirmation. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the service side time-out interval, in seconds, for a request. If the specified interval elapses before the service processes the request, the storage service returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + TagCondition + + Optional Tag expression statement to check match condition. The blob request will fail when the blob tags does not match the given expression. See details in https://learn.microsoft.com/en-us/rest/api/storageservices/specifying-conditional-headers-for-blob-service-operations#tags-conditional-operations. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.Blob.CloudBlob + + + + + + + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + + + + + + + + + + + + + ------------ Example 1: Stop copy operation by name ------------ + Stop-AzStorageBlobCopy -Container "ContainerName" -Blob "BlobName" -CopyId "CopyID" + + This command stops the copy operation by name. + + + + + + ----- Example 2: Stop copy operation by using the pipeline ----- + Get-AzStorageContainer container* | Stop-AzStorageBlobCopy -Blob "BlobName" + + This command stops the copy operation by passing the container on the pipeline from Get-AzStorageContainer . + + + + + + Example 3: Stop copy operation by using the pipeline and Get-AzStorageBlob + Get-AzStorageBlob -Container "ContainerName" | Stop-AzStorageBlobCopy -Force + + This example stops the copy operation by passing the container on the pipeline from the Get-AzStorageBlob cmdlet. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/stop-azstorageblobcopy + + + Get-AzStorageBlob + + + + Get-AzStorageContainer + + + + Start-AzStorageBlobCopy + + + + Get-AzStorageBlobCopyState + + + + + + + Stop-AzStorageFileCopy + Stop + AzStorageFileCopy + + Stops a copy operation to the specified destination file. + + + + The Stop-AzStorageFileCopy cmdlet stops copying a file to a destination file. + + + + Stop-AzStorageFileCopy + + File + + Specifies a CloudFile object. You can create a cloud file or obtain one by using the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + CopyId + + Specifies the ID of the copy operation. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareFileClient + + ShareFileClient object indicated the file to Stop Copy. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Stop-AzStorageFileCopy + + ShareName + + Specifies the name of a share. + + System.String + + System.String + + + None + + + FilePath + + Specifies the path of a file. + + System.String + + System.String + + + None + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + CopyId + + Specifies the ID of the copy operation. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + ClientTimeoutPerRequest + + Specifies the client-side time-out interval, in seconds, for one service request. If the previous call fails in the specified interval, this cmdlet retries the request. If this cmdlet does not receive a successful response before the interval elapses, this cmdlet returns an error. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ConcurrentTaskCount + + Specifies the maximum concurrent network calls. You can use this parameter to limit the concurrency to throttle local CPU and bandwidth usage by specifying the maximum number of concurrent network calls. The specified value is an absolute count and is not multiplied by the core count. This parameter can help reduce network connection problems in low bandwidth environments, such as 100 kilobits per second. The default value is 10. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext (./New-AzStorageContext.md)cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + CopyId + + Specifies the ID of the copy operation. + + System.String + + System.String + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + File + + Specifies a CloudFile object. You can create a cloud file or obtain one by using the Get-AzStorageFile cmdlet. + + Microsoft.Azure.Storage.File.CloudFile + + Microsoft.Azure.Storage.File.CloudFile + + + None + + + FilePath + + Specifies the path of a file. + + System.String + + System.String + + + None + + + Force + + Forces the command to run without asking for user confirmation. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServerTimeoutPerRequest + + Specifies the length of the time-out period for the server part of a request. + + System.Nullable`1[System.Int32] + + System.Nullable`1[System.Int32] + + + None + + + ShareFileClient + + ShareFileClient object indicated the file to Stop Copy. + + Azure.Storage.Files.Shares.ShareFileClient + + Azure.Storage.Files.Shares.ShareFileClient + + + None + + + ShareName + + Specifies the name of a share. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Storage.File.CloudFile + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.Void + + + + + + + + + + + + + + --------------- Example 1: Stop a copy operation --------------- + Stop-AzStorageFileCopy -ShareName "ContosoShare" -FilePath "FilePath" -CopyId "CopyId" + + This command stops copying a file that has the specified name. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/stop-azstoragefilecopy + + + Get-AzStorageFile + + + + Get-AzStorageFileCopyState + + + + New-AzStorageContext + + + + Start-AzStorageFileCopy + + + + + + + Update-AzDataLakeGen2AclRecursive + Update + AzDataLakeGen2AclRecursive + + Update ACL recursively on the specified path. + + + + The Update-AzDataLakeGen2AclRecursive cmdlet updates ACL recursively on the specified path. The input ACL will merge the the original ACL: If ACL entry with same AccessControlType/EntityId/DefaultScope exist, update permission; else add a new ACL entry. + + + + Update-AzDataLakeGen2AclRecursive + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Path + + The path in the specified FileSystem that to change Acl recursively. Can be a file or directory. In the format 'directory/file.txt' or 'directory1/directory2/'. Skip set this parameter to change Acl recursively from root directory of the Filesystem. + + System.String + + System.String + + + None + + + Acl + + The POSIX access control list to set recursively for the file or directory. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + + None + + + AsJob + + Run cmdlet in the background + + + System.Management.Automation.SwitchParameter + + + False + + + BatchSize + + If data set size exceeds batch size then operation will be split into multiple requests so that progress can be tracked. Batch size should be between 1 and 2000. Default is 2000. + + System.Int32 + + System.Int32 + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Continuation Token. + + System.String + + System.String + + + None + + + ContinueOnFailure + + Set this parameter to ignore failures and continue proceeing with the operation on other sub-entities of the directory. Default the operation will terminate quickly on encountering failures. + + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + MaxBatchCount + + Maximum number of batches that single change Access Control operation can execute. If data set size exceeds MaxBatchCount multiply BatchSize, continuation token will be return. + + System.Int32 + + System.Int32 + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Acl + + The POSIX access control list to set recursively for the file or directory. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + + None + + + AsJob + + Run cmdlet in the background + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + BatchSize + + If data set size exceeds batch size then operation will be split into multiple requests so that progress can be tracked. Batch size should be between 1 and 2000. Default is 2000. + + System.Int32 + + System.Int32 + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + ContinuationToken + + Continuation Token. + + System.String + + System.String + + + None + + + ContinueOnFailure + + Set this parameter to ignore failures and continue proceeing with the operation on other sub-entities of the directory. Default the operation will terminate quickly on encountering failures. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + MaxBatchCount + + Maximum number of batches that single change Access Control operation can execute. If data set size exceeds MaxBatchCount multiply BatchSize, continuation token will be return. + + System.Int32 + + System.Int32 + + + None + + + Path + + The path in the specified FileSystem that to change Acl recursively. Can be a file or directory. In the format 'directory/file.txt' or 'directory1/directory2/'. Skip set this parameter to change Acl recursively from root directory of the Filesystem. + + System.String + + System.String + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + System.String + + + + + + + + + + + + + + Example 1: Update ACL recursively on a root directiry of filesystem + $acl = New-AzDataLakeGen2ItemAclObject -AccessControlType user -Permission rwx +$acl = New-AzDataLakeGen2ItemAclObject -AccessControlType group -Permission rw- -InputObject $acl +$acl = New-AzDataLakeGen2ItemAclObject -AccessControlType other -Permission "rw-" -InputObject $acl +Update-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Acl $acl -Context $ctx + +FailedEntries : +TotalDirectoriesSuccessfulCount : 7 +TotalFilesSuccessfulCount : 5 +TotalFailureCount : 0 +ContinuationToken : + + This command first creates an ACL object with 3 acl entries, then updates ACL recursively on a root directory of a file system. + + + + + + Example 2: Update ACL recursively on a directory, and resume from failure with ContinuationToken + PS C:\> $result = Update-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path "dir1" -Acl $acl -Context $ctx + +PS C:\> $result + +FailedEntries : {dir1/dir2/file4} +TotalDirectoriesSuccessfulCount : 500 +TotalFilesSuccessfulCount : 2500 +TotalFailureCount : 1 +ContinuationToken : VBaHi5TfyO2ai1wYTRhIL2FjbGNibjA2c3RmATAxRDVEN0UzRENFQzZCRTAvYWRsc3Rlc3QyATAxRDY2M0ZCQTZBN0JGQTkvZGlyMC9kaXIxL2ZpbGUzFgAAAA== + +PS C:\> $result.FailedEntries + +Name IsDirectory ErrorMessage +---- ----------- ------------ +dir0/dir2/file4 False This request is not authorized to perform this operation using this permission. + +# user need fix the failed item , then can resume with ContinuationToken + +PS C:\> $result = Update-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path "dir1" -Acl $acl -ContinuationToken $result.ContinuationToken -Context $ctx + +PS C:\> $result + +FailedEntries : +TotalDirectoriesSuccessfulCount : 100 +TotalFilesSuccessfulCount : 1000 +TotalFailureCount : 0 +ContinuationToken : + + This command first updateds ACL recursively to a directory and failed, then resume with ContinuationToken after user fix the failed file. + + + + + + ------- Example 3: Update ACL recursively chunk by chunk ------- + $ContinueOnFailure = $true # Set it to $false if want to terminate the operation quickly on encountering failures +$token = $null +$TotalDirectoriesSuccess = 0 +$TotalFilesSuccess = 0 +$totalFailure = 0 +$FailedEntries = New-Object System.Collections.Generic.List[System.Object] +do +{ + + if ($ContinueOnFailure) + { + $result = Update-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path "dir1" -Acl $acl -BatchSize 100 -MaxBatchCount 50 -ContinuationToken $token -Context $ctx -ContinueOnFailure + } + else + { + $result = Update-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path "dir1" -Acl $acl -BatchSize 100 -MaxBatchCount 50 -ContinuationToken $token -Context $ctx + } + + # echo $result + $TotalFilesSuccess += $result.TotalFilesSuccessfulCount + $TotalDirectoriesSuccess += $result.TotalDirectoriesSuccessfulCount + $totalFailure += $result.TotalFailureCount + $FailedEntries += $result.FailedEntries + $token = $result.ContinuationToken +}while (($null -ne $token) -and (($ContinueOnFailure) -or ($result.TotalFailureCount -eq 0))) +echo "" +echo "[Result Summary]" +echo "TotalDirectoriesSuccessfulCount: `t$($TotalDirectoriesSuccess)" +echo "TotalFilesSuccessfulCount: `t`t`t$($TotalFilesSuccess)" +echo "TotalFailureCount: `t`t`t`t`t$($totalFailure)" +echo "ContinuationToken: `t`t`t`t`t$($token)" +echo "FailedEntries:"$($FailedEntries | ft) + + This script will update ACL rescursively on directory chunk by chunk, with chunk size as BatchSize * MaxBatchCount. Chunk size is 5000 in this script. + + + + + + Example 4: Update ACL recursively on a directory and ContinueOnFailure, then resume from failures one by one + PS C:\> $result = Update-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path "dir1" -Acl $acl -ContinueOnFailure -Context $ctx + +PS C:\> $result + +FailedEntries : {dir0/dir1/file1, dir0/dir2/file4} +TotalDirectoriesSuccessfulCount : 100 +TotalFilesSuccessfulCount : 500 +TotalFailureCount : 2 +ContinuationToken : VBaHi5TfyO2ai1wYTRhIL2FjbGNibjA2c3RmATAxRDVEN0UzRENFQzZCRTAvYWRsc3Rlc3QyATAxRDY2M0ZCQTZBN0JGQTkvZGlyMC9kaXIxL2ZpbGUzFgAAAA== + +PS C:\> $result.FailedEntries + +Name IsDirectory ErrorMessage +---- ----------- ------------ +dir0/dir1/file1 False This request is not authorized to perform this operation using this permission. +dir0/dir2/file4 False This request is not authorized to perform this operation using this permission. + +# user need fix the failed item , then can resume with ContinuationToken + +PS C:\> foreach ($path in $result.FailedEntries.Name) + { + # user code to fix failed entry in $path + + #set ACL again + Set-AzDataLakeGen2AclRecursive -FileSystem "filesystem1" -Path $path -Acl $acl -Context $ctx + } + + This command first updateds ACL recursively to a directory with ContinueOnFailure, and some items failed, then resume the failed items one by one. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/update-azdatalakegen2aclrecursive + + + + + + Update-AzDataLakeGen2Item + Update + AzDataLakeGen2Item + + Update a file or directory on properties, metadata, permission, ACL, and owner. + + + + The Update-AzDataLakeGen2Item cmdlet updates a file or directory on properties, metadata, permission, ACL, and owner. This cmdlet only works if Hierarchical Namespace is enabled for the Storage account. This kind of account can be created by run "New-AzStorageAccount" cmdlet with "-EnableHierarchicalNamespace $true". + + + + Update-AzDataLakeGen2Item + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Acl + + Sets POSIX access control rights on files and directories. Create this object with New-AzDataLakeGen2ItemAclObject. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Group + + Sets the owning group of the blob. + + System.String + + System.String + + + None + + + Metadata + + Specifies metadata for the directory or file. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Owner + + Sets the owner of the blob. + + System.String + + System.String + + + None + + + Path + + The path in the specified Filesystem that should be updated. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/'. Not specify this parameter will update the root directory of the Filesystem. + + System.String + + System.String + + + None + + + Permission + + Sets POSIX access permissions for the file owner, the file owning group, and others. Each class may be granted read, write, or execute permission. Symbolic (rwxrw-rw-) is supported. The sticky bit is also supported and its represented either by the letter t or T in the final character-place depending on whether the execution bit for the others category is set or unset respectively, absence of t or T indicates sticky bit not set.Invalid in conjunction with ACL. + + System.String + + System.String + + + None + + + Property + + Specifies properties for the directory or file. The supported properties for file are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage, ContentMD5, ContentType. The supported properties for directory are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + Update-AzDataLakeGen2Item + + Acl + + Sets POSIX access control rights on files and directories. Create this object with New-AzDataLakeGen2ItemAclObject. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + Group + + Sets the owning group of the blob. + + System.String + + System.String + + + None + + + InputObject + + Azure Datalake Gen2 Item Object to update + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + None + + + Metadata + + Specifies metadata for the directory or file. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Owner + + Sets the owner of the blob. + + System.String + + System.String + + + None + + + Permission + + Sets POSIX access permissions for the file owner, the file owning group, and others. Each class may be granted read, write, or execute permission. Symbolic (rwxrw-rw-) is supported. The sticky bit is also supported and its represented either by the letter t or T in the final character-place depending on whether the execution bit for the others category is set or unset respectively, absence of t or T indicates sticky bit not set.Invalid in conjunction with ACL. + + System.String + + System.String + + + None + + + Property + + Specifies properties for the directory or file. The supported properties for file are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage, ContentMD5, ContentType. The supported properties for directory are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Acl + + Sets POSIX access control rights on files and directories. Create this object with New-AzDataLakeGen2ItemAclObject. + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry[] + + + None + + + Context + + Azure Storage Context Object + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + FileSystem + + FileSystem name + + System.String + + System.String + + + None + + + Group + + Sets the owning group of the blob. + + System.String + + System.String + + + None + + + InputObject + + Azure Datalake Gen2 Item Object to update + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + None + + + Metadata + + Specifies metadata for the directory or file. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Owner + + Sets the owner of the blob. + + System.String + + System.String + + + None + + + Path + + The path in the specified Filesystem that should be updated. Can be a file or directory In the format 'directory/file.txt' or 'directory1/directory2/'. Not specify this parameter will update the root directory of the Filesystem. + + System.String + + System.String + + + None + + + Permission + + Sets POSIX access permissions for the file owner, the file owning group, and others. Each class may be granted read, write, or execute permission. Symbolic (rwxrw-rw-) is supported. The sticky bit is also supported and its represented either by the letter t or T in the final character-place depending on whether the execution bit for the others category is set or unset respectively, absence of t or T indicates sticky bit not set.Invalid in conjunction with ACL. + + System.String + + System.String + + + None + + + Property + + Specifies properties for the directory or file. The supported properties for file are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage, ContentMD5, ContentType. The supported properties for directory are: CacheControl, ContentDisposition, ContentEncoding, ContentLanguage. + + System.Collections.Hashtable + + System.Collections.Hashtable + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + System.String + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + + + + + + + + + + Example 1: Create an ACL object with 3 ACL entry, and update ACL to all items in a Filesystem recursively + $acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -Permission rwx +$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType group -Permission rw- -InputObject $acl +$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType other -Permission "rwt" -InputObject $acl +Get-AzDataLakeGen2ChildItem -FileSystem "filesystem1" -Recurse | Update-AzDataLakeGen2Item -ACL $acl + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir1 True 2020-03-13 13:07:34Z rwxrw-rwt $superuser $superuser +dir1/file1 False 1024 2020-03-23 09:29:18Z rwxrw-rwt $superuser $superuser +dir2 True 2020-03-23 09:28:36Z rwxrw-rwt $superuser $superuser + + This command first creates an ACL object with 3 acl entry (use -InputObject parameter to add acl entry to existing acl object), then get all items in a filesystem and update acl on the items. + + + + + + -- Example 2: Update all properties on a file, and show them -- + PS C:\> $file = Update-AzDataLakeGen2Item -FileSystem "filesystem1" -Path "dir1/file1" ` + -Acl $acl ` + -Property @{"ContentType" = "image/jpeg"; "ContentMD5" = "i727sP7HigloQDsqadNLHw=="; "ContentEncoding" = "UDF8"; "CacheControl" = "READ"; "ContentDisposition" = "True"; "ContentLanguage" = "EN-US"} ` + -Metadata @{"tag1" = "value1"; "tag2" = "value2" } ` + -Permission rw-rw-rwx ` + -Owner '$superuser' ` + -Group '$superuser' + +PS C:\> $file + + FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir1/file1 False 1024 2020-03-23 09:57:33Z rwxrw-rw- $superuser $superuser + +PS C:\> $file.ACL + +DefaultScope AccessControlType EntityId Permissions +------------ ----------------- -------- ----------- +False User rwx +False Group rw- +False Other rw- + +PS C:\> $file.Permissions + +Owner : Execute, Write, Read +Group : Write, Read +Other : Write, Read +StickyBit : False +ExtendedAcls : False + +PS C:\> $file.Properties.Metadata + +Key Value +--- ----- +tag2 value2 +tag1 value1 + +PS C:\> $file.Properties + + +LastModified : 3/23/2020 9:57:33 AM +00:00 +CreatedOn : 3/23/2020 9:29:18 AM +00:00 +Metadata : {[tag2, value2], [tag1, value1]} +CopyCompletedOn : 1/1/0001 12:00:00 AM +00:00 +CopyStatusDescription : +CopyId : +CopyProgress : +CopySource : +CopyStatus : Pending +IsIncrementalCopy : False +LeaseDuration : Infinite +LeaseState : Available +LeaseStatus : Unlocked +ContentLength : 1024 +ContentType : image/jpeg +ETag : "0x8D7CF109B9878CC" +ContentHash : {139, 189, 187, 176...} +ContentEncoding : UDF8 +ContentDisposition : True +ContentLanguage : EN-US +CacheControl : READ +AcceptRanges : bytes +IsServerEncrypted : True +EncryptionKeySha256 : +AccessTier : Cool +ArchiveStatus : +AccessTierChangedOn : 1/1/0001 12:00:00 AM +00:00 + + This command updates all properties on a file (ACL, permission,owner, group, metadata, property can be updated with any conbination), and show them in Powershell console. + + + + + + ---------- Example 3: Add an ACL entry to a directory ---------- + ## Get the origin ACL +$acl = (Get-AzDataLakeGen2Item -FileSystem "filesystem1" -Path 'dir1/dir3/').ACL + +# Update permission of a new ACL entry (if ACL entry with same AccessControlType/EntityId/DefaultScope not exist, will add a new ACL entry, else update permission of existing ACL entry) +$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -EntityId $id -Permission rw- -InputObject $acl + +# set the new acl to the directory +Update-AzDataLakeGen2Item -FileSystem "filesystem1" -Path 'dir1/dir3/' -ACL $acl + +FileSystem Name: filesystem1 + +Path IsDirectory Length LastModified Permissions Owner Group +---- ----------- ------ ------------ ----------- ----- ----- +dir1/dir3 True 2020-03-23 09:34:31Z rwxrw-rw-+ $superuser $superuser + + This command gets ACL from a directory, updates/adds an ACL entry, and sets back to the directory. If ACL entry with same AccessControlType/EntityId/DefaultScope not exist, will add a new ACL entry, else update permission of existing ACL entry. + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/update-azdatalakegen2item + + + + + + Update-AzStorageServiceProperty + Update + AzStorageServiceProperty + + Modifies the properties for the Azure Storage service. + + + + The Update-AzStorageServiceProperty cmdlet modifies the properties for the Azure Storage service. + + + + Update-AzStorageServiceProperty + + ServiceType + + Specifies the storage service type. This cmdlet gets the logging properties for the service type that this parameter specifies. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + + + Blob + Table + Queue + File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultServiceVersion + + DefaultServiceVersion indicates the default version to use for requests to the Blob service if an incoming request's version is not specified. Possible values include version 2008-10-27 and all more recent versions. See more details in https://learn.microsoft.com/rest/api/storageservices/versioning-for-the-azure-storage-services + + System.String + + System.String + + + None + + + PassThru + + Display ServiceProperties + + + System.Management.Automation.SwitchParameter + + + False + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + + System.Management.Automation.SwitchParameter + + + False + + + + + + Context + + Specifies an Azure storage context. To obtain a storage context, use the New-AzStorageContext cmdlet. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + None + + + DefaultProfile + + The credentials, account, tenant, and subscription used for communication with Azure. + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer + + + None + + + DefaultServiceVersion + + DefaultServiceVersion indicates the default version to use for requests to the Blob service if an incoming request's version is not specified. Possible values include version 2008-10-27 and all more recent versions. See more details in https://learn.microsoft.com/rest/api/storageservices/versioning-for-the-azure-storage-services + + System.String + + System.String + + + None + + + PassThru + + Display ServiceProperties + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + ServiceType + + Specifies the storage service type. This cmdlet gets the logging properties for the service type that this parameter specifies. The acceptable values for this parameter are: - Blob + - Table + - Queue + - File + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + Microsoft.WindowsAzure.Commands.Storage.Common.StorageServiceType + + + None + + + Confirm + + Prompts you for confirmation before running the cmdlet. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + WhatIf + + Shows what would happen if the cmdlet runs. The cmdlet is not run. + + System.Management.Automation.SwitchParameter + + System.Management.Automation.SwitchParameter + + + False + + + + + + Microsoft.Azure.Commands.Common.Authentication.Abstractions.IStorageContext + + + + + + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSSeriviceProperties + + + + + + + + + + + + + + Example 1: Set Blob Service DefaultServiceVersion to 2017-04-17 + Update-AzStorageServiceProperty -ServiceType Blob -DefaultServiceVersion 2017-04-17 + + This command Set the DefaultServiceVersion of Blob Service to 2017-04-17 + + + + + + + + Online Version: + https://learn.microsoft.com/powershell/module/az.storage/update-azstorageserviceproperty + + + + \ No newline at end of file diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Storage.Management.Sdk.dll b/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Storage.Management.Sdk.dll new file mode 100644 index 000000000000..4328bd22aa2f Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.Azure.PowerShell.Storage.Management.Sdk.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.Blob.dll b/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.Blob.dll new file mode 100644 index 000000000000..21451162d5c7 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.Blob.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.Common.dll b/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.Common.dll new file mode 100644 index 000000000000..22fa95d49f6b Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.Common.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.DataMovement.dll b/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.DataMovement.dll new file mode 100644 index 000000000000..39b81f7709e2 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.DataMovement.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.File.dll b/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.File.dll new file mode 100644 index 000000000000..c7d2ae2aae39 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.File.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.Queue.dll b/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.Queue.dll new file mode 100644 index 000000000000..c581cf048821 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.Azure.Storage.Queue.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.OData.Core.dll b/Modules/Az.Storage/5.10.1/Microsoft.OData.Core.dll new file mode 100644 index 000000000000..caf31559cc7c Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.OData.Core.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.OData.Edm.dll b/Modules/Az.Storage/5.10.1/Microsoft.OData.Edm.dll new file mode 100644 index 000000000000..24b70c0727d3 Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.OData.Edm.dll differ diff --git a/Modules/Az.Storage/5.10.1/Microsoft.Spatial.dll b/Modules/Az.Storage/5.10.1/Microsoft.Spatial.dll new file mode 100644 index 000000000000..e1382163d88a Binary files /dev/null and b/Modules/Az.Storage/5.10.1/Microsoft.Spatial.dll differ diff --git a/Modules/Az.Storage/5.10.1/PSGetModuleInfo.xml b/Modules/Az.Storage/5.10.1/PSGetModuleInfo.xml new file mode 100644 index 000000000000..c6e969be6b66 --- /dev/null +++ b/Modules/Az.Storage/5.10.1/PSGetModuleInfo.xml @@ -0,0 +1,484 @@ + + + + Microsoft.PowerShell.Commands.PSRepositoryItemInfo + System.Management.Automation.PSCustomObject + System.Object + + + Az.Storage + 5.10.1 + Module + Microsoft Azure PowerShell - Storage service data plane and management cmdlets for Azure Resource Manager in Windows PowerShell and PowerShell Core. Creates and manages storage accounts in Azure Resource Manager._x000D__x000A__x000D__x000A_For more information on Storage, please visit the following: https://learn.microsoft.com/azure/storage/ + Microsoft Corporation + azure-sdk + Microsoft Corporation. All rights reserved. +
2023-09-26T01:21:10+02:00
+ + + https://aka.ms/azps-license + https://github.com/Azure/azure-powershell + + + + System.Object[] + System.Array + System.Object + + + Azure + ResourceManager + ARM + Storage + StorageAccount + PSModule + PSEdition_Core + PSEdition_Desktop + + + + + System.Collections.Hashtable + System.Object + + + + Command + + + + Get-AzStorageAccount + Get-AzStorageAccountKey + New-AzStorageAccount + New-AzStorageAccountKey + Remove-AzStorageAccount + Set-AzCurrentStorageAccount + Set-AzStorageAccount + Get-AzStorageAccountNameAvailability + Get-AzStorageUsage + Update-AzStorageAccountNetworkRuleSet + Get-AzStorageAccountNetworkRuleSet + Add-AzStorageAccountNetworkRule + Remove-AzStorageAccountNetworkRule + Get-AzStorageTable + New-AzStorageTableSASToken + New-AzStorageTableStoredAccessPolicy + New-AzStorageTable + Remove-AzStorageTableStoredAccessPolicy + Remove-AzStorageTable + Get-AzStorageTableStoredAccessPolicy + Set-AzStorageTableStoredAccessPolicy + Get-AzStorageQueue + New-AzStorageQueue + Remove-AzStorageQueue + Get-AzStorageQueueStoredAccessPolicy + New-AzStorageQueueSASToken + New-AzStorageQueueStoredAccessPolicy + Remove-AzStorageQueueStoredAccessPolicy + Set-AzStorageQueueStoredAccessPolicy + Get-AzStorageFile + Get-AzStorageFileContent + Get-AzStorageFileCopyState + Get-AzStorageShare + Get-AzStorageShareStoredAccessPolicy + New-AzStorageDirectory + New-AzStorageFileSASToken + New-AzStorageShare + New-AzStorageShareSASToken + New-AzStorageShareStoredAccessPolicy + Remove-AzStorageDirectory + Remove-AzStorageFile + Remove-AzStorageShare + Remove-AzStorageShareStoredAccessPolicy + Set-AzStorageFileContent + Set-AzStorageShareQuota + Set-AzStorageShareStoredAccessPolicy + Start-AzStorageFileCopy + Stop-AzStorageFileCopy + New-AzStorageAccountSASToken + Set-AzStorageCORSRule + Get-AzStorageCORSRule + Get-AzStorageServiceLoggingProperty + Get-AzStorageServiceMetricsProperty + Remove-AzStorageCORSRule + Set-AzStorageServiceLoggingProperty + Set-AzStorageServiceMetricsProperty + New-AzStorageContext + Set-AzStorageContainerAcl + Remove-AzStorageBlob + Set-AzStorageBlobContent + Get-AzStorageBlob + Get-AzStorageBlobContent + Get-AzStorageBlobCopyState + Get-AzStorageContainer + Get-AzStorageContainerStoredAccessPolicy + New-AzStorageBlobSASToken + New-AzStorageContainer + New-AzStorageContainerSASToken + New-AzStorageContainerStoredAccessPolicy + Remove-AzStorageContainer + Remove-AzStorageContainerStoredAccessPolicy + Set-AzStorageContainerStoredAccessPolicy + Start-AzStorageBlobCopy + Start-AzStorageBlobIncrementalCopy + Stop-AzStorageBlobCopy + Update-AzStorageServiceProperty + Get-AzStorageServiceProperty + Enable-AzStorageDeleteRetentionPolicy + Disable-AzStorageDeleteRetentionPolicy + Enable-AzStorageStaticWebsite + Disable-AzStorageStaticWebsite + Get-AzRmStorageContainer + Update-AzRmStorageContainer + New-AzRmStorageContainer + Remove-AzRmStorageContainer + Add-AzRmStorageContainerLegalHold + Remove-AzRmStorageContainerLegalHold + Set-AzRmStorageContainerImmutabilityPolicy + Get-AzRmStorageContainerImmutabilityPolicy + Remove-AzRmStorageContainerImmutabilityPolicy + Lock-AzRmStorageContainerImmutabilityPolicy + Set-AzStorageAccountManagementPolicy + Get-AzStorageAccountManagementPolicy + Remove-AzStorageAccountManagementPolicy + New-AzStorageAccountManagementPolicyFilter + New-AzStorageAccountManagementPolicyRule + Add-AzStorageAccountManagementPolicyAction + Update-AzStorageBlobServiceProperty + Get-AzStorageBlobServiceProperty + Enable-AzStorageBlobDeleteRetentionPolicy + Disable-AzStorageBlobDeleteRetentionPolicy + Revoke-AzStorageAccountUserDelegationKeys + Get-AzStorageFileHandle + Close-AzStorageFileHandle + New-AzRmStorageShare + Remove-AzRmStorageShare + Get-AzRmStorageShare + Update-AzRmStorageShare + Update-AzStorageFileServiceProperty + Get-AzStorageFileServiceProperty + Restore-AzRmStorageShare + Get-AzDataLakeGen2ChildItem + Get-AzDataLakeGen2Item + New-AzDataLakeGen2Item + Move-AzDataLakeGen2Item + Remove-AzDataLakeGen2Item + Update-AzDataLakeGen2Item + Set-AzDataLakeGen2ItemAclObject + Get-AzDataLakeGen2ItemContent + Invoke-AzStorageAccountFailover + Get-AzStorageBlobQueryResult + New-AzStorageBlobQueryConfig + New-AzStorageObjectReplicationPolicyRule + Set-AzStorageObjectReplicationPolicy + Get-AzStorageObjectReplicationPolicy + Remove-AzStorageObjectReplicationPolicy + Enable-AzStorageBlobRestorePolicy + Disable-AzStorageBlobRestorePolicy + New-AzStorageBlobRangeToRestore + Restore-AzStorageBlobRange + Set-AzDataLakeGen2AclRecursive + Update-AzDataLakeGen2AclRecursive + Remove-AzDataLakeGen2AclRecursive + New-AzStorageEncryptionScope + Update-AzStorageEncryptionScope + Get-AzStorageEncryptionScope + Copy-AzStorageBlob + Set-AzStorageBlobInventoryPolicy + New-AzStorageBlobInventoryPolicyRule + Get-AzStorageBlobInventoryPolicy + Remove-AzStorageBlobInventoryPolicy + Enable-AzStorageContainerDeleteRetentionPolicy + Disable-AzStorageContainerDeleteRetentionPolicy + Restore-AzStorageContainer + Enable-AzStorageBlobLastAccessTimeTracking + Disable-AzStorageBlobLastAccessTimeTracking + Set-AzStorageBlobTag + Get-AzStorageBlobTag + Get-AzStorageBlobByTag + Invoke-AzStorageAccountHierarchicalNamespaceUpgrade + Stop-AzStorageAccountHierarchicalNamespaceUpgrade + Set-AzStorageBlobImmutabilityPolicy + Remove-AzStorageBlobImmutabilityPolicy + Set-AzStorageBlobLegalHold + Invoke-AzRmStorageContainerImmutableStorageWithVersioningMigration + New-AzDataLakeGen2SasToken + New-AzStorageAccountManagementPolicyBlobIndexMatchObject + Set-AzStorageLocalUser + Get-AzStorageLocalUser + Remove-AzStorageLocalUser + Get-AzStorageLocalUserKey + New-AzStorageLocalUserSshPassword + New-AzStorageLocalUserSshPublicKey + New-AzStorageLocalUserPermissionScope + Get-AzDataLakeGen2DeletedItem + Restore-AzDataLakeGen2DeletedItem + Rename-AzStorageFile + Rename-AzStorageDirectory + + + + + RoleCapability + + + + + + + Workflow + + + + DscResource + + + + Function + + + + Cmdlet + + + + Get-AzStorageAccount + Get-AzStorageAccountKey + New-AzStorageAccount + New-AzStorageAccountKey + Remove-AzStorageAccount + Set-AzCurrentStorageAccount + Set-AzStorageAccount + Get-AzStorageAccountNameAvailability + Get-AzStorageUsage + Update-AzStorageAccountNetworkRuleSet + Get-AzStorageAccountNetworkRuleSet + Add-AzStorageAccountNetworkRule + Remove-AzStorageAccountNetworkRule + Get-AzStorageTable + New-AzStorageTableSASToken + New-AzStorageTableStoredAccessPolicy + New-AzStorageTable + Remove-AzStorageTableStoredAccessPolicy + Remove-AzStorageTable + Get-AzStorageTableStoredAccessPolicy + Set-AzStorageTableStoredAccessPolicy + Get-AzStorageQueue + New-AzStorageQueue + Remove-AzStorageQueue + Get-AzStorageQueueStoredAccessPolicy + New-AzStorageQueueSASToken + New-AzStorageQueueStoredAccessPolicy + Remove-AzStorageQueueStoredAccessPolicy + Set-AzStorageQueueStoredAccessPolicy + Get-AzStorageFile + Get-AzStorageFileContent + Get-AzStorageFileCopyState + Get-AzStorageShare + Get-AzStorageShareStoredAccessPolicy + New-AzStorageDirectory + New-AzStorageFileSASToken + New-AzStorageShare + New-AzStorageShareSASToken + New-AzStorageShareStoredAccessPolicy + Remove-AzStorageDirectory + Remove-AzStorageFile + Remove-AzStorageShare + Remove-AzStorageShareStoredAccessPolicy + Set-AzStorageFileContent + Set-AzStorageShareQuota + Set-AzStorageShareStoredAccessPolicy + Start-AzStorageFileCopy + Stop-AzStorageFileCopy + New-AzStorageAccountSASToken + Set-AzStorageCORSRule + Get-AzStorageCORSRule + Get-AzStorageServiceLoggingProperty + Get-AzStorageServiceMetricsProperty + Remove-AzStorageCORSRule + Set-AzStorageServiceLoggingProperty + Set-AzStorageServiceMetricsProperty + New-AzStorageContext + Set-AzStorageContainerAcl + Remove-AzStorageBlob + Set-AzStorageBlobContent + Get-AzStorageBlob + Get-AzStorageBlobContent + Get-AzStorageBlobCopyState + Get-AzStorageContainer + Get-AzStorageContainerStoredAccessPolicy + New-AzStorageBlobSASToken + New-AzStorageContainer + New-AzStorageContainerSASToken + New-AzStorageContainerStoredAccessPolicy + Remove-AzStorageContainer + Remove-AzStorageContainerStoredAccessPolicy + Set-AzStorageContainerStoredAccessPolicy + Start-AzStorageBlobCopy + Start-AzStorageBlobIncrementalCopy + Stop-AzStorageBlobCopy + Update-AzStorageServiceProperty + Get-AzStorageServiceProperty + Enable-AzStorageDeleteRetentionPolicy + Disable-AzStorageDeleteRetentionPolicy + Enable-AzStorageStaticWebsite + Disable-AzStorageStaticWebsite + Get-AzRmStorageContainer + Update-AzRmStorageContainer + New-AzRmStorageContainer + Remove-AzRmStorageContainer + Add-AzRmStorageContainerLegalHold + Remove-AzRmStorageContainerLegalHold + Set-AzRmStorageContainerImmutabilityPolicy + Get-AzRmStorageContainerImmutabilityPolicy + Remove-AzRmStorageContainerImmutabilityPolicy + Lock-AzRmStorageContainerImmutabilityPolicy + Set-AzStorageAccountManagementPolicy + Get-AzStorageAccountManagementPolicy + Remove-AzStorageAccountManagementPolicy + New-AzStorageAccountManagementPolicyFilter + New-AzStorageAccountManagementPolicyRule + Add-AzStorageAccountManagementPolicyAction + Update-AzStorageBlobServiceProperty + Get-AzStorageBlobServiceProperty + Enable-AzStorageBlobDeleteRetentionPolicy + Disable-AzStorageBlobDeleteRetentionPolicy + Revoke-AzStorageAccountUserDelegationKeys + Get-AzStorageFileHandle + Close-AzStorageFileHandle + New-AzRmStorageShare + Remove-AzRmStorageShare + Get-AzRmStorageShare + Update-AzRmStorageShare + Update-AzStorageFileServiceProperty + Get-AzStorageFileServiceProperty + Restore-AzRmStorageShare + Get-AzDataLakeGen2ChildItem + Get-AzDataLakeGen2Item + New-AzDataLakeGen2Item + Move-AzDataLakeGen2Item + Remove-AzDataLakeGen2Item + Update-AzDataLakeGen2Item + Set-AzDataLakeGen2ItemAclObject + Get-AzDataLakeGen2ItemContent + Invoke-AzStorageAccountFailover + Get-AzStorageBlobQueryResult + New-AzStorageBlobQueryConfig + New-AzStorageObjectReplicationPolicyRule + Set-AzStorageObjectReplicationPolicy + Get-AzStorageObjectReplicationPolicy + Remove-AzStorageObjectReplicationPolicy + Enable-AzStorageBlobRestorePolicy + Disable-AzStorageBlobRestorePolicy + New-AzStorageBlobRangeToRestore + Restore-AzStorageBlobRange + Set-AzDataLakeGen2AclRecursive + Update-AzDataLakeGen2AclRecursive + Remove-AzDataLakeGen2AclRecursive + New-AzStorageEncryptionScope + Update-AzStorageEncryptionScope + Get-AzStorageEncryptionScope + Copy-AzStorageBlob + Set-AzStorageBlobInventoryPolicy + New-AzStorageBlobInventoryPolicyRule + Get-AzStorageBlobInventoryPolicy + Remove-AzStorageBlobInventoryPolicy + Enable-AzStorageContainerDeleteRetentionPolicy + Disable-AzStorageContainerDeleteRetentionPolicy + Restore-AzStorageContainer + Enable-AzStorageBlobLastAccessTimeTracking + Disable-AzStorageBlobLastAccessTimeTracking + Set-AzStorageBlobTag + Get-AzStorageBlobTag + Get-AzStorageBlobByTag + Invoke-AzStorageAccountHierarchicalNamespaceUpgrade + Stop-AzStorageAccountHierarchicalNamespaceUpgrade + Set-AzStorageBlobImmutabilityPolicy + Remove-AzStorageBlobImmutabilityPolicy + Set-AzStorageBlobLegalHold + Invoke-AzRmStorageContainerImmutableStorageWithVersioningMigration + New-AzDataLakeGen2SasToken + New-AzStorageAccountManagementPolicyBlobIndexMatchObject + Set-AzStorageLocalUser + Get-AzStorageLocalUser + Remove-AzStorageLocalUser + Get-AzStorageLocalUserKey + New-AzStorageLocalUserSshPassword + New-AzStorageLocalUserSshPublicKey + New-AzStorageLocalUserPermissionScope + Get-AzDataLakeGen2DeletedItem + Restore-AzDataLakeGen2DeletedItem + Rename-AzStorageFile + Rename-AzStorageDirectory + + + + + + + * Added warning messages for an upcoming breaking change that the output Permissions will be changed to a string when creating and updating a Queue access policy_x000D__x000A_ - 'Get-AzStorageQueueStoredAccessPolicy'_x000D__x000A_ - 'Set-AzStorageQueueStoredAccessPolicy' + + + + + + System.Collections.Specialized.OrderedDictionary + System.Object + + + + Name + Az.Accounts + + + MinimumVersion + 2.13.1 + + + CanonicalId + nuget:Az.Accounts/2.13.1 + + + + + + https://www.powershellgallery.com/api/v2 + PSGallery + NuGet + + + System.Management.Automation.PSCustomObject + System.Object + + + Microsoft Corporation. All rights reserved. + Microsoft Azure PowerShell - Storage service data plane and management cmdlets for Azure Resource Manager in Windows PowerShell and PowerShell Core. Creates and manages storage accounts in Azure Resource Manager._x000D__x000A__x000D__x000A_For more information on Storage, please visit the following: https://learn.microsoft.com/azure/storage/ + True + * Added warning messages for an upcoming breaking change that the output Permissions will be changed to a string when creating and updating a Queue access policy_x000D__x000A_ - 'Get-AzStorageQueueStoredAccessPolicy'_x000D__x000A_ - 'Set-AzStorageQueueStoredAccessPolicy' + True + True + 1959915 + 78641298 + 4535104 + 26/09/2023 01:21:10 +02:00 + 26/09/2023 01:21:10 +02:00 + 21/10/2023 12:36:30 +02:00 + Azure ResourceManager ARM Storage StorageAccount PSModule PSEdition_Core PSEdition_Desktop + False + 2023-10-21T12:36:30Z + 5.10.1 + Microsoft Corporation + false + Module + Az.Storage.nuspec|Az.Storage.psd1|Microsoft.Azure.PowerShell.Cmdlets.Storage.Management.dll-Help.xml|Az.Storage.psm1|Microsoft.Azure.PowerShell.Storage.Management.Sdk.dll|Azure.Data.Tables.dll|Microsoft.Azure.Storage.Blob.dll|Azure.Storage.Blobs.dll|Microsoft.Azure.Storage.Common.dll|Azure.Storage.Common.dll|Microsoft.Azure.Storage.DataMovement.dll|Azure.Storage.Files.DataLake.dll|Microsoft.Azure.Storage.File.dll|Azure.Storage.Files.Shares.dll|Microsoft.Azure.Storage.Queue.dll|Azure.Storage.Queues.dll|Microsoft.OData.Core.dll|Microsoft.Azure.Cosmos.Table.dll|Microsoft.OData.Edm.dll|Microsoft.Azure.DocumentDB.Core.dll|Microsoft.Spatial.dll|Microsoft.Azure.KeyVault.Core.dll|Storage.format.ps1xml|Microsoft.Azure.PowerShell.Cmdlets.Storage.dll|Storage.generated.format.ps1xml|Microsoft.Azure.PowerShell.Cmdlets.Storage.dll-Help.xml|Storage.Management.format.ps1xml|Microsoft.Azure.PowerShell.Cmdlets.Storage.Management.dll|System.IO.Hashing.dll + Get-AzStorageAccount Get-AzStorageAccountKey New-AzStorageAccount New-AzStorageAccountKey Remove-AzStorageAccount Set-AzCurrentStorageAccount Set-AzStorageAccount Get-AzStorageAccountNameAvailability Get-AzStorageUsage Update-AzStorageAccountNetworkRuleSet Get-AzStorageAccountNetworkRuleSet Add-AzStorageAccountNetworkRule Remove-AzStorageAccountNetworkRule Get-AzStorageTable New-AzStorageTableSASToken New-AzStorageTableStoredAccessPolicy New-AzStorageTable Remove-AzStorageTableStoredAccessPolicy Remove-AzStorageTable Get-AzStorageTableStoredAccessPolicy Set-AzStorageTableStoredAccessPolicy Get-AzStorageQueue New-AzStorageQueue Remove-AzStorageQueue Get-AzStorageQueueStoredAccessPolicy New-AzStorageQueueSASToken New-AzStorageQueueStoredAccessPolicy Remove-AzStorageQueueStoredAccessPolicy Set-AzStorageQueueStoredAccessPolicy Get-AzStorageFile Get-AzStorageFileContent Get-AzStorageFileCopyState Get-AzStorageShare Get-AzStorageShareStoredAccessPolicy New-AzStorageDirectory New-AzStorageFileSASToken New-AzStorageShare New-AzStorageShareSASToken New-AzStorageShareStoredAccessPolicy Remove-AzStorageDirectory Remove-AzStorageFile Remove-AzStorageShare Remove-AzStorageShareStoredAccessPolicy Set-AzStorageFileContent Set-AzStorageShareQuota Set-AzStorageShareStoredAccessPolicy Start-AzStorageFileCopy Stop-AzStorageFileCopy New-AzStorageAccountSASToken Set-AzStorageCORSRule Get-AzStorageCORSRule Get-AzStorageServiceLoggingProperty Get-AzStorageServiceMetricsProperty Remove-AzStorageCORSRule Set-AzStorageServiceLoggingProperty Set-AzStorageServiceMetricsProperty New-AzStorageContext Set-AzStorageContainerAcl Remove-AzStorageBlob Set-AzStorageBlobContent Get-AzStorageBlob Get-AzStorageBlobContent Get-AzStorageBlobCopyState Get-AzStorageContainer Get-AzStorageContainerStoredAccessPolicy New-AzStorageBlobSASToken New-AzStorageContainer New-AzStorageContainerSASToken New-AzStorageContainerStoredAccessPolicy Remove-AzStorageContainer Remove-AzStorageContainerStoredAccessPolicy Set-AzStorageContainerStoredAccessPolicy Start-AzStorageBlobCopy Start-AzStorageBlobIncrementalCopy Stop-AzStorageBlobCopy Update-AzStorageServiceProperty Get-AzStorageServiceProperty Enable-AzStorageDeleteRetentionPolicy Disable-AzStorageDeleteRetentionPolicy Enable-AzStorageStaticWebsite Disable-AzStorageStaticWebsite Get-AzRmStorageContainer Update-AzRmStorageContainer New-AzRmStorageContainer Remove-AzRmStorageContainer Add-AzRmStorageContainerLegalHold Remove-AzRmStorageContainerLegalHold Set-AzRmStorageContainerImmutabilityPolicy Get-AzRmStorageContainerImmutabilityPolicy Remove-AzRmStorageContainerImmutabilityPolicy Lock-AzRmStorageContainerImmutabilityPolicy Set-AzStorageAccountManagementPolicy Get-AzStorageAccountManagementPolicy Remove-AzStorageAccountManagementPolicy New-AzStorageAccountManagementPolicyFilter New-AzStorageAccountManagementPolicyRule Add-AzStorageAccountManagementPolicyAction Update-AzStorageBlobServiceProperty Get-AzStorageBlobServiceProperty Enable-AzStorageBlobDeleteRetentionPolicy Disable-AzStorageBlobDeleteRetentionPolicy Revoke-AzStorageAccountUserDelegationKeys Get-AzStorageFileHandle Close-AzStorageFileHandle New-AzRmStorageShare Remove-AzRmStorageShare Get-AzRmStorageShare Update-AzRmStorageShare Update-AzStorageFileServiceProperty Get-AzStorageFileServiceProperty Restore-AzRmStorageShare Get-AzDataLakeGen2ChildItem Get-AzDataLakeGen2Item New-AzDataLakeGen2Item Move-AzDataLakeGen2Item Remove-AzDataLakeGen2Item Update-AzDataLakeGen2Item Set-AzDataLakeGen2ItemAclObject Get-AzDataLakeGen2ItemContent Invoke-AzStorageAccountFailover Get-AzStorageBlobQueryResult New-AzStorageBlobQueryConfig New-AzStorageObjectReplicationPolicyRule Set-AzStorageObjectReplicationPolicy Get-AzStorageObjectReplicationPolicy Remove-AzStorageObjectReplicationPolicy Enable-AzStorageBlobRestorePolicy Disable-AzStorageBlobRestorePolicy New-AzStorageBlobRangeToRestore Restore-AzStorageBlobRange Set-AzDataLakeGen2AclRecursive Update-AzDataLakeGen2AclRecursive Remove-AzDataLakeGen2AclRecursive New-AzStorageEncryptionScope Update-AzStorageEncryptionScope Get-AzStorageEncryptionScope Copy-AzStorageBlob Set-AzStorageBlobInventoryPolicy New-AzStorageBlobInventoryPolicyRule Get-AzStorageBlobInventoryPolicy Remove-AzStorageBlobInventoryPolicy Enable-AzStorageContainerDeleteRetentionPolicy Disable-AzStorageContainerDeleteRetentionPolicy Restore-AzStorageContainer Enable-AzStorageBlobLastAccessTimeTracking Disable-AzStorageBlobLastAccessTimeTracking Set-AzStorageBlobTag Get-AzStorageBlobTag Get-AzStorageBlobByTag Invoke-AzStorageAccountHierarchicalNamespaceUpgrade Stop-AzStorageAccountHierarchicalNamespaceUpgrade Set-AzStorageBlobImmutabilityPolicy Remove-AzStorageBlobImmutabilityPolicy Set-AzStorageBlobLegalHold Invoke-AzRmStorageContainerImmutableStorageWithVersioningMigration New-AzDataLakeGen2SasToken New-AzStorageAccountManagementPolicyBlobIndexMatchObject Set-AzStorageLocalUser Get-AzStorageLocalUser Remove-AzStorageLocalUser Get-AzStorageLocalUserKey New-AzStorageLocalUserSshPassword New-AzStorageLocalUserSshPublicKey New-AzStorageLocalUserPermissionScope Get-AzDataLakeGen2DeletedItem Restore-AzDataLakeGen2DeletedItem Rename-AzStorageFile Rename-AzStorageDirectory + dfa9e4ea-1407-446d-9111-79122977ab20 + 5.1 + 4.7.2 + Microsoft Corporation + + + C:\Github\CIPP-API\Modules\Az.Storage\5.10.1 + + + diff --git a/Modules/Az.Storage/5.10.1/Storage.Management.format.ps1xml b/Modules/Az.Storage/5.10.1/Storage.Management.format.ps1xml new file mode 100644 index 000000000000..a690eb9ee4b3 --- /dev/null +++ b/Modules/Az.Storage/5.10.1/Storage.Management.format.ps1xml @@ -0,0 +1,1410 @@ + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + Microsoft.Azure.Commands.Management.Storage.Models.PSStorageAccount + + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + StorageAccountName + + + Left + ResourceGroupName + + + Left + PrimaryLocation + + + Left + $_.Sku.Name + + + Left + Kind + + + Left + AccessTier + + + Left + CreationTime + + + Left + ProvisioningState + + + Left + EnableHttpsTrafficOnly + + + Left + LargeFileSharesState + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + Microsoft.Azure.Commands.Management.Storage.Models.PSNetworkRuleSet + + + + + + + Bypass + + + + DefaultAction + + + + if (($_.ipRules -ne $null) -and ($_.ipRules.Count -ne 0)) {"[" + $_.ipRules[0].IPAddressOrRange + ",...]"} else {$null} + + + + if ($_.virtualNetworkRules[0] -ne $null) {"[" + $_.virtualNetworkRules[0].VirtualNetworkResourceId + ",...]"} else {$null} + + + + if ($_.ResourceAccessRules[0] -ne $null) {"[(" + $_.ResourceAccessRules[0].TenantId + "," + $_.ResourceAccessRules[0].ResourceId + "),...]"} else {$null} + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + Microsoft.Azure.Commands.Management.Storage.Models.PSContainer + + + $_.ResourceGroupName + ", StorageAccountName: " + $_.StorageAccountName + + + + + + + Left + + + + Left + 20 + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + $_.Name + + + $_.PublicAccess + + + $_.LastModifiedTime.ToUniversalTime().ToString("u") + + + $_.HasLegalHold + + + $_.HasImmutabilityPolicy + + + $_.Deleted + + + $_.Version + + + $_.ImmutableStorageWithVersioning.Enabled + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicy + + + + + + + ResourceGroupName + + + + StorageAccountName + + + + Id + + + + Type + + + + LastModifiedTime + + + + ConvertTo-Json $_.Rules -Depth 10 + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyActionGroup + + + + + + + $_.BaseBlob.TierToCool.DaysAfterModificationGreaterThan + + + + $_.BaseBlob.TierToCool.DaysAfterLastAccessTimeGreaterThan + + + + $_.BaseBlob.TierToCool.DaysAfterCreationGreaterThan + + + + $_.BaseBlob.EnableAutoTierToHotFromCool + + + + $_.BaseBlob.TierToArchive.DaysAfterModificationGreaterThan + + + + $_.BaseBlob.TierToArchive.DaysAfterLastAccessTimeGreaterThan + + + + $_.BaseBlob.TierToArchive.DaysAfterCreationGreaterThan + + + + $_.BaseBlob.TierToArchive.DaysAfterLastTierChangeGreaterThan + + + + $_.BaseBlob.Delete.DaysAfterModificationGreaterThan + + + + $_.BaseBlob.Delete.DaysAfterLastAccessTimeGreaterThan + + + + $_.BaseBlob.Delete.DaysAfterCreationGreaterThan + + + + $_.BaseBlob.TierToCold.DaysAfterModificationGreaterThan + + + + $_.BaseBlob.TierToCold.DaysAfterLastAccessTimeGreaterThan + + + + $_.BaseBlob.TierToCold.DaysAfterCreationGreaterThan + + + + $_.BaseBlob.TierToHot.DaysAfterModificationGreaterThan + + + + $_.BaseBlob.TierToHot.DaysAfterLastAccessTimeGreaterThan + + + + $_.BaseBlob.TierToHot.DaysAfterCreationGreaterThan + + + + $_.Snapshot.TierToCool.DaysAfterCreationGreaterThan + + + + $_.Snapshot.TierToArchive.DaysAfterCreationGreaterThan + + + + $_.Snapshot.TierToArchive.DaysAfterLastTierChangeGreaterThan + + + + $_.Snapshot.Delete.DaysAfterCreationGreaterThan + + + + $_.Snapshot.TierToCold.DaysAfterCreationGreaterThan + + + + $_.Snapshot.TierToHot.DaysAfterCreationGreaterThan + + + + $_.Version.TierToCool.DaysAfterCreationGreaterThan + + + + $_.Version.TierToArchive.DaysAfterCreationGreaterThan + + + + $_.Version.TierToArchive.DaysAfterLastTierChangeGreaterThan + + + + $_.Version.Delete.DaysAfterCreationGreaterThan + + + + $_.Version.TierToCold.DaysAfterCreationGreaterThan + + + + $_.Version.TierToHot.DaysAfterCreationGreaterThan + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyRule + + Microsoft.Azure.Commands.Management.Storage.Models.PSManagementPolicyRule + + + + + + + Enabled + + + + Name + + + + ConvertTo-Json $_.Definition -Depth 10 + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSFileServiceProperties + + Microsoft.Azure.Commands.Management.Storage.Models.PSFileServiceProperties + + + + + + + StorageAccountName + + + + ResourceGroupName + + + + + $_.ShareDeleteRetentionPolicy.Enabled + + + + $_.ShareDeleteRetentionPolicy.Days + + + + $_.ProtocolSettings.Smb.Multichannel.Enabled + + + + $_.ProtocolSettings.Smb.Versions + + + + $_.ProtocolSettings.Smb.AuthenticationMethods + + + + $_.ProtocolSettings.Smb.KerberosTicketEncryption + + + + $_.ProtocolSettings.Smb.ChannelEncryption + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobServiceProperties + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobServiceProperties + + + + + + + StorageAccountName + + + + ResourceGroupName + + + + DefaultServiceVersion + + + + + $_.DeleteRetentionPolicy.Enabled + + + + $_.DeleteRetentionPolicy.Days + + + + $_.DeleteRetentionPolicy.AllowPermanentDelete + + + + $_.ContainerDeleteRetentionPolicy.Enabled + + + + $_.ContainerDeleteRetentionPolicy.Days + + + + $_.RestorePolicy.Enabled + + + + $_.RestorePolicy.Days + + + + $_.RestorePolicy.MinRestoreTime + + + + $_.ChangeFeed.Enabled + + + + $_.ChangeFeed.RetentionInDays + + + IsVersioningEnabled + + + + + $_.LastAccessTimeTrackingPolicy.Enable + + + + $_.LastAccessTimeTrackingPolicy.Name + + + + $_.LastAccessTimeTrackingPolicy.TrackingGranularityInDays + + + + $_.LastAccessTimeTrackingPolicy.BlobType + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + Microsoft.Azure.Commands.Management.Storage.Models.PSShare + + + $_.ResourceGroupName + ", StorageAccountName: " + $_.StorageAccountName + + + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + Name + + + Left + QuotaGiB + + + Left + EnabledProtocols + + + Left + AccessTier + + + Left + Deleted + + + Left + Version + + + Left + ShareUsageBytes + + + Left + $_.snapshotTime.ToUniversalTime().ToString("s")+"Z" + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicy + + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + ResourceGroupName + + + Left + StorageAccountName + + + Left + PolicyId + + + Left + EnabledTime + + + Left + SourceAccount + + + Left + DestinationAccount + + + Left + if (($_.Rules -ne $null) -and ($_.Rules.Count -ne 0)) { if ($_.Rules.Count -eq 1) {'[' + $_.Rules[0].RuleId + ']'} else {'[' + $_.Rules[0].RuleId + ',...]'}} else {$null} + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicyRule + + Microsoft.Azure.Commands.Management.Storage.Models.PSObjectReplicationPolicyRule + + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + RuleId + + + Left + SourceContainer + + + Left + DestinationContainer + + + Left + '{' + ($_.Filters.PrefixMatch -join ', ') + '}' + + + Left + $_.Filters.MinCreationTime.ToUniversalTime().ToString("s")+"Z" + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobRestoreStatus + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobRestoreStatus + + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + Status + + + Left + RestoreId + + + Left + FailureReason + + + Left + $_.Parameters.TimeToRestore.ToString("o") + + + Left + if ($_.Parameters.BlobRanges[0] -ne $null) {if ($_.Parameters.BlobRanges[1] -ne $null) {'["' + $_.Parameters.BlobRanges[0].StartRange + '" -> "' + $_.Parameters.BlobRanges[0].EndRange + '",...]'} else {'["' + $_.Parameters.BlobRanges[0].StartRange + '" -> "' + $_.Parameters.BlobRanges[0].EndRange + '"]'}} else {$null} + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSRestorePolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSRestorePolicy + + + + + Left + + + + Left + + + + Left + + + + + + + + Left + Enabled + + + Left + Days + + + Left + MinRestoreTime + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSEncryptionScope + + Microsoft.Azure.Commands.Management.Storage.Models.PSEncryptionScope + + + $_.ResourceGroupName + ", StorageAccountName: " + $_.StorageAccountName + + + + + + + Left + + + + Left + 20 + + + + Left + + + + Left + + + + Left + + + + + + + Name + + + State + + + Source + + + $_.KeyVaultProperties.keyUri + + + RequireInfrastructureEncryption + + + + + + + + Microsoft.Azure.Management.Storage.Models.Endpoints + + Microsoft.Azure.Management.Storage.Models.Endpoints + + + + + + + Blob + + + + Queue + + + + Table + + + + File + + + + Web + + + + Dfs + + + + ConvertTo-Json $_.MicrosoftEndpoints -Compress + + + + ConvertTo-Json $_.InternetEndpoints -Compress + + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicyRule + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicyRule + + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + Name + + + Left + Enabled + + + Left + Destination + + + Left + $_.Definition.ObjectType + + + Left + $_.Definition.Format + + + Left + $_.Definition.Schedule + + + Left + $_.Definition.Filters.IncludeSnapshots + + + Left + $_.Definition.Filters.IncludeBlobVersions + + + Left + $_.Definition.Filters.IncludeDeleted + + + Left + $_.Definition.Filters.BlobTypes + + + Left + $_.Definition.Filters.PrefixMatch + + + Left + $_.Definition.Filters.ExcludePrefix + + + Left + $_.Definition.SchemaFields + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + Microsoft.Azure.Commands.Management.Storage.Models.PSBlobInventoryPolicy + + + + + + + StorageAccountName + + + + ResourceGroupName + + + + Name + + + + + Id + + + + Type + + + + LastModifiedTime + + + + $_.Enabled + + + + $_.Rules + + + + + + + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + Microsoft.Azure.Commands.Management.Storage.Models.PSLocalUser + + + $_.ResourceGroupName + ", StorageAccountName: " + $_.StorageAccountName + + + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + Name + + + Left + Sid + + + Left + HomeDirectory + + + Left + HasSharedKey + + + Left + HasSshKey + + + Left + HasSshPassword + + + Left + + if (($_.PermissionScopes -ne $null) -and ($_.PermissionScopes.Count -ne 0)) {if ($_.PermissionScopes.Count -eq 1) {"[" + $_.PermissionScopes[0].ResourceName + "]"} else {"[" + $_.PermissionScopes[0].ResourceName + ",...]"}} else {$null} + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + diff --git a/Modules/Az.Storage/5.10.1/Storage.format.ps1xml b/Modules/Az.Storage/5.10.1/Storage.format.ps1xml new file mode 100644 index 000000000000..d36e74507b78 --- /dev/null +++ b/Modules/Az.Storage/5.10.1/Storage.format.ps1xml @@ -0,0 +1,843 @@ + + + + + Microsoft.Azure.Storage.File.CloudFileShare + + Microsoft.Azure.Storage.File.CloudFileShare + + + $_.ServiceClient.BaseUri + + + + + + + 63 + Left + + + + Left + + + + Left + + + + Left + + + + + + + $_.Name + + + $_.Properties.LastModified + + + $_.IsSnapshot + + + $_.SnapshotTime + + + + + + + + Microsoft.Azure.Storage.File.CloudFileItems + + Microsoft.Azure.Storage.File.CloudFile + Microsoft.Azure.Storage.File.CloudFileDirectory + + + $_.Parent.SnapshotQualifiedUri + + + + + + + 10 + Left + + + + 15 + Right + + + + Left + + + + + + + $_.DirectoryTag + + + $_.Properties.Length + + + $_.Name + + + + + + + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + Microsoft.Azure.Storage.Blob.CloudBlobContainer + + + $_.ServiceClient.BaseUri + + + + + + + 20 + Left + + + + 60 + Left + + + + Left + + + + + + + $_.Name + + + $_.Uri + + + $_.Properties.LastModified.UtcDateTime.ToString("u") + + + + + + + + Microsoft.Azure.Storage.Blob.ICloudBlob + + Microsoft.Azure.Storage.Blob.ICloudBlob + Microsoft.Azure.Storage.Blob.CloudBlockBlob + Microsoft.Azure.Storage.Blob.CloudPageBlob + Microsoft.Azure.Storage.Blob.CloudAppendBlob + + + $_.Container.Uri + + + + + + + 20 + Left + + + + 15 + Left + + + + Left + 15 + + + + Left + 10 + + + + 10 + Left + + + + 30 + Left + + + + 20 + Left + + + + Left + 10 + + + + 20 + Left + + + + + + + $_.Name + + + $_.BlobType + + + $_.Properties.Length + + + $_.IsDeleted + + + $_.Properties.RemainingDaysBeforePermanentDelete + + + $_.Properties.ContentType + + + $_.Properties.LastModified.UtcDateTime.ToString("u") + + + $_.ICloudBlob.Properties.StandardBlobTier + + + $_.SnapshotTime.UtcDateTime.ToString("u") + + + + + + + + Microsoft.WindowsAzure.Storage.Table.CloudTable + + Microsoft.WindowsAzure.Storage.Table.CloudTable + + + $_.ServiceClient.BaseUri + + + + + + + 40 + Left + + + + 40 + Left + + + + + + + $_.Name + + + $_.Uri + + + + + + + + Microsoft.Azure.Storage.Queue.CloudQueue + + Microsoft.Azure.Storage.Queue.CloudQueue + + + $_.ServiceClient.BaseUri + + + + + + + 30 + Left + + + + 20 + Left + + + + 20 + Left + + + + 40 + Left + + + + + + + $_.Name + + + $_.EncodeMessage + + + + if (!$_.ApproximateMessageCount) + { + ""; + } + else + { + $_.ApproximateMessageCount + } + + + + $_.Uri + + + + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.AzureStorageContext + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.AzureStorageContext + + + + + + + + StorageAccountName + + + + BlobEndPoint + + + + TableEndPoint + + + + QueueEndPoint + + + + + + + + Microsoft.Azure.Storage.Shared.Protocol.ServiceProperties + + Microsoft.Azure.Storage.Shared.Protocol.ServiceProperties + + + + + + + + $_.Logging.Version + + + + $_.Logging.LoggingOperations + + + + $_.Logging.RetentionDays + + + + $_.HourMetrics.Version + + + + $_.HourMetrics.MetricsLevel + + + + $_.HourMetrics.RetentionDays + + + + $_.MinuteMetrics.Version + + + + $_.MinuteMetrics.MetricsLevel + + + + $_.MinuteMetrics.RetentionDays + + + + $_.DeleteRetentionPolicy.Enabled + + + + $_.DeleteRetentionPolicy.RetentionDays + + + + $_.StaticWebsite.Enabled + + + + $_.StaticWebsite.IndexDocument + + + + $_.StaticWebsite.ErrorDocument404Path + + + $_.Cors + + + + + DefaultServiceVersion + + + + + + + + Microsoft.Azure.Storage.Shared.Protocol.LoggingProperties + + Microsoft.Azure.Storage.Shared.Protocol.LoggingProperties + + + + + + Left + 20 + + + + Left + 30 + + + + Left + 20 + + + + + + + $_.Version + + + $_.LoggingOperations + + + $_.RetentionDays + + + + + + + + Microsoft.Azure.Storage.Shared.Protocol.MetricsProperties + + Microsoft.Azure.Storage.Shared.Protocol.MetricsProperties + + + + + + Left + 20 + + + + Left + 30 + + + + Left + 20 + + + + + + + $_.Version + + + $_.MetricsLevel + + + $_.RetentionDays + + + + + + + + Microsoft.Azure.Storage.Blob.CloudBlobDirectory + + Microsoft.Azure.Storage.Blob.CloudBlobDirectory + + + $_.Container.Uri + + + + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + $_.Prefix + + + $_.PathProperties.Owner + + + $_.PathProperties.Group + + + $_.PathProperties.Permissions.ToSymbolicString() + + + $_.Properties.LastModified.UtcDateTime.ToString("u") + + + + + + + + Microsoft.Azure.Storage.Blob.PathPermissions + + Microsoft.Azure.Storage.Blob.PathPermissions + + + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + $_.Owner.ToSymbolicString() + + + $_.Group.ToSymbolicString() + + + $_.Other.ToSymbolicString() + + + StickyBit + + + ExtendedInfoInAcl + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + diff --git a/Modules/Az.Storage/5.10.1/Storage.generated.format.ps1xml b/Modules/Az.Storage/5.10.1/Storage.generated.format.ps1xml new file mode 100644 index 000000000000..f56694f5bfa6 --- /dev/null +++ b/Modules/Az.Storage/5.10.1/Storage.generated.format.ps1xml @@ -0,0 +1,922 @@ + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageTable + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageTable + + + + + Left + + + + Left + + + + + + + + Left + $_.Name + + + Left + $_.Uri + + + + + + + $_.CloudTable.ServiceClient.BaseUri + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageQueue + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageQueue + + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + + Left + $_.Name + + + Left + $_.Uri + + + Left + $_.ApproximateMessageCount + + + Left + $_.EncodeMessage + + + + + + + $_.CloudQueue.ServiceClient.BaseUri + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSSeriviceProperties + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSSeriviceProperties + + + + + + + $_.Logging.Version + + + + $_.Logging.LoggingOperations + + + + $_.Logging.RetentionDays + + + + $_.HourMetrics.Version + + + + $_.HourMetrics.MetricsLevel + + + + $_.HourMetrics.RetentionDays + + + + $_.MinuteMetrics.Version + + + + $_.MinuteMetrics.MetricsLevel + + + + $_.MinuteMetrics.RetentionDays + + + + $_.DeleteRetentionPolicy.Enabled + + + + $_.DeleteRetentionPolicy.RetentionDays + + + + + $_.StaticWebsite.Enabled + + + + $_.StaticWebsite.IndexDocument + + + + $_.StaticWebsite.ErrorDocument404Path + + + $_.Cors + + + + DefaultServiceVersion + + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageContainer + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageContainer + + + + + Left + + 20 + + + Left + + 20 + + + Left + + 30 + + + Left + + 10 + + + Left + + 17 + + + + + + + Left + $_.Name + + + Left + PublicAccess + + + Left + LastModified + + + Left + IsDeleted + + + Left + VersionId + + + + + + + $_.BlobContainerClient.AccountName + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageBlob + + + + + Left + + 20 + + + Left + + 9 + + + Left + + 15 + + + Left + + 30 + + + Left + + 20 + + + Left + + 10 + + + Left + + 28 + + + Left + + 10 + + + Left + + 30 + + + + + + + Left + $_.Name + + + Left + if ($_.BlobType -ne "Unspecified") {$_.BlobType} + + + Left + if (($_.BlobType -ne "Unspecified") -or ($_.Length -ne 0 )) {$_.Length} + + + Left + ContentType + + + Left + $_.LastModified.UtcDateTime.ToString("u") + + + Left + $_.AccessTier + + + Left + $_.SnapshotTime.UtcDateTime.ToString("o") + + + Left + IsDeleted + + + Left + if ($_.IsLatestVersion){$_.VersionId + " *"} else {$_.VersionId} + + + + + + + $_.BlobBaseClient.AccountName + ", ContainerName: " + $_.BlobBaseClient.BlobContainerName + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFile + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFile + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFileDirectory + + + if ($_.CloudFile -eq $null) {$_.CloudFileDirectory.Parent.SnapshotQualifiedUri} else {$_.CloudFile.Parent.SnapshotQualifiedUri} + + + + + + + 10 + Left + + + + 15 + Right + + + + Left + + + + + + + if ($_.ShareFileClient -eq $null) {"Directory"} else {"File"} + + + $_.Length + + + $_.Name + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFileShare + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureStorageFileShare + + + $_.ShareClient.AccountName + + + + + + Left + + + + Left + + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + $_.Name + + + $_.Quota + + + $_.LastModified.UtcDateTime.ToString("o") + + + $_.IsSnapshot + + + $_.SnapshotTime.UtcDateTime.ToString("o") + + + $_.IsDeleted + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2Item + + + + + Left + + 20 + + + Left + + 12 + + + Left + + 15 + + + Left + + 20 + + + + Left + 12 + + + Left + + 20 + + + Left + + 20 + + + + + + + Left + Path + + + Left + IsDirectory + + + Left + if ($_.IsDirectory -eq $false) {$_.Length} + + + Left + $_.LastModified.UtcDateTime.ToString("u") + + + Left + $_.Permissions.ToSymbolicPermissions() + + + Left + Owner + + + Left + Group + + + + + + + if ($_.IsDirectory) {$_.Directory.FileSystemName} else {$_.File.FileSystemName} + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSFileHandle + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSFileHandle + + + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + HandleId + + + Path + + + ClientIp + + + ClientPort + + + $_.OpenTime.UtcDateTime.ToString("u") + + + $_.LastReconnectTime.UtcDateTime.ToString("u") + + + FileId + + + ParentId + + + SessionId + + + + + + + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry + + Microsoft.WindowsAzure.Commands.Storage.Model.ResourceModel.PSPathAccessControlEntry + + + + + + Left + + + + Left + + + + Left + + + + Left + + + + + + + DefaultScope + + + AccessControlType + + + EntityId + + + $_.GetSymbolicRolePermissions() + + + + + + + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2DeletedItem + + Microsoft.WindowsAzure.Commands.Common.Storage.ResourceModel.AzureDataLakeGen2DeletedItem + + + + + Left + + 20 + + + Left + + 20 + + + Left + + 20 + + + Left + + 22 + + + + + + + Left + Path + + + Left + DeletionId + + + Left + $_.DeletedOn.UtcDateTime.ToString("u") + + + Left + RemainingRetentionDays + + + + + + + $_.FileSystemName + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + diff --git a/Modules/Az.Storage/5.10.1/System.IO.Hashing.dll b/Modules/Az.Storage/5.10.1/System.IO.Hashing.dll new file mode 100644 index 000000000000..122d5973b18b Binary files /dev/null and b/Modules/Az.Storage/5.10.1/System.IO.Hashing.dll differ diff --git a/Modules/CIPPCore/CIPPCore.psm1 b/Modules/CIPPCore/CIPPCore.psm1 index 34e402aa7101..f69a353414d9 100644 --- a/Modules/CIPPCore/CIPPCore.psm1 +++ b/Modules/CIPPCore/CIPPCore.psm1 @@ -1,5 +1,5 @@ -$Public = @(Get-ChildItem -Path $PSScriptRoot\Public\*.ps1 -ErrorAction SilentlyContinue) -$Private = @(Get-ChildItem -Path $PSScriptRoot\private\*.ps1 -ErrorAction SilentlyContinue) +$Public = @(Get-ChildItem -Path $PSScriptRoot\Public\*.ps1 -Recurse -ErrorAction SilentlyContinue) +$Private = @(Get-ChildItem -Path $PSScriptRoot\private\*.ps1 -Recurse -ErrorAction SilentlyContinue) $Functions = $Public + $Private foreach ($import in @($Functions)) { try { diff --git a/Modules/GraphRequests/Private/Get-StringHash.ps1 b/Modules/CIPPCore/Private/Get-StringHash.ps1 similarity index 100% rename from Modules/GraphRequests/Private/Get-StringHash.ps1 rename to Modules/CIPPCore/Private/Get-StringHash.ps1 diff --git a/Modules/CIPPCore/Public/Add-CIPPApplicationPermission.ps1 b/Modules/CIPPCore/Public/Add-CIPPApplicationPermission.ps1 new file mode 100644 index 000000000000..81c0bdd6761a --- /dev/null +++ b/Modules/CIPPCore/Public/Add-CIPPApplicationPermission.ps1 @@ -0,0 +1,49 @@ +function Add-CIPPApplicationPermission { + [CmdletBinding()] + param( + $RequiredResourceAccess, + $ApplicationId, + $Tenantfilter + ) + Set-Location (Get-Item $PSScriptRoot).FullName + if ($RequiredResourceAccess -eq "CIPPDefaults") { + $RequiredResourceAccess = (Get-Content '.\SAMManifest.json' | ConvertFrom-Json).requiredResourceAccess + } + $ServicePrincipalList = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/servicePrincipals?`$select=AppId,id,displayName&`$top=999" -skipTokenCache $true -tenantid $Tenantfilter + $ourSVCPrincipal = $ServicePrincipalList | Where-Object -Property AppId -EQ $ApplicationId + if(!$ourSVCPrincipal) { + #Our Service Principal isn't available yet. We do a sleep and reexecute after 3 seconds. + Start-Sleep -Seconds 5 + $ServicePrincipalList = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/servicePrincipals?`$select=AppId,id,displayName&`$top=999" -skipTokenCache $true -tenantid $Tenantfilter + $ourSVCPrincipal = $ServicePrincipalList | Where-Object -Property AppId -EQ $ApplicationId + } + + $Results = [System.Collections.ArrayList]@() + + $CurrentRoles = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/servicePrincipals/$($ourSVCPrincipal.id)/appRoleAssignments" -tenantid $Tenantfilter -skipTokenCache $true + + $Grants = foreach ($App in $RequiredResourceAccess) { + $svcPrincipalId = $ServicePrincipalList | Where-Object -Property AppId -EQ $App.resourceAppId + if (!$svcPrincipalId) { continue } + foreach ($SingleResource in $App.ResourceAccess | Where-Object -Property Type -EQ "Role") { + if ($SingleResource.id -In $CurrentRoles.appRoleId) { continue } + [pscustomobject]@{ + principalId = $($ourSVCPrincipal.id) + resourceId = $($svcPrincipalId.id) + appRoleId = "$($SingleResource.Id)" + } + } + } + $counter = 0 + foreach ($Grant in $Grants) { + try { + $SettingsRequest = New-GraphPOSTRequest -body ($Grant | ConvertTo-Json) -uri "https://graph.microsoft.com/beta/servicePrincipals/$($ourSVCPrincipal.id)/appRoleAssignedTo" -tenantid $Tenantfilter -type POST + $counter ++ + } + catch { + $Results.add("Failed to grant $($Grant.appRoleId) to $($Grant.resourceId): $($_.Exception.Message)") | Out-Null + } + } + "Added $counter Application permissions to $($ourSVCPrincipal.displayName)" + return $Results +} \ No newline at end of file diff --git a/Modules/CIPPCore/Public/Add-CIPPAzDataTableEntity.ps1 b/Modules/CIPPCore/Public/Add-CIPPAzDataTableEntity.ps1 new file mode 100644 index 000000000000..ee53c68020d8 --- /dev/null +++ b/Modules/CIPPCore/Public/Add-CIPPAzDataTableEntity.ps1 @@ -0,0 +1,62 @@ +function Add-CIPPAzDataTableEntity { + [CmdletBinding()] + param( + $Context, + $Entity, + [switch]$Force, + [switch]$CreateTableIfNotExists + ) + + foreach ($SingleEnt in $Entity) { + try { + Add-AzDataTableEntity -context $Context -force:$Force -CreateTableIfNotExists:$CreateTableIfNotExists -Entity $SingleEnt + } + catch [System.Exception] { + if ($_.Exception.ErrorCode -eq "PropertyValueTooLarge" -or $_.Exception.ErrorCode -eq "EntityTooLarge") { + try { + $MaxSize = 30kb + $largePropertyName = $null + foreach ($key in $SingleEnt.Keys) { + if ($SingleEnt[$key].Length -gt $MaxSize) { + $largePropertyName = $key + break + } + } + + if ($largePropertyName) { + $dataString = $SingleEnt[$largePropertyName] + $splitCount = [math]::Ceiling($dataString.Length / $MaxSize) + $splitData = 0..($splitCount - 1) | ForEach-Object { + $start = $_ * $MaxSize + $dataString.Substring($start, [Math]::Min($MaxSize, $dataString.Length - $start)) + } + + $splitPropertyNames = 1..$splitData.Count | ForEach-Object { + "${largePropertyName}_Part$_" + } + + $splitInfo = @{ + OriginalHeader = $largePropertyName; + SplitHeaders = $splitPropertyNames + } + $SingleEnt["SplitOverProps"] = ($splitInfo | ConvertTo-Json).ToString() + $SingleEnt.Remove($largePropertyName) + + for ($i = 0; $i -lt $splitData.Count; $i++) { + $SingleEnt[$splitPropertyNames[$i]] = $splitData[$i] + } + + Add-AzDataTableEntity -context $Context -force:$Force -CreateTableIfNotExists:$CreateTableIfNotExists -Entity $SingleEnt + } + + } + catch { + throw "Error processing entity: $($_.Exception.Message)." + } + } + else { + throw $_ + } + } + } +} diff --git a/Modules/CIPPCore/Public/Add-CIPPDelegatedPermission.ps1 b/Modules/CIPPCore/Public/Add-CIPPDelegatedPermission.ps1 new file mode 100644 index 000000000000..7ff4452bba45 --- /dev/null +++ b/Modules/CIPPCore/Public/Add-CIPPDelegatedPermission.ps1 @@ -0,0 +1,51 @@ +function Add-CIPPDelegatedPermission { + [CmdletBinding()] + param( + $RequiredResourceAccess, + $ApplicationId, + $Tenantfilter + ) + Set-Location (Get-Item $PSScriptRoot).FullName + + if ($RequiredResourceAccess -eq "CIPPDefaults") { + $RequiredResourceAccess = (Get-Content '.\SAMManifest.json' | ConvertFrom-Json).requiredResourceAccess + } + $Translator = Get-Content '.\PermissionsTranslator.json' | ConvertFrom-Json + $ServicePrincipalList = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/servicePrincipals?`$select=AppId,id,displayName&`$top=999" -tenantid $Tenantfilter -skipTokenCache $true + $ourSVCPrincipal = $ServicePrincipalList | Where-Object -Property AppId -EQ $ApplicationId + $Results = [System.Collections.ArrayList]@() + + $CurrentDelegatedScopes = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/servicePrincipals/$($ourSVCPrincipal.id)/oauth2PermissionGrants" -skipTokenCache $true -tenantid $Tenantfilter + + foreach ($App in $requiredResourceAccess) { + $svcPrincipalId = $ServicePrincipalList | Where-Object -Property AppId -EQ $App.resourceAppId + if (!$svcPrincipalId) { continue } + $NewScope = ($Translator | Where-Object { $_.id -in $App.ResourceAccess.id } | Where-Object { $_.value -notin 'profile', 'openid', 'offline_access' }).value -join ' ' + $OldScope = ($CurrentDelegatedScopes | Where-Object -Property Resourceid -EQ $svcPrincipalId.id) + + if (!$OldScope) { + $Createbody = @{ + clientId = $ourSVCPrincipal.id + consentType = "AllPrincipals" + resourceId = $svcPrincipalId.id + scope = $NewScope + } | ConvertTo-Json -Compress + $CreateRequest = New-GraphPOSTRequest -uri "https://graph.microsoft.com/v1.0/oauth2PermissionGrants" -tenantid $Tenantfilter -body $Createbody -type POST + $Results.add("Successfully added permissions for $($svcPrincipalId.displayName)") | Out-Null + } + else { + $compare = Compare-Object -ReferenceObject $OldScope.scope.Split(' ') -DifferenceObject $NewScope.Split(' ') + if (!$compare) { + $Results.add("All delegated permissions exist for $($svcPrincipalId.displayName)") | Out-Null + continue + } + $Patchbody = @{ + scope = "$NewScope" + } | ConvertTo-Json -Compress + $Patchrequest = New-GraphPOSTRequest -uri "https://graph.microsoft.com/v1.0/oauth2PermissionGrants/$($OldScope.id)" -tenantid $Tenantfilter -body $Patchbody -type PATCH + $Results.add("Successfully updated permissions for $($svcPrincipalId.displayName)") | Out-Null + } + } + + return $Results +} diff --git a/Modules/CIPPCore/Public/Entrypoints/Invoke-ExecAddMultiTenantApp.ps1 b/Modules/CIPPCore/Public/Entrypoints/Invoke-ExecAddMultiTenantApp.ps1 new file mode 100644 index 000000000000..5ea4cacd9de0 --- /dev/null +++ b/Modules/CIPPCore/Public/Entrypoints/Invoke-ExecAddMultiTenantApp.ps1 @@ -0,0 +1,54 @@ +using namespace System.Net + +function Invoke-ExecAddMultiTenantApp { + param($Request, $TriggerMetadata) + + $APIName = $TriggerMetadata.FunctionName + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug' + $DelegateResources = $request.body.permissions | Where-Object -Property origin -EQ 'Delegated' | ForEach-Object { @{ id = $_.id; type = 'Scope' } } + $DelegateResourceAccess = @{ ResourceAppId = '00000003-0000-0000-c000-000000000000'; resourceAccess = $DelegateResources } + $ApplicationResources = $request.body.permissions | Where-Object -Property origin -EQ 'Application' | ForEach-Object { @{ id = $_.id; type = 'Role' } } + $ApplicationResourceAccess = @{ ResourceAppId = '00000003-0000-0000-c000-000000000000'; resourceAccess = $ApplicationResources } + + $Results = try { + #This needs to be moved to a queue. + if ('allTenants' -in $Request.body.SelectedTenants.defaultDomainName) { $TenantFilter = Get-Tenants } else { $TenantFilter = $Request.body.SelectedTenants.defaultDomainName } + if ($request.body.CopyPermissions -eq $true) { + try { + $ExistingApp = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/applications(appId='$($Request.body.AppId)')" -tenantid $ENV:tenantid -NoAuthCheck $true + $DelegateResourceAccess = $Existingapp.requiredResourceAccess + $ApplicationResourceAccess = $Existingapp.requiredResourceAccess + } catch { + 'Failed to get existing permissions. The app does not exist in the partner tenant.' + } + } + + foreach ($Tenant in $TenantFilter) { + try { + $ServicePrincipalList = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/servicePrincipals?`$select=AppId,id,displayName&`$top=999" -tenantid $Tenant + if ($Request.body.AppId -Notin $ServicePrincipalList.appId) { + $PostResults = New-GraphPostRequest 'https://graph.microsoft.com/beta/servicePrincipals' -type POST -tenantid $tenant -body "{ `"appId`": `"$($Request.body.AppId)`" }" + "Added $($Request.body.AppId) to tenant $($Tenant)" + } else { + "This app already exists in tenant $($Tenant). We're adding the required permissions." + } + + Add-CIPPApplicationPermission -RequiredResourceAccess $applicationResourceAccess -ApplicationId $Request.body.AppId -Tenantfilter $Tenant + Add-CIPPDelegatedPermission -RequiredResourceAccess $DelegateResourceAccess -ApplicationId $Request.body.AppId -Tenantfilter $Tenant + } catch { + "Error adding application to tenant $Tenant - $($_.Exception.Message)" + } + } + $StatusCode = [HttpStatusCode]::OK + } catch { + $ErrorMsg = Get-NormalizedError -message $($_.Exception.Message) + $Results = "Function Error: $ErrorMsg" + $StatusCode = [HttpStatusCode]::BadRequest + } + # Associate values to output bindings by calling 'Push-OutputBinding'. + Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ + StatusCode = $StatusCode + Body = @{ Results = @($Results) } + }) + +} \ No newline at end of file diff --git a/Modules/CIPPCore/Public/Entrypoints/Invoke-ExecUserSettings.ps1 b/Modules/CIPPCore/Public/Entrypoints/Invoke-ExecUserSettings.ps1 new file mode 100644 index 000000000000..76469b49b477 --- /dev/null +++ b/Modules/CIPPCore/Public/Entrypoints/Invoke-ExecUserSettings.ps1 @@ -0,0 +1,36 @@ +using namespace System.Net + +function Invoke-ExecUserSettings { + <# + .FUNCTIONALITY + Entrypoint + #> + param($Request, $TriggerMetadata) + + $APIName = $TriggerMetadata.FunctionName + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug' + + try { + $object = $request.body.currentSettings | Select-Object * -ExcludeProperty CurrentTenant, pageSizes, sidebarShow, sidebarUnfoldable, _persist | ConvertTo-Json -Compress + $Table = Get-CippTable -tablename 'UserSettings' + $Table.Force = $true + Add-CIPPAzDataTableEntity @Table -Entity @{ + JSON = "$object" + RowKey = "$($Request.body.user)" + PartitionKey = "UserSettings" + } + $StatusCode = [HttpStatusCode]::OK + $Results = [pscustomobject]@{"Results" = "Successfully added user settings" } + } + catch { + $ErrorMsg = Get-NormalizedError -message $($_.Exception.Message) + $Results = "Function Error: $ErrorMsg" + $StatusCode = [HttpStatusCode]::BadRequest + } + # Associate values to output bindings by calling 'Push-OutputBinding'. + Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ + StatusCode = $StatusCode + Body = @($Results) + }) + +} \ No newline at end of file diff --git a/Modules/CIPPCore/Public/Entrypoints/Invoke-ListFunctionParameters.ps1 b/Modules/CIPPCore/Public/Entrypoints/Invoke-ListFunctionParameters.ps1 new file mode 100644 index 000000000000..13395bcac219 --- /dev/null +++ b/Modules/CIPPCore/Public/Entrypoints/Invoke-ListFunctionParameters.ps1 @@ -0,0 +1,68 @@ +using namespace System.Net + +function Invoke-ListFunctionParameters { + <# + .FUNCTIONALITY + Entrypoint + #> + # Input bindings are passed in via param block. + param($Request, $TriggerMetadata) + + $APIName = $TriggerMetadata.FunctionName + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug' + + # Write to the Azure Functions log stream. + Write-Information 'PowerShell HTTP trigger function processed a request.' + + # Interact with query parameters or the body of the request. + $Module = $Request.Query.Module + $Function = $Request.Query.Function + + $CommandQuery = @{} + if ($Module) { + $CommandQuery.Module = $Module + } + if ($Function) { + $CommandQuery.Name = $Function + } + + $CommonParameters = @('Verbose', 'Debug', 'ErrorAction', 'WarningAction', 'InformationAction', 'ErrorVariable', 'WarningVariable', 'InformationVariable', 'OutVariable', 'OutBuffer', 'PipelineVariable', 'TenantFilter', 'APIName', 'ExecutingUser') + #temporary until I clean up the coremodule and move things private. + $TemporaryBlacklist = 'Get-CIPPAuthentication', 'Invoke-CippWebhookProcessing', 'Invoke-ListFunctionParameters', 'New-CIPPAPIConfig', 'New-CIPPGraphSubscription.ps1' + try { + $Functions = Get-Command @CommandQuery | Where-Object { $_.Visibility -eq 'Public' } + $Results = foreach ($Function in $Functions) { + if ($Function -In $TemporaryBlacklist) { continue } + $Help = Get-Help $Function + $ParamsHelp = ($Help | Select-Object -ExpandProperty parameters).parameter | Select-Object name, @{n = 'description'; exp = { $_.description.Text } } + if ($Help.Functionality -eq 'Entrypoint') { continue } + $Parameters = foreach ($Key in $Function.Parameters.Keys) { + if ($CommonParameters -notcontains $Key) { + $Param = $Function.Parameters.$Key + $ParamHelp = $ParamsHelp | Where-Object { $_.name -eq $Key } + [PSCustomObject]@{ + Name = $Key + Type = $Param.ParameterType.FullName + Description = $ParamHelp.description + } + } + } + [PSCustomObject]@{ + Function = $Function.Name + Synopsis = $Help.Synopsis + Parameters = @($Parameters) + } + } + $StatusCode = [HttpStatusCode]::OK + $Results + } catch { + $Results = "Function Error: $($_.Exception.Message)" + $StatusCode = [HttpStatusCode]::BadRequest + } + # Associate values to output bindings by calling 'Push-OutputBinding'. + Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ + StatusCode = $StatusCode + Body = @($Results) + }) + +} \ No newline at end of file diff --git a/Modules/GraphRequests/Public/Get-ListGraphRequest.ps1 b/Modules/CIPPCore/Public/Entrypoints/Invoke-ListGraphRequest.ps1 similarity index 80% rename from Modules/GraphRequests/Public/Get-ListGraphRequest.ps1 rename to Modules/CIPPCore/Public/Entrypoints/Invoke-ListGraphRequest.ps1 index cfcb4eab2d08..e6f2f4e3ff40 100644 --- a/Modules/GraphRequests/Public/Get-ListGraphRequest.ps1 +++ b/Modules/CIPPCore/Public/Entrypoints/Invoke-ListGraphRequest.ps1 @@ -1,6 +1,10 @@ -function Get-ListGraphRequest { - # Input bindings are passed in via param block. +function Invoke-ListGraphRequest { + <# + .FUNCTIONALITY + Entrypoint + #> + [CmdletBinding()] param($Request, $TriggerMetadata) $APIName = $TriggerMetadata.FunctionName @@ -50,7 +54,7 @@ function Get-ListGraphRequest { } if ($Request.Query.TenantFilter) { - $GraphRequestParams.Tenant = $Request.Query.TenantFilter + $GraphRequestParams.TenantFilter = $Request.Query.TenantFilter } if ($Request.Query.QueueId) { @@ -86,8 +90,21 @@ function Get-ListGraphRequest { } Write-Host ($GraphRequestParams | ConvertTo-Json) + + $Metadata = $GraphRequestParams + try { - $GraphRequestData = Get-GraphRequestList @GraphRequestParams + $Results = Get-GraphRequestList @GraphRequestParams + if ($Results.Queued -eq $true) { + $Metadata.Queued = $Results.Queued + $Metadata.QueueMessage = $Results.QueueMessage + $Metadata.QueuedId = $Results.QueueId + $Results = @() + } + $GraphRequestData = [PSCustomObject]@{ + Results = @($Results) + Metadata = $Metadata + } $StatusCode = [HttpStatusCode]::OK } catch { $GraphRequestData = "Graph Error: $($_.Exception.Message) - Endpoint: $($Request.Query.Endpoint)" @@ -96,6 +113,6 @@ function Get-ListGraphRequest { Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ StatusCode = $StatusCode - Body = @($GraphRequestData) + Body = $GraphRequestData | ConvertTo-Json -Depth 20 -Compress }) } \ No newline at end of file diff --git a/Modules/CIPPCore/Public/Entrypoints/Invoke-ListUserSettings.ps1 b/Modules/CIPPCore/Public/Entrypoints/Invoke-ListUserSettings.ps1 new file mode 100644 index 000000000000..47ae2f685830 --- /dev/null +++ b/Modules/CIPPCore/Public/Entrypoints/Invoke-ListUserSettings.ps1 @@ -0,0 +1,32 @@ +using namespace System.Net + +function Invoke-ListUserSettings { + <# + .FUNCTIONALITY + Entrypoint + #> + param($Request, $TriggerMetadata) + + $APIName = $TriggerMetadata.FunctionName + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug' + $username = ([System.Text.Encoding]::UTF8.GetString([System.Convert]::FromBase64String($request.headers.'x-ms-client-principal')) | ConvertFrom-Json).userDetails + + try { + $Table = Get-CippTable -tablename 'UserSettings' + $UserSettings = Get-CIPPAzDataTableEntity @Table -Filter "RowKey eq 'allUsers'" + if (!$UserSettings) { Get-CIPPAzDataTableEntity @Table -Filter "RowKey eq '$username'" } + $UserSettings = $UserSettings | Select-Object -ExpandProperty JSON | ConvertFrom-Json -Depth 10 -ErrorAction SilentlyContinue + $StatusCode = [HttpStatusCode]::OK + $Results = $UserSettings + } + catch { + $Results = "Function Error: $($_.Exception.Message)" + $StatusCode = [HttpStatusCode]::BadRequest + } + # Associate values to output bindings by calling 'Push-OutputBinding'. + Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ + StatusCode = $StatusCode + Body = $Results + }) + +} \ No newline at end of file diff --git a/Modules/CIPPCore/Public/Entrypoints/Push-AddAlertSubscription_Queue.ps1 b/Modules/CIPPCore/Public/Entrypoints/Push-AddAlertSubscription_Queue.ps1 new file mode 100644 index 000000000000..611be3f2a23a --- /dev/null +++ b/Modules/CIPPCore/Public/Entrypoints/Push-AddAlertSubscription_Queue.ps1 @@ -0,0 +1,17 @@ +function Push-AddAlertSubscription_Queue { + <# + .FUNCTIONALITY + Entrypoint + #> + # Input bindings are passed in via param block. + param($QueueItem, $TriggerMetadata) + + try { + Write-Information ($QueueItem | ConvertTo-Json) + New-CIPPGraphSubscription @QueueItem + Write-Information "Added webhook subscription for $($QueueItem.TenantFilter)" + } catch { + Write-Error "Unable to add webhook subscription $($_.Exception.Message)" + } + +} \ No newline at end of file diff --git a/Modules/GraphRequests/Public/Push-ListGraphRequestQueue.ps1 b/Modules/CIPPCore/Public/Entrypoints/Push-ListGraphRequestQueue.ps1 similarity index 88% rename from Modules/GraphRequests/Public/Push-ListGraphRequestQueue.ps1 rename to Modules/CIPPCore/Public/Entrypoints/Push-ListGraphRequestQueue.ps1 index 8d3ea706de4b..426e1538bf15 100644 --- a/Modules/GraphRequests/Public/Push-ListGraphRequestQueue.ps1 +++ b/Modules/CIPPCore/Public/Entrypoints/Push-ListGraphRequestQueue.ps1 @@ -1,4 +1,8 @@ function Push-ListGraphRequestQueue { + <# + .FUNCTIONALITY + Entrypoint + #> # Input bindings are passed in via param block. param($QueueItem, $TriggerMetadata) @@ -23,10 +27,10 @@ function Push-ListGraphRequestQueue { $Filter = "PartitionKey eq '{0}' and Tenant eq '{1}'" -f $PartitionKey, $QueueItem.Tenant Write-Host $Filter - Get-AzDataTableEntity @Table -Filter $Filter | Remove-AzDataTableEntity @Table + Get-CIPPAzDataTableEntity @Table -Filter $Filter | Remove-AzDataTableEntity @Table $GraphRequestParams = @{ - Tenant = $QueueItem.Tenant + TenantFilter = $QueueItem.TenantFilter Endpoint = $QueueItem.Endpoint Parameters = $QueueItem.Parameters NoPagination = $QueueItem.NoPagination @@ -37,7 +41,8 @@ function Push-ListGraphRequestQueue { $RawGraphRequest = try { Get-GraphRequestList @GraphRequestParams - } catch { + } + catch { [PSCustomObject]@{ Tenant = $QueueItem.Tenant CippStatus = "Could not connect to tenant. $($_.Exception.message)" @@ -56,9 +61,10 @@ function Push-ListGraphRequestQueue { } } try { - Add-AzDataTableEntity @Table -Entity $GraphResults -Force | Out-Null + Add-CIPPAzDataTableEntity @Table -Entity $GraphResults -Force | Out-Null Update-CippQueueEntry -RowKey $QueueItem.QueueId -Status 'Completed' - } catch { + } + catch { Write-Host "Queue Error: $($_.Exception.Message)" Update-CippQueueEntry -RowKey $QueueItem.QueueId -Status 'Failed' } diff --git a/Modules/CIPPCore/Public/Get-CIPPAuthentication.ps1 b/Modules/CIPPCore/Public/Get-CIPPAuthentication.ps1 index f281bae8d301..97a499bdfc82 100644 --- a/Modules/CIPPCore/Public/Get-CIPPAuthentication.ps1 +++ b/Modules/CIPPCore/Public/Get-CIPPAuthentication.ps1 @@ -7,12 +7,13 @@ function Get-CIPPAuthentication { try { Connect-AzAccount -Identity - $ENV:applicationid = (Get-AzKeyVaultSecret -VaultName $ENV:WEBSITE_DEPLOYMENT_ID -Name "ApplicationId" -AsPlainText) - $ENV:applicationsecret = (Get-AzKeyVaultSecret -VaultName $ENV:WEBSITE_DEPLOYMENT_ID -Name "ApplicationSecret" -AsPlainText) - $ENV:tenantid = (Get-AzKeyVaultSecret -VaultName $ENV:WEBSITE_DEPLOYMENT_ID -Name "TenantId" -AsPlainText) - $ENV:refreshtoken = (Get-AzKeyVaultSecret -VaultName $ENV:WEBSITE_DEPLOYMENT_ID -Name "RefreshToken" -AsPlainText) + + @('ApplicationId','ApplicationSecret','TenantId','RefreshToken') | Foreach-Object { + Set-Item -path ENV:$_ -value (Get-AzKeyVaultSecret -VaultName $ENV:WEBSITE_DEPLOYMENT_ID -Name $_ -AsPlainText -ErrorAction Stop) -Force + } + $ENV:SetFromProfile = $true - Write-LogMessage -message "Reloaded authentication data from KeyVault" -Sev 'info' -API "CIPP Authentication" + Write-LogMessage -message "Reloaded authentication data from KeyVault" -Sev 'debug' -API "CIPP Authentication" return $true } diff --git a/Modules/CIPPCore/Public/Get-CIPPAzDatatableEntity.ps1 b/Modules/CIPPCore/Public/Get-CIPPAzDatatableEntity.ps1 new file mode 100644 index 000000000000..4ce96415966d --- /dev/null +++ b/Modules/CIPPCore/Public/Get-CIPPAzDatatableEntity.ps1 @@ -0,0 +1,29 @@ +function Get-CIPPAzDataTableEntity { + [CmdletBinding()] + param( + $Context, + $Filter, + $Property, + $First, + $Skip, + $Sort, + $Count + ) + $Results = Get-AzDataTableEntity @PSBoundParameters + $Results = $Results | ForEach-Object { + $entity = $_ + if ($entity.SplitOverProps) { + $splitInfo = $entity.SplitOverProps | ConvertFrom-Json + $mergedData = -join ($splitInfo.SplitHeaders | ForEach-Object { $entity.$_ }) + $entity | Add-Member -NotePropertyName $splitInfo.OriginalHeader -NotePropertyValue $mergedData -Force + $propsToRemove = $splitInfo.SplitHeaders + "SplitOverProps" + $entity = $entity | Select-Object * -ExcludeProperty $propsToRemove + $entity + } + else { + $entity + } + } + + return $Results +} diff --git a/Modules/CIPPCore/Public/Get-CIPPGeoIPLocation.ps1 b/Modules/CIPPCore/Public/Get-CIPPGeoIPLocation.ps1 index a291f2399c1d..11efe5083e4a 100644 --- a/Modules/CIPPCore/Public/Get-CIPPGeoIPLocation.ps1 +++ b/Modules/CIPPCore/Public/Get-CIPPGeoIPLocation.ps1 @@ -28,7 +28,7 @@ function Get-CIPPGeoIPLocation { $CTX = New-AzDataTableContext -TableName geoipdb -ConnectionString 'TableEndpoint=https://cyberdraingeoipdb.table.core.windows.net/;SharedAccessSignature=sv=2022-11-02&ss=t&srt=o&sp=rl&se=2025-08-08T21:05:23Z&st=2023-08-08T13:05:23Z&spr=https&sig=89Bmk2Un89xqNzZPLkryFnLRCjHs9rCWGUJjhvf5mso%3D' $GeoTable = @{ Context = $CTX } - $location = (Get-AzDataTableEntity @GeoTable -Filter "PartitionKey eq '$partitionKey' and RowKey le '$IPAsint' and ipTo ge '$IPAsint'") | Select-Object -Last 1 + $location = (Get-CIPPAzDataTableEntity @GeoTable -Filter "PartitionKey eq '$partitionKey' and RowKey le '$IPAsint' and ipTo ge '$IPAsint'") | Select-Object -Last 1 return $location } diff --git a/Modules/CIPPCore/Public/Get-CIPPLicenseOverview.ps1 b/Modules/CIPPCore/Public/Get-CIPPLicenseOverview.ps1 index 5253575cf3ff..698d30653774 100644 --- a/Modules/CIPPCore/Public/Get-CIPPLicenseOverview.ps1 +++ b/Modules/CIPPCore/Public/Get-CIPPLicenseOverview.ps1 @@ -20,7 +20,7 @@ function Get-CIPPLicenseOverview { Set-Location (Get-Item $PSScriptRoot).FullName $ConvertTable = Import-Csv Conversiontable.csv $LicenseTable = Get-CIPPTable -TableName ExcludedLicenses - $ExcludedSkuList = Get-AzDataTableEntity @LicenseTable + $ExcludedSkuList = Get-CIPPAzDataTableEntity @LicenseTable $GraphRequest = foreach ($singlereq in $RawGraphRequest) { $skuid = $singlereq.Licenses foreach ($sku in $skuid) { diff --git a/Modules/CIPPCore/Public/Get-CIPPMFAState.ps1 b/Modules/CIPPCore/Public/Get-CIPPMFAState.ps1 new file mode 100644 index 000000000000..73a2295b3be1 --- /dev/null +++ b/Modules/CIPPCore/Public/Get-CIPPMFAState.ps1 @@ -0,0 +1,102 @@ + +function Get-CIPPMFAState { + [CmdletBinding()] + param ( + $TenantFilter, + $APIName = "Get MFA Status", + $ExecutingUser + ) + + $users = foreach ($user in (New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/users?$select=id,UserPrincipalName,DisplayName,accountEnabled,assignedLicenses' -tenantid $TenantFilter)) { + [PSCustomObject]@{ + UserPrincipalName = $user.UserPrincipalName + isLicensed = [boolean]$user.assignedLicenses.skuid + accountEnabled = $user.accountEnabled + DisplayName = $user.DisplayName + ObjectId = $user.id + StrongAuthenticationRequirements = @{StrongAuthenticationRequirement = @{state = 'See Documentation' } } + } + } + + $SecureDefaultsState = (New-GraphGetRequest -Uri 'https://graph.microsoft.com/beta/policies/identitySecurityDefaultsEnforcementPolicy' -tenantid $TenantFilter ).IsEnabled + $CAState = New-Object System.Collections.ArrayList + + Try { + $MFARegistration = (New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/reports/credentialUserRegistrationDetails' -tenantid $TenantFilter) + } + catch { + $CAState.Add('Not Licensed for Conditional Access') | Out-Null + $MFARegistration = $null + } + + if ($null -ne $MFARegistration) { + $CAPolicies = (New-GraphGetRequest -Uri 'https://graph.microsoft.com/beta/identity/conditionalAccess/policies' -tenantid $TenantFilter -ErrorAction Stop ) + + try { + $ExcludeAllUsers = New-Object System.Collections.ArrayList + $ExcludeSpecific = New-Object System.Collections.ArrayList + + foreach ($Policy in $CAPolicies) { + if (($policy.grantControls.builtincontrols -eq 'mfa') -or ($policy.grantControls.customAuthenticationFactors -eq 'RequireDuoMfa')) { + if ($Policy.conditions.applications.includeApplications -ne 'All') { + Write-Host $Policy.conditions.applications.includeApplications + $CAState.Add("$($policy.displayName) - Specific Applications - $($policy.state)") | Out-Null + $Policy.conditions.users.excludeUsers.foreach({ $ExcludeSpecific.Add($_) | Out-Null }) + continue + } + if ($Policy.conditions.users.includeUsers -eq 'All') { + $CAState.Add("$($policy.displayName) - All Users - $($policy.state)") | Out-Null + $Policy.conditions.users.excludeUsers.foreach({ $ExcludeAllUsers.Add($_) | Out-Null }) + continue + } + } + } + } + catch { + } + } + + if ($CAState.count -eq 0) { $CAState.Add('None') | Out-Null } + + + # Interact with query parameters or the body of the request. + $GraphRequest = $Users | ForEach-Object { + Write-Host 'Processing users' + $UserCAState = New-Object System.Collections.ArrayList + foreach ($CA in $CAState) { + Write-Host 'Looping CAState' + if ($CA -like '*All Users*') { + if ($ExcludeAllUsers -contains $_.ObjectId) { $UserCAState.Add("Excluded from $($policy.displayName) - All Users") | Out-Null } + else { $UserCAState.Add($CA) | Out-Null } + } + elseif ($CA -like '*Specific Applications*') { + if ($ExcludeSpecific -contains $_.ObjectId) { $UserCAState.Add("Excluded from $($policy.displayName) - Specific Applications") | Out-Null } + else { $UserCAState.Add($CA) | Out-Null } + } + else { + Write-Host 'Adding to CA' + $UserCAState.Add($CA) | Out-Null + } + } + + $PerUser = if ($_.StrongAuthenticationRequirements.StrongAuthenticationRequirement.state -ne $null) { $_.StrongAuthenticationRequirements.StrongAuthenticationRequirement.state } else { 'Disabled' } + + $MFARegUser = if (($MFARegistration | Where-Object -Property UserPrincipalName -EQ $_.UserPrincipalName).IsMFARegistered -eq $null) { $false } else { ($MFARegistration | Where-Object -Property UserPrincipalName -EQ $_.UserPrincipalName).IsMFARegistered } + [PSCustomObject]@{ + Tenant = $TenantFilter + ID = $_.ObjectId + UPN = $_.UserPrincipalName + DisplayName = $_.DisplayName + AccountEnabled = $_.accountEnabled + PerUser = $PerUser + isLicensed = $_.isLicensed + MFARegistration = $MFARegUser + CoveredByCA = ($UserCAState -join ', ') + CoveredBySD = $SecureDefaultsState + RowKey = [string]($_.UserPrincipalName).replace('#', '') + PartitionKey = 'users' + } + + } + return $GraphRequest +} \ No newline at end of file diff --git a/Modules/CIPPCore/Public/Get-CIPPOutOfOffice.ps1 b/Modules/CIPPCore/Public/Get-CIPPOutOfOffice.ps1 new file mode 100644 index 000000000000..2cbc13b0a4f3 --- /dev/null +++ b/Modules/CIPPCore/Public/Get-CIPPOutOfOffice.ps1 @@ -0,0 +1,24 @@ +function Get-CIPPOutOfOffice { + [CmdletBinding()] + param ( + $userid, + $TenantFilter, + $APIName = "Get Out of Office", + $ExecutingUser + ) + + try { + $OutOfOffice = New-ExoRequest -tenantid $TenantFilter -cmdlet "Get-MailboxAutoReplyConfiguration" -cmdParams @{Identity = $userid } -Anchor $userid + $Results = @{ + AutoReplyState = $OutOfOffice.AutoReplyState + StartTime = $OutOfOffice.StartTime.ToString("yyyy-MM-dd HH:mm") + EndTime = $OutOfOffice.EndTime.ToString("yyyy-MM-dd HH:mm") + InternalMessage = $OutOfOffice.InternalMessage + ExternalMessage = $OutOfOffice.ExternalMessage + } | ConvertTo-Json + return $Results + } + catch { + return "Could not retrieve out of office message for $($userid). Error: $($_.Exception.Message)" + } +} diff --git a/Modules/CIPPCore/Public/Get-CIPPPartnerAzSubscriptions.ps1 b/Modules/CIPPCore/Public/Get-CIPPPartnerAzSubscriptions.ps1 new file mode 100644 index 000000000000..ea67ec1a3f9e --- /dev/null +++ b/Modules/CIPPCore/Public/Get-CIPPPartnerAzSubscriptions.ps1 @@ -0,0 +1,64 @@ +function Get-CIPPPartnerAzSubscriptions { + param ( + $TenantFilter, + $APIName = "Get-CIPPPartnerAzSubscriptions" + ) + + try { + if ($variable -notmatch '[0-9a-f]{8}-([0-9a-f]{4}-){3}[0-9a-f]{12}') { + $TenantFilter = (Invoke-RestMethod -Method GET "https://login.windows.net/$TenantFilter/.well-known/openid-configuration").token_endpoint.Split('/')[3] + } + } catch { + throw "Tenant $($TenantFilter) could not be found" + } + + $subsCache = [system.collections.generic.list[hashtable]]::new() + try { + try { + $usageRecords = (New-GraphGETRequest -Uri "https://api.partnercenter.microsoft.com/v1/customers/$($TenantFilter)/subscriptions/usagerecords" -scope "https://api.partnercenter.microsoft.com/user_impersonation").items + } catch { + throw "Unable to retrieve usagerecord(s): $($_.Exception.Message)" + } + + foreach ($usageRecord in $usageRecords) { + # if condition probably needs more refining + if ($usageRecord.offerId -notlike "DZH318Z0BPS6*") { + # Legacy subscriptions are directly accessible + $subDetails = @{ + tenantId = $tenantFilter + subscriptionId = ($usageRecord.id).ToLower() + isLegacy = $true + POR = "Legacy subscription" + status = $usageRecord.status + } + + $subsCache.Add($subDetails) + } else { + # For modern subscriptions we need to dig a little deeper + try { + $subid = (New-GraphGETRequest -Uri "https://api.partnercenter.microsoft.com/v1/customers/$($TenantFilter)/subscriptions/$($usageRecord.id)/azureEntitlements" -scope "https://api.partnercenter.microsoft.com/user_impersonation").items #| Where-Object { $_.status -eq "active" } + + foreach ($id in $subid) { + $subDetails = @{ + tenantId = $tenantFilter + subscriptionId = ($id.id) + isLegacy = $false + POR = $id.partnerOnRecord + status = $id.status + } + + $subsCache.Add($subDetails) + } + } catch { + # what do we do here error wise? + #Write-LogMessage -message "Unable to retrieve subscriptions(s) from usagerecord $($usageRecord.id): $($_.Exception.Message)" -Sev 'ERROR' -API $APINAME + #Write-Error "Unable to retrieve sub(s) from usagerecord $($usageRecord.id) for tenant $($tenantFilter): $($_.Exception.Message)" + } + } + } + + return $subsCache + } catch { + Write-LogMessage -message "Unable to retrieve CSP Azure subscriptions for $($TenantFilter): $($_.Exception.Message)" -Sev 'ERROR' -API $APINAME + } +} diff --git a/Modules/GraphRequests/Public/Get-GraphRequestList.ps1 b/Modules/CIPPCore/Public/GraphRequests/Get-GraphRequestList.ps1 similarity index 81% rename from Modules/GraphRequests/Public/Get-GraphRequestList.ps1 rename to Modules/CIPPCore/Public/GraphRequests/Get-GraphRequestList.ps1 index 85c405cd4bf3..768fb3a81e52 100644 --- a/Modules/GraphRequests/Public/Get-GraphRequestList.ps1 +++ b/Modules/CIPPCore/Public/GraphRequests/Get-GraphRequestList.ps1 @@ -1,15 +1,62 @@ function Get-GraphRequestList { + <# + .SYNOPSIS + Execute a Graph query + + .PARAMETER TenantFilter + Tenant to query (or AllTenants) + + .PARAMETER Endpoint + Graph API endpoint + + .PARAMETER Parameters + API Parameters + + .PARAMETER QueueId + Queue Id + + .PARAMETER CippLink + Reference link for queueing + + .PARAMETER Version + API Version - v1.0 or beta + + .PARAMETER QueueNameOverride + Queue name to set + + .PARAMETER SkipCache + Skip Caching + + .PARAMETER ClearCache + Clear cached results + + .PARAMETER NoPagination + Disable pagination + + .PARAMETER CountOnly + Only return count of results + + .PARAMETER NoAuthCheck + Skip auth check + + .PARAMETER ReverseTenantLookup + Perform reverse tenant lookup + + .PARAMETER ReverseTenantLookupProperty + Property to perform reverse tenant lookup + + #> [CmdletBinding()] Param( - $Tenant = $env:TenantId, + [string]$TenantFilter = $env:TenantId, [Parameter(Mandatory = $true)] - $Endpoint, - $Parameters = @(), - $QueueId, - $CippLink, + [string]$Endpoint, + [hashtable]$Parameters = @{}, + [string]$QueueId, + [string]$CippLink, [ValidateSet('v1.0', 'beta')] - $Version = 'beta', - $QueueNameOverride, + [string]$Version = 'beta', + [string]$QueueNameOverride, [switch]$SkipCache, [switch]$ClearCache, [switch]$NoPagination, @@ -45,19 +92,19 @@ function Get-GraphRequestList { if ($QueueId) { $Table = Get-CIPPTable -TableName $TableName $Filter = "QueueId eq '{0}'" -f $QueueId - $Rows = Get-AzDataTableEntity @Table -Filter $Filter + $Rows = Get-CIPPAzDataTableEntity @Table -Filter $Filter $Type = 'Queue' } - elseif ($Tenant -eq 'AllTenants' -or (!$SkipCache.IsPresent -and !$ClearCache.IsPresent -and !$CountOnly.IsPresent)) { + elseif ($TenantFilter -eq 'AllTenants' -or (!$SkipCache.IsPresent -and !$ClearCache.IsPresent -and !$CountOnly.IsPresent)) { $Table = Get-CIPPTable -TableName $TableName - if ($Tenant -eq 'AllTenants') { + if ($TenantFilter -eq 'AllTenants') { $Filter = "PartitionKey eq '{0}' and QueueType eq 'AllTenants'" -f $PartitionKey } else { - $Filter = "PartitionKey eq '{0}' and Tenant eq '{1}'" -f $PartitionKey, $Tenant + $Filter = "PartitionKey eq '{0}' and Tenant eq '{1}'" -f $PartitionKey, $TenantFilter } #Write-Host $Filter - $Rows = Get-AzDataTableEntity @Table -Filter $Filter | Where-Object { $_.Timestamp.DateTime -gt (Get-Date).ToUniversalTime().AddHours(-1) } + $Rows = Get-CIPPAzDataTableEntity @Table -Filter $Filter | Where-Object { $_.Timestamp.DateTime -gt (Get-Date).ToUniversalTime().AddHours(-1) } $Type = 'Cache' } else { @@ -66,17 +113,17 @@ function Get-GraphRequestList { } Write-Host "Cached: $(($Rows | Measure-Object).Count) rows (Type: $($Type))" - $QueueReference = '{0}-{1}' -f $Tenant, $PartitionKey + $QueueReference = '{0}-{1}' -f $TenantFilter, $PartitionKey $RunningQueue = Get-CippQueue | Where-Object { $_.Reference -eq $QueueReference -and $_.Status -ne 'Completed' -and $_.Status -ne 'Failed' } if (!$Rows) { - switch ($Tenant) { + switch ($TenantFilter) { 'AllTenants' { if ($SkipCache) { Get-Tenants -IncludeErrors | ForEach-Object -Parallel { Import-Module .\GraphHelper.psm1 $GraphRequestParams = @{ - Tenant = $_.defaultDomainName + TenantFilter = $_.defaultDomainName Endpoint = $using:Endpoint Parameters = $using:Parameters NoPagination = $using:NoPagination.IsPresent @@ -101,8 +148,9 @@ function Get-GraphRequestList { Write-Host 'Queue currently running' Write-Host ($RunningQueue | ConvertTo-Json) [PSCustomObject]@{ - Tenant = 'Data still processing, please wait' - QueueId = $RunningQueue.RowKey + QueueMessage = 'Data still processing, please wait' + QueueId = $RunningQueue.RowKey + Queued = $true } } else { @@ -115,9 +163,9 @@ function Get-GraphRequestList { Write-Host 'Pushing output bindings' try { Get-Tenants -IncludeErrors | ForEach-Object { - $Tenant = $_.defaultDomainName + $TenantFilter = $_.defaultDomainName $QueueTenant = @{ - Tenant = $Tenant + TenantFilter = $TenantFilter Endpoint = $Endpoint QueueId = $Queue.RowKey QueueName = $QueueName @@ -142,7 +190,7 @@ function Get-GraphRequestList { default { $GraphRequest = @{ uri = $GraphQuery.ToString() - tenantid = $Tenant + tenantid = $TenantFilter ComplexFilter = $true } @@ -162,6 +210,7 @@ function Get-GraphRequestList { $QueueThresholdExceeded = $false if ($Parameters.'$count' -and !$SkipCache -and !$NoPagination) { $Count = New-GraphGetRequest @GraphRequest -CountOnly -ErrorAction Stop + if ($CountOnly.IsPresent) { return $Count } Write-Host "Total results (`$count): $Count" if ($Count -gt 8000) { $QueueThresholdExceeded = $true @@ -177,7 +226,7 @@ function Get-GraphRequestList { else { $Queue = New-CippQueueEntry -Name $QueueName -Link $CippLink -Reference $QueueReference $QueueTenant = @{ - Tenant = $Tenant + TenantFilter = $TenantFilter Endpoint = $Endpoint QueueId = $Queue.RowKey QueueName = $QueueName @@ -191,7 +240,7 @@ function Get-GraphRequestList { Push-OutputBinding -Name QueueItem -Value $QueueTenant [PSCustomObject]@{ - QueueMessage = ('Loading {0} rows for {1}. Please check back after the job completes' -f $Count, $Tenant) + QueueMessage = ('Loading {0} rows for {1}. Please check back after the job completes' -f $Count, $TenantFilter) QueueId = $Queue.RowKey Queued = $true } @@ -200,7 +249,7 @@ function Get-GraphRequestList { } if (!$QueueThresholdExceeded) { - $GraphRequestResults = New-GraphGetRequest @GraphRequest -ErrorAction Stop | Select-Object *, @{l = 'Tenant'; e = { $Tenant } }, @{l = 'CippStatus'; e = { 'Good' } } + $GraphRequestResults = New-GraphGetRequest @GraphRequest -ErrorAction Stop | Select-Object *, @{l = 'Tenant'; e = { $TenantFilter } }, @{l = 'CippStatus'; e = { 'Good' } } if ($ReverseTenantLookup -and $GraphRequestResults) { $TenantInfo = $GraphRequestResults.$ReverseTenantLookupProperty | Sort-Object -Unique | ForEach-Object { New-GraphGetRequest -uri "https://graph.microsoft.com/beta/tenantRelationships/findTenantInformationByTenantId(tenantId='$_')" -noauthcheck $true -asApp:$true -tenant $env:TenantId diff --git a/Modules/CIPPCore/Public/Invoke-CIPPWebhookProcessing.ps1 b/Modules/CIPPCore/Public/Invoke-CIPPWebhookProcessing.ps1 index 3489143ae40d..922b8307edcd 100644 --- a/Modules/CIPPCore/Public/Invoke-CIPPWebhookProcessing.ps1 +++ b/Modules/CIPPCore/Public/Invoke-CIPPWebhookProcessing.ps1 @@ -7,29 +7,29 @@ function Invoke-CippWebhookProcessing { $Operations, $AllowedLocations, $CIPPPURL, - $APIName = "Process webhook", + $APIName = 'Process webhook', $ExecutingUser ) $LocationTable = Get-CIPPTable -TableName 'knownlocationdb' $AllowedLocations = $AllowedLocations -split ',' - if ($data.userId -eq "Not Available") { $data.userId = $data.userKey } - if ($data.Userkey -eq "Not Available") { $data.Userkey = $data.userId } + if ($data.userId -eq 'Not Available') { $data.userId = $data.userKey } + if ($data.Userkey -eq 'Not Available') { $data.Userkey = $data.userId } if ($data.clientip) { #First we perform a lookup in the knownlocationdb table to see if we have a location for this IP address. - $Location = Get-AzDataTableEntity @LocationTable -Filter "RowKey eq '$($data.clientip)'" | Select-Object -Last 1 + $Location = Get-CIPPAzDataTableEntity @LocationTable -Filter "RowKey eq '$($data.clientip)'" | Select-Object -Last 1 #If we have a location, we use that. If not, we perform a lookup in the GeoIP database. if ($Location) { - Write-Host "Using known location" + Write-Host 'Using known location' $Country = $Location.CountryOrRegion - $City = $Location.City + $City = $Location.City } else { - Write-Host "We have to do a lookup" + Write-Host 'We have to do a lookup' $Location = Get-CIPPGeoIPLocation -IP $data.clientip - $Country = if ($Location.countryCode) { $Location.CountryCode } else { "Unknown" } - $City = if ($Location.cityName) { $Location.cityName } else { "Unknown" } + $Country = if ($Location.countryCode) { $Location.CountryCode } else { 'Unknown' } + $City = if ($Location.cityName) { $Location.cityName } else { 'Unknown' } } } $TableObj = [PSCustomObject]::new() @@ -38,25 +38,25 @@ function Invoke-CippWebhookProcessing { if ($Data.parameters) { $Data.parameters | ForEach-Object { $TableObj | Add-Member -NotePropertyName $_.Name -NotePropertyValue $_.Value } } $ExtendedPropertiesIgnoreList = @( - "OAuth2:Authorize" - "SAS:EndAuth" - "SAS:ProcessAuth" + 'OAuth2:Authorize' + 'SAS:EndAuth' + 'SAS:ProcessAuth' ) if ($TableObj.RequestType -in $ExtendedPropertiesIgnoreList) { - Write-Host "No need to process this operation." - return "" + Write-Host 'No need to process this operation.' + return '' } switch ($data.operation) { - { "UserLoggedIn" -eq $data.operation -and $Country -notin $AllowedLocations -and $data.ResultStatus -eq "Success" -and $TableObj.ResultStatusDetail -eq "Success" } { $data.operation = "UserLoggedInFromUnknownLocation" } - { "UserloggedIn" -eq $data.operation -and $data.UserType -eq 2 -and $data.ResultStatus -eq "Success" -and $TableObj.ResultStatusDetail -eq "Success" } { $data.operation = "AdminLoggedIn" } + { 'UserLoggedIn' -eq $data.operation -and $Country -notin $AllowedLocations -and $data.ResultStatus -eq 'Success' -and $TableObj.ResultStatusDetail -eq 'Success' } { $data.operation = 'UserLoggedInFromUnknownLocation' } + { 'UserloggedIn' -eq $data.operation -and $data.UserType -eq 2 -and $data.ResultStatus -eq 'Success' -and $TableObj.ResultStatusDetail -eq 'Success' } { $data.operation = 'AdminLoggedIn' } default { break } } #Check if the operation is allowed for this webhook. - if ($data.operation -notin $Operations) { + if ($data.operation -notin $Operations) { Write-Host "No need to process this operation, but we're saving the IP for future" - Write-Host "Add IP and potential location to knownlocation db for this specific user" - + Write-Host 'Add IP and potential location to knownlocation db for this specific user' + if ($data.ClientIP) { $IP = $data.ClientIP if ($IP -match '^\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}:\d+$') { @@ -69,107 +69,124 @@ function Invoke-CippWebhookProcessing { CountryOrRegion = "$Country" City = "$City" } - $null = Add-AzDataTableEntity @LocationTable -Entity $LocationInfo -Force + $null = Add-CIPPAzDataTableEntity @LocationTable -Entity $LocationInfo -Force } - return "" + return '' } Set-Location (Get-Item $PSScriptRoot).FullName $Appname = '[{"Application Name":"ACOM Azure Website","Application IDs":"23523755-3a2b-41ca-9315-f81f3f566a95"},{"Application Name":"AEM-DualAuth","Application IDs":"69893ee3-dd10-4b1c-832d-4870354be3d8"},{"Application Name":"ASM Campaign Servicing","Application IDs":"0cb7b9ec-5336-483b-bc31-b15b5788de71"},{"Application Name":"Azure Advanced Threat Protection","Application IDs":"7b7531ad-5926-4f2d-8a1d-38495ad33e17"},{"Application Name":"Azure Data Lake","Application IDs":"e9f49c6b-5ce5-44c8-925d-015017e9f7ad"},{"Application Name":"Azure Lab Services Portal","Application IDs":"835b2a73-6e10-4aa5-a979-21dfda45231c"},{"Application Name":"Azure Portal","Application IDs":"c44b4083-3bb0-49c1-b47d-974e53cbdf3c"},{"Application Name":"AzureSupportCenter","Application IDs":"37182072-3c9c-4f6a-a4b3-b3f91cacffce"},{"Application Name":"Bing","Application IDs":"9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7"},{"Application Name":"CPIM Service","Application IDs":"bb2a2e3a-c5e7-4f0a-88e0-8e01fd3fc1f4"},{"Application Name":"CRM Power BI Integration","Application IDs":"e64aa8bc-8eb4-40e2-898b-cf261a25954f"},{"Application Name":"Dataverse","Application IDs":"00000007-0000-0000-c000-000000000000"},{"Application Name":"Enterprise Roaming and Backup","Application IDs":"60c8bde5-3167-4f92-8fdb-059f6176dc0f"},{"Application Name":"IAM Supportability","Application IDs":"a57aca87-cbc0-4f3c-8b9e-dc095fdc8978"},{"Application Name":"IrisSelectionFrontDoor","Application IDs":"16aeb910-ce68-41d1-9ac3-9e1673ac9575"},{"Application Name":"MCAPI Authorization Prod","Application IDs":"d73f4b35-55c9-48c7-8b10-651f6f2acb2e"},{"Application Name":"Media Analysis and Transformation Service","Application IDs":"944f0bd1-117b-4b1c-af26-804ed95e767e
0cd196ee-71bf-4fd6-a57c-b491ffd4fb1e"},{"Application Name":"Microsoft 365 Support Service","Application IDs":"ee272b19-4411-433f-8f28-5c13cb6fd407"},{"Application Name":"Microsoft App Access Panel","Application IDs":"0000000c-0000-0000-c000-000000000000"},{"Application Name":"Microsoft Approval Management","Application IDs":"65d91a3d-ab74-42e6-8a2f-0add61688c74
38049638-cc2c-4cde-abe4-4479d721ed44"},{"Application Name":"Microsoft Authentication Broker","Application IDs":"29d9ed98-a469-4536-ade2-f981bc1d605e"},{"Application Name":"Microsoft Azure CLI","Application IDs":"04b07795-8ddb-461a-bbee-02f9e1bf7b46"},{"Application Name":"Microsoft Azure PowerShell","Application IDs":"1950a258-227b-4e31-a9cf-717495945fc2"},{"Application Name":"Microsoft Bing Search","Application IDs":"cf36b471-5b44-428c-9ce7-313bf84528de"},{"Application Name":"Microsoft Bing Search for Microsoft Edge","Application IDs":"2d7f3606-b07d-41d1-b9d2-0d0c9296a6e8"},{"Application Name":"Microsoft Bing Default Search Engine","Application IDs":"1786c5ed-9644-47b2-8aa0-7201292175b6"},{"Application Name":"Microsoft Defender for Cloud Apps","Application IDs":"3090ab82-f1c1-4cdf-af2c-5d7a6f3e2cc7"},{"Application Name":"Microsoft Docs","Application IDs":"18fbca16-2224-45f6-85b0-f7bf2b39b3f3"},{"Application Name":"Microsoft Dynamics ERP","Application IDs":"00000015-0000-0000-c000-000000000000"},{"Application Name":"Microsoft Edge Insider Addons Prod","Application IDs":"6253bca8-faf2-4587-8f2f-b056d80998a7"},{"Application Name":"Microsoft Exchange Online Protection","Application IDs":"00000007-0000-0ff1-ce00-000000000000"},{"Application Name":"Microsoft Forms","Application IDs":"c9a559d2-7aab-4f13-a6ed-e7e9c52aec87"},{"Application Name":"Microsoft Graph","Application IDs":"00000003-0000-0000-c000-000000000000"},{"Application Name":"Microsoft Intune Web Company Portal","Application IDs":"74bcdadc-2fdc-4bb3-8459-76d06952a0e9"},{"Application Name":"Microsoft Intune Windows Agent","Application IDs":"fc0f3af4-6835-4174-b806-f7db311fd2f3"},{"Application Name":"Microsoft Learn","Application IDs":"18fbca16-2224-45f6-85b0-f7bf2b39b3f3"},{"Application Name":"Microsoft Office","Application IDs":"d3590ed6-52b3-4102-aeff-aad2292ab01c"},{"Application Name":"Microsoft Office 365 Portal","Application IDs":"00000006-0000-0ff1-ce00-000000000000"},{"Application Name":"Microsoft Office Web Apps Service","Application IDs":"67e3df25-268a-4324-a550-0de1c7f97287"},{"Application Name":"Microsoft Online Syndication Partner Portal","Application IDs":"d176f6e7-38e5-40c9-8a78-3998aab820e7"},{"Application Name":"Microsoft password reset service","Application IDs":"93625bc8-bfe2-437a-97e0-3d0060024faa"},{"Application Name":"Microsoft Power BI","Application IDs":"871c010f-5e61-4fb1-83ac-98610a7e9110"},{"Application Name":"Microsoft Storefronts","Application IDs":"28b567f6-162c-4f54-99a0-6887f387bbcc"},{"Application Name":"Microsoft Stream Portal","Application IDs":"cf53fce8-def6-4aeb-8d30-b158e7b1cf83"},{"Application Name":"Microsoft Substrate Management","Application IDs":"98db8bd6-0cc0-4e67-9de5-f187f1cd1b41"},{"Application Name":"Microsoft Support","Application IDs":"fdf9885b-dd37-42bf-82e5-c3129ef5a302"},{"Application Name":"Microsoft Teams","Application IDs":"1fec8e78-bce4-4aaf-ab1b-5451cc387264"},{"Application Name":"Microsoft Teams Services","Application IDs":"cc15fd57-2c6c-4117-a88c-83b1d56b4bbe"},{"Application Name":"Microsoft Teams Web Client","Application IDs":"5e3ce6c0-2b1f-4285-8d4b-75ee78787346"},{"Application Name":"Microsoft Whiteboard Services","Application IDs":"95de633a-083e-42f5-b444-a4295d8e9314"},{"Application Name":"O365 Suite UX","Application IDs":"4345a7b9-9a63-4910-a426-35363201d503"},{"Application Name":"Office 365 Exchange Online","Application IDs":"00000002-0000-0ff1-ce00-000000000000"},{"Application Name":"Office 365 Management","Application IDs":"00b41c95-dab0-4487-9791-b9d2c32c80f2"},{"Application Name":"Office 365 Search Service","Application IDs":"66a88757-258c-4c72-893c-3e8bed4d6899"},{"Application Name":"Office 365 SharePoint Online","Application IDs":"00000003-0000-0ff1-ce00-000000000000"},{"Application Name":"Office Delve","Application IDs":"94c63fef-13a3-47bc-8074-75af8c65887a"},{"Application Name":"Office Online Add-in SSO","Application IDs":"93d53678-613d-4013-afc1-62e9e444a0a5"},{"Application Name":"Office Online Client AAD- Augmentation Loop","Application IDs":"2abdc806-e091-4495-9b10-b04d93c3f040"},{"Application Name":"Office Online Client AAD- Loki","Application IDs":"b23dd4db-9142-4734-867f-3577f640ad0c"},{"Application Name":"Office Online Client AAD- Maker","Application IDs":"17d5e35f-655b-4fb0-8ae6-86356e9a49f5"},{"Application Name":"Office Online Client MSA- Loki","Application IDs":"b6e69c34-5f1f-4c34-8cdf-7fea120b8670"},{"Application Name":"Office Online Core SSO","Application IDs":"243c63a3-247d-41c5-9d83-7788c43f1c43"},{"Application Name":"Office Online Search","Application IDs":"a9b49b65-0a12-430b-9540-c80b3332c127"},{"Application Name":"Office.com","Application IDs":"4b233688-031c-404b-9a80-a4f3f2351f90"},{"Application Name":"Office365 Shell WCSS-Client","Application IDs":"89bee1f7-5e6e-4d8a-9f3d-ecd601259da7"},{"Application Name":"OfficeClientService","Application IDs":"0f698dd4-f011-4d23-a33e-b36416dcb1e6"},{"Application Name":"OfficeHome","Application IDs":"4765445b-32c6-49b0-83e6-1d93765276ca"},{"Application Name":"OfficeShredderWacClient","Application IDs":"4d5c2d63-cf83-4365-853c-925fd1a64357"},{"Application Name":"OMSOctopiPROD","Application IDs":"62256cef-54c0-4cb4-bcac-4c67989bdc40"},{"Application Name":"OneDrive SyncEngine","Application IDs":"ab9b8c07-8f02-4f72-87fa-80105867a763"},{"Application Name":"OneNote","Application IDs":"2d4d3d8e-2be3-4bef-9f87-7875a61c29de"},{"Application Name":"Outlook Mobile","Application IDs":"27922004-5251-4030-b22d-91ecd9a37ea4"},{"Application Name":"Partner Customer Delegated Admin Offline Processor","Application IDs":"a3475900-ccec-4a69-98f5-a65cd5dc5306"},{"Application Name":"Password Breach Authenticator","Application IDs":"bdd48c81-3a58-4ea9-849c-ebea7f6b6360"},{"Application Name":"Power BI Service","Application IDs":"00000009-0000-0000-c000-000000000000"},{"Application Name":"SharedWithMe","Application IDs":"ffcb16e8-f789-467c-8ce9-f826a080d987"},{"Application Name":"SharePoint Online Web Client Extensibility","Application IDs":"08e18876-6177-487e-b8b5-cf950c1e598c"},{"Application Name":"Signup","Application IDs":"b4bddae8-ab25-483e-8670-df09b9f1d0ea"},{"Application Name":"Skype for Business Online","Application IDs":"00000004-0000-0ff1-ce00-000000000000"},{"Application Name":"Sway","Application IDs":"905fcf26-4eb7-48a0-9ff0-8dcc7194b5ba"},{"Application Name":"Universal Store Native Client","Application IDs":"268761a2-03f3-40df-8a8b-c3db24145b6b"},{"Application Name":"Vortex [wsfed enabled]","Application IDs":"5572c4c0-d078-44ce-b81c-6cbf8d3ed39e"},{"Application Name":"Windows Azure Active Directory","Application IDs":"00000002-0000-0000-c000-000000000000"},{"Application Name":"Windows Azure Service Management API","Application IDs":"797f4846-ba00-4fd7-ba43-dac1f8f63013"},{"Application Name":"WindowsDefenderATP Portal","Application IDs":"a3b79187-70b2-4139-83f9-6016c58cd27b"},{"Application Name":"Windows Search","Application IDs":"26a7ee05-5602-4d76-a7ba-eae8b7b67941"},{"Application Name":"Windows Spotlight","Application IDs":"1b3c667f-cde3-4090-b60b-3d2abd0117f0"},{"Application Name":"Windows Store for Business","Application IDs":"45a330b1-b1ec-4cc1-9161-9f03992aa49f"},{"Application Name":"Yammer","Application IDs":"00000005-0000-0ff1-ce00-000000000000"},{"Application Name":"Yammer Web","Application IDs":"c1c74fed-04c9-4704-80dc-9f79a2e515cb"},{"Application Name":"Yammer Web Embed","Application IDs":"e1ef36fd-b883-4dbf-97f0-9ece4b576fc6"}]' | ConvertFrom-Json | Where-Object -Property 'Application IDs' -EQ $data.applicationId - $HTML = Get-Content "TemplateEmail.HTML" -Raw | Out-String + $HTML = Get-Content 'TemplateEmail.HTML' -Raw | Out-String switch ($data.Operation) { - "New-InboxRule" { + 'New-InboxRule' { $Title = "$($TenantFilter) - New Rule Detected for $($data.UserId)" $RuleTable = ($TableObj | ConvertTo-Html -Fragment | Out-String).Replace('
', '
') $ParameterName $IntroText = "

A new rule has been created for the user $($data.UserId). You should check if this rule is not malicious. The rule information can be found in the table below.

$RuleTable" $ButtonUrl = "$CIPPPURL/identity/administration/ViewBec?userId=$($data.UserId)&tenantDomain=$($data.OrganizationId)" - $ButtonText = "Start BEC Investigation" - $AfterButtonText = "

If you believe this is a suspect rule, you can click the button above to start the investigation.

" + $ButtonText = 'Start BEC Investigation' + $AfterButtonText = '

If you believe this is a suspect rule, you can click the button above to start the investigation.

' } - "Set-inboxrule" { + 'Set-inboxrule' { $Title = "$($TenantFilter) - Rule Edit Detected for $($data.UserId)" $RuleTable = ($TableObj | ConvertTo-Html -Fragment | Out-String).Replace('
', '
') $ParameterName $IntroText = "

A rule has been edited for the user $($data.UserId). You should check if this rule is not malicious. The rule information can be found in the table below.

$RuleTable" $ButtonUrl = "$CIPPPURL/identity/administration/ViewBec?userId=$($data.UserId)&tenantDomain=$($data.OrganizationId)" - $ButtonText = "Start BEC Investigation" - $AfterButtonText = "

If you believe this is a suspect rule, you can click the button above to start the investigation.

" + $ButtonText = 'Start BEC Investigation' + $AfterButtonText = '

If you believe this is a suspect rule, you can click the button above to start the investigation.

' } - "Add member to role." { + 'Add member to role.' { $Title = "$($TenantFilter) - Role change detected for $($data.ObjectId)" $Table = ($data.ModifiedProperties | ConvertTo-Html -Fragment | Out-String).Replace('
', '
') - $IntroText = "

$($data.UserId) has added $($data.ObjectId) to the $(($data.ModifiedProperties | Where-Object -Property Name -EQ "Role.DisplayName").NewValue) role. The information about the role can be found in the table below.

$Table" + $IntroText = "

$($data.UserId) has added $($data.ObjectId) to the $(($data.ModifiedProperties | Where-Object -Property Name -EQ 'Role.DisplayName').NewValue) role. The information about the role can be found in the table below.

$Table" $ButtonUrl = "$CIPPPURL/identity/administration/roles?customerId=$($data.OrganizationId)" - $ButtonText = "Role Management" - $AfterButtonText = "

If this role is incorrect, or you need more information, use the button to jump to the Role Management page.

" + $ButtonText = 'Role Management' + $AfterButtonText = '

If this role is incorrect, or you need more information, use the button to jump to the Role Management page.

' } - "Disable account." { + 'Disable account.' { $Title = "$($TenantFilter) - $($data.ObjectId) has been disabled" $IntroText = "$($data.ObjectId) has been disabled by $($data.UserId)." $ButtonUrl = "$CIPPPURL/identity/administration/users?customerId=$($data.OrganizationId)" - $ButtonText = "User Management" - $AfterButtonText = "

If this is incorrect, use the user management screen to unblock the users sign-in

" + $ButtonText = 'User Management' + $AfterButtonText = '

If this is incorrect, use the user management screen to unblock the users sign-in

' } - "Enable account." { + 'Enable account.' { $Title = "$($TenantFilter) - $($data.ObjectId) has been enabled" $IntroText = "$($data.ObjectId) has been enabled by $($data.UserId)." $ButtonUrl = "$CIPPPURL/identity/administration/users?customerId=$($data.OrganizationId)" - $ButtonText = "User Management" - $AfterButtonText = "

If this is incorrect, use the user management screen to unblock the users sign-in

" + $ButtonText = 'User Management' + $AfterButtonText = '

If this is incorrect, use the user management screen to unblock the users sign-in

' } - "Update StsRefreshTokenValidFrom Timestamp." { + 'Update StsRefreshTokenValidFrom Timestamp.' { $Title = "$($TenantFilter) - $($data.ObjectId) has had all sessions revoked" $IntroText = "$($data.ObjectId) has had their sessions revoked by $($data.UserId)." - $ButtonUrl = "$CIPPPURL/identity/administration/users?customerId=$($data.OrganizationId)" - $ButtonText = "User Management" - $AfterButtonText = "

If this is incorrect, use the user management screen to unblock the users sign-in

" + $ButtonUrl = "$CIPPPURL/identity/administration/users?customerId=$($data.OrganizationId)" + $ButtonText = 'User Management' + $AfterButtonText = '

If this is incorrect, use the user management screen to unblock the users sign-in

' } - "Disable Strong Authentication." { + 'Disable Strong Authentication.' { $Title = "$($TenantFilter) - $($data.ObjectId) has been MFA disabled" $IntroText = "$($data.ObjectId) MFA has been disabled by $($data.UserId)." - $ButtonUrl = "$CIPPPURL/identity/administration/users?customerId=$($data.OrganizationId)" - $ButtonText = "User Management" - $AfterButtonText = "

If this is incorrect, use the user management screen to reenable MFA

" + $ButtonUrl = "$CIPPPURL/identity/administration/users?customerId=$($data.OrganizationId)" + $ButtonText = 'User Management' + $AfterButtonText = '

If this is incorrect, use the user management screen to reenable MFA

' } - "Remove Member from a role." { + 'Remove Member from a role.' { $Title = "$($TenantFilter) - Role change detected for $($data.ObjectId)" $Table = ($data.ModifiedProperties | ConvertTo-Html -Fragment | Out-String).Replace('
', '
') - $IntroText = "

$($data.UserId) has removed $($data.ObjectId) to the $(($data.ModifiedProperties | Where-Object -Property Name -EQ "Role.DisplayName").NewValue) role. The information about the role can be found in the table below.

$Table" - $ButtonUrl = "$CIPPPURL/identity/administration/roles?customerId=$($data.OrganizationId)" - $ButtonText = "Role Management" - $AfterButtonText = "

If this role change is incorrect, or you need more information, use the button to jump to the Role Management page.

" + $IntroText = "

$($data.UserId) has removed $($data.ObjectId) to the $(($data.ModifiedProperties | Where-Object -Property Name -EQ 'Role.DisplayName').NewValue) role. The information about the role can be found in the table below.

$Table" + $ButtonUrl = "$CIPPPURL/identity/administration/roles?customerId=$($data.OrganizationId)" + $ButtonText = 'Role Management' + $AfterButtonText = '

If this role change is incorrect, or you need more information, use the button to jump to the Role Management page.

' } - "Reset user password." { + 'Reset user password.' { $Title = "$($TenantFilter) - $($data.ObjectId) has had their password reset" $IntroText = "$($data.ObjectId) has had their password reset by $($data.userId)." - $ButtonUrl = "$CIPPPURL/identity/administration/users?customerId=$($data.OrganizationId)" - $ButtonText = "User Management" - $AfterButtonText = "

If this is incorrect, use the user management screen to unblock the users sign-in

" + $ButtonUrl = "$CIPPPURL/identity/administration/users?customerId=$($data.OrganizationId)" + $ButtonText = 'User Management' + $AfterButtonText = '

If this is incorrect, use the user management screen to unblock the users sign-in

' } - "AdminLoggedIn" { + 'AdminLoggedIn' { $Table = ($TableObj | ConvertTo-Html -Fragment -As List | Out-String).Replace('
', '
') if ($Appname) { $AppName = $AppName.'Application Name' } else { $appName = $data.ApplicationId } $Title = "$($TenantFilter) - an admin account has logged on" $IntroText = "$($data.UserId) ($($data.Userkey)) has logged on from IP $($data.ClientIP) to the application $($Appname). See the table below for more information. $Table" $ButtonUrl = "$CIPPPURL/identity/administration/ViewBec?userId=$($data.UserKey)&tenantDomain=$($data.OrganizationId)" - $ButtonText = "User Management" - $AfterButtonText = "

If this is incorrect, use the user management screen to block the user and revoke the sessions

" + $ButtonText = 'User Management' + $AfterButtonText = '

If this is incorrect, use the user management screen to block the user and revoke the sessions

' } - "UserLoggedInFromUnknownLocation" { + 'UserLoggedInFromUnknownLocation' { $Table = ($TableObj | ConvertTo-Html -Fragment -As List | Out-String).Replace('
', '
') if ($Appname) { $AppName = $AppName.'Application Name' } else { $appName = $data.ApplicationId } $Title = "$($TenantFilter) - a user has logged on from a potentially unsafe location" $IntroText = "$($data.UserId) ($($data.Userkey)) has logged on from IP $($data.ClientIP) to the application $($Appname). According to our database this is located in $($Country) - $($City).

You have set up alerts to be notified when this happens. See the table below for more info.$Table" $ButtonUrl = "$CIPPPURL/identity/administration/ViewBec?userId=$($data.ObjectId)&tenantDomain=$($data.OrganizationId)" - $ButtonText = "User Management" - $AfterButtonText = "

If this is incorrect, use the user management screen to block the user and revoke the sessions

" + $ButtonText = 'User Management' + $AfterButtonText = '

If this is incorrect, use the user management screen to block the user and revoke the sessions

' } + 'Add service principal.' { + if ($Appname) { $AppName = $AppName.'Application Name' } else { $appName = $data.ApplicationId } + $Title = "$($TenantFilter) - Service Principal $($data.ObjectId) has been added." + $Table = ($data.ModifiedProperties | ConvertTo-Html -Fragment | Out-String).Replace('
', '
') + $IntroText = "$($data.ObjectId) has been added by $($data.UserId)." + $ButtonUrl = "$CIPPPURL/tenant/administration/enterprise-apps?customerId=?customerId=$($data.OrganizationId)" + $ButtonText = 'Enterprise Apps' + } + 'Remove service principal.' { + if ($Appname) { $AppName = $AppName.'Application Name' } else { $appName = $data.ApplicationId } + $Title = "$($TenantFilter) - Service Principal $($data.ObjectId) has been removed." + $Table = ($data.ModifiedProperties | ConvertTo-Html -Fragment | Out-String).Replace('
', '
') + $IntroText = "$($data.ObjectId) has been added by $($data.UserId)." + $ButtonUrl = "$CIPPPURL/tenant/administration/enterprise-apps?customerId=?customerId=$($data.OrganizationId)" + $ButtonText = 'Enterprise Apps' + } + default { break } @@ -177,8 +194,8 @@ function Invoke-CippWebhookProcessing { } $HTML = "$HTML" -f $Title, $IntroText, $ButtonUrl, $ButtonText, $AfterButtonText - Write-Host "Add IP and potential location to knownlocation db for this specific user" - + Write-Host 'Add IP and potential location to knownlocation db for this specific user' + if ($data.ClientIP) { $IP = $data.ClientIP if ($IP -match '^\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}:\d+$') { @@ -191,7 +208,7 @@ function Invoke-CippWebhookProcessing { CountryOrRegion = "$Country" City = "$City" } - $null = Add-AzDataTableEntity @LocationTable -Entity $LocationInfo -Force + $null = Add-CIPPAzDataTableEntity @LocationTable -Entity $LocationInfo -Force } $JsonContent = @{ Title = $Title @@ -202,11 +219,11 @@ function Invoke-CippWebhookProcessing { PotentialCity = $City } | ConvertTo-Json -Depth 15 -Compress if ($Title) { - Write-Host "Sending alert to email" - Send-CIPPAlert -Type 'email' -Title $title -HTMLContent $HTML - Write-Host "Sending alert to webhook" - Send-CIPPAlert -Type 'webhook' -Title $title -JSONContent $JsonContent - Write-Host "Sending alert to PSA" - Send-CIPPAlert -Type 'psa' -Title $title -HTMLContent $HTML + Write-Host 'Sending alert to email' + Send-CIPPAlert -Type 'email' -Title $title -HTMLContent $HTML -TenantFilter $TenantFilter + Write-Host 'Sending alert to webhook' + Send-CIPPAlert -Type 'webhook' -Title $title -JSONContent $JsonContent -TenantFilter $TenantFilter + Write-Host 'Sending alert to PSA' + Send-CIPPAlert -Type 'psa' -Title $title -HTMLContent $HTML -TenantFilter $TenantFilter } } diff --git a/Modules/CIPPCore/Public/New-CIPPCAPolicy.ps1 b/Modules/CIPPCore/Public/New-CIPPCAPolicy.ps1 index dac3922fe494..345d5fa7af97 100644 --- a/Modules/CIPPCore/Public/New-CIPPCAPolicy.ps1 +++ b/Modules/CIPPCore/Public/New-CIPPCAPolicy.ps1 @@ -52,24 +52,26 @@ function New-CIPPCAPolicy { } #for each of the locations, check if they exist, if not create them. These are in $jsonobj.LocationInfo - $LocationLookupTable = foreach ($location in $jsonobj.LocationInfo) { - if (!$location.displayName) { continue } - $CheckExististing = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/identity/conditionalAccess/namedLocations" -tenantid $TenantFilter - if ($Location.displayName -in $CheckExististing.displayName) { - [pscustomobject]@{ - id = ($CheckExististing | Where-Object -Property displayName -EQ $Location.displayName).id - name = ($CheckExististing | Where-Object -Property displayName -EQ $Location.displayName).displayName - } - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Matched a CA policy with the existing Named Location: $($location.displayName)" -Sev "Info" + $LocationLookupTable = foreach ($locations in $jsonobj.LocationInfo) { + foreach ($location in $locations) { + if (!$location.displayName) { continue } + $CheckExististing = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/identity/conditionalAccess/namedLocations" -tenantid $TenantFilter + if ($Location.displayName -in $CheckExististing.displayName) { + [pscustomobject]@{ + id = ($CheckExististing | Where-Object -Property displayName -EQ $Location.displayName).id + name = ($CheckExististing | Where-Object -Property displayName -EQ $Location.displayName).displayName + } + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Matched a CA policy with the existing Named Location: $($location.displayName)" -Sev "Info" - } - else { - $Body = ConvertTo-Json -InputObject $Location - $GraphRequest = New-GraphPOSTRequest -uri "https://graph.microsoft.com/beta/identity/conditionalAccess/namedLocations" -body $body -Type POST -tenantid $tenantfilter - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Created new Named Location: $($location.displayName)" -Sev "Info" - [pscustomobject]@{ - id = $GraphRequest.id - name = $GraphRequest.displayName + } + else { + $Body = ConvertTo-Json -InputObject $Location + $GraphRequest = New-GraphPOSTRequest -uri "https://graph.microsoft.com/beta/identity/conditionalAccess/namedLocations" -body $body -Type POST -tenantid $tenantfilter + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Created new Named Location: $($location.displayName)" -Sev "Info" + [pscustomobject]@{ + id = $GraphRequest.id + name = $GraphRequest.displayName + } } } } diff --git a/Modules/CIPPCore/Public/New-CIPPGraphSubscription.ps1 b/Modules/CIPPCore/Public/New-CIPPGraphSubscription.ps1 index 985950fb582e..010e81d422d2 100644 --- a/Modules/CIPPCore/Public/New-CIPPGraphSubscription.ps1 +++ b/Modules/CIPPCore/Public/New-CIPPGraphSubscription.ps1 @@ -34,7 +34,9 @@ function New-CIPPGraphSubscription { Expiration = "None" WebhookNotificationUrl = [string]$Auditlog.webhook.address } - $null = Add-AzDataTableEntity @WebhookTable -Entity $WebhookRow + + $null = Add-CIPPAzDataTableEntity @WebhookTable -Entity $WebhookRow + } else { $expiredate = (Get-Date).AddDays(1).ToUniversalTime().ToString("yyyy-MM-ddTHH:mm:ss.fffZ") $params = @{ @@ -58,7 +60,7 @@ function New-CIPPGraphSubscription { SubscriptionID = [string]$GraphRequest.id WebhookNotificationUrl = [string]$GraphRequest.notificationUrl } - $null = Add-AzDataTableEntity @WebhookTable -Entity $WebhookRow + $null = Add-CIPPAzDataTableEntity @WebhookTable -Entity $WebhookRow #todo: add remove webhook function, add check webhook function, add list webhooks function #add refresh webhook function based on table. } diff --git a/Modules/CIPPCore/Public/PermissionsTranslator.json b/Modules/CIPPCore/Public/PermissionsTranslator.json new file mode 100644 index 000000000000..a38d0786d5f1 --- /dev/null +++ b/Modules/CIPPCore/Public/PermissionsTranslator.json @@ -0,0 +1,5316 @@ +[ + { + "description": "Allows Exchange Management as app", + "displayName": "Manage Exchange As Application ", + "id": "dc50a0fb-09a3-484d-be87-e023b12c6440", + "origin": "Application (Office 365 Exchange Online)", + "value": "Exchange.ManageAsApp" + }, + { + "description": "Allows the app to read a basic set of profile properties of other users in your organization without a signed-in user. Includes display name, first and last name, email address, open extensions, and photo.", + "displayName": "Read all users' basic profiles", + "id": "97235f07-e226-4f63-ace3-39588e11d3a1", + "origin": "Application", + "value": "User.ReadBasic.All" + }, + { + "description": "Allows the app to read all\u00a0class assignments without grades for all users without a signed-in user.", + "displayName": "Read all class assignments without grades", + "id": "6e0a958b-b7fc-4348-b7c4-a6ab9fd3dd0e", + "origin": "Application", + "value": "EduAssignments.ReadBasic.All" + }, + { + "description": "Allows the app to create, read, update and delete all\u00a0class assignments without grades for all users without a signed-in user.", + "displayName": "Create, read, update and delete all\u00a0class assignments without grades", + "id": "f431cc63-a2de-48c4-8054-a34bc093af84", + "origin": "Application", + "value": "EduAssignments.ReadWriteBasic.All" + }, + { + "description": "Allows the app to read all\u00a0class assignments with grades for all users without a signed-in user.", + "displayName": "Read all class assignments with grades", + "id": "4c37e1b6-35a1-43bf-926a-6f30f2cdf585", + "origin": "Application", + "value": "EduAssignments.Read.All" + }, + { + "description": "Allows the app to create, read, update and delete all\u00a0class assignments with grades for all users without a signed-in user.", + "displayName": "Create, read, update and delete all\u00a0class assignments with grades", + "id": "0d22204b-6cad-4dd0-8362-3e3f2ae699d9", + "origin": "Application", + "value": "EduAssignments.ReadWrite.All" + }, + { + "description": "Allows\u00a0the\u00a0app\u00a0to\u00a0read\u00a0subject\u00a0rights requests\u00a0without a\u00a0signed-in\u00a0user.", + "displayName": "Read\u00a0all subject\u00a0rights requests", + "id": "ee1460f0-368b-4153-870a-4e1ca7e72c42", + "origin": "Application", + "value": "SubjectRightsRequest.Read.All" + }, + { + "description": "Allows\u00a0the\u00a0app\u00a0to\u00a0read\u00a0and\u00a0write subject\u00a0rights requests\u00a0without a signed in user.", + "displayName": "Read\u00a0and\u00a0write\u00a0all subject\u00a0rights requests", + "id": "8387eaa4-1a3c-41f5-b261-f888138e6041", + "origin": "Application", + "value": "SubjectRightsRequest.ReadWrite.All" + }, + { + "description": "Allows the app to read attack simulation and training data for an organization without a signed-in user.", + "displayName": "Read attack simulation data of an organization", + "id": "93283d0a-6322-4fa8-966b-8c121624760d", + "origin": "Application", + "value": "AttackSimulation.Read.All" + }, + { + "description": "Allows custom authentication extensions associated with the app to receive HTTP requests triggered by an authentication event. The request can include information about a user, client and resource service principals, and other information about the authentication.", + "displayName": "Receive custom authentication extension HTTP requests", + "id": "214e810f-fda8-4fd7-a475-29461495eb00", + "origin": "Application", + "value": "CustomAuthenticationExtension.Receive.Payload" + }, + { + "description": "Allows the app to read and write your organization's directory access review default policy without a signed-in user.", + "displayName": "Read and write your organization's directory access review default policy", + "id": "77c863fd-06c0-47ce-a7eb-49773e89d319", + "origin": "Application", + "value": "Policy.ReadWrite.AccessReview" + }, + { + "description": "Allows the app to create groups, read all group properties and memberships, update group properties and memberships, and delete groups. Also allows the app to read and write conversations. All of these operations can be performed by the app without a signed-in user.", + "displayName": "Read and write all groups", + "id": "62a82d76-70ea-41e2-9197-370581804d09", + "origin": "Application", + "value": "Group.ReadWrite.All" + }, + { + "description": "Allows the app to read group properties and memberships, and read\u00a0conversations for all groups, without a signed-in user.", + "displayName": "Read all groups", + "id": "5b567255-7703-4780-807c-7be8301ae99b", + "origin": "Application", + "value": "Group.Read.All" + }, + { + "description": "Allows the app to read your organization's threat submissions and threat submission policies without a signed-in user. Also allows the app to create new threat submissions without a signed-in user.", + "displayName": "Read and write all of the organization's threat submissions", + "id": "d72bdbf4-a59b-405c-8b04-5995895819ac", + "origin": "Application", + "value": "ThreatSubmission.ReadWrite.All" + }, + { + "description": "Allows an app to read Bookings appointments, businesses, customers, services, and staff without a signed-in user. ", + "displayName": "Read all Bookings related resources.", + "id": "6e98f277-b046-4193-a4f2-6bf6a78cd491", + "origin": "Application", + "value": "Bookings.Read.All" + }, + { + "description": "Allows an app to read and write Bookings appointments and customers, and additionally allows reading businesses, services, and staff without a signed-in user. ", + "displayName": "Read and write all Bookings related resources.", + "id": "9769393e-5a9f-4302-9e3d-7e018ecb64a7", + "origin": "Application", + "value": "BookingsAppointment.ReadWrite.All" + }, + { + "description": "Allows the application to read any data from Records Management, such as configuration, labels, and policies without the signed in user.", + "displayName": "Read Records Management configuration,\u00a0labels and policies", + "id": "ac3a2b8e-03a3-4da9-9ce0-cbe28bf1accd", + "origin": "Application", + "value": "RecordsManagement.Read.All" + }, + { + "description": "Allow the application to create, update and delete any data from Records Management, such as configuration, labels, and policies without the signed in user.", + "displayName": "Read and write Records Management configuration, labels and policies", + "id": "eb158f57-df43-4751-8b21-b8932adb3d34", + "origin": "Application", + "value": "RecordsManagement.ReadWrite.All" + }, + { + "description": "Allows the app to read details of delegated admin relationships with customers like access details (that includes roles) and the duration as well as specific role assignments to security groups without a signed-in user.", + "displayName": "Read Delegated Admin relationships with customers", + "id": "f6e9e124-4586-492f-adc0-c6f96e4823fd", + "origin": "Application", + "value": "DelegatedAdminRelationship.Read.All" + }, + { + "description": "Allows the app to manage (create-update-terminate) Delegated Admin relationships with customers and role assignments to security groups for active Delegated Admin relationships without a signed-in user.", + "displayName": "Manage Delegated Admin relationships with customers", + "id": "cc13eba4-8cd8-44c6-b4d4-f93237adce58", + "origin": "Application", + "value": "DelegatedAdminRelationship.ReadWrite.All" + }, + { + "description": "Allows the app to read and manage the Cloud PC role-based access control (RBAC) settings, without a signed-in user. This includes reading and managing Cloud PC role definitions and memberships.", + "displayName": "Read and write all Cloud PC RBAC settings", + "id": "274d0592-d1b6-44bd-af1d-26d259bcb43a", + "origin": "Application", + "value": "RoleManagement.ReadWrite.CloudPC" + }, + { + "description": "Allows the app to read the Cloud PC role-based access control (RBAC) settings, without a signed-in user.", + "displayName": "Read Cloud PC RBAC settings", + "id": "031a549a-bb80-49b6-8032-2068448c6a3c", + "origin": "Application", + "value": "RoleManagement.Read.CloudPC" + }, + { + "description": "Allows the app to read custom security attribute assignments for all principals in the tenant without a signed in user.", + "displayName": "Read custom security attribute assignments", + "id": "3b37c5a4-1226-493d-bec3-5d6c6b866f3f", + "origin": "Application", + "value": "CustomSecAttributeAssignment.Read.All" + }, + { + "description": "Allows the app to read custom security attribute definitions for the tenant without a signed in user.", + "displayName": "Read custom security attribute definitions", + "id": "b185aa14-d8d2-42c1-a685-0f5596613624", + "origin": "Application", + "value": "CustomSecAttributeDefinition.Read.All" + }, + { + "description": "Allows the app to read all external connections without a signed-in user.", + "displayName": "Read all external connections", + "id": "1914711b-a1cb-4793-b019-c2ce0ed21b8c", + "origin": "Application", + "value": "ExternalConnection.Read.All" + }, + { + "description": "Allows the app to read and write all external connections without a signed-in user.", + "displayName": "Read and write all external connections", + "id": "34c37bc0-2b40-4d5e-85e1-2365cd256d79", + "origin": "Application", + "value": "ExternalConnection.ReadWrite.All" + }, + { + "description": "Allows the app to read all external items without a signed-in user.", + "displayName": "Read all external items", + "id": "7a7cffad-37d2-4f48-afa4-c6ab129adcc2", + "origin": "Application", + "value": "ExternalItem.Read.All" + }, + { + "description": "Allows the app to read and write your organization's cross tenant access policies without a signed-in user.", + "displayName": "Read and write your organization's cross tenant access policies", + "id": "338163d7-f101-4c92-94ba-ca46fe52447c", + "origin": "Application", + "value": "Policy.ReadWrite.CrossTenantAccess" + }, + { + "description": "Allows the app to read and write custom security attribute definitions for the tenant without a signed in user.", + "displayName": "Read and write custom security attribute definitions", + "id": "12338004-21f4-4896-bf5e-b75dfaf1016d", + "origin": "Application", + "value": "CustomSecAttributeDefinition.ReadWrite.All" + }, + { + "description": "Allows the app to read and write custom security attribute assignments for all principals in the tenant without a signed in user.", + "displayName": "Read and write custom security attribute assignments", + "id": "de89b5e4-5b8f-48eb-8925-29c2b33bd8bd", + "origin": "Application", + "value": "CustomSecAttributeAssignment.ReadWrite.All" + }, + { + "description": "Allows the app to read and write to all security incidents, without a signed-in user.", + "displayName": "Read and write to all security incidents", + "id": "34bf0e97-1971-4929-b999-9e2442d941d7", + "origin": "Application", + "value": "SecurityIncident.ReadWrite.All" + }, + { + "description": "Allows the app to read all security incidents, without a signed-in user.", + "displayName": "Read all security incidents", + "id": "45cc0394-e837-488b-a098-1918f48d186c", + "origin": "Application", + "value": "SecurityIncident.Read.All" + }, + { + "description": "Allows the app to read and write to all security alerts, without a signed-in user.", + "displayName": "Read and write to all security alerts", + "id": "ed4fca05-be46-441f-9803-1873825f8fdb", + "origin": "Application", + "value": "SecurityAlert.ReadWrite.All" + }, + { + "description": "Allows the app to read all security alerts, without a signed-in user.", + "displayName": "Read all security alerts", + "id": "472e4a4d-bb4a-4026-98d1-0b0d74cb74a5", + "origin": "Application", + "value": "SecurityAlert.Read.All" + }, + { + "description": "Allows the app to read and write eDiscovery objects such as cases, custodians, review sets and other related objects without a signed-in user.", + "displayName": "Read and write all eDiscovery objects", + "id": "b2620db1-3bf7-4c5b-9cb9-576d29eac736", + "origin": "Application", + "value": "eDiscovery.ReadWrite.All" + }, + { + "description": "Allows the app to read eDiscovery objects such as cases, custodians, review sets and other related objects without a signed-in user.", + "displayName": "Read all eDiscovery objects", + "id": "50180013-6191-4d1e-a373-e590ff4e66af", + "origin": "Application", + "value": "eDiscovery.Read.All" + }, + { + "description": "Allows the app to run hunting queries, without a signed-in user.", + "displayName": "Run hunting queries", + "id": "dd98c7f5-2d42-42d3-a0e4-633161547251", + "origin": "Application", + "value": "ThreatHunting.Read.All" + }, + { + "description": "Allow the app to read the management data for Teams devices, without a signed-in user.", + "displayName": "Read Teams devices", + "id": "0591bafd-7c1c-4c30-a2a5-2b9aacb1dfe8", + "origin": "Application", + "value": "TeamworkDevice.Read.All" + }, + { + "description": "Allow the app to read and write the management data for Teams devices, without a signed-in user.", + "displayName": "Read and write Teams devices", + "id": "79c02f5b-bd4f-4713-bc2c-a8a4a66e127b", + "origin": "Application", + "value": "TeamworkDevice.ReadWrite.All" + }, + { + "description": "Allows the app to read and update identity risky service principal for your organization, without a signed-in user.", + "displayName": "Read and write all identity risky service principal information", + "id": "cb8d6980-6bcb-4507-afec-ed6de3a2d798", + "origin": "Application", + "value": "IdentityRiskyServicePrincipal.ReadWrite.All" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall its own tabs for any user, without a signed-in user.", + "displayName": "Allow the Teams app to manage only its own tabs for all users", + "id": "3c42dec6-49e8-4a0a-b469-36cff0d9da93", + "origin": "Application", + "value": "TeamsTab.ReadWriteSelfForUser.All" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall its own tabs in any team, without a signed-in user.", + "displayName": "Allow the Teams app to manage only its own tabs for all teams", + "id": "91c32b81-0ef0-453f-a5c7-4ce2e562f449", + "origin": "Application", + "value": "TeamsTab.ReadWriteSelfForTeam.All" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall its own tabs for any chat, without a signed-in user.", + "displayName": "Allow the Teams app to manage only its own tabs for all chats", + "id": "9f62e4a2-a2d6-4350-b28b-d244728c4f86", + "origin": "Application", + "value": "TeamsTab.ReadWriteSelfForChat.All" + }, + { + "description": "Allows the app to read all risky service principal information for your organization, without a signed-in user.", + "displayName": "Read all identity risky service principal information", + "id": "607c7344-0eed-41e5-823a-9695ebe1b7b0", + "origin": "Application", + "value": "IdentityRiskyServicePrincipal.Read.All" + }, + { + "description": "Allows the app to read and write search configurations, without a signed-in user.", + "displayName": "Read and write your organization's search configuration", + "id": "0e778b85-fefa-466d-9eec-750569d92122", + "origin": "Application", + "value": "SearchConfiguration.ReadWrite.All" + }, + { + "description": "Allows the app to read search configurations, without a signed-in user.", + "displayName": "Read your organization's search configuration", + "id": "ada977a5-b8b1-493b-9a91-66c206d76ecf", + "origin": "Application", + "value": "SearchConfiguration.Read.All" + }, + { + "description": "Allows the app to read online meeting artifacts in your organization, without a signed-in user.", + "displayName": "Read online meeting artifacts", + "id": "df01ed3b-eb61-4eca-9965-6b3d789751b2", + "origin": "Application", + "value": "OnlineMeetingArtifact.Read.All" + }, + { + "description": "Allows the app to create, read, update, and delete apps in the app catalogs without a signed-in user.", + "displayName": "Read and write to all app catalogs", + "id": "dc149144-f292-421e-b185-5953f2e98d7f", + "origin": "Application", + "value": "AppCatalog.ReadWrite.All" + }, + { + "description": "Allows the app to read apps in the app catalogs without a signed-in user.", + "displayName": "Read all app catalogs", + "id": "e12dae10-5a57-4817-b79d-dfbec5348930", + "origin": "Application", + "value": "AppCatalog.Read.All" + }, + { + "description": "Allows the app to manage workforce integrations to synchronize data from Microsoft Teams Shifts, without a signed-in user.", + "displayName": "Read and write workforce integrations", + "id": "202bf709-e8e6-478e-bcfd-5d63c50b68e3", + "origin": "Application", + "value": "WorkforceIntegration.ReadWrite.All" + }, + { + "description": "Allows the app to read all presence information and write activity and availability of all users in the directory without a signed-in user. Presence information includes activity, availability, status note, calendar out-of-office message, time zone and location.", + "displayName": "Read and write presence information for all users", + "id": "83cded22-8297-4ff6-a7fa-e97e9545a259", + "origin": "Application", + "value": "Presence.ReadWrite.All" + }, + { + "description": "Allows the app to read and write tags in Teams without a signed-in user.", + "displayName": "Read and write tags in Teams", + "id": "a3371ca5-911d-46d6-901c-42c8c7a937d8", + "origin": "Application", + "value": "TeamworkTag.ReadWrite.All" + }, + { + "description": "Allows the app to read\u00a0tags in Teams\u00a0without a signed-in user.", + "displayName": "Read tags in Teams", + "id": "b74fd6c4-4bde-488e-9695-eeb100e4907f", + "origin": "Application", + "value": "TeamworkTag.Read.All" + }, + { + "description": "Allows the app to read and write all Windows update deployment settings for the organization without a signed-in user.", + "displayName": "Read and write all Windows update deployment settings", + "id": "7dd1be58-6e76-4401-bf8d-31d1e8180d5b", + "origin": "Application", + "value": "WindowsUpdates.ReadWrite.All" + }, + { + "description": "Allows the app to read and write external connections without a signed-in user. The app can only read and write external connections that it is authorized to, or it can create new external connections. ", + "displayName": "Read and write external connections", + "id": "f431331c-49a6-499f-be1c-62af19c34a9d", + "origin": "Application", + "value": "ExternalConnection.ReadWrite.OwnedBy" + }, + { + "description": "Allows the app to read and write external items without a signed-in user. The app can only read external items of the connection that it is authorized to.", + "displayName": "Read and write external items", + "id": "8116ae0f-55c2-452d-9944-d18420f5b2c8", + "origin": "Application", + "value": "ExternalItem.ReadWrite.OwnedBy" + }, + { + "description": "Allow the application to access a subset of site collections without a signed in user.\u00a0\u00a0The specific site collections and the permissions granted will be configured in SharePoint Online.", + "displayName": "Access selected site collections", + "id": "883ea226-0bf2-4a8f-9f9d-92c9162a727d", + "origin": "Application", + "value": "Sites.Selected" + }, + { + "description": "Allows the app to read documents and list items in all site collections without a signed in user.", + "displayName": "Read items in all site collections ", + "id": "332a536c-c7ef-4017-ab91-336970924f0d", + "origin": "Application", + "value": "Sites.Read.All" + }, + { + "description": "Allows the app to create, read, update, and delete documents and list items in all site collections without a signed in user.", + "displayName": "Read and write items in all site collections", + "id": "9492366f-7969-46a4-8d15-ed1a20078fff", + "origin": "Application", + "value": "Sites.ReadWrite.All" + }, + { + "description": "Allows the app to read and write the properties of Cloud PCs, without a signed-in user.", + "displayName": "Read and write Cloud PCs", + "id": "3b4349e1-8cf5-45a3-95b7-69d1751d3e6a", + "origin": "Application", + "value": "CloudPC.ReadWrite.All" + }, + { + "description": "Allows the app to read the properties of Cloud PCs, without a signed-in user.", + "displayName": "Read Cloud PCs", + "id": "a9e09520-8ed4-4cde-838e-4fdea192c227", + "origin": "Application", + "value": "CloudPC.Read.All" + }, + { + "description": "Allows the app to update service principal endpoints", + "displayName": "Read and update service principal endpoints", + "id": "89c8469c-83ad-45f7-8ff2-6e3d4285709e", + "origin": "Application", + "value": "ServicePrincipalEndpoint.ReadWrite.All" + }, + { + "description": "Allows the app to read service principal endpoints", + "displayName": "Read service principal endpoints", + "id": "5256681e-b7f6-40c0-8447-2d9db68797a0", + "origin": "Application", + "value": "ServicePrincipalEndpoint.Read.All" + }, + { + "description": "Allows the app to create new notifications in users' teamwork activity feeds without a signed in user. These notifications may not be discoverable or be held or governed by compliance policies.", + "displayName": "Send a teamwork activity to any user", + "id": "a267235f-af13-44dc-8385-c1dc93023186", + "origin": "Application", + "value": "TeamsActivity.Send" + }, + { + "description": "Allows the app to read terms of use acceptance statuses, without a signed in user.", + "displayName": "Read all terms of use acceptance statuses", + "id": "d8e4ec18-f6c0-4620-8122-c8b1f2bf400e", + "origin": "Application", + "value": "AgreementAcceptance.Read.All" + }, + { + "description": "Allows the app to read and write terms of use agreements, without a signed in user.", + "displayName": "Read and write all terms of use agreements", + "id": "c9090d00-6101-42f0-a729-c41074260d47", + "origin": "Application", + "value": "Agreement.ReadWrite.All" + }, + { + "description": "Allows the app to read terms of use agreements, without a signed in user.", + "displayName": "Read all terms of use agreements", + "id": "2f3e6f8c-093b-4c57-a58b-ba5ce494a169", + "origin": "Application", + "value": "Agreement.Read.All" + }, + { + "description": "Allows the app to read app consent requests and approvals, and deny or approve those requests without a signed-in user.", + "displayName": "Read and write all consent requests", + "id": "9f1b81a7-0223-4428-bfa4-0bcb5535f27d", + "origin": "Application", + "value": "ConsentRequest.ReadWrite.All" + }, + { + "description": "Allows the app to read and write your organization's consent requests policy without a signed-in user.", + "displayName": "Read and write your organization's consent request policy", + "id": "999f8c63-0a38-4f1b-91fd-ed1947bdd1a9", + "origin": "Application", + "value": "Policy.ReadWrite.ConsentRequest" + }, + { + "description": "Allows the app to read consent requests and approvals without a signed-in user.", + "displayName": "Read all consent requests", + "id": "1260ad83-98fb-4785-abbb-d6cc1806fd41", + "origin": "Application", + "value": "ConsentRequest.Read.All" + }, + { + "description": "Allows the app to read basic mail properties in all mailboxes without a signed-in user. Includes all properties except body, previewBody, attachments and any extended properties.", + "displayName": "Read basic mail in all mailboxes", + "id": "693c5e45-0940-467d-9b8a-1022fb9d42ef", + "origin": "Application", + "value": "Mail.ReadBasic.All" + }, + { + "description": "Allows the app to read basic mail properties in all mailboxes without a signed-in user. Includes all properties except body, previewBody, attachments and any extended properties.", + "displayName": "Read basic mail in all mailboxes", + "id": "6be147d2-ea4f-4b5a-a3fa-3eab6f3c140a", + "origin": "Application", + "value": "Mail.ReadBasic" + }, + { + "description": "Allows the app to read and write feature rollout policies without a signed-in user. Includes abilities to assign and remove users and groups to rollout of a specific feature.", + "displayName": "Read and write feature rollout policies", + "id": "2044e4f1-e56c-435b-925c-44cd8f6ba89a", + "origin": "Application", + "value": "Policy.ReadWrite.FeatureRollout" + }, + { + "description": "Allows the app to read and manage the role-based access control (RBAC) settings for your company's directory, without a signed-in user. This includes instantiating directory roles and managing directory role membership, and reading directory role templates, directory roles and memberships.", + "displayName": "Read and write all directory RBAC settings", + "id": "9e3f62cf-ca93-4989-b6ce-bf83c28f9fe8", + "origin": "Application", + "value": "RoleManagement.ReadWrite.Directory" + }, + { + "description": "Allows the app to read the role-based access control (RBAC) settings for your company's directory, without a signed-in user. This includes reading directory role templates, directory roles and memberships.", + "displayName": "Read all directory RBAC settings", + "id": "483bed4a-2ad3-4361-a73b-c83ccdbdc53c", + "origin": "Application", + "value": "RoleManagement.Read.Directory" + }, + { + "description": "Allows the app to read and write the organization and related resources, without a signed-in user.\u00a0Related resources include things like subscribed skus and tenant branding information.", + "displayName": "Read and write organization information", + "id": "292d869f-3427-49a8-9dab-8c70152b74e9", + "origin": "Application", + "value": "Organization.ReadWrite.All" + }, + { + "description": "Allows the app to read the organization and related resources, without a signed-in user.\u00a0Related resources include things like subscribed skus and tenant branding information.", + "displayName": "Read organization information", + "id": "498476ce-e0fe-48b0-b801-37ba7e2685c6", + "origin": "Application", + "value": "Organization.Read.All" + }, + { + "description": "Allows the app to read company places (conference rooms and room lists) for calendar events and other applications, without a signed-in user.", + "displayName": "Read all company places", + "id": "913b9306-0ce1-42b8-9137-6a7df690a760", + "origin": "Application", + "value": "Place.Read.All" + }, + { + "description": "Allows the app to read the memberships of hidden groups and administrative units without a signed-in user.", + "displayName": "Read all hidden memberships", + "id": "658aa5d8-239f-45c4-aa12-864f4fc7e490", + "origin": "Application", + "value": "Member.Read.Hidden" + }, + { + "description": "Allow the app to read or write items in all external datasets that the app is authorized to access", + "displayName": "Read and write items in external datasets", + "id": "38c3d6ee-69ee-422f-b954-e17819665354", + "origin": "Application", + "value": "ExternalItem.ReadWrite.All" + }, + { + "description": "Allows the app to read, update, delete and perform actions on access reviews, reviewers, decisions and settings in the organization for group and app memberships, without a signed-in user.", + "displayName": "Manage access reviews for group and app memberships", + "id": "18228521-a591-40f1-b215-5fad4488c117", + "origin": "Application", + "value": "AccessReview.ReadWrite.Membership" + }, + { + "description": "Allows the app to read properties of Microsoft Intune-managed device configuration and device compliance policies and their assignment to groups, without a signed-in user.", + "displayName": "Read Microsoft Intune device configuration and policies", + "id": "dc377aa6-52d8-4e23-b271-2a7ae04cedf3", + "origin": "Application", + "value": "DeviceManagementConfiguration.Read.All" + }, + { + "description": "Allows the app to read the properties, group assignments and status of apps, app configurations and app protection policies managed by Microsoft Intune, without a signed-in user.", + "displayName": "Read Microsoft Intune apps", + "id": "7a6ee1e7-141e-4cec-ae74-d9db155731ff", + "origin": "Application", + "value": "DeviceManagementApps.Read.All" + }, + { + "description": "Allows the app to read the properties of devices managed by Microsoft Intune, without a signed-in user.", + "displayName": "Read Microsoft Intune devices", + "id": "2f51be20-0bb4-4fed-bf7b-db946066c75e", + "origin": "Application", + "value": "DeviceManagementManagedDevices.Read.All" + }, + { + "description": "Allows the app to read the properties relating to the Microsoft Intune Role-Based Access Control (RBAC) settings, without a signed-in user.", + "displayName": "Read Microsoft Intune RBAC settings", + "id": "58ca0d9a-1575-47e1-a3cb-007ef2e4583b", + "origin": "Application", + "value": "DeviceManagementRBAC.Read.All" + }, + { + "description": "Allows the app to read Microsoft Intune service properties including device enrollment and third party service connection configuration, without a signed-in user.", + "displayName": "Read Microsoft Intune configuration", + "id": "06a5fe6d-c49d-46a7-b082-56b1b14103c7", + "origin": "Application", + "value": "DeviceManagementServiceConfig.Read.All" + }, + { + "description": "Allows the app to create, view, update and delete on-premises published resources, on-premises agents and agent groups, as part of a hybrid identity configuration, without a signed in user.", + "displayName": "Manage on-premises published resources", + "id": "0b57845e-aa49-4e6f-8109-ce654fffa618", + "origin": "Application", + "value": "OnPremisesPublishingProfiles.ReadWrite.All" + }, + { + "description": "Allows the app to read and write trust framework key set properties without a signed-in user.", + "displayName": "Read and write trust framework key sets", + "id": "4a771c9a-1cf2-4609-b88e-3d3e02d539cd", + "origin": "Application", + "value": "TrustFrameworkKeySet.ReadWrite.All" + }, + { + "description": "Allows the app to read trust framework key set properties without a signed-in user.", + "displayName": "Read trust framework key sets", + "id": "fff194f1-7dce-4428-8301-1badb5518201", + "origin": "Application", + "value": "TrustFrameworkKeySet.Read.All" + }, + { + "description": "Allows the app to read and write your organization's trust framework policies without a signed in user.", + "displayName": "Read and write your organization's trust framework policies", + "id": "79a677f7-b79d-40d0-a36a-3e6f8688dd7a", + "origin": "Application", + "value": "Policy.ReadWrite.TrustFramework" + }, + { + "description": "Allows the app to read all your organization's policies without a signed in user.", + "displayName": "Read your organization's policies", + "id": "246dd0d5-5bd0-4def-940b-0421030a5b68", + "origin": "Application", + "value": "Policy.Read.All" + }, + { + "description": "Allows the app to read and write your organization\u2019s identity (authentication) providers\u2019 properties without a signed in user.", + "displayName": "Read and write identity providers", + "id": "90db2b9a-d928-4d33-a4dd-8442ae3d41e4", + "origin": "Application", + "value": "IdentityProvider.ReadWrite.All" + }, + { + "description": "Allows the app to read your organization\u2019s identity (authentication) providers\u2019 properties without a signed in user.", + "displayName": "Read identity providers", + "id": "e321f0bb-e7f7-481e-bb28-e3b0b32d4bd0", + "origin": "Application", + "value": "IdentityProvider.Read.All" + }, + { + "description": "Allows the app to create, read, update, and delete administrative units and manage administrative unit membership without a signed-in user.", + "displayName": "Read and write all administrative units", + "id": "5eb59dd3-1da2-4329-8733-9dabdc435916", + "origin": "Application", + "value": "AdministrativeUnit.ReadWrite.All" + }, + { + "description": "Allows the app to read administrative units and administrative unit membership without a signed-in user.", + "displayName": "Read all administrative units", + "id": "134fd756-38ce-4afd-ba33-e9623dbe66c2", + "origin": "Application", + "value": "AdministrativeUnit.Read.All" + }, + { + "description": "Allows an app to read published sensitivity labels and label policy settings for the entire organization or a specific user, without a signed in user.", + "displayName": "Read all published labels and label policies for an organization.", + "id": "19da66cb-0fb0-4390-b071-ebc76a349482", + "origin": "Application", + "value": "InformationProtectionPolicy.Read.All" + }, + { + "description": "Allows the app to read all the OneNote notebooks in your organization, without a signed-in user.", + "displayName": "Read all OneNote notebooks", + "id": "3aeca27b-ee3a-4c2b-8ded-80376e2134a4", + "origin": "Application", + "value": "Notes.Read.All" + }, + { + "description": "Allows the app to invite guest users to the organization, without a signed-in user.", + "displayName": "Invite guest users to the organization", + "id": "09850681-111b-4a89-9bed-3f2cae46d706", + "origin": "Application", + "value": "User.Invite.All" + }, + { + "description": "Allows the app to read, create, update and delete all files in all site collections without a signed in user. ", + "displayName": "Read and write files in all site collections", + "id": "75359482-378d-4052-8f01-80520e7db3cd", + "origin": "Application", + "value": "Files.ReadWrite.All" + }, + { + "description": "Allows the app to create threat indicators, and fully manage those threat indicators (read, update and delete), without a signed-in user. \u00a0It cannot update any threat indicators it does not own.", + "displayName": "Manage threat indicators this app creates or owns", + "id": "21792b6c-c986-4ffc-85de-df9da54b52fa", + "origin": "Application", + "value": "ThreatIndicators.ReadWrite.OwnedBy" + }, + { + "description": "Allows the app to read or update security actions, without a signed-in user.", + "displayName": "Read and update your organization's security actions", + "id": "f2bf083f-0179-402a-bedb-b2784de8a49b", + "origin": "Application", + "value": "SecurityActions.ReadWrite.All" + }, + { + "description": "Allows the app to read security actions, without a signed-in user.", + "displayName": "Read your organization's security actions", + "id": "5e0edab9-c148-49d0-b423-ac253e121825", + "origin": "Application", + "value": "SecurityActions.Read.All" + }, + { + "description": "Allows the app to read your organization\u2019s security events without a signed-in user. Also allows the app to update editable properties in security events.", + "displayName": "Read and update your organization\u2019s security events", + "id": "d903a879-88e0-4c09-b0c9-82f6a1333f84", + "origin": "Application", + "value": "SecurityEvents.ReadWrite.All" + }, + { + "description": "Allows the app to read your organization\u2019s security events without a signed-in user.", + "displayName": "Read your organization\u2019s security events", + "id": "bf394140-e372-4bf9-a898-299cfc7564e5", + "origin": "Application", + "value": "SecurityEvents.Read.All" + }, + { + "description": "Allows an app to read and write all chat messages in Microsoft Teams, without a signed-in user.", + "displayName": "Read and write all chat messages", + "id": "294ce7c9-31ba-490a-ad7d-97a7d075e4ed", + "origin": "Application", + "value": "Chat.ReadWrite.All" + }, + { + "description": "Allows the app to read and update identity risk detection information for your organization without a signed-in user. Update operations include confirming risk event detections.\u00a0", + "displayName": "Read and write all risk detection information", + "id": "db06fb33-1953-4b7b-a2ac-f1e2c854f7ae", + "origin": "Application", + "value": "IdentityRiskEvent.ReadWrite.All" + }, + { + "description": "Allows the app to read and update identity risky user information for your organization without a signed-in user. \u00a0Update operations include dismissing risky users.", + "displayName": "Read and write all risky user information", + "id": "656f6061-f9fe-4807-9708-6a2e0934df76", + "origin": "Application", + "value": "IdentityRiskyUser.ReadWrite.All" + }, + { + "description": "Allows the app to read all files in all site collections without a signed in user.", + "displayName": "Read files in all site collections", + "id": "01d4889c-1287-42c6-ac1f-5d1e02578ef6", + "origin": "Application", + "value": "Files.Read.All" + }, + { + "description": "Allows the app to read the identity risk event information for your organization without a signed in user.", + "displayName": "Read all identity risk event information", + "id": "6e472fd1-ad78-48da-a0f0-97ab2c6b769e", + "origin": "Application", + "value": "IdentityRiskEvent.Read.All" + }, + { + "description": "Allows the app to read a limited subset of properties from both the structure of schools and classes in the organization's roster and education-specific information about all users. Includes name, status, role, email address and photo.", + "displayName": "Read a limited subset of the organization's roster", + "id": "0d412a8c-a06c-439f-b3ec-8abcf54d2f96", + "origin": "Application", + "value": "EduRoster.ReadBasic.All" + }, + { + "description": "Allows the app to read the structure of schools and classes in the organization's roster and education-specific information about all users to be read.", + "displayName": "Read the organization's roster", + "id": "e0ac9e1b-cb65-4fc5-87c5-1a8bc181f648", + "origin": "Application", + "value": "EduRoster.Read.All" + }, + { + "description": "Allows the app to read and write the structure of schools and classes in the organization's roster and education-specific information about all users to be read and written.", + "displayName": "Read and write the organization's roster", + "id": "d1808e82-ce13-47af-ae0d-f9b254e6d58a", + "origin": "Application", + "value": "EduRoster.ReadWrite.All" + }, + { + "description": "Read the state and settings of all Microsoft education apps.", + "displayName": "Read Education app settings", + "id": "7c9db06a-ec2d-4e7b-a592-5a1e30992566", + "origin": "Application", + "value": "EduAdministration.Read.All" + }, + { + "description": "Manage the state and settings of all Microsoft education apps.", + "displayName": "Manage education app settings", + "id": "9bc431c3-b8bc-4a8d-a219-40f10f92eff6", + "origin": "Application", + "value": "EduAdministration.ReadWrite.All" + }, + { + "description": "Allows the app to read the identity risky user information for your organization without a signed in user.", + "displayName": "Read all identity risky user information", + "id": "dc5007c0-2d7d-4c42-879c-2dab87571379", + "origin": "Application", + "value": "IdentityRiskyUser.Read.All" + }, + { + "description": "Allows the app to read and update user profiles without a signed in user.", + "displayName": "Read and write all users' full profiles", + "id": "741f803b-c850-494e-b5df-cde7c675a1ca", + "origin": "Application", + "value": "User.ReadWrite.All" + }, + { + "description": "Allows the app to read user profiles without a signed in user.", + "displayName": "Read all users' full profiles", + "id": "df021288-bdef-4463-88db-98f22de89214", + "origin": "Application", + "value": "User.Read.All" + }, + { + "description": "Allows the app to read and query your audit log activities, without a signed-in user.", + "displayName": "Read all audit log data", + "id": "b0afded3-3588-46d8-8b3d-9842eff778da", + "origin": "Application", + "value": "AuditLog.Read.All" + }, + { + "description": "Allows the app to create other applications, and fully manage those applications (read, update, update application secrets and delete), without a signed-in user. \u00a0It cannot update any apps that it is not an owner of.", + "displayName": "Manage apps that this app creates or owns", + "id": "18a4783c-866b-4cc7-a460-3d5e5662c884", + "origin": "Application", + "value": "Application.ReadWrite.OwnedBy" + }, + { + "description": "Allows the app to export data (e.g. customer content or system-generated logs), associated with any user in your company, when the app is used by a privileged user (e.g. a Company Administrator).", + "displayName": "Export user's data", + "id": "405a51b5-8d8d-430b-9842-8be4b0e9f324", + "origin": "Application", + "value": "User.Export.All" + }, + { + "description": "Allows the app to read, update, delete and perform actions on programs and program controls in the organization, without a signed-in user.", + "displayName": "Manage all programs", + "id": "60a901ed-09f7-4aa5-a16e-7dd3d6f9de36", + "origin": "Application", + "value": "ProgramControl.ReadWrite.All" + }, + { + "description": "Allows the app to read programs and program controls in the organization, without a signed-in user.", + "displayName": "Read all programs", + "id": "eedb7fdd-7539-4345-a38b-4839e4a84cbd", + "origin": "Application", + "value": "ProgramControl.Read.All" + }, + { + "description": "Allows the app to read, update, delete and perform actions on access reviews, reviewers, decisions and settings in the organization, without a signed-in user.", + "displayName": "Manage all access reviews", + "id": "ef5f7d5c-338f-44b0-86c3-351f46c8bb5f", + "origin": "Application", + "value": "AccessReview.ReadWrite.All" + }, + { + "description": "Allows the app to read access reviews, reviewers, decisions and settings in the organization, without a signed-in user.", + "displayName": "Read all access reviews", + "id": "d07a8cc0-3d51-4b77-b3b0-32704d1f69fa", + "origin": "Application", + "value": "AccessReview.Read.All" + }, + { + "description": "Allows an app to read all service usage reports without a signed-in user. Services that provide usage reports include Office 365 and Azure Active Directory.", + "displayName": "Read all usage reports", + "id": "230c1aed-a721-4c5d-9cb4-a90514e508ef", + "origin": "Application", + "value": "Reports.Read.All" + }, + { + "description": "Allows the app to read any user's scored list of relevant people, without a signed-in user. The list can include local contacts, contacts from social networking, your organization's directory, and people from recent communications (such as email and Skype).", + "displayName": "Read all users' relevant people lists", + "id": "b528084d-ad10-4598-8b93-929746b4d7d6", + "origin": "Application", + "value": "People.Read.All" + }, + { + "description": "Allows the app to update Microsoft Teams 1-to-1 or group chat messages by patching a set of Data Loss Prevention (DLP) policy violation properties to handle the output of DLP processing.", + "displayName": "Flag chat messages for violating policy", + "id": "7e847308-e030-4183-9899-5235d7270f58", + "origin": "Application", + "value": "Chat.UpdatePolicyViolation.All" + }, + { + "description": "Allows the app to read all 1-to-1 or group chat messages in Microsoft Teams.", + "displayName": "Read all chat messages", + "id": "6b7d71aa-70aa-4810-a8d9-5d9fb2830017", + "origin": "Application", + "value": "Chat.Read.All" + }, + { + "description": "Allows the app to read all channel messages in Microsoft Teams", + "displayName": "Read all channel messages", + "id": "7b2449af-6ccd-4f4d-9f78-e550c193f0d1", + "origin": "Application", + "value": "ChannelMessage.Read.All" + }, + { + "description": "Allows the app to update Microsoft Teams channel messages by patching a set of Data Loss Prevention (DLP) policy violation properties to handle the output of DLP processing.", + "displayName": "Flag channel messages for violating policy", + "id": "4d02b0cc-d90b-441f-8d82-4fb55c34d6bb", + "origin": "Application", + "value": "ChannelMessage.UpdatePolicyViolation.All" + }, + { + "description": "Allows the app to create, read, update and delete applications and service principals without a signed-in user. Does not allow management of consent grants.", + "displayName": "Read and write all applications", + "id": "1bfefb4e-e0b5-418b-a88f-73c46d2cc8e9", + "origin": "Application", + "value": "Application.ReadWrite.All" + }, + { + "description": "Allows the app to create, read, update, and delete user's mailbox settings without a signed-in user. Does not include permission to send mail.", + "displayName": "Read and write all user mailbox settings", + "id": "6931bccd-447a-43d1-b442-00a195474933", + "origin": "Application", + "value": "MailboxSettings.ReadWrite" + }, + { + "description": "Allows the app to read and write all domain properties without a signed in user. \u00a0Also allows the app to add, \u00a0verify and remove domains.", + "displayName": "Read and write domains", + "id": "7e05723c-0bb0-42da-be95-ae9f08a6e53c", + "origin": "Application", + "value": "Domain.ReadWrite.All" + }, + { + "description": "Allows the app to read user's mailbox settings without a signed-in user. Does not include permission to send mail.", + "displayName": "Read all user mailbox settings", + "id": "40f97065-369a-49f4-947c-6a255697ae91", + "origin": "Application", + "value": "MailboxSettings.Read" + }, + { + "description": "Allows the app to read mail in all mailboxes without a signed-in user.", + "displayName": "Read mail in all mailboxes", + "id": "810c84a8-4a9e-49e6-bf7d-12d183f40d01", + "origin": "Application", + "value": "Mail.Read" + }, + { + "description": "Allows the app to create, read, update, and delete mail in all mailboxes without a signed-in user. Does not include permission to send mail.", + "displayName": "Read and write mail in all mailboxes", + "id": "e2a3a72e-5f79-4c64-b1b1-878b674786c9", + "origin": "Application", + "value": "Mail.ReadWrite" + }, + { + "description": "Allows the app to send mail as any user without a signed-in user.", + "displayName": "Send mail as any user", + "id": "b633e1c5-b582-4048-a93e-9f11b44c7e96", + "origin": "Application", + "value": "Mail.Send" + }, + { + "description": "Allows the app to read all contacts in all mailboxes without a signed-in user.", + "displayName": "Read contacts in all mailboxes", + "id": "089fe4d0-434a-44c5-8827-41ba8a0b17f5", + "origin": "Application", + "value": "Contacts.Read" + }, + { + "description": "Allows the app to create, read, update, and delete all contacts in all mailboxes without a signed-in user.", + "displayName": "Read and write contacts in all mailboxes", + "id": "6918b873-d17a-4dc1-b314-35f528134491", + "origin": "Application", + "value": "Contacts.ReadWrite" + }, + { + "description": "Allows the app to read data in your organization's directory, such as users, groups and apps, without a signed-in user.", + "displayName": "Read directory data", + "id": "7ab1d382-f21e-4acd-a863-ba3e13f7da61", + "origin": "Application", + "value": "Directory.Read.All" + }, + { + "description": "Allows the app to read and write data in your organization's directory, such as users, and groups, without a signed-in user. Does not allow user or group deletion.", + "displayName": "Read and write directory data", + "id": "19dbc75e-c2e2-444c-a770-ec69d8559fc7", + "origin": "Application", + "value": "Directory.ReadWrite.All" + }, + { + "description": "Allows the app to read and write all device properties without a signed in user. Does not allow device creation, device deletion or update of device alternative security identifiers.", + "displayName": "Read and write devices", + "id": "1138cb37-bd11-4084-a2b7-9f71582aeddb", + "origin": "Application", + "value": "Device.ReadWrite.All" + }, + { + "description": "Allows the app to read events of all calendars without a signed-in user.", + "displayName": "Read calendars in all mailboxes", + "id": "798ee544-9d2d-430c-a058-570e29e34338", + "origin": "Application", + "value": "Calendars.Read" + }, + { + "description": "Allows the app to create, read, update, and delete events of all calendars without a signed-in user.", + "displayName": "Read and write calendars in all mailboxes", + "id": "ef54d2bf-783f-4e0f-bca1-3210c0444d99", + "origin": "Application", + "value": "Calendars.ReadWrite" + }, + { + "description": "Allows the app to read your organization's user flows, without a signed-in user.", + "displayName": "Read all identity user flows", + "id": "1b0c317f-dd31-4305-9932-259a8b6e8099", + "origin": "Application", + "value": "IdentityUserFlow.Read.All" + }, + { + "description": "Allows the app to read or write your organization's user flows, without a signed-in user.", + "displayName": "Read and write all identity user flows", + "id": "65319a09-a2be-469d-8782-f6b07debf789", + "origin": "Application", + "value": "IdentityUserFlow.ReadWrite.All" + }, + { + "description": "Allows the app to read and create online meetings as an application in your organization.", + "displayName": "Read and create online meetings", + "id": "b8bb2037-6e08-44ac-a4ea-4674e010e2a4", + "origin": "Application", + "value": "OnlineMeetings.ReadWrite.All" + }, + { + "description": "Allows the app to read online meeting details in your organization, without a signed-in user.", + "displayName": "Read online meeting details", + "id": "c1684f21-1984-47fa-9d61-2dc8c296bb70", + "origin": "Application", + "value": "OnlineMeetings.Read.All" + }, + { + "description": "Allows the app to get direct access to media streams in a call, without a signed-in user.", + "displayName": "Access media streams in a call as an app", + "id": "a7a681dc-756e-4909-b988-f160edc6655f", + "origin": "Application", + "value": "Calls.AccessMedia.All" + }, + { + "description": "Allows the app to anonymously join group calls and scheduled meetings in your organization, without a signed-in user. \u00a0The app will be joined as a guest to meetings in your organization.", + "displayName": "Join group calls and meetings as a guest", + "id": "fd7ccf6b-3d28-418b-9701-cd10f5cd2fd4", + "origin": "Application", + "value": "Calls.JoinGroupCallAsGuest.All" + }, + { + "description": "Allows the app to join group calls and scheduled meetings in your organization, without a signed-in user. \u00a0The app will be joined with the privileges of a directory user to meetings in your organization.", + "displayName": "Join group calls and meetings as an app", + "id": "f6b49018-60ab-4f81-83bd-22caeabfed2d", + "origin": "Application", + "value": "Calls.JoinGroupCall.All" + }, + { + "description": "Allows the app to place outbound calls to multiple users and add participants to meetings in your organization, without a signed-in user.", + "displayName": "Initiate outgoing group calls from the app", + "id": "4c277553-8a09-487b-8023-29ee378d8324", + "origin": "Application", + "value": "Calls.InitiateGroupCall.All" + }, + { + "description": "Allows the app to place outbound calls to a single user and transfer calls to users in your organization\u2019s directory, without a signed-in user.", + "displayName": "Initiate outgoing 1 to 1 calls from the app", + "id": "284383ee-7f6e-4e40-a2a8-e85dcb029101", + "origin": "Application", + "value": "Calls.Initiate.All" + }, + { + "description": "Allows the app to read all organizational contacts without a signed-in user. These contacts are managed by the organization and are different from a user's personal contacts.", + "displayName": "Read organizational contacts", + "id": "e1a88a34-94c4-4418-be12-c87b00e26bea", + "origin": "Application", + "value": "OrgContact.Read.All" + }, + { + "description": "Allows the app to read and write the properties, group assignments and status of apps, app configurations and app protection policies managed by Microsoft Intune, without a signed-in user.", + "displayName": "Read and write Microsoft Intune apps", + "id": "78145de6-330d-4800-a6ce-494ff2d33d07", + "origin": "Application", + "value": "DeviceManagementApps.ReadWrite.All" + }, + { + "description": "Allows the app to read and write properties of Microsoft Intune-managed device configuration and device compliance policies and their assignment to groups, without a signed-in user.", + "displayName": "Read and write Microsoft Intune device configuration and policies", + "id": "9241abd9-d0e6-425a-bd4f-47ba86e767a4", + "origin": "Application", + "value": "DeviceManagementConfiguration.ReadWrite.All" + }, + { + "description": "Allows the app to perform remote high impact actions such as wiping the device or resetting the passcode on devices managed by Microsoft Intune, without a signed-in user.", + "displayName": "Perform user-impacting remote actions on Microsoft Intune devices", + "id": "5b07b0dd-2377-4e44-a38d-703f09a0dc3c", + "origin": "Application", + "value": "DeviceManagementManagedDevices.PrivilegedOperations.All" + }, + { + "description": "Allows the app to read and write the properties of devices managed by Microsoft Intune, without a signed-in user. Does not allow high impact operations such as remote wipe and password reset on the device\u2019s owner", + "displayName": "Read and write Microsoft Intune devices", + "id": "243333ab-4d21-40cb-a475-36241daa0842", + "origin": "Application", + "value": "DeviceManagementManagedDevices.ReadWrite.All" + }, + { + "description": "Allows the app to read and write the properties relating to the Microsoft Intune Role-Based Access Control (RBAC) settings, without a signed-in user.", + "displayName": "Read and write Microsoft Intune RBAC settings", + "id": "e330c4f0-4170-414e-a55a-2f022ec2b57b", + "origin": "Application", + "value": "DeviceManagementRBAC.ReadWrite.All" + }, + { + "description": "Allows the app to read and write Microsoft Intune service properties including device enrollment and third party service connection configuration, without a signed-in user.", + "displayName": "Read and write Microsoft Intune configuration", + "id": "5ac13192-7ace-4fcf-b828-1a26f28068ee", + "origin": "Application", + "value": "DeviceManagementServiceConfig.ReadWrite.All" + }, + { + "description": "Allows the app to manage permission grants for application permissions to any API (including Microsoft Graph) and application assignments for any app, without a signed-in user.", + "displayName": "Manage app permission grants and app role assignments", + "id": "06b708a9-e830-4db3-a914-8e69da51d44f", + "origin": "Application", + "value": "AppRoleAssignment.ReadWrite.All" + }, + { + "description": "Allows the app to manage permission grants for delegated permissions exposed by any API (including Microsoft Graph), without a signed-in user.", + "displayName": "Manage all delegated permission grants", + "id": "8e8e4742-1d95-4f68-9d56-6ee75648c72a", + "origin": "Application", + "value": "DelegatedPermissionGrant.ReadWrite.All" + }, + { + "description": "Allows the app to read all users' teamwork activity feed, without a signed-in user.", + "displayName": "Read all users' teamwork activity feed", + "id": "70dec828-f620-4914-aa83-a29117306807", + "origin": "Application", + "value": "TeamsActivity.Read.All" + }, + { + "description": "Allows the app to read time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD built-in and custom administrative roles in your organization, without a signed-in user.", + "displayName": "Read privileged access to Azure AD roles", + "id": "4cdc2547-9148-4295-8d11-be0db1391d6b", + "origin": "Application", + "value": "PrivilegedAccess.Read.AzureAD" + }, + { + "description": "Allows the app to read time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD groups in your organization, without a signed-in user.", + "displayName": "Read privileged access to Azure AD groups", + "id": "01e37dc9-c035-40bd-b438-b2879c4870a6", + "origin": "Application", + "value": "PrivilegedAccess.Read.AzureADGroup" + }, + { + "description": "Allows the app to read time-based assignment and just-in-time elevation of user privileges to audit Azure resources in your organization, without a signed-in user.", + "displayName": "Read privileged access to Azure resources", + "id": "5df6fe86-1be0-44eb-b916-7bd443a71236", + "origin": "Application", + "value": "PrivilegedAccess.Read.AzureResources" + }, + { + "description": "Allows the app to request and manage time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD built-in and custom administrative roles in your organization, without a signed-in user.", + "displayName": "Read and write privileged access to Azure AD roles", + "id": "854d9ab1-6657-4ec8-be45-823027bcd009", + "origin": "Application", + "value": "PrivilegedAccess.ReadWrite.AzureAD" + }, + { + "description": "Allows the app to request and manage time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD groups in your organization, without a signed-in user.", + "displayName": "Read and write privileged access to Azure AD groups", + "id": "2f6817f8-7b12-4f0f-bc18-eeaf60705a9e", + "origin": "Application", + "value": "PrivilegedAccess.ReadWrite.AzureADGroup" + }, + { + "description": "Allows the app to request and manage time-based assignment and just-in-time elevation of Azure resources (like your subscriptions, resource groups, storage, compute) in your organization, without a signed-in user.", + "displayName": "Read and write privileged access to Azure resources", + "id": "6f9d5abc-2db6-400b-a267-7de22a40fb87", + "origin": "Application", + "value": "PrivilegedAccess.ReadWrite.AzureResources" + }, + { + "description": "Allows the app to read all the indicators for your organization, without a signed-in user.", + "displayName": "Read all threat indicators", + "id": "197ee4e9-b993-4066-898f-d6aecc55125b", + "origin": "Application", + "value": "ThreatIndicators.Read.All" + }, + { + "description": "Allows the app to send, read, update and delete user\u2019s notifications, without a signed-in user.", + "displayName": "Deliver and manage all user's notifications", + "id": "4e774092-a092-48d1-90bd-baad67c7eb47", + "origin": "Application", + "value": "UserNotification.ReadWrite.CreatedByApp" + }, + { + "description": "Allows the app to read all applications and service principals without a signed-in user.", + "displayName": "Read all applications", + "id": "9a5d68dd-52b0-4cc2-bd40-abcf44ac3a30", + "origin": "Application", + "value": "Application.Read.All" + }, + { + "description": "Allows the app to read memberships and basic group properties for all groups without a signed-in user.", + "displayName": "Read all group memberships", + "id": "98830695-27a2-44f7-8c18-0c3ebc9698f6", + "origin": "Application", + "value": "GroupMember.Read.All" + }, + { + "description": "Allows the app to list groups, read basic properties, read and update the membership of the groups this app has access to without a signed-in user. Group properties and owners cannot be updated and groups cannot be deleted.", + "displayName": "Read and write all group memberships", + "id": "dbaae8cf-10b5-4b86-a4a1-f871c94c6695", + "origin": "Application", + "value": "GroupMember.ReadWrite.All" + }, + { + "description": "Allows the app to create groups without a signed-in user.", + "displayName": "Create groups", + "id": "bf7b1a76-6e77-406b-b258-bf5c7720e98f", + "origin": "Application", + "value": "Group.Create" + }, + { + "description": "Allows an app to read your organization's threat assessment requests, without a signed-in user.", + "displayName": "Read threat assessment requests", + "id": "f8f035bb-2cce-47fb-8bf5-7baf3ecbee48", + "origin": "Application", + "value": "ThreatAssessment.Read.All" + }, + { + "description": "Allows the app to read all schedules, schedule groups, shifts and associated entities in the Teams or Shifts application without a signed-in user.", + "displayName": "Read all schedule items", + "id": "7b2ebf90-d836-437f-b90d-7b62722c4456", + "origin": "Application", + "value": "Schedule.Read.All" + }, + { + "description": "Allows the app to manage all schedules, schedule groups, shifts and associated entities in the Teams or Shifts application without a signed-in user.", + "displayName": "Read and write all schedule items", + "id": "b7760610-0545-4e8a-9ec3-cce9e63db01c", + "origin": "Application", + "value": "Schedule.ReadWrite.All" + }, + { + "description": "Allows the app to read call records for all calls and online meetings without a signed-in user.", + "displayName": "Read all call records", + "id": "45bbb07e-7321-4fd7-a8f6-3ff27e6a81c8", + "origin": "Application", + "value": "CallRecords.Read.All" + }, + { + "description": "Allows the app to read and write your organization's conditional access policies, without a signed-in user.", + "displayName": "Read and write your organization's conditional access policies", + "id": "01c0a623-fc9b-48e9-b794-0756f8e8f067", + "origin": "Application", + "value": "Policy.ReadWrite.ConditionalAccess" + }, + { + "description": "Allows the application to read and write authentication methods of all users in your organization, without a signed-in user. Authentication methods include things like a user\u2019s phone numbers and Authenticator app settings. This does not allow the app to see secret information like passwords, or to sign-in or otherwise use the authentication methods", + "displayName": "Read and write all users' authentication methods ", + "id": "50483e42-d915-4231-9639-7fdb7fd190e5", + "origin": "Application", + "value": "UserAuthenticationMethod.ReadWrite.All" + }, + { + "description": " Allows the app to read authentication methods of all users in your organization, without a signed-in user. Authentication methods include things like a user\u2019s phone numbers and Authenticator app settings. This does not allow the app to see secret information like passwords, or to sign-in or otherwise use the authentication methods.", + "displayName": " Read all users' authentication methods", + "id": "38d9df27-64da-44fd-b7c5-a6fbac20248f", + "origin": "Application", + "value": "UserAuthenticationMethod.Read.All" + }, + { + "description": "Allows the app to create tabs in any team in Microsoft Teams, without a signed-in user. This does not grant the ability to read, modify or delete tabs after they are created, or give access to the content inside the tabs.", + "displayName": "Create tabs in Microsoft Teams.", + "id": "49981c42-fd7b-4530-be03-e77b21aed25e", + "origin": "Application", + "value": "TeamsTab.Create" + }, + { + "description": "Read the names and settings of tabs inside any team in Microsoft Teams, without a signed-in user. This does not give access to the content inside the tabs. ", + "displayName": "Read tabs in Microsoft Teams.", + "id": "46890524-499a-4bb2-ad64-1476b4f3e1cf", + "origin": "Application", + "value": "TeamsTab.Read.All" + }, + { + "description": "Read and write tabs in any team in Microsoft Teams, without a signed-in user. This does not give access to the content inside the tabs.", + "displayName": "Read and write tabs in Microsoft Teams.", + "id": "a96d855f-016b-47d7-b51c-1218a98d791c", + "origin": "Application", + "value": "TeamsTab.ReadWrite.All" + }, + { + "description": "Allows the app to read all domain properties without a signed-in user.", + "displayName": "Read domains", + "id": "dbb9058a-0e50-45d7-ae91-66909b5d4664", + "origin": "Application", + "value": "Domain.Read.All" + }, + { + "description": "Allows the app to read and write your organization's application configuration policies, without a signed-in user. This includes policies such as activityBasedTimeoutPolicy, claimsMappingPolicy, homeRealmDiscoveryPolicy, tokenIssuancePolicy and tokenLifetimePolicy.", + "displayName": "Read and write your organization's application configuration policies", + "id": "be74164b-cff1-491c-8741-e671cb536e13", + "origin": "Application", + "value": "Policy.ReadWrite.ApplicationConfiguration" + }, + { + "description": "Allows the app to read your organization's devices' configuration information without a signed-in user.", + "displayName": "Read all devices", + "id": "7438b122-aefc-4978-80ed-43db9fcc7715", + "origin": "Application", + "value": "Device.Read.All" + }, + { + "description": "Allows the app to read, update and delete identities that are associated with a user's account, without a signed in user. This controls the identities users can sign-in with.", + "displayName": "Manage all users' identities", + "id": "c529cfca-c91b-489c-af2b-d92990b66ce6", + "origin": "Application", + "value": "User.ManageIdentities.All" + }, + { + "description": "Allows the app to read all users' shift schedule preferences without a signed-in user.", + "displayName": "Read all user shift preferences", + "id": "de023814-96df-4f53-9376-1e2891ef5a18", + "origin": "Application", + "value": "UserShiftPreferences.Read.All" + }, + { + "description": "Allows the app to manage all users' shift schedule preferences without a signed-in user.", + "displayName": "Read and write all user shift preferences", + "id": "d1eec298-80f3-49b0-9efb-d90e224798ac", + "origin": "Application", + "value": "UserShiftPreferences.ReadWrite.All" + }, + { + "description": "Allows the app to read all the OneNote notebooks in your organization, without a signed-in user.", + "displayName": "Read and write all OneNote notebooks", + "id": "0c458cef-11f3-48c2-a568-c66751c238c0", + "origin": "Application", + "value": "Notes.ReadWrite.All" + }, + { + "description": "Allows the app to have full control of all site collections without a signed in user.", + "displayName": "Have full control of all site collections", + "id": "a82116e5-55eb-4c41-a434-62fe8a61c773", + "origin": "Application", + "value": "Sites.FullControl.All" + }, + { + "description": "Allows the app to create or delete document libraries and lists in all site collections without a signed in user.", + "displayName": "Create, edit, and delete items and lists in all site collections", + "id": "0c0bf378-bf22-4481-8f81-9e89a9b4960a", + "origin": "Application", + "value": "Sites.Manage.All" + }, + { + "description": "Allows the app to read access packages and related entitlement management resources without a signed-in user.", + "displayName": "Read all entitlement management resources", + "id": "c74fd47d-ed3c-45c3-9a9e-b8676de685d2", + "origin": "Application", + "value": "EntitlementManagement.Read.All" + }, + { + "description": "Allows the app to read and write access packages and related entitlement management resources without a signed-in user.", + "displayName": "Read and write all entitlement management resources", + "id": "9acd699f-1e81-4958-b001-93b1d2506e19", + "origin": "Application", + "value": "EntitlementManagement.ReadWrite.All" + }, + { + "description": "Create channels in any team, without a signed-in user.", + "displayName": "Create channels", + "id": "f3a65bd4-b703-46df-8f7e-0174fea562aa", + "origin": "Application", + "value": "Channel.Create" + }, + { + "description": "Delete channels in any team, without a signed-in user.", + "displayName": "Delete channels", + "id": "6a118a39-1227-45d4-af0c-ea7b40d210bc", + "origin": "Application", + "value": "Channel.Delete.All" + }, + { + "description": "Read all channel names, channel descriptions, and channel settings, without a signed-in user.", + "displayName": "Read the names, descriptions, and settings of all channels", + "id": "c97b873f-f59f-49aa-8a0e-52b32d762124", + "origin": "Application", + "value": "ChannelSettings.Read.All" + }, + { + "description": "Read and write the names, descriptions, and settings of all channels, without a signed-in user.", + "displayName": "Read and write the names, descriptions, and settings of all channels", + "id": "243cded2-bd16-4fd6-a953-ff8177894c3d", + "origin": "Application", + "value": "ChannelSettings.ReadWrite.All" + }, + { + "description": "Get a list of all teams, without a signed-in user.", + "displayName": "Get a list of all teams", + "id": "2280dda6-0bfd-44ee-a2f4-cb867cfc4c1e", + "origin": "Application", + "value": "Team.ReadBasic.All" + }, + { + "description": "Read all channel names and channel descriptions, without a signed-in user.", + "displayName": "Read the names and descriptions of all channels", + "id": "59a6b24b-4225-4393-8165-ebaec5f55d7a", + "origin": "Application", + "value": "Channel.ReadBasic.All" + }, + { + "description": "Read and change all teams' settings, without a signed-in user.", + "displayName": "Read and change all teams' settings", + "id": "bdd80a03-d9bc-451d-b7c4-ce7c63fe3c8f", + "origin": "Application", + "value": "TeamSettings.ReadWrite.All" + }, + { + "description": "Read all team's settings, without a signed-in user.", + "displayName": "Read all teams' settings", + "id": "242607bd-1d2c-432c-82eb-bdb27baa23ab", + "origin": "Application", + "value": "TeamSettings.Read.All" + }, + { + "description": "Read the members of all teams, without a signed-in user.", + "displayName": "Read the members of all teams", + "id": "660b7406-55f1-41ca-a0ed-0b035e182f3e", + "origin": "Application", + "value": "TeamMember.Read.All" + }, + { + "description": "Add and remove members from all teams, without a signed-in user. Also allows changing a team member's role, for example from owner to non-owner.", + "displayName": "Add and remove members from all teams", + "id": "0121dc95-1b9f-4aed-8bac-58c5ac466691", + "origin": "Application", + "value": "TeamMember.ReadWrite.All" + }, + { + "description": "Read the members of all channels, without a signed-in user.", + "displayName": "Read the members of all channels", + "id": "3b55498e-47ec-484f-8136-9013221c06a9", + "origin": "Application", + "value": "ChannelMember.Read.All" + }, + { + "description": "Add and remove members from all channels, without a signed-in user. Also allows changing a member's role, for example from owner to non-owner.", + "displayName": "Add and remove members from all channels", + "id": "35930dcf-aceb-4bd1-b99a-8ffed403c974", + "origin": "Application", + "value": "ChannelMember.ReadWrite.All" + }, + { + "description": "Allows the app to read and write all authentication flow policies for the tenant, without a signed-in user.", + "displayName": "Read and write authentication flow policies", + "id": "25f85f3c-f66c-4205-8cd5-de92dd7f0cec", + "origin": "Application", + "value": "Policy.ReadWrite.AuthenticationFlows" + }, + { + "description": "Allows the app to read and write all authentication method policies for the tenant, without a signed-in user.\u00a0", + "displayName": "Read and write all authentication method policies\u00a0", + "id": "29c18626-4985-4dcd-85c0-193eef327366", + "origin": "Application", + "value": "Policy.ReadWrite.AuthenticationMethod" + }, + { + "description": "Allows the app to read and write your organization's authorization policy without a signed in user. For example, authorization policies can control some of the permissions that the out-of-the-box user role has by default.", + "displayName": "Read and write your organization's authorization policy", + "id": "fb221be6-99f2-473f-bd32-01c6a0e9ca3b", + "origin": "Application", + "value": "Policy.ReadWrite.Authorization" + }, + { + "description": "Read names and members of all one-to-one and group chats in Microsoft Teams, without a signed-in user.", + "displayName": "Read names and members of all chat threads", + "id": "b2e060da-3baf-4687-9611-f4ebc0f0cbde", + "origin": "Application", + "value": "Chat.ReadBasic.All" + }, + { + "description": "Allows the app to read policies related to consent and permission grants for applications, without a signed-in user.", + "displayName": "Read consent and permission grant policies", + "id": "9e640839-a198-48fb-8b9a-013fd6f6cbcd", + "origin": "Application", + "value": "Policy.Read.PermissionGrant" + }, + { + "description": "Allows the app to manage policies related to consent and permission grants for applications, without a signed-in user.", + "displayName": "Manage consent and permission grant policies", + "id": "a402ca1c-2696-4531-972d-6e5ee4aa11ea", + "origin": "Application", + "value": "Policy.ReadWrite.PermissionGrant" + }, + { + "description": "Allows the application to read printers without a signed-in user.\u00a0", + "displayName": "Read printers", + "id": "9709bb33-4549-49d4-8ed9-a8f65e45bb0f", + "origin": "Application", + "value": "Printer.Read.All" + }, + { + "description": "Allows the application to read and update printers without a signed-in user. Does not allow creating (registering) or deleting (unregistering) printers.", + "displayName": "Read and update printers", + "id": "f5b3f73d-6247-44df-a74c-866173fddab0", + "origin": "Application", + "value": "Printer.ReadWrite.All" + }, + { + "description": "Allows the application to perform advanced operations like redirecting a print job to another printer without a signed-in user. Also allows the application to read and update the metadata of print jobs.", + "displayName": "Perform advanced operations on print jobs", + "id": "58a52f47-9e36-4b17-9ebe-ce4ef7f3e6c8", + "origin": "Application", + "value": "PrintJob.Manage.All" + }, + { + "description": "Allows the application to read the metadata and document content of print jobs without a signed-in user.\u00a0", + "displayName": "Read print jobs", + "id": "ac6f956c-edea-44e4-bd06-64b1b4b9aec9", + "origin": "Application", + "value": "PrintJob.Read.All" + }, + { + "description": "Allows the application to read the metadata of print jobs without a signed-in user.\u00a0Does not allow access to print job document content.", + "displayName": "Read basic information for print jobs", + "id": "fbf67eee-e074-4ef7-b965-ab5ce1c1f689", + "origin": "Application", + "value": "PrintJob.ReadBasic.All" + }, + { + "description": "Allows the application to read and update the metadata and document content of print jobs without a signed-in user.", + "displayName": "Read and write print jobs", + "id": "5114b07b-2898-4de7-a541-53b0004e2e13", + "origin": "Application", + "value": "PrintJob.ReadWrite.All" + }, + { + "description": "Allows the application to read and update the metadata of print jobs without a signed-in user.\u00a0Does not allow access to print job document content.", + "displayName": "Read and write basic information for print jobs", + "id": "57878358-37f4-4d3a-8c20-4816e0d457b1", + "origin": "Application", + "value": "PrintJob.ReadWriteBasic.All" + }, + { + "description": "Allows the application to read and update print task definitions without a signed-in user.\u00a0", + "displayName": "Read, write and update print task definitions", + "id": "456b71a7-0ee0-4588-9842-c123fcc8f664", + "origin": "Application", + "value": "PrintTaskDefinition.ReadWrite.All" + }, + { + "description": "Allows the app to create chat and channel messages, without a signed in user. The app specifies which user appears as the sender, and can backdate the message to appear as if it was sent long ago. The messages can be sent to any chat or channel in the organization.", + "displayName": "Create chat and channel messages with anyone's identity and with any timestamp", + "id": "dfb0dd15-61de-45b2-be36-d6a69fba3c79", + "origin": "Application", + "value": "Teamwork.Migrate.All" + }, + { + "description": "Allows the app to read the Teams apps that are installed in any chat, without a signed-in user. Does not give the ability to read application-specific settings.", + "displayName": "Read installed Teams apps for all chats", + "id": "cc7e7635-2586-41d6-adaa-a8d3bcad5ee5", + "origin": "Application", + "value": "TeamsAppInstallation.ReadForChat.All" + }, + { + "description": "Allows the app to read the Teams apps that are installed in any team, without a signed-in user. Does not give the ability to read application-specific settings.", + "displayName": "Read installed Teams apps for all teams", + "id": "1f615aea-6bf9-4b05-84bd-46388e138537", + "origin": "Application", + "value": "TeamsAppInstallation.ReadForTeam.All" + }, + { + "description": "Allows the app to read the Teams apps that are installed for any user, without a signed-in user. Does not give the ability to read application-specific settings.", + "displayName": "Read installed Teams apps for all users", + "id": "9ce09611-f4f7-4abd-a629-a05450422a97", + "origin": "Application", + "value": "TeamsAppInstallation.ReadForUser.All" + }, + { + "description": "Allows the app to read, install, upgrade, and uninstall Teams apps in any chat, without a signed-in user. Does not give the ability to read application-specific settings.", + "displayName": "Manage Teams apps for all chats", + "id": "9e19bae1-2623-4c4f-ab6e-2664615ff9a0", + "origin": "Application", + "value": "TeamsAppInstallation.ReadWriteForChat.All" + }, + { + "description": "Allows the app to read, install, upgrade, and uninstall Teams apps in any team, without a signed-in user. Does not give the ability to read application-specific settings.", + "displayName": "Manage Teams apps for all teams", + "id": "5dad17ba-f6cc-4954-a5a2-a0dcc95154f0", + "origin": "Application", + "value": "TeamsAppInstallation.ReadWriteForTeam.All" + }, + { + "description": "Allows the app to read, install, upgrade, and uninstall Teams apps for any user, without a signed-in user. Does not give the ability to read application-specific settings.", + "displayName": "Manage Teams apps for all users", + "id": "74ef0291-ca83-4d02-8c7e-d2391e6a444f", + "origin": "Application", + "value": "TeamsAppInstallation.ReadWriteForUser.All" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall itself for any chat, without a signed-in user.", + "displayName": "Allow the Teams app to manage itself for all chats", + "id": "73a45059-f39c-4baf-9182-4954ac0e55cf", + "origin": "Application", + "value": "TeamsAppInstallation.ReadWriteSelfForChat.All" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall itself in any team, without a signed-in user.", + "displayName": "Allow the Teams app to manage itself for all teams", + "id": "9f67436c-5415-4e7f-8ac1-3014a7132630", + "origin": "Application", + "value": "TeamsAppInstallation.ReadWriteSelfForTeam.All" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall itself to any user, without a signed-in user.", + "displayName": "Allow the app to manage itself for all users", + "id": "908de74d-f8b2-4d6b-a9ed-2a17b3b78179", + "origin": "Application", + "value": "TeamsAppInstallation.ReadWriteSelfForUser.All" + }, + { + "description": "Allows the app to create teams without a signed-in user.\u00a0", + "displayName": "Create teams", + "id": "23fc2474-f741-46ce-8465-674744c5c361", + "origin": "Application", + "value": "Team.Create" + }, + { + "description": "Add and remove members from all teams, without a signed-in user. Does not allow adding or removing a member with the owner role. Additionally, does not allow the app to elevate an existing member to the owner role.", + "displayName": "Add and remove members with non-owner role for all teams", + "id": "4437522e-9a86-4a41-a7da-e380edd4a97d", + "origin": "Application", + "value": "TeamMember.ReadWriteNonOwnerRole.All" + }, + { + "description": "Allows the app to read all term store data, without a signed-in user. This includes all sets, groups and terms in the term store.", + "displayName": "Read all term store data", + "id": "ea047cc2-df29-4f3e-83a3-205de61501ca", + "origin": "Application", + "value": "TermStore.Read.All" + }, + { + "description": "Allows the app to read, edit or write all term store data, without a signed-in user. This includes all sets, groups and terms in the term store.", + "displayName": "Read and write all term store data", + "id": "f12eb8d6-28e3-46e6-b2c0-b7e4dc69fc95", + "origin": "Application", + "value": "TermStore.ReadWrite.All" + }, + { + "description": "Allows the app to read your tenant's service health information, without a signed-in user. Health information may include service issues or service health overviews.", + "displayName": "Read service health", + "id": "79c261e0-fe76-4144-aad5-bdc68fbe4037", + "origin": "Application", + "value": "ServiceHealth.Read.All" + }, + { + "description": "Allows the app to read your tenant's service announcement messages, without a signed-in user. Messages may include information about new or changed features.", + "displayName": "Read service messages", + "id": "1b620472-6534-4fe6-9df2-4680e8aa28ec", + "origin": "Application", + "value": "ServiceMessage.Read.All" + }, + { + "description": "Allows the app to read all the short notes without a signed-in user.", + "displayName": "Read all users' short notes", + "id": "0c7d31ec-31ca-4f58-b6ec-9950b6b0de69", + "origin": "Application", + "value": "ShortNotes.Read.All" + }, + { + "description": "Allows the app to read, create, edit, and delete all the short notes without a signed-in user.", + "displayName": "Read, create, edit, and delete all users' short notes", + "id": "842c284c-763d-4a97-838d-79787d129bab", + "origin": "Application", + "value": "ShortNotes.ReadWrite.All" + }, + { + "description": "Allows the app to read your organization's conditional access policies, without a signed-in user.", + "displayName": "Read your organization's conditional access policies", + "id": "37730810-e9ba-4e46-b07e-8ca78d182097", + "origin": "Application", + "value": "Policy.Read.ConditionalAccess" + }, + { + "description": "Allows the app to read role-based access control (RBAC) settings for all RBAC providers without a signed-in user. This includes reading role definitions and role assignments.", + "displayName": "Read role management data for all RBAC providers", + "id": "c7fbd983-d9aa-4fa7-84b8-17382c103bc4", + "origin": "Application", + "value": "RoleManagement.Read.All" + }, + { + "description": "Allows the app to read all PSTN and direct routing call log data without a signed-in user.", + "displayName": "Read PSTN and direct routing call log data", + "id": "a2611786-80b3-417e-adaa-707d4261a5f0", + "origin": "Application", + "value": "CallRecord-PstnCalls.Read.All" + }, + { + "description": "Allows the app to read all one-to-one and group chats messages in Microsoft Teams, without a signed-in user.", + "displayName": "Read all chat messages", + "id": "b9bb2381-47a4-46cd-aafb-00cb12f68504", + "origin": "Application", + "value": "ChatMessage.Read.All" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall all tabs for any chat, without a signed-in user.", + "displayName": "Allow the Teams app to manage all tabs for all chats", + "id": "fd9ce730-a250-40dc-bd44-8dc8d20f39ea", + "origin": "Application", + "value": "TeamsTab.ReadWriteForChat.All" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall all tabs in any team, without a signed-in user.", + "displayName": "Allow the Teams app to manage all tabs for all teams", + "id": "6163d4f4-fbf8-43da-a7b4-060fe85ed148", + "origin": "Application", + "value": "TeamsTab.ReadWriteForTeam.All" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall all tabs for any user, without a signed-in user.", + "displayName": "Allow the app to manage all tabs for all users", + "id": "425b4b59-d5af-45c8-832f-bb0b7402348a", + "origin": "Application", + "value": "TeamsTab.ReadWriteForUser.All" + }, + { + "description": "Allows the app to read the API connectors used in user authentication flows, without a signed-in user.", + "displayName": "Read API connectors for authentication flows", + "id": "b86848a7-d5b1-41eb-a9b4-54a4e6306e97", + "origin": "Application", + "value": "APIConnectors.Read.All" + }, + { + "description": "Allows the app to read, create and manage the API connectors used in user authentication flows, without a signed-in user.", + "displayName": "Read and write API connectors for authentication flows", + "id": "1dfe531a-24a6-4f1b-80f4-7a0dc5a0a171", + "origin": "Application", + "value": "APIConnectors.ReadWrite.All" + }, + { + "description": "Read the members of all chats, without a signed-in user.", + "displayName": "Read the members of all chats", + "id": "a3410be2-8e48-4f32-8454-c29a7465209d", + "origin": "Application", + "value": "ChatMember.Read.All" + }, + { + "description": "Add and remove members from all chats, without a signed-in user.", + "displayName": "Add and remove members from all chats", + "id": "57257249-34ce-4810-a8a2-a03adf0c5693", + "origin": "Application", + "value": "ChatMember.ReadWrite.All" + }, + { + "description": "Allows the app to create chats without a signed-in user.\u00a0", + "displayName": "Create chats", + "id": "d9c48af6-9ad9-47ad-82c3-63757137b9af", + "origin": "Application", + "value": "Chat.Create" + }, + { + "description": "Allows the application to read tenant-wide print settings without a signed-in user.", + "displayName": "Read tenant-wide print settings", + "id": "b5991872-94cf-4652-9765-29535087c6d8", + "origin": "Application", + "value": "PrintSettings.Read.All" + }, + { + "description": "Allows an app to read and write all browser site lists configured for your organization, without a signed-in user.", + "displayName": "Read and write all browser site lists for your organization", + "id": "8349ca94-3061-44d5-9bfb-33774ea5e4f9", + "origin": "Application", + "value": "BrowserSiteLists.ReadWrite.All" + }, + { + "description": "Allows the application to read and change the tenant-level settings of SharePoint and OneDrive, without a signed-in user.", + "displayName": "Read and change SharePoint and OneDrive tenant settings", + "id": "19b94e34-907c-4f43-bde9-38b1909ed408", + "origin": "Application", + "value": "SharePointTenantSettings.ReadWrite.All" + }, + { + "description": "Allows the app to read your organization's authentication event listeners without a signed-in user.", + "displayName": "Read all authentication event listeners", + "id": "b7f6385c-6ce6-4639-a480-e23c42ed9784", + "origin": "Application", + "value": "EventListener.Read.All" + }, + { + "description": "Allows the app to read or write your organization's authentication event listeners without a signed-in user.", + "displayName": "Read and write all authentication event listeners", + "id": "0edf5e9e-4ce8-468a-8432-d08631d18c43", + "origin": "Application", + "value": "EventListener.ReadWrite.All" + }, + { + "description": "Allows the app to read your organization's custom authentication extensions without a signed-in user.", + "displayName": "Read all custom authentication extensions", + "id": "88bb2658-5d9e-454f-aacd-a3933e079526", + "origin": "Application", + "value": "CustomAuthenticationExtension.Read.All" + }, + { + "description": "Allows the app to read all users\u2019 tasks and task lists in your organization, without a signed-in user.", + "displayName": "Read all users\u2019 tasks and tasklist", + "id": "f10e1f91-74ed-437f-a6fd-d6ae88e26c1f", + "origin": "Application", + "value": "Tasks.Read.All" + }, + { + "description": "Allows the app to create, update, list, read and delete all workflows, tasks and related lifecycle workflows resources without a signed-in user.", + "displayName": "Read and write all lifecycle workflows resources", + "id": "5c505cf4-8424-4b8e-aa14-ee06e3bb23e3", + "origin": "Application", + "value": "LifecycleWorkflows.ReadWrite.All" + }, + { + "description": "Allows an app to read all bookmarks without a signed-in user.", + "displayName": "Read all bookmarks", + "id": "be95e614-8ef3-49eb-8464-1c9503433b86", + "origin": "Application", + "value": "Bookmark.Read.All" + }, + { + "description": "Allows the application to obtain basic tenant information about another target tenant within the Azure AD ecosystem without a signed-in user.", + "displayName": "Read cross-tenant basic information", + "id": "cac88765-0581-4025-9725-5ebc13f729ee", + "origin": "Application", + "value": "CrossTenantInformation.ReadBasic.All" + }, + { + "description": "Allows the application to list and query any shared user profile information associated with the current tenant without a signed-in user.\u00a0 It also permits the application to export and remove external user data (e.g. customer content or system-generated logs), for any user associated with the current tenant without a signed-in user.", + "displayName": "Read all shared cross-tenant user profiles and export or delete their data", + "id": "306785c5-c09b-4ba0-a4ee-023f3da165cb", + "origin": "Application", + "value": "CrossTenantUserProfileSharing.ReadWrite.All" + }, + { + "description": "Allows the app to read all learning content in the organization's directory, without a signed-in user.", + "displayName": "Read all learning content", + "id": "8740813e-d8aa-4204-860e-2a0f8f84dbc8", + "origin": "Application", + "value": "LearningContent.Read.All" + }, + { + "description": "Allows the app to read and update the authentication context information in your organization without a signed-in user.", + "displayName": "Read and write all authentication context information", + "id": "a88eef72-fed0-4bf7-a2a9-f19df33f8b83", + "origin": "Application", + "value": "AuthenticationContext.ReadWrite.All" + }, + { + "description": "Allows the app to read all admin report settings, such as whether to display concealed information in reports, without a signed-in user.", + "displayName": "Read all admin report settings", + "id": "ee353f83-55ef-4b78-82da-555bfa2b4b95", + "origin": "Application", + "value": "ReportSettings.Read.All" + }, + { + "description": "Allows the app to read the members of all chats where the associated Teams application is installed, without a signed-in user.", + "displayName": "Read the members of all chats where the associated Teams application is installed.", + "id": "93e7c9e4-54c5-4a41-b796-f2a5adaacda7", + "origin": "Application", + "value": "ChatMember.Read.WhereInstalled" + }, + { + "description": "Allows the app to add and remove members from all chats where the associated Teams application is installed, without a signed-in user.", + "displayName": "Add and remove members from all chats where the associated Teams application is installed.", + "id": "e32c2cd9-0124-4e44-88fc-772cd98afbdb", + "origin": "Application", + "value": "ChatMember.ReadWrite.WhereInstalled" + }, + { + "description": "Allows the app to read your organization's threat submissions and to view threat submission policies without a signed-in user.", + "displayName": "Read all of the organization's threat submissions", + "id": "86632667-cd15-4845-ad89-48a88e8412e1", + "origin": "Application", + "value": "ThreatSubmission.Read.All" + }, + { + "description": "Allows an app to sign digests for data without a signed-in user.", + "displayName": "Sign digests for data", + "id": "cbe6c7e4-09aa-4b8d-b3c3-2dbb59af4b54", + "origin": "Application", + "value": "InformationProtectionContent.Sign.All" + }, + { + "description": "Allows the app to read your organization's threat submission policies without a signed-in user. Also allows the app to create new threat submission polices without a signed-in user.", + "displayName": "Read and write all of the organization's threat submission policies", + "id": "926a6798-b100-4a20-a22f-a4918f13951d", + "origin": "Application", + "value": "ThreatSubmissionPolicy.ReadWrite.All" + }, + { + "description": "Allows the app to read all one-to-one or group chat messages in Microsoft Teams for chats where the associated Teams application is installed, without a signed-in user.", + "displayName": "Read all chat messages for chats where the associated Teams application is installed.", + "id": "1c1b4c8e-3cc7-4c58-8470-9b92c9d5848b", + "origin": "Application", + "value": "Chat.Read.WhereInstalled" + }, + { + "description": "Allows the app to read and write all chat messages in Microsoft Teams for chats where the associated Teams application is installed, without a signed-in user.", + "displayName": "Read and write all chat messages for chats where the associated Teams application is installed.", + "id": "ad73ce80-f3cd-40ce-b325-df12c33df713", + "origin": "Application", + "value": "Chat.ReadWrite.WhereInstalled" + }, + { + "description": "Allows the app to read and update all Azure AD recommendations, without a signed-in user. ", + "displayName": "Read and update all Azure AD recommendations", + "id": "0e9eea12-4f01-45f6-9b8d-3ea4c8144158", + "origin": "Application", + "value": "DirectoryRecommendations.ReadWrite.All" + }, + { + "description": "Allows the app to read all recordings of all online meetings, without a signed-in user.", + "displayName": "Read all recordings of online meetings.", + "id": "a4a08342-c95d-476b-b943-97e100569c8d", + "origin": "Application", + "value": "OnlineMeetingRecording.Read.All" + }, + { + "description": "Allows an app to manage license assignments for users and groups, without a signed-in user.", + "displayName": "Manage all license assignments", + "id": "5facf0c1-8979-4e95-abcf-ff3d079771c0", + "origin": "Application", + "value": "LicenseAssignment.ReadWrite.All" + }, + { + "description": "Allows the app to read and write the Teams app settings without a signed-in user.", + "displayName": "Read and write Teams app settings", + "id": "ab5b445e-8f10-45f4-9c79-dd3f8062cc4e", + "origin": "Application", + "value": "TeamworkAppSettings.ReadWrite.All" + }, + { + "description": "Allows the app to read and write the lifecycle information like employeeLeaveDateTime of users in your organization, without a signed-in user.", + "displayName": "Read and write all users' lifecycle information", + "id": "925f1248-0f97-47b9-8ec8-538c54e01325", + "origin": "Application", + "value": "User-LifeCycleInfo.ReadWrite.All" + }, + { + "description": "Allows the app to read all Azure AD recommendations, without a signed-in user. ", + "displayName": "Read all Azure AD recommendations", + "id": "ae73097b-cb2a-4447-b064-5d80f6093921", + "origin": "Application", + "value": "DirectoryRecommendations.Read.All" + }, + { + "description": "Allows the application to list and query any shared user profile information associated with the current tenant without a signed-in user.\u00a0 It also permits the application to export external user data (e.g. customer content or system-generated logs), for any user associated with the current tenant without a signed-in user.", + "displayName": "Read all shared cross-tenant user profiles and export their data", + "id": "8b919d44-6192-4f3d-8a3b-f86f8069ae3c", + "origin": "Application", + "value": "CrossTenantUserProfileSharing.Read.All" + }, + { + "description": "Allows the app to manage restricted resources based on the other permissions granted to the app, without a signed-in user.", + "displayName": "Manage restricted resources in the directory", + "id": "f20584af-9290-4153-9280-ff8bb2c0ea7f", + "origin": "Application", + "value": "Directory.Write.Restricted" + }, + { + "description": "Allows the app to read all transcripts of all online meetings, without a signed-in user.", + "displayName": "Read all transcripts of online meetings.", + "id": "a4a80d8d-d283-4bd8-8504-555ec3870630", + "origin": "Application", + "value": "OnlineMeetingTranscript.Read.All" + }, + { + "description": "Allows\u00a0the\u00a0app\u00a0to\u00a0manage all learning\u00a0content\u00a0in\u00a0the\u00a0organization's\u00a0directory, without a signed-in user.", + "displayName": "Manage all\u00a0learning\u00a0content", + "id": "444d6fcb-b738-41e5-b103-ac4f2a2628a3", + "origin": "Application", + "value": "LearningContent.ReadWrite.All" + }, + { + "description": "Allows the application to read the tenant-level settings of SharePoint and OneDrive, without a signed-in user.", + "displayName": "Read SharePoint and OneDrive tenant settings", + "id": "83d4163d-a2d8-4d3b-9695-4ae3ca98f888", + "origin": "Application", + "value": "SharePointTenantSettings.Read.All" + }, + { + "description": "Allows the app to read or write your organization's custom authentication extensions without a signed-in user.", + "displayName": "Read and write all custom authentication extensions", + "id": "c2667967-7050-4e7e-b059-4cbbb3811d03", + "origin": "Application", + "value": "CustomAuthenticationExtension.ReadWrite.All" + }, + { + "description": "Allows the app to read names and members of all one-to-one and group chats in Microsoft Teams where the associated Teams application is installed, without a signed-in user.", + "displayName": "Read names and members of all chat threads where the associated Teams application is installed.", + "id": "818ba5bd-5b3e-4fe0-bbe6-aa4686669073", + "origin": "Application", + "value": "Chat.ReadBasic.WhereInstalled" + }, + { + "description": "Allows the app to list and read all workflows, tasks and related lifecycle workflows resources without a signed-in user.", + "displayName": "Read all lifecycle workflows resources", + "id": "7c67316a-232a-4b84-be22-cea2c0906404", + "origin": "Application", + "value": "LifecycleWorkflows.Read.All" + }, + { + "description": "Allows the app to create protected content without a signed-in user. ", + "displayName": "Create protected content", + "id": "287bd98c-e865-4e8c-bade-1a85523195b9", + "origin": "Application", + "value": "InformationProtectionContent.Write.All" + }, + { + "description": "Allows the app to create, read, update and delete all users\u2019 tasks and task lists in your organization, without a signed-in user", + "displayName": "Read and write all users\u2019 tasks and tasklists", + "id": "44e666d1-d276-445b-a5fc-8815eeb81d55", + "origin": "Application", + "value": "Tasks.ReadWrite.All" + }, + { + "description": "Allows the app to read the Teams app settings without a signed-in user.", + "displayName": "Read Teams app settings", + "id": "475ebe88-f071-4bd7-af2b-642952bd4986", + "origin": "Application", + "value": "TeamworkAppSettings.Read.All" + }, + { + "description": "Allows the app to read the authentication context information in your organization without a signed-in user.", + "displayName": "Read all authentication context information", + "id": "381f742f-e1f8-4309-b4ab-e3d91ae4c5c1", + "origin": "Application", + "value": "AuthenticationContext.Read.All" + }, + { + "description": "Allows the app to read and update all admin report settings, such as whether to display concealed information in reports, without a signed-in user.", + "displayName": "Read and write all admin report settings", + "id": "2a60023f-3219-47ad-baa4-40e17cd02a1d", + "origin": "Application", + "value": "ReportSettings.ReadWrite.All" + }, + { + "description": "Allows an app to read all browser site lists configured for your organization, without a signed-in user.", + "displayName": "Read all browser site lists for your organization", + "id": "c5ee1f21-fc7f-4937-9af0-c91648ff9597", + "origin": "Application", + "value": "BrowserSiteLists.Read.All" + }, + { + "description": "Allows the app to read the lifecycle information like employeeLeaveDateTime of users in your organization, without a signed-in user.", + "displayName": "Read all users' lifecycle information", + "id": "8556a004-db57-4d7a-8b82-97a13428e96f", + "origin": "Application", + "value": "User-LifeCycleInfo.Read.All" + }, + { + "description": "Allows an app to read all acronyms without a signed-in user.", + "displayName": "Read all acronyms", + "id": "8c0aed2c-0c61-433d-b63c-6370ddc73248", + "origin": "Application", + "value": "Acronym.Read.All" + }, + { + "description": "Allows the app to see your users' basic profile (e.g., name, picture, user name, email address)", + "displayName": "View users' basic profile", + "id": "14dad69e-099b-42c9-810b-d002981feec1", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to see your basic profile (e.g., name, picture, user name, email address)", + "userConsentDisplayName": "View your basic profile", + "value": "profile" + }, + { + "description": "Allows the app to read attack simulation and training data for an organization for the signed-in user.", + "displayName": "Read attack simulation data of an organization", + "id": "104a7a4b-ca76-4677-b7e7-2f4bc482f381", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read attack simulation and training data for an organization on your behalf.", + "userConsentDisplayName": "Read attack simulation data of an organization", + "value": "AttackSimulation.Read.All" + }, + { + "description": "Allows the app to read and write your organization's directory access review default policy on behalf of the signed-in user.", + "displayName": "Read and write your organization's directory access review default policy", + "id": "4f5bc9c8-ea54-4772-973a-9ca119cb0409", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write your organization's directory access review default policy on your behalf.", + "userConsentDisplayName": "Read and write your organization's directory access review default policy", + "value": "Policy.ReadWrite.AccessReview" + }, + { + "description": "Allows the app to read your organization's threat submissions and threat submission policies on behalf of the signed-in user. Also allows the app to create new threat submissions on behalf of the signed-in user.", + "displayName": "Read and write all threat submissions", + "id": "8458e264-4eb9-4922-abe9-768d58f13c7f", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your organization's threat submissions and threat submission policies on your behalf. Also allows the app to create new threat submissions on your behalf.", + "userConsentDisplayName": "Read and write all threat submissions", + "value": "ThreatSubmission.ReadWrite.All" + }, + { + "description": "Allows the application to read any data from Records Management, such as configuration, labels, and policies on behalf of the signed-in user.", + "displayName": "Read Records Management configuration,\u00a0labels, and policies", + "id": "07f995eb-fc67-4522-ad66-2b8ca8ea3efd", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read any data from Records Management, such as configuration, labels and policies on your behalf.", + "userConsentDisplayName": "Read Records Management configuration,\u00a0labels, and policies", + "value": "RecordsManagement.Read.All" + }, + { + "description": "Allow the application to create, update and delete any data from Records Management, such as configuration, labels, and policies on behalf of the signed-in user.", + "displayName": "Read and write Records Management configuration, labels, and policies", + "id": "f2833d75-a4e6-40ab-86d4-6dfe73c97605", + "Origin": "Delegated", + "userConsentDescription": "Allow the application to create, update and delete any data from Records Management, such as configuration, labels, and policies on your behalf.", + "userConsentDisplayName": "Read and write Records Management configuration, labels, and policies", + "value": "RecordsManagement.ReadWrite.All" + }, + { + "description": "Allows the app to read details of delegated admin relationships with customers like access details (that includes roles) and the duration as well as specific role assignments to security groups on behalf of the signed-in user.", + "displayName": "Read Delegated Admin relationships with customers", + "id": "0c0064ea-477b-4130-82a5-4c2cc4ff68aa", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read details of Delegated Admin relationships with customers like access details (that includes roles) and the duration as well as specific role assignments to security groups on your behalf.", + "userConsentDisplayName": "Read Delegated Admin relationships with customers", + "value": "DelegatedAdminRelationship.Read.All" + }, + { + "description": "Allows the app to manage (create-update-terminate) Delegated Admin relationships with customers as well as role assignments to security groups for active Delegated Admin relationships on behalf of the signed-in user.", + "displayName": "Manage Delegated Admin relationships with customers", + "id": "885f682f-a990-4bad-a642-36736a74b0c7", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to manage (create-update-terminate) Delegated Admin relationships with customers and role assignments to security groups for active Delegated Admin relationships on your behalf.", + "userConsentDisplayName": "Manage Delegated Admin relationships with customers", + "value": "DelegatedAdminRelationship.ReadWrite.All" + }, + { + "description": "Allows the app to read and write all managed tenant information on behalf of the signed-in user.", + "displayName": "Read and write all managed tenant information", + "id": "b31fa710-c9b3-4d9e-8f5e-8036eecddab9", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write all managed tenant information on your behalf.", + "userConsentDisplayName": "Read and write all managed tenant information", + "value": "ManagedTenants.ReadWrite.All" + }, + { + "description": "Allows the app to read all managed tenant information on behalf of the signed-in user.", + "displayName": "Read all managed tenant information", + "id": "dc34164e-6c4a-41a0-be89-3ae2fbad7cd3", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all managed tenant information on your behalf.", + "userConsentDisplayName": "Read all managed tenant information", + "value": "ManagedTenants.Read.All" + }, + { + "description": "Allows the app to read and manage the Cloud PC role-based access control (RBAC) settings, on behalf of the signed-in user. This includes reading and managing Cloud PC role definitions and role assignments.", + "displayName": "Read and write Cloud PC RBAC settings", + "id": "501d06f8-07b8-4f18-b5c6-c191a4af7a82", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and manage the Cloud PC role-based access control (RBAC) settings, on your behalf. This includes reading and managing Cloud PC role definitions and memberships.", + "userConsentDisplayName": "Read and write Cloud PC RBAC settings", + "value": "RoleManagement.ReadWrite.CloudPC" + }, + { + "description": "Allows the app to read the Cloud PC role-based access control (RBAC) settings, on behalf of the signed-in user.\u00a0 This includes reading Cloud PC role definitions and role assignments.", + "displayName": "Read Cloud PC RBAC settings", + "id": "9619b88a-8a25-48a7-9571-d23be0337a79", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the Cloud PC role-based access control (RBAC) settings, on your behalf.\u00a0 This includes reading Cloud PC role definitions and role assignments.", + "userConsentDisplayName": "Read Cloud PC RBAC settings", + "value": "RoleManagement.Read.CloudPC" + }, + { + "description": "Allows the app to read and write settings of external connections on behalf of a signed-in user. The signed-in user must be an administrator. The app can only read and write settings of connections that it is authorized to.", + "displayName": "Read and write external connections", + "id": "4082ad95-c812-4f02-be92-780c4c4f1830", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write external connections on your behalf. The signed-in user must be an administrator. The app can only read and write external connections that it is authorized to, or it can create new external connections. ", + "userConsentDisplayName": "Read and write external connections", + "value": "ExternalConnection.ReadWrite.OwnedBy" + }, + { + "description": "Allows the app to read all external connections on behalf of a signed-in user. The signed-in user must be an administrator.", + "displayName": "Read all external connections", + "id": "a38267a5-26b6-4d76-9493-935b7599116b", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all external connections on your behalf. The signed-in user must be an administrator.", + "userConsentDisplayName": "Read all external connections", + "value": "ExternalConnection.Read.All" + }, + { + "description": "Allows the app to read and write all external connections on behalf of a signed-in user. The signed-in user must be an administrator.", + "displayName": "Read and write all external connections", + "id": "bbbbd9b3-3566-4931-ac37-2b2180d9e334", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write all external connections on your behalf. The signed-in user must be an administrator.", + "userConsentDisplayName": "Read and write all external connections", + "value": "ExternalConnection.ReadWrite.All" + }, + { + "description": "Allows the app to read and write external items on behalf of a signed-in user. The signed-in user must be an administrator. The app can only read external items of the connection that it is authorized to.", + "displayName": "Read and write external items", + "id": "4367b9d7-cee7-4995-853c-a0bdfe95c1f9", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write external items on your behalf. The signed-in user must be an administrator. The app can only read external items of the connection that it is authorized to.", + "userConsentDisplayName": "Read and write external items", + "value": "ExternalItem.ReadWrite.OwnedBy" + }, + { + "description": "Allows the app to read and write all external items on behalf of a signed-in user. The signed-in user must be an administrator.", + "displayName": "Read and write all external items", + "id": "b02c54f8-eb48-4c50-a9f0-a149e5a2012f", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write all external items on your behalf. The signed-in user must be an administrator.", + "userConsentDisplayName": "Read and write all external items", + "value": "ExternalItem.ReadWrite.All" + }, + { + "description": "Allows the app to read custom security attribute assignments for all principals in the tenant on behalf of a signed in user.", + "displayName": "Read custom security attribute assignments", + "id": "b46ffa80-fe3d-4822-9a1a-c200932d54d0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read custom security attribute assignments for all principals in the tenant on your behalf.", + "userConsentDisplayName": "Read custom security attribute assignments", + "value": "CustomSecAttributeAssignment.Read.All" + }, + { + "description": "Allows the app to read custom security attribute definitions for the tenant on behalf of a signed in user.", + "displayName": "Read custom security attribute definitions", + "id": "ce026878-a0ff-4745-a728-d4fedd086c07", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read custom security attribute definitions for the tenant on your behalf.", + "userConsentDisplayName": "Read custom security attribute definitions", + "value": "CustomSecAttributeDefinition.Read.All" + }, + { + "description": "Allows the app to read and write your organization's cross tenant access policies on behalf of the signed-in user.", + "displayName": "Read and write your organization's cross tenant access policies", + "id": "014b43d0-6ed4-4fc6-84dc-4b6f7bae7d85", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write your organization's cross tenant access policies on your behalf.", + "userConsentDisplayName": "Read and write your organization's cross tenant access policies", + "value": "Policy.ReadWrite.CrossTenantAccess" + }, + { + "description": "Allows the app to read and write tags in Teams, on behalf of the signed-in user.", + "displayName": "Read and write tags in Teams", + "id": "539dabd7-b5b6-4117-b164-d60cd15a8671", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write tags in Teams, on your behalf.", + "userConsentDisplayName": "Read and write tags in Teams", + "value": "TeamworkTag.ReadWrite" + }, + { + "description": "Allows the app to read tags in Teams, on behalf of the signed-in user.", + "displayName": "Read tags in Teams", + "id": "57587d0b-8399-45be-b207-8050cec54575", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read tags in Teams, on your behalf.", + "userConsentDisplayName": "Read tags in Teams", + "value": "TeamworkTag.Read" + }, + { + "description": "Allows the app to read and write security incidents, on behalf of the signed-in user.", + "displayName": "Read and write to incidents", + "id": "128ca929-1a19-45e6-a3b8-435ec44a36ba", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write to all security incidents that you have access to.", + "userConsentDisplayName": "Read and write to security incidents", + "value": "SecurityIncident.ReadWrite.All" + }, + { + "description": "Allows the app to read security incidents, on behalf of the signed-in user.", + "displayName": "Read incidents", + "id": "b9abcc4f-94fc-4457-9141-d20ce80ec952", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all security incidents that you have access to.", + "userConsentDisplayName": "Read security incidents", + "value": "SecurityIncident.Read.All" + }, + { + "description": "Allows the app to read and write to all security alerts, on behalf of the signed-in user.", + "displayName": "Read and write to all security alerts", + "id": "471f2a7f-2a42-4d45-a2bf-594d0838070d", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write all alerts that you have access to.", + "userConsentDisplayName": "Read and write all alerts", + "value": "SecurityAlert.ReadWrite.All" + }, + { + "description": "Allows the app to read all security alerts, on behalf of the signed-in user.", + "displayName": "Read all security alerts", + "id": "bc257fb8-46b4-4b15-8713-01e91bfbe4ea", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all security alerts that you have access to.", + "userConsentDisplayName": "Read all alerts", + "value": "SecurityAlert.Read.All" + }, + { + "description": "Allows the app to update service announcement messages' user status on behalf of the signed-in user. The message status can be marked as read, archive, or favorite.", + "displayName": "Update user status on service announcement messages", + "id": "636e1b0b-1cc2-4b1c-9aa9-4eeed9b9761b", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to update service announcement messages' status on your behalf. Your status for messages can be marked as read, archive, or favorite.", + "userConsentDisplayName": "Update your user status on service announcement messages", + "value": "ServiceMessageViewpoint.Write" + }, + { + "description": "Allows the app to run hunting queries, on behalf of the signed-in user.", + "displayName": "Run hunting queries", + "id": "b152eca8-ea73-4a48-8c98-1a6742673d99", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to run hunting queries that you can execute.", + "userConsentDisplayName": "Run hunting queries", + "value": "ThreatHunting.Read.All" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall itself to teams the signed-in user can access.", + "displayName": "Allow the app to manage itself in teams", + "id": "0f4595f7-64b1-4e13-81bc-11a249df07a9", + "Origin": "Delegated", + "userConsentDescription": "Allows a Teams app to read, install, upgrade, and uninstall itself to teams you can access.", + "userConsentDisplayName": "Allow the Teams app to manage itself in teams", + "value": "TeamsAppInstallation.ReadWriteSelfForTeam" + }, + { + "description": "Allow the app to read the management data for Teams devices on behalf of the signed-in user.", + "displayName": "Read Teams devices", + "id": "b659488b-9d28-4208-b2be-1c6652b3c970", + "Origin": "Delegated", + "userConsentDescription": "Allow the app to read the management data for Teams devices on your behalf.", + "userConsentDisplayName": "Read Teams devices", + "value": "TeamworkDevice.Read.All" + }, + { + "description": "Allow the app to read and write the management data for Teams devices on behalf of the signed-in user.", + "displayName": "Read and write Teams devices", + "id": "ddd97ecb-5c31-43db-a235-0ee20e635c40", + "Origin": "Delegated", + "userConsentDescription": "Allow the app to read and write the management data for Teams devices on your behalf.", + "userConsentDisplayName": "Read and write Teams devices", + "value": "TeamworkDevice.ReadWrite.All" + }, + { + "description": "Allows the app to read all identity risky service principal information for your organization, on behalf of the signed-in user.", + "displayName": "Read all identity risky service principal information", + "id": "ea5c4ab0-5a73-4f35-8272-5d5337884e5d", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all identity risky service principal information for your organization, on your behalf.", + "userConsentDisplayName": "Read all identity risky service principal information", + "value": "IdentityRiskyServicePrincipal.Read.All" + }, + { + "description": "Allows the app to read and update identity risky service principal information for all service principals in your organization, on behalf of the signed-in user. Update operations include dismissing risky service principals.", + "displayName": "Read and write all identity risky service principal information", + "id": "bb6f654c-d7fd-4ae3-85c3-fc380934f515", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and update identity risky service principal information for all service principals in your organization, on your behalf. Update operations include dismissing risky service principals.", + "userConsentDisplayName": "Read and write all identity risky service principal information", + "value": "IdentityRiskyServicePrincipal.ReadWrite.All" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall its own tabs to teams the signed-in user can access.", + "displayName": "Allow the Teams app to manage only its own tabs in teams", + "id": "f266662f-120a-4314-b26a-99b08617c7ef", + "Origin": "Delegated", + "userConsentDescription": "Allows a Teams app to read, install, upgrade, and uninstall its own tabs to teams you can access.", + "userConsentDisplayName": "Allow the Teams app to manage only its own tabs in teams", + "value": "TeamsTab.ReadWriteSelfForTeam" + }, + { + "description": "Allows the app to read the presence information and write activity and availability on behalf of the signed-in user. Presence information includes activity, availability, status note, calendar out-of-office message, timezone and location.", + "displayName": "Read and write a user's presence information", + "id": "8d3c54a7-cf58-4773-bf81-c0cd6ad522bb", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the presence information and write activity and availability on your behalf. Presence information includes activity, availability, status note, calendar out-of-office message, timezone and location.", + "userConsentDisplayName": "Read and write your presence information", + "value": "Presence.ReadWrite" + }, + { + "description": "Allows the app to read subject rights requests on behalf of the signed-in user", + "displayName": "Read subject rights requests", + "id": "9c3af74c-fd0f-4db4-b17a-71939e2a9d77", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read subject rights requests on your behalf.", + "userConsentDisplayName": "Read data subject requests", + "value": "SubjectRightsRequest.Read.All" + }, + { + "description": "Allows the app to read and write subject rights requests on behalf of the signed-in user", + "displayName": "Read and write subject rights requests", + "id": "2b8fcc74-bce1-4ae3-a0e8-60c53739299d", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write subject rights requests on your behalf.", + "userConsentDisplayName": "Read and write data subject requests", + "value": "SubjectRightsRequest.ReadWrite.All" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall its own tabs for the signed-in user.", + "displayName": "Allow the Teams app to manage only its own tabs for a user", + "id": "395dfec1-a0b9-465f-a783-8250a430cb8c", + "Origin": "Delegated", + "userConsentDescription": "Allows a Teams app to read, install, upgrade, and uninstall its own tabs for you.", + "userConsentDisplayName": "Allow the Teams app to manage only its own tabs for you", + "value": "TeamsTab.ReadWriteSelfForUser" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall its own tabs in chats the signed-in user can access.", + "displayName": "Allow the Teams app to manage only its own tabs in chats", + "id": "0c219d04-3abf-47f7-912d-5cca239e90e6", + "Origin": "Delegated", + "userConsentDescription": "Allows a Teams app to read, install, upgrade, and uninstall its own tabs in chats you can access.", + "userConsentDisplayName": "Allow the Teams app to manage only its own tabs in chats", + "value": "TeamsTab.ReadWriteSelfForChat" + }, + { + "description": "Allows the app to read and write search configuration, on behalf of the signed-in user.", + "displayName": "Read and write your organization's search configuration", + "id": "b1a7d408-cab0-47d2-a2a5-a74a3733600d", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write search configuration, on your behalf.", + "userConsentDisplayName": "Read and write your organization's search configuration", + "value": "SearchConfiguration.ReadWrite.All" + }, + { + "description": "Allows the app to read search configuration, on behalf of the signed-in user.", + "displayName": "Read your organization's search configuration", + "id": "7d307522-aa38-4cd0-bd60-90c6f0ac50bd", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read search configuration, on your behalf.", + "userConsentDisplayName": "Read your organization's search configuration", + "value": "SearchConfiguration.Read.All" + }, + { + "description": "Allows the app to read online meeting artifacts on behalf of the signed-in user.", + "displayName": "Read user's online meeting artifacts", + "id": "110e5abb-a10c-4b59-8b55-9b4daa4ef743", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read online meeting artifacts on your behalf.", + "userConsentDisplayName": "Read user's online meeting artifacts", + "value": "OnlineMeetingArtifact.Read.All" + }, + { + "description": "Allows the app to read and manage the active role-based access control (RBAC) assignments for your company's directory, on behalf of the signed-in user. This includes managing active directory role membership, and reading directory role templates, directory roles and active memberships.", + "displayName": "Read, update, and delete all active role assignments for your company's directory", + "id": "8c026be3-8e26-4774-9372-8d5d6f21daff", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and manage the active role-based access control (RBAC) assignments for your company's directory, on your behalf. This includes managing active directory role membership, and reading directory role templates, directory roles and active memberships.", + "userConsentDisplayName": "Read, update, and delete all active role assignments for your company's directory", + "value": "RoleAssignmentSchedule.ReadWrite.Directory" + }, + { + "description": "Allows the app to read and manage the eligible role-based access control (RBAC) assignments for your company's directory, on behalf of the signed-in user. This includes managing eligible directory role membership, and reading directory role templates, directory roles and eligible memberships.", + "displayName": "Read, update, and delete all eligible role assignments for your company's directory", + "id": "62ade113-f8e0-4bf9-a6ba-5acb31db32fd", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and manage the eligible role-based access control (RBAC) assignments for your company's directory, on your behalf. This includes managing eligible directory role membership, and reading directory role templates, directory roles and eligible memberships.", + "userConsentDisplayName": "Read, update, and delete all eligible role assignments for your company's directory", + "value": "RoleEligibilitySchedule.ReadWrite.Directory" + }, + { + "description": "Allows the app to read, update, and delete policies for privileged role-based access control (RBAC) assignments of your company's directory, on behalf of the signed-in user.", + "displayName": "Read, update, and delete all policies for privileged role assignments of your company's directory", + "id": "1ff1be21-34eb-448c-9ac9-ce1f506b2a68", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update, and delete policies for privileged role-based access control (RBAC) assignments of your company's directory, on your behalf.", + "userConsentDisplayName": "Read, update, and delete all policies for privileged role assignments of your company's directory", + "value": "RoleManagementPolicy.ReadWrite.Directory" + }, + { + "description": "Allows the app to read the active role-based access control (RBAC) assignments for your company's directory, on behalf of the signed-in user. This includes reading directory role templates, and directory roles.", + "displayName": "Read all active role assignments for your company's directory", + "id": "344a729c-0285-42c6-9014-f12b9b8d6129", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the active role-based access control (RBAC) assignments for your company's directory, on your behalf. This includes reading directory role templates, and directory roles.", + "userConsentDisplayName": "Read all active role assignments for your company's directory", + "value": "RoleAssignmentSchedule.Read.Directory" + }, + { + "description": "Allows the app to read the eligible role-based access control (RBAC) assignments for your company's directory, on behalf of the signed-in user. This includes reading directory role templates, and directory roles.", + "displayName": "Read all eligible role assignments for your company's directory", + "id": "eb0788c2-6d4e-4658-8c9e-c0fb8053f03d", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the eligible role-based access control (RBAC) assignments for your company's directory, on your behalf. This includes reading directory role templates, and directory roles.", + "userConsentDisplayName": "Read all eligible role assignments for your company's directory", + "value": "RoleEligibilitySchedule.Read.Directory" + }, + { + "description": "Allows the app to read policies for privileged role-based access control (RBAC) assignments of your company's directory, on behalf of the signed-in user.", + "displayName": "Read all policies for privileged role assignments of your company's directory", + "id": "3de2cdbe-0ff5-47d5-bdee-7f45b4749ead", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read policies for privileged role-based access control (RBAC) assignments of your company's directory, on your behalf.", + "userConsentDisplayName": "Read all policies for privileged role assignments of your company's directory", + "value": "RoleManagementPolicy.Read.Directory" + }, + { + "description": "Allows the app to read and write all Windows update deployment settings for the organization on behalf of the signed-in user.", + "displayName": "Read and write all Windows update deployment settings", + "id": "11776c0c-6138-4db3-a668-ee621bea2555", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write all Windows update deployment settings for the organization on your behalf.", + "userConsentDisplayName": "Read and write all Windows update deployment settings", + "value": "WindowsUpdates.ReadWrite.All" + }, + { + "description": "Allows the app to read and write your organization's mobility management policies on behalf of the signed-in user. For example, a mobility management policy can set the enrollment scope for a given mobility management application.", + "displayName": "Read and write your organization's mobility management policies", + "id": "a8ead177-1889-4546-9387-f25e658e2a79", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write your organization's mobility management policies on your behalf. For example, a mobility management policy can set the enrollment scope for a given mobility management application.", + "userConsentDisplayName": "Read and write your organization's mobility management policies", + "value": "Policy.ReadWrite.MobilityManagement" + }, + { + "description": "Allows the app to read basic unified group properties, memberships and owners of the group the signed-in guest is a member of.", + "displayName": "Read unified group memberships as guest", + "id": "73e75199-7c3e-41bb-9357-167164dbb415", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read basic unified group properties, memberships and owners of the group you are a member of.", + "userConsentDisplayName": "Read unified group memberships as guest", + "value": "UnifiedGroupMember.Read.AsGuest" + }, + { + "description": "Allows the app to update service principal endpoints", + "displayName": "Read and update service principal endpoints", + "id": "7297d82c-9546-4aed-91df-3d4f0a9b3ff0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to update service principal endpoints", + "userConsentDisplayName": "Read and update service principal endpoints", + "value": "ServicePrincipalEndpoint.ReadWrite.All" + }, + { + "description": "Allows the app to read service principal endpoints", + "displayName": "Read service principal endpoints", + "id": "9f9ce928-e038-4e3b-8faf-7b59049a8ddc", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read service principal endpoints", + "userConsentDisplayName": "Read service principal endpoints", + "value": "ServicePrincipalEndpoint.Read.All" + }, + { + "description": "Allows the app to create new notifications in users' teamwork activity feeds on behalf of the signed in user. These notifications may not be discoverable or be held or governed by compliance policies.", + "displayName": "Send a teamwork activity as the user", + "id": "7ab1d787-bae7-4d5d-8db6-37ea32df9186", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to create new activities in your teamwork activity feed, and send new activities to other users' activity feed, on your behalf.", + "userConsentDisplayName": "Send a teamwork activity", + "value": "TeamsActivity.Send" + }, + { + "description": "Allows the app to read and write eDiscovery objects such as cases, custodians, review sets and other related objects on behalf of the signed-in user.", + "displayName": "Read and write all eDiscovery objects", + "id": "acb8f680-0834-4146-b69e-4ab1b39745ad", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write eDiscovery objects such as cases, custodians, review sets and other related objects on your behalf.", + "userConsentDisplayName": "Read and write all eDiscovery objects", + "value": "eDiscovery.ReadWrite.All" + }, + { + "description": "Allows the app to read eDiscovery objects such as cases, custodians, review sets and other related objects on behalf of the signed-in user.", + "displayName": "Read all eDiscovery objects", + "id": "99201db3-7652-4d5a-809a-bdb94f85fe3c", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read eDiscovery objects such as cases, custodians, review sets and other related objects on your behalf.", + "userConsentDisplayName": "Read all eDiscovery objects", + "value": "eDiscovery.Read.All" + }, + { + "description": "Allows the app to read and write custom security attribute assignments for all principals in the tenant on behalf of a signed in user.", + "displayName": "Read and write custom security attribute assignments", + "id": "ca46335e-8453-47cd-a001-8459884efeae", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write custom security attribute assignments for all principals in the tenant on your behalf.", + "userConsentDisplayName": "Read and write custom security attribute assignments", + "value": "CustomSecAttributeAssignment.ReadWrite.All" + }, + { + "description": "Allows the app to read and write custom security attribute definitions for the tenant on behalf of a signed in user.", + "displayName": "Read and write custom security attribute definitions", + "id": "8b0160d4-5743-482b-bb27-efc0a485ca4a", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write custom security attribute definitions for the tenant on your behalf.", + "userConsentDisplayName": "Read and write custom security attribute definitions", + "value": "CustomSecAttributeDefinition.ReadWrite.All" + }, + { + "description": "Allows the app to read email in the signed-in user's mailbox except body, previewBody, attachments and any extended properties.", + "displayName": "Read user basic mail", + "id": "a4b8392a-d8d1-4954-a029-8e668a39a170", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read email in the signed-in user's mailbox except body, previewBody, attachments and any extended properties.", + "userConsentDisplayName": "Read user basic mail", + "value": "Mail.ReadBasic" + }, + { + "description": "Allows the app to read and write your organization's feature rollout policies on behalf of the signed-in user. Includes abilities to assign and remove users and groups to rollout of a specific feature.", + "displayName": "Read and write your organization's feature rollout policies", + "id": "92a38652-f13b-4875-bc77-6e1dbb63e1b2", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write your organization's feature rollout policies on your behalf. Includes abilities to assign and remove users and groups to rollout of a specific feature.", + "userConsentDisplayName": "Read and write your organization's feature rollout policies", + "value": "Policy.ReadWrite.FeatureRollout" + }, + { + "description": "Allows the app to read and manage the role-based access control (RBAC) settings for your company's directory, on behalf of the signed-in user. This includes instantiating directory roles and managing directory role membership, and reading directory role templates, directory roles and memberships.", + "displayName": "Read and write directory RBAC settings", + "id": "d01b97e9-cbc0-49fe-810a-750afd5527a3", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and manage the role-based access control (RBAC) settings for your company's directory, on your behalf. This includes instantiating directory roles and managing directory role membership, and reading directory role templates, directory roles and memberships.", + "userConsentDisplayName": "Read and write directory RBAC settings", + "value": "RoleManagement.ReadWrite.Directory" + }, + { + "description": "Allows the app to read the role-based access control (RBAC) settings for your company's directory, on behalf of the signed-in user. This includes reading directory role templates, directory roles and memberships.", + "displayName": "Read directory RBAC settings", + "id": "741c54c3-0c1e-44a1-818b-3f97ab4e8c83", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the role-based access control (RBAC) settings for your company's directory, on your behalf. This includes reading directory role templates, directory roles and memberships.", + "userConsentDisplayName": "Read directory RBAC settings", + "value": "RoleManagement.Read.Directory" + }, + { + "description": "Allows the app to read and write the organization and related resources, on behalf of the signed-in user.\u00a0Related resources include things like subscribed skus and tenant branding information.", + "displayName": "Read and write organization information", + "id": "46ca0847-7e6b-426e-9775-ea810a948356", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write the organization and related resources, on your behalf.\u00a0Related resources include things like subscribed skus and tenant branding information.", + "userConsentDisplayName": "Read and write organization information", + "value": "Organization.ReadWrite.All" + }, + { + "description": "Allows the app to read the organization and related resources, on behalf of the signed-in user.\u00a0Related resources include things like subscribed skus and tenant branding information.", + "displayName": "Read organization information", + "id": "4908d5b9-3fb2-4b1e-9336-1888b7937185", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the organization and related resources, on your behalf.\u00a0Related resources include things like subscribed skus and tenant branding information.", + "userConsentDisplayName": "Read organization information", + "value": "Organization.Read.All" + }, + { + "description": "Allows the app to read your company's places (conference rooms and room lists) for calendar events and other applications, on behalf of the signed-in user.", + "displayName": "Read all company places", + "id": "cb8f45a0-5c2e-4ea1-b803-84b870a7d7ec", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your company's places (conference rooms and room lists) for calendar events and other applications, on your behalf.", + "userConsentDisplayName": "Read all company places", + "value": "Place.Read.All" + }, + { + "description": "Allows the app to manage workforce integrations, to synchronize data from Microsoft Teams Shifts, on behalf of the signed-in user.", + "displayName": "Read and write workforce integrations", + "id": "08c4b377-0d23-4a8b-be2a-23c1c1d88545", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to manage workforce integrations, to synchronize data from Microsoft Teams Shifts, on your behalf.", + "userConsentDisplayName": "Read and write workforce integrations", + "value": "WorkforceIntegration.ReadWrite.All" + }, + { + "description": "Allows the app to read workforce integrations, to synchronize data from Microsoft Teams Shifts, on behalf of the signed-in user.", + "displayName": "Read workforce integrations", + "id": "f1ccd5a7-6383-466a-8db8-1a656f7d06fa", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read workforce integrations, to synchronize data from Microsoft Teams Shifts, on your behalf.", + "userConsentDisplayName": "Read workforce integrations", + "value": "WorkforceIntegration.Read.All" + }, + { + "description": "Allows the app to read, update, delete and perform actions on access reviews, reviewers, decisions and settings for group and app memberships that the signed-in user has access to in the organization.", + "displayName": "Manage access reviews for group and app memberships", + "id": "5af8c3f5-baca-439a-97b0-ea58a435e269", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update and perform action on access reviews, reviewers, decisions and settings that you have access to.", + "userConsentDisplayName": "Manage access reviews for group and app memberships", + "value": "AccessReview.ReadWrite.Membership" + }, + { + "description": "Allows the app to manage hybrid identity service configuration by creating, viewing, updating and deleting on-premises published resources, on-premises agents and agent groups, on behalf of the signed-in user.", + "displayName": "Manage on-premises published resources", + "id": "8c4d5184-71c2-4bf8-bb9d-bc3378c9ad42", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to manage hybrid identity service configuration by creating, viewing, updating and deleting on-premises published resources, on-premises agents and agent groups, on your behalf.", + "userConsentDisplayName": "Manage on-premises published resources", + "value": "OnPremisesPublishingProfiles.ReadWrite.All" + }, + { + "description": "Allows an app to read information protection sensitivity labels and label policy settings, on behalf of the signed-in user.", + "displayName": "Read user sensitivity labels and label policies.", + "id": "4ad84827-5578-4e18-ad7a-86530b12f884", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read information protection sensitivity labels and label policy settings, on behalf of the signed-in user.", + "userConsentDisplayName": "Read user sensitivity labels and label policies.", + "value": "InformationProtectionPolicy.Read" + }, + { + "description": "Allows the app to read administrative units and administrative unit membership on behalf of the signed-in user.", + "displayName": "Read administrative units", + "id": "3361d15d-be43-4de6-b441-3c746d05163d", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read administrative units and administrative unit membership on your behalf.", + "userConsentDisplayName": "Read administrative units", + "value": "AdministrativeUnit.Read.All" + }, + { + "description": "Allows the app to create, read, update, and delete administrative units and manage administrative unit membership on behalf of the signed-in user.", + "displayName": "Read and write administrative units", + "id": "7b8a2d34-6b3f-4542-a343-54651608ad81", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to create, read, update, and delete administrative units and manage administrative unit membership on your behalf.", + "userConsentDisplayName": "Read and write administrative units", + "value": "AdministrativeUnit.ReadWrite.All" + }, + { + "description": "Allows the app to read your family information, members and their basic profile.", + "displayName": "Read your family info", + "id": "3a1e4806-a744-4c70-80fc-223bf8582c46", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your family information, members and their basic profile.", + "userConsentDisplayName": "Read your family info", + "value": "Family.Read" + }, + { + "description": "Allows the app to create threat indicators, and fully manage those threat indicators (read, update and delete), on behalf of the signed-in user. \u00a0It cannot update any threat indicators it does not own.", + "displayName": "Manage threat indicators this app creates or owns", + "id": "91e7d36d-022a-490f-a748-f8e011357b42", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to create threat indicators, and fully manage those threat indicators (read, update and delete), on your behalf. \u00a0It cannot update any threat indicators that it is not an owner of.", + "userConsentDisplayName": "Manage threat indicators this app creates or owns", + "value": "ThreatIndicators.ReadWrite.OwnedBy" + }, + { + "description": "Allows the app to read or update security actions, on behalf of the signed-in user.", + "displayName": "Read and update your organization's security actions", + "id": "dc38509c-b87d-4da0-bd92-6bec988bac4a", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and update security actions, on your behalf.", + "userConsentDisplayName": "Read and update your organization's security actions", + "value": "SecurityActions.ReadWrite.All" + }, + { + "description": "Allows the app to read security actions, on behalf of the signed-in user.", + "displayName": "Read your organization's security actions", + "id": "1638cddf-07a4-4de2-8645-69c96cacad73", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read security actions, on your behalf.", + "userConsentDisplayName": "Read your organization's security actions", + "value": "SecurityActions.Read.All" + }, + { + "description": "Allows an app to read 1 on 1 or group chats threads, on behalf of the signed-in user.", + "displayName": "Read user chat messages", + "id": "f501c180-9344-439a-bca0-6cbf209fd270", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read your 1 on 1 or group chat messages in Microsoft Teams, on your behalf.", + "userConsentDisplayName": "Read your chat messages", + "value": "Chat.Read" + }, + { + "description": "Allows an app to read and write 1 on 1 or group chats threads, on behalf of the signed-in user.", + "displayName": "Read and write user chat messages", + "id": "9ff7295e-131b-4d94-90e1-69fde507ac11", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read and write your 1 on 1 or group chat messages in Microsoft Teams, on your behalf.", + "userConsentDisplayName": "Read and write your chat messages", + "value": "Chat.ReadWrite" + }, + { + "description": "Allows the app to read and write your organization's trust framework policies on behalf of the signed-in user.", + "displayName": "Read and write your organization's trust framework policies", + "id": "cefba324-1a70-4a6e-9c1d-fd670b7ae392", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write your organization's trust framework policies on your behalf.", + "userConsentDisplayName": "Read and write trust framework policies", + "value": "Policy.ReadWrite.TrustFramework" + }, + { + "description": "Allows the app to read trust framework key set properties on behalf of the signed-in user.", + "displayName": "Read trust framework key sets", + "id": "7ad34336-f5b1-44ce-8682-31d7dfcd9ab9", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read trust framework key sets, on your behalf.", + "userConsentDisplayName": "Read trust framework key sets", + "value": "TrustFrameworkKeySet.Read.All" + }, + { + "description": "Allows the app to read and write trust framework key set properties on behalf of the signed-in user.", + "displayName": "Read and write trust framework key sets", + "id": "39244520-1e7d-4b4a-aee0-57c65826e427", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read or write trust framework key sets, on your behalf.", + "userConsentDisplayName": "Read and write trust framework key sets", + "value": "TrustFrameworkKeySet.ReadWrite.All" + }, + { + "description": "Allows the app to read and update identity risk event information for all users in your organization on behalf of the signed-in user.\u00a0Update operations include confirming risk event detections.\u00a0", + "displayName": "Read and write risk event information", + "id": "9e4862a5-b68f-479e-848a-4e07e25c9916", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and update identity risk event information for all users in your organization on your behalf.\u00a0Update operations include confirming risk event detections.\u00a0", + "userConsentDisplayName": "Read and write risk event information", + "value": "IdentityRiskEvent.ReadWrite.All" + }, + { + "description": "Allows the app to read and update identity risky user information for all users in your organization on behalf of the signed-in user.\u00a0Update operations include dismissing risky users.", + "displayName": "Read and write risky user information", + "id": "e0a7cdbb-08b0-4697-8264-0069786e9674", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and update identity risky user information for all users in your organization on your behalf.\u00a0Update operations include dismissing risky users.", + "userConsentDisplayName": "Read and write identity risky user information", + "value": "IdentityRiskyUser.ReadWrite.All" + }, + { + "description": "Allows the app to read the signed-in user's mailbox.", + "displayName": "Read user mail ", + "id": "570282fd-fa5c-430d-a7fd-fc8dc98a9dca", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read email in your mailbox. ", + "userConsentDisplayName": "Read your mail ", + "value": "Mail.Read" + }, + { + "description": "Allows the app to read identity risky user information for all users in your organization on behalf of the signed-in user.", + "displayName": "Read identity risky user information", + "id": "d04bb851-cb7c-4146-97c7-ca3e71baf56c", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read identity risky user information for all users in your organization on behalf of the signed-in user.", + "userConsentDisplayName": "Read identity risky user information", + "value": "IdentityRiskyUser.Read.All" + }, + { + "description": "Allows the app to read the signed-in user's activity statistics, such as how much time the user has spent on emails, in meetings, or in chat sessions.", + "displayName": "Read user activity statistics", + "id": "e03cf23f-8056-446a-8994-7d93dfc8b50e", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your activity statistics, such as how much time you've spent on emails, in meetings, or in chat sessions.", + "userConsentDisplayName": "Read your activity statistics", + "value": "Analytics.Read" + }, + { + "description": "Allows the app to see and update the data you gave it access to, even when users are not currently using the app. This does not give the app any additional permissions.", + "displayName": "Maintain access to data you have given it access to", + "id": "7427e0e9-2fba-42fe-b0c0-848c9e6a8182", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to see and update the data you gave it access to, even when you are not currently using the app. This does not give the app any additional permissions.", + "userConsentDisplayName": "Maintain access to data you have given it access to", + "value": "offline_access" + }, + { + "description": "Allows the app to have the same access to mailboxes as the signed-in user via Exchange Web Services.", + "displayName": "Access mailboxes as the signed-in user via Exchange Web Services", + "id": "9769c687-087d-48ac-9cb3-c37dde652038", + "Origin": "Delegated", + "userConsentDescription": "Allows the app full access to your mailboxes on your behalf.", + "userConsentDisplayName": "Access your mailboxes", + "value": "EWS.AccessAsUser.All" + }, + { + "description": "Allows the app to export data (e.g. customer content or system-generated logs), associated with any user in your company, when the app is used by a privileged user (e.g. a Company Administrator).", + "displayName": "Export user's data", + "id": "405a51b5-8d8d-430b-9842-8be4b0e9f324", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to export data (e.g. customer content or system-generated logs), associated with any user in your company, when the app is used by a privileged user (e.g. a Company Administrator).", + "userConsentDisplayName": "Export user's data", + "value": "User.Export.All" + }, + { + "description": "Allows the app to deliver its notifications on behalf of signed-in users. Also allows the app to read, update, and delete the user's notification items for this app.", + "displayName": "Deliver and manage user notifications for this app", + "id": "89497502-6e42-46a2-8cb2-427fd3df970a", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to deliver its notifications, on your behalf. Also allows the app to read, update, and delete your notification items for this app.", + "userConsentDisplayName": "Deliver and manage your notifications for this app", + "value": "Notifications.ReadWrite.CreatedByApp" + }, + { + "description": "Allows the app to read and write your organization's conditional access policies on behalf of the signed-in user.", + "displayName": "Read and write your organization's conditional access policies", + "id": "ad902697-1014-4ef5-81ef-2b4301988e8c", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write your organization's conditional access policies on your behalf.", + "userConsentDisplayName": "Read and write your organization's conditional access policies", + "value": "Policy.ReadWrite.ConditionalAccess" + }, + { + "description": "Allows the app to read your organization's policies on behalf of the signed-in user.", + "displayName": "Read your organization's policies", + "id": "572fea84-0151-49b2-9301-11cb16974376", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your organization's policies on your behalf.", + "userConsentDisplayName": "Read your organization's policies", + "value": "Policy.Read.All" + }, + { + "description": "Allows the app to read access reviews, reviewers, decisions and settings that the signed-in user has access to in the organization.", + "displayName": "Read all access reviews that user can access", + "id": "ebfcd32b-babb-40f4-a14b-42706e83bd28", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read information on access reviews, reviewers, decisions and settings that you have access to.", + "userConsentDisplayName": "Read access reviews that you can access", + "value": "AccessReview.Read.All" + }, + { + "description": "Allows the app to read, update, delete and perform actions on access reviews, reviewers, decisions and settings that the signed-in user has access to in the organization.", + "displayName": "Manage all access reviews that user can access", + "id": "e4aa47b9-9a69-4109-82ed-36ec70d85ff1", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update and perform action on access reviews, reviewers, decisions and settings that you have access to.", + "userConsentDisplayName": "Manage access reviews that you can access", + "value": "AccessReview.ReadWrite.All" + }, + { + "description": "Allows the app to read programs and program controls that the signed-in user has access to in the organization.", + "displayName": "Read all programs that user can access", + "id": "c492a2e1-2f8f-4caa-b076-99bbf6e40fe4", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read information on programs and program controls that you have access to.", + "userConsentDisplayName": "Read programs that you can access", + "value": "ProgramControl.Read.All" + }, + { + "description": "Allows the app to read, update, delete and perform actions on programs and program controls that the signed-in user has access to in the organization.", + "displayName": "Manage all programs that user can access", + "id": "50fd364f-9d93-4ae1-b170-300e87cccf84", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update and perform action on programs and program controls that you have access to.", + "userConsentDisplayName": "Manage programs that you can access", + "value": "ProgramControl.ReadWrite.All" + }, + { + "description": "Allows the app to create, read, update, and delete apps in the app catalogs.", + "displayName": "Read and write to all app catalogs", + "id": "1ca167d5-1655-44a1-8adf-1414072e1ef9", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to create, read, update, and delete apps in the app catalogs.", + "userConsentDisplayName": "Read and write to all app catalogs", + "value": "AppCatalog.ReadWrite.All" + }, + { + "description": "Allows the app to request and manage just in time elevation (including scheduled elevation) of users to Azure AD built-in administrative roles, on behalf of signed-in users.", + "displayName": "Read and write privileged access to Azure AD", + "id": "3c3c74f5-cdaa-4a97-b7e0-4e788bfcfb37", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to request and manage just in time elevation (including scheduled elevation) of users to Azure AD built-in administrative roles, on your behalf.", + "userConsentDisplayName": "Read and write privileged access to Azure AD", + "value": "PrivilegedAccess.ReadWrite.AzureAD" + }, + { + "description": "Allows the app to read terms of use agreements on behalf of the signed-in user.", + "displayName": "Read all terms of use agreements", + "id": "af2819c9-df71-4dd3-ade7-4d7c9dc653b7", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read terms of use agreements on your behalf.", + "userConsentDisplayName": "Read all terms of use agreements", + "value": "Agreement.Read.All" + }, + { + "description": "Allows the app to read and write terms of use agreements on behalf of the signed-in user.", + "displayName": "Read and write all terms of use agreements", + "id": "ef4b5d93-3104-4664-9053-a5c49ab44218", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write terms of use agreements on your behalf.", + "userConsentDisplayName": "Read and write all terms of use agreements", + "value": "Agreement.ReadWrite.All" + }, + { + "description": "Allows the app to read terms of use acceptance statuses on behalf of the signed-in user.", + "displayName": "Read user terms of use acceptance statuses", + "id": "0b7643bb-5336-476f-80b5-18fbfbc91806", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your terms of use acceptance statuses.", + "userConsentDisplayName": "Read your terms of use acceptance statuses", + "value": "AgreementAcceptance.Read" + }, + { + "description": "Allows the app to read terms of use acceptance statuses on behalf of the signed-in user.", + "displayName": "Read terms of use acceptance statuses that user can access", + "id": "a66a5341-e66e-4897-9d52-c2df58c2bfb9", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read terms of use acceptance statuses on your behalf.", + "userConsentDisplayName": "Read all terms of use acceptance statuses", + "value": "AgreementAcceptance.Read.All" + }, + { + "description": "Read activity data for your organization", + "displayName": "Allows the application to read activity data for your organization.", + "id": "594c1fb6-4f81-4475-ae41-0c394909246c", + "Origin": "Delegated (Office 365 Management)", + "userConsentDescription": "Read activity data for your organization", + "userConsentDisplayName": "Allows the application to read activity data for your organization.", + "value": "ActivityFeed.Read" + }, + { + "description": "Allows the app to read and query your audit log activities, on behalf of the signed-in user.", + "displayName": "Read audit log data", + "id": "e4c9e354-4dc5-45b8-9e7c-e1393b0b1a20", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and query your audit log activities, on your behalf.", + "userConsentDisplayName": "Read audit log data", + "value": "AuditLog.Read.All" + }, + { + "description": "Allows the app to read and report the signed-in user's activity in the app.", + "displayName": "Read and write app activity to users' activity feed", + "id": "47607519-5fb1-47d9-99c7-da4b48f369b1", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and report your activity in the app.", + "userConsentDisplayName": "Read and write app activity to your activity feed", + "value": "UserActivity.ReadWrite.CreatedByApp" + }, + { + "description": "Allows the app to read properties of Microsoft Intune-managed device configuration and device compliance policies and their assignment to groups.", + "displayName": "Read Microsoft Intune Device Configuration and Policies", + "id": "f1493658-876a-4c87-8fa7-edb559b3476a", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read properties of Microsoft Intune-managed device configuration and device compliance policies and their assignment to groups.", + "userConsentDisplayName": "Read Microsoft Intune Device Configuration and Policies", + "value": "DeviceManagementConfiguration.Read.All" + }, + { + "description": "Allows the app to read and write properties of Microsoft Intune-managed device configuration and device compliance policies and their assignment to groups.", + "displayName": "Read and write Microsoft Intune Device Configuration and Policies", + "id": "0883f392-0a7a-443d-8c76-16a6d39c7b63", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write properties of Microsoft Intune-managed device configuration and device compliance policies and their assignment to groups.", + "userConsentDisplayName": "Read and write Microsoft Intune Device Configuration and Policies", + "value": "DeviceManagementConfiguration.ReadWrite.All" + }, + { + "description": "Allows the app to read the properties, group assignments and status of apps, app configurations and app protection policies managed by Microsoft Intune.", + "displayName": "Read Microsoft Intune apps", + "id": "4edf5f54-4666-44af-9de9-0144fb4b6e8c", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the properties, group assignments and status of apps, app configurations and app protection policies managed by Microsoft Intune.", + "userConsentDisplayName": "Read Microsoft Intune apps", + "value": "DeviceManagementApps.Read.All" + }, + { + "description": "Allows the app to read and write the properties, group assignments and status of apps, app configurations and app protection policies managed by Microsoft Intune.", + "displayName": "Read and write Microsoft Intune apps", + "id": "7b3f05d5-f68c-4b8d-8c59-a2ecd12f24af", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write the properties, group assignments and status of apps, app configurations and app protection policies managed by Microsoft Intune.", + "userConsentDisplayName": "Read and write Microsoft Intune apps", + "value": "DeviceManagementApps.ReadWrite.All" + }, + { + "description": "Allows the app to read the properties relating to the Microsoft Intune Role-Based Access Control (RBAC) settings.", + "displayName": "Read Microsoft Intune RBAC settings", + "id": "49f0cc30-024c-4dfd-ab3e-82e137ee5431", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the properties relating to the Microsoft Intune Role-Based Access Control (RBAC) settings.", + "userConsentDisplayName": "Read Microsoft Intune RBAC settings", + "value": "DeviceManagementRBAC.Read.All" + }, + { + "description": "Allows the app to read and write the properties relating to the Microsoft Intune Role-Based Access Control (RBAC) settings.", + "displayName": "Read and write Microsoft Intune RBAC settings", + "id": "0c5e8a55-87a6-4556-93ab-adc52c4d862d", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write the properties relating to the Microsoft Intune Role-Based Access Control (RBAC) settings.", + "userConsentDisplayName": "Read and write Microsoft Intune RBAC settings", + "value": "DeviceManagementRBAC.ReadWrite.All" + }, + { + "description": "Allows the app to read the properties of devices managed by Microsoft Intune.", + "displayName": "Read Microsoft Intune devices", + "id": "314874da-47d6-4978-88dc-cf0d37f0bb82", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the properties of devices managed by Microsoft Intune.", + "userConsentDisplayName": "Read devices Microsoft Intune devices", + "value": "DeviceManagementManagedDevices.Read.All" + }, + { + "description": "Allows the app to read and write the properties of devices managed by Microsoft Intune. Does not allow high impact operations such as remote wipe and password reset on the device\u2019s owner.", + "displayName": "Read and write Microsoft Intune devices", + "id": "44642bfe-8385-4adc-8fc6-fe3cb2c375c3", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write the properties of devices managed by Microsoft Intune. Does not allow high impact operations such as remote wipe and password reset on the device\u2019s owner.", + "userConsentDisplayName": "Read and write Microsoft Intune devices", + "value": "DeviceManagementManagedDevices.ReadWrite.All" + }, + { + "description": "Allows the app to perform remote high impact actions such as wiping the device or resetting the passcode on devices managed by Microsoft Intune.", + "displayName": "Perform user-impacting remote actions on Microsoft Intune devices", + "id": "3404d2bf-2b13-457e-a330-c24615765193", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to perform remote high impact actions such as wiping the device or resetting the passcode on devices managed by Microsoft Intune.", + "userConsentDisplayName": "Perform user-impacting remote actions on Microsoft Intune devices", + "value": "DeviceManagementManagedDevices.PrivilegedOperations.All" + }, + { + "description": "Allows the app to read and write Microsoft Intune service properties including device enrollment and third party service connection configuration.", + "displayName": "Read and write Microsoft Intune configuration", + "id": "662ed50a-ac44-4eef-ad86-62eed9be2a29", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write Microsoft Intune service properties including device enrollment and third party service connection configuration.", + "userConsentDisplayName": "Read and write Microsoft Intune configuration", + "value": "DeviceManagementServiceConfig.ReadWrite.All" + }, + { + "description": "Allows the app to read Microsoft Intune service properties including device enrollment and third party service connection configuration.", + "displayName": "Read Microsoft Intune configuration", + "id": "8696daa5-bce5-4b2e-83f9-51b6defc4e1e", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read Microsoft Intune service properties including device enrollment and third party service connection configuration.", + "userConsentDisplayName": "Read Microsoft Intune configuration", + "value": "DeviceManagementServiceConfig.Read.All" + }, + { + "description": "Allows the app to read your organization\u2019s security events on behalf of the signed-in user.", + "displayName": "Read your organization\u2019s security events", + "id": "64733abd-851e-478a-bffb-e47a14b18235", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your organization\u2019s security events on your behalf.", + "userConsentDisplayName": "Read your organization\u2019s security events", + "value": "SecurityEvents.Read.All" + }, + { + "description": "Allows the app to read your organization\u2019s security events on behalf of the signed-in user. Also allows the app to update editable properties in security events on behalf of the signed-in user.", + "displayName": "Read and update your organization\u2019s security events", + "id": "6aedf524-7e1c-45a7-bd76-ded8cab8d0fc", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your organization\u2019s security events on your behalf. Also allows you to update editable properties in security events.", + "userConsentDisplayName": "Read and update your organization\u2019s security events", + "value": "SecurityEvents.ReadWrite.All" + }, + { + "description": "Allows the app to read a scored list of relevant people of the signed-in user or other users in the signed-in user's organization. The list can include local contacts, contacts from social networking, your organization's directory, and people from recent communications (such as email and Skype).", + "displayName": "Read all users' relevant people lists", + "id": "b89f9189-71a5-4e70-b041-9887f0bc7e4a", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read a list of people in the order that is most relevant to you. Allows the app to read a list of people in the order that is most relevant to another user in your organization. These can include local contacts, contacts from social networking, people listed in your organization\u2019s directory, and people from recent communications.", + "userConsentDisplayName": "Read all users\u2019 relevant people lists", + "value": "People.Read.All" + }, + { + "description": "Manage the state and settings of all Microsoft education apps on behalf of the user.", + "displayName": "Manage education app settings", + "id": "63589852-04e3-46b4-bae9-15d5b1050748", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to manage the state and settings of all Microsoft education apps on your behalf.", + "userConsentDisplayName": "Manage your education app settings", + "value": "EduAdministration.ReadWrite" + }, + { + "description": "Read the state and settings of all Microsoft education apps on behalf of the user.", + "displayName": "Read education app settings", + "id": "8523895c-6081-45bf-8a5d-f062a2f12c9f", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to view the state and settings of all Microsoft education apps on your behalf.", + "userConsentDisplayName": "View your education app settings", + "value": "EduAdministration.Read" + }, + { + "description": "Allows the app to read and write assignments and their grades on behalf of the user.", + "displayName": "Read and write users' class assignments and their grades", + "id": "2f233e90-164b-4501-8bce-31af2559a2d3", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to view and modify your assignments on your behalf including \u00a0grades.", + "userConsentDisplayName": "View and modify your assignments and grades", + "value": "EduAssignments.ReadWrite" + }, + { + "description": "Allows the app to read assignments and their grades on behalf of the user.", + "displayName": "Read users' class assignments and their grades", + "id": "091460c9-9c4a-49b2-81ef-1f3d852acce2", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to view your assignments on your behalf including grades.", + "userConsentDisplayName": "View your assignments and grades", + "value": "EduAssignments.Read" + }, + { + "description": "Allows the app to read and write assignments without grades on behalf of the user.", + "displayName": "Read and write users' class assignments without grades", + "id": "2ef770a1-622a-47c4-93ee-28d6adbed3a0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to view and modify your assignments on your behalf without seeing grades.", + "userConsentDisplayName": "View and modify your assignments without grades", + "value": "EduAssignments.ReadWriteBasic" + }, + { + "description": "Allows the app to read assignments without grades on behalf of the user.", + "displayName": "Read users' class assignments without grades", + "id": "c0b0103b-c053-4b2e-9973-9f3a544ec9b8", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to view your assignments on your behalf without seeing grades.", + "userConsentDisplayName": "View your assignments without grades", + "value": "EduAssignments.ReadBasic" + }, + { + "description": "Allows the app to read and write the structure of schools and classes in an organization's roster and education-specific information about users to be read and written on behalf of the user.", + "displayName": "Read and write users' view of the roster", + "id": "359e19a6-e3fa-4d7f-bcab-d28ec592b51e", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to view and modify information about schools and classes in your organization and education-related information about you and other users on your behalf.", + "userConsentDisplayName": "View and modify your school, class and user information", + "value": "EduRoster.ReadWrite" + }, + { + "description": "Allows the app to read the structure of schools and classes in an organization's roster and education-specific information about users to be read on behalf of the user.", + "displayName": "Read users' view of the roster", + "id": "a4389601-22d9-4096-ac18-36a927199112", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to view information about schools and classes in your organization and education-related information about you and other users on your behalf.", + "userConsentDisplayName": "View your school, class and user information", + "value": "EduRoster.Read" + }, + { + "description": "Allows the app to read a limited subset of the properties from the structure of schools and classes in an organization's roster and a limited subset of properties about users to be read on behalf of the user.\u00a0Includes name, status, education role, email address and photo.", + "displayName": "Read a limited subset of users' view of the roster", + "id": "5d186531-d1bf-4f07-8cea-7c42119e1bd9", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to view minimal \u00a0information about both schools and classes in your organization and education-related information about you and other users on your behalf.", + "userConsentDisplayName": "View a limited subset of your school, class and user information", + "value": "EduRoster.ReadBasic" + }, + { + "description": "Allows the app to report the signed-in user's app activity information to Microsoft Timeline.", + "displayName": "Write app activity to users' timeline", + "id": "367492fc-594d-4972-a9b5-0d58c622c91c", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to report your app activity information to Microsoft Timeline.", + "userConsentDisplayName": "Write app activity to your timeline", + "value": "UserTimelineActivity.Write.CreatedByApp" + }, + { + "description": "Allows the app to create, read, update, and delete user's mailbox settings. Does not include permission to send mail.", + "displayName": "Read and write user mailbox settings", + "id": "818c620a-27a9-40bd-a6a5-d96f7d610b4b", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update, create, and delete your mailbox settings.", + "userConsentDisplayName": "Read and write to your mailbox settings", + "value": "MailboxSettings.ReadWrite" + }, + { + "description": "Allows the app to launch another app or communicate with another app on a user's device on behalf of the signed-in user.", + "displayName": "Communicate with user devices", + "id": "bac3b9c2-b516-4ef4-bd3b-c2ef73d8d804", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to launch another app or communicate with another app on a device that you own.", + "userConsentDisplayName": "Communicate with your other devices", + "value": "Device.Command" + }, + { + "description": "Allows the app to read a user's list of devices on behalf of the signed-in user.", + "displayName": "Read user devices", + "id": "11d4cd79-5ba5-460f-803f-e22c8ab85ccd", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to see your list of devices.", + "userConsentDisplayName": "View your list of devices", + "value": "Device.Read" + }, + { + "description": "Allows the app to read, share, and modify OneNote notebooks that the signed-in user has access to in the organization.", + "displayName": "Read and write all OneNote notebooks that user can access", + "id": "64ac0503-b4fa-45d9-b544-71a463f05da0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, share, and modify all the OneNote notebooks that you have access to.", + "userConsentDisplayName": "Read and write all OneNote notebooks that you can access", + "value": "Notes.ReadWrite.All" + }, + { + "description": "Allows the app to read OneNote notebooks that the signed-in user has access to in the organization.", + "displayName": "Read all OneNote notebooks that user can access", + "id": "dfabfca6-ee36-4db2-8208-7a28381419b3", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all the OneNote notebooks that you have access to.", + "userConsentDisplayName": "Read all OneNote notebooks that you can access", + "value": "Notes.Read.All" + }, + { + "description": "Allows the app to read, share, and modify OneNote notebooks on behalf of the signed-in user.", + "displayName": "Read and write user OneNote notebooks", + "id": "615e26af-c38a-4150-ae3e-c3b0d4cb1d6a", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, share, and modify OneNote notebooks on your behalf.", + "userConsentDisplayName": "Read and write your OneNote notebooks", + "value": "Notes.ReadWrite" + }, + { + "description": "Allows the app to read OneNote notebooks on behalf of the signed-in user.", + "displayName": "Read user OneNote notebooks", + "id": "371361e4-b9e2-4a3f-8315-2a301a3b0a3d", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read OneNote notebooks on your behalf.", + "userConsentDisplayName": "Read your OneNote notebooks", + "value": "Notes.Read" + }, + { + "description": "This is deprecated! Do not use! This permission no longer has any effect. You can safely consent to it. No additional privileges will be granted to the app.", + "displayName": "Limited notebook access (deprecated)", + "id": "ed68249d-017c-4df5-9113-e684c7f8760b", + "Origin": "Delegated", + "userConsentDescription": "This permission no longer has any effect. You can safely consent to it. No additional privileges will be granted to the app.", + "userConsentDisplayName": "Limited access to your OneNote notebooks for this app (preview)", + "value": "Notes.ReadWrite.CreatedByApp" + }, + { + "description": "Allows the app to read the titles of OneNote notebooks and sections and to create new pages, notebooks, and sections on behalf of the signed-in user.", + "displayName": "Create user OneNote notebooks", + "id": "9d822255-d64d-4b7a-afdb-833b9a97ed02", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to view the titles of your OneNote notebooks and sections and to create new pages, notebooks, and sections on your behalf.", + "userConsentDisplayName": "Create your OneNote notebooks", + "value": "Notes.Create" + }, + { + "description": "Allows the app to invite guest users to the organization, on behalf of the signed-in user.", + "displayName": "Invite guest users to the organization", + "id": "63dd7cd9-b489-4adf-a28c-ac38b9a0f962", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to invite guest users to the organization, on your behalf.", + "userConsentDisplayName": "Invite guest users to the organization", + "value": "User.Invite.All" + }, + { + "description": "Allows the app to the read user's mailbox settings. Does not include permission to send mail.", + "displayName": "Read user mailbox settings", + "id": "87f447af-9fa4-4c32-9dfa-4a57a73d18ce", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your mailbox settings.", + "userConsentDisplayName": "Read your mailbox settings", + "value": "MailboxSettings.Read" + }, + { + "description": "(Preview) Allows the app to read files that the user selects. The app has access for several hours after the user selects a file.", + "displayName": "Read files that the user selects (preview)", + "id": "5447fe39-cb82-4c1a-b977-520e67e724eb", + "Origin": "Delegated", + "userConsentDescription": "(Preview) Allows the app to read files that you select. After you select a file, the app has access to the file for several hours.", + "userConsentDisplayName": "Read selected files", + "value": "Files.Read.Selected" + }, + { + "description": "(Preview) Allows the app to read and write files that the user selects. The app has access for several hours after the user selects a file.", + "displayName": "Read and write files that the user selects (preview)", + "id": "17dde5bd-8c17-420f-a486-969730c1b827", + "Origin": "Delegated", + "userConsentDescription": "(Preview) Allows the app to read and write files that you select. After you select a file, the app has access to the file for several hours.", + "userConsentDisplayName": "Read and write selected files", + "value": "Files.ReadWrite.Selected" + }, + { + "description": "(Preview) Allows the app to read, create, update and delete files in the application's folder.", + "displayName": "Have full access to the application's folder (preview)", + "id": "8019c312-3263-48e6-825e-2b833497195b", + "Origin": "Delegated", + "userConsentDescription": "(Preview) Allows the app to read, create, update and delete files in the application's folder.", + "userConsentDisplayName": "Have full access to the application's folder", + "value": "Files.ReadWrite.AppFolder" + }, + { + "description": "Allows an app to read all service usage reports on behalf of the signed-in user. Services that provide usage reports include Office 365 and Azure Active Directory.", + "displayName": "Read all usage reports", + "id": "02e97553-ed7b-43d0-ab3c-f8bace0d040c", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read all service usage reports on your behalf. Services that provide usage reports include Office 365 and Azure Active Directory.", + "userConsentDisplayName": "Read all usage reports", + "value": "Reports.Read.All" + }, + { + "description": "Allows the application to edit or delete documents and list items in all site collections on behalf of the signed-in user.", + "displayName": "Edit or delete items in all site collections", + "id": "89fe6a52-be36-487e-b7d8-d061c450a026", + "Origin": "Delegated", + "userConsentDescription": "Allow the application to edit or delete documents and list items in all site collections on your behalf.", + "userConsentDisplayName": "Edit or delete items in all site collections", + "value": "Sites.ReadWrite.All" + }, + { + "description": "Allows the app to create, read, update, and delete tasks a user has permissions to, including their own and shared tasks.", + "displayName": "Read and write user and shared tasks", + "id": "c5ddf11b-c114-4886-8558-8a4e557cd52b", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update, create, and delete tasks you have permissions to access, including your own and shared tasks.", + "userConsentDisplayName": "Read and write to your and shared tasks", + "value": "Tasks.ReadWrite.Shared" + }, + { + "description": "Allows the app to read tasks a user has permissions to access, including their own and shared tasks.", + "displayName": "Read user and shared tasks", + "id": "88d21fd4-8e5a-4c32-b5e2-4a1c95f34f72", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read tasks you have permissions to access, including your own and shared tasks.", + "userConsentDisplayName": "Read your and shared tasks", + "value": "Tasks.Read.Shared" + }, + { + "description": "Allows the app to create, read, update, and delete contacts a user has permissions to, including their own and shared contacts.", + "displayName": "Read and write user and shared contacts", + "id": "afb6c84b-06be-49af-80bb-8f3f77004eab", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update, create, and delete contacts you have permissions to access, including your own and shared contacts.", + "userConsentDisplayName": "Read and write to your and shared contacts", + "value": "Contacts.ReadWrite.Shared" + }, + { + "description": "Allows the app to read contacts a user has permissions to access, including their own and shared contacts.", + "displayName": "Read user and shared contacts", + "id": "242b9d9e-ed24-4d09-9a52-f43769beb9d4", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read contacts you have permissions to access, including your own and shared contacts.", + "userConsentDisplayName": "Read your and shared contacts", + "value": "Contacts.Read.Shared" + }, + { + "description": "Allows the app to create, read, update and delete events in all calendars in the organization user has permissions to access. This includes delegate and shared calendars.", + "displayName": "Read and write user and shared calendars", + "id": "12466101-c9b8-439a-8589-dd09ee67e8e9", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update, create and delete events in all calendars in your organization you have permissions to access. This includes delegate and shared calendars.", + "userConsentDisplayName": "Read and write to your and shared calendars", + "value": "Calendars.ReadWrite.Shared" + }, + { + "description": "Allows the app to read events in all calendars that the user can access, including delegate and shared calendars.", + "displayName": "Read user and shared calendars", + "id": "2b9c4092-424d-4249-948d-b43879977640", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read events in all calendars that you can access, including delegate and shared calendars.\u00a0", + "userConsentDisplayName": "Read calendars\u00a0you can access", + "value": "Calendars.Read.Shared" + }, + { + "description": "Allows the app to send mail as the signed-in user, including sending on-behalf of others.", + "displayName": "Send mail on behalf of others", + "id": "a367ab51-6b49-43bf-a716-a1fb06d2a174", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to send mail as you or on-behalf of someone else.", + "userConsentDisplayName": "Send mail on behalf of others or yourself", + "value": "Mail.Send.Shared" + }, + { + "description": "Allows the app to create, read, update, and delete mail a user has permission to access, including their own and shared mail. Does not include permission to send mail.", + "displayName": "Read and write user and shared mail", + "id": "5df07973-7d5d-46ed-9847-1271055cbd51", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update, create, and delete mail you have permission to access, including your own and shared mail. Does not allow the app to send mail on your behalf.", + "userConsentDisplayName": "Read and write mail\u00a0you can access", + "value": "Mail.ReadWrite.Shared" + }, + { + "description": "Allows the app to read mail a user can access, including their own and shared mail.", + "displayName": "Read user and shared mail", + "id": "7b9103a5-4610-446b-9670-80643382c1fa", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read mail you can access, including shared mail.", + "userConsentDisplayName": "Read mail you can access", + "value": "Mail.Read.Shared" + }, + { + "description": "Allows users to sign-in to the app, and allows the app to read the profile of signed-in users. It also allows the app to read basic company information of signed-in users.", + "displayName": "Sign in and read user profile", + "id": "e1fe6dd8-ba31-4d61-89e7-88639da4683d", + "Origin": "Delegated", + "userConsentDescription": "Allows you to sign in to the app with your organizational account and let the app read your profile. It also allows the app to read basic company information.", + "userConsentDisplayName": "Sign you in and read your profile", + "value": "User.Read" + }, + { + "description": "Allows the app to read your profile. It also allows the app to update your profile information on your behalf.", + "displayName": "Read and write access to user profile", + "id": "b4e74841-8e56-480b-be8b-910348b18b4c", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your profile, and discover your group membership, reports and manager. It also allows the app to update your profile information on your behalf.", + "userConsentDisplayName": "Read and update your profile", + "value": "User.ReadWrite" + }, + { + "description": "Allows the app to read a basic set of profile properties of other users in your organization on behalf of the signed-in user. This includes display name, first and last name, email address and photo.", + "displayName": "Read all users' basic profiles", + "id": "b340eb25-3456-403f-be2f-af7a0d370277", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read a basic set of profile properties of other users in your organization on your behalf. Includes display name, first and last name, email address and photo.", + "userConsentDisplayName": "Read all users' basic profiles", + "value": "User.ReadBasic.All" + }, + { + "description": "Allows the app to read the full set of profile properties, reports, and managers of other users in your organization, on behalf of the signed-in user.", + "displayName": "Read all users' full profiles", + "id": "a154be20-db9c-4678-8ab7-66f6cc099a59", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the full set of profile properties, reports, and managers of other users in your organization, on your behalf.", + "userConsentDisplayName": "Read all users' full profiles", + "value": "User.Read.All" + }, + { + "description": "Allows the app to read and write the full set of profile properties, reports, and managers of other users in your organization, on behalf of the signed-in user.", + "displayName": "Read and write all users' full profiles", + "id": "204e0828-b5ca-4ad8-b9f3-f32a958e7cc4", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write the full set of profile properties, reports, and managers of other users in your organization, on your behalf.", + "userConsentDisplayName": "Read and write all users' full profiles", + "value": "User.ReadWrite.All" + }, + { + "description": "Allows the app to list groups, and to read their properties and all group memberships on behalf of the signed-in user. Also allows the app to read calendar, conversations, files, and other group content for all groups the signed-in user can access. ", + "displayName": "Read all groups", + "id": "5f8c59db-677d-491f-a6b8-5f174b11ec1d", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to list groups, and to read their properties and all group memberships on your behalf. Also allows the app to read calendar, conversations, files, and other group content for all groups you can access. ", + "userConsentDisplayName": "Read all groups", + "value": "Group.Read.All" + }, + { + "description": "Allows the app to create groups and read all group properties and memberships on behalf of the signed-in user. Additionally allows group owners to manage their groups and allows group members to update group content.", + "displayName": "Read and write all groups", + "id": "4e46008b-f24c-477d-8fff-7bb4ec7aafe0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to create groups and read all group properties and memberships on your behalf. Additionally allows the app to manage your groups and to update group content for groups you are a member of.", + "userConsentDisplayName": "Read and write all groups", + "value": "Group.ReadWrite.All" + }, + { + "description": "Allows the app to read data in your organization's directory, such as users, groups and apps.", + "displayName": "Read directory data", + "id": "06da0dbc-49e2-44d2-8312-53f166ab848a", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read data in your organization's directory.", + "userConsentDisplayName": "Read directory data", + "value": "Directory.Read.All" + }, + { + "description": "Allows the app to read and write data in your organization's directory, such as users, and groups. It does not allow the app to delete users or groups, or reset user passwords.", + "displayName": "Read and write directory data", + "id": "c5366453-9fb0-48a5-a156-24f0c49a4b84", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write data in your organization's directory, such as other users, groups. It does not allow the app to delete users or groups, or reset user passwords.", + "userConsentDisplayName": "Read and write directory data", + "value": "Directory.ReadWrite.All" + }, + { + "description": "Allows the app to have the same access to information in the directory as the signed-in user.", + "displayName": "Access directory as the signed in user", + "id": "0e263e50-5827-48a4-b97c-d940288653c7", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to have the same access to information in your work or school directory as you do.", + "userConsentDisplayName": "Access the directory as you", + "value": "Directory.AccessAsUser.All" + }, + { + "description": "Allows the app to create, read, update, and delete email in user mailboxes. Does not include permission to send mail. ", + "displayName": "Read and write access to user mail ", + "id": "024d486e-b451-40bb-833d-3e66d98c5c73", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update, create and delete email in your mailbox. Does not include permission to send mail. ", + "userConsentDisplayName": "Read and write access to your mail ", + "value": "Mail.ReadWrite" + }, + { + "description": "Allows the app to send mail as users in the organization. ", + "displayName": "Send mail as a user ", + "id": "e383f46e-2787-4529-855e-0e479a3ffac0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to send mail as you. ", + "userConsentDisplayName": "Send mail as you ", + "value": "Mail.Send" + }, + { + "description": "Allows the app to read events in user calendars . ", + "displayName": "Read user calendars ", + "id": "465a38f9-76ea-45b9-9f34-9e8b0d4b0b42", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read events in your calendars. ", + "userConsentDisplayName": "Read your calendars ", + "value": "Calendars.Read" + }, + { + "description": "Allows the app to create, read, update, and delete events in user calendars. ", + "displayName": "Have full access to user calendars ", + "id": "1ec239c2-d7c9-4623-a91a-a9775856bb36", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update, create and delete events in your calendars. ", + "userConsentDisplayName": "Have full access to your calendars ", + "value": "Calendars.ReadWrite" + }, + { + "description": "Allows the app to read user contacts. ", + "displayName": "Read user contacts ", + "id": "ff74d97f-43af-4b68-9f2a-b77ee6968c5d", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read contacts in your contact folders. ", + "userConsentDisplayName": "Read your contacts ", + "value": "Contacts.Read" + }, + { + "description": "Allows the app to create, read, update, and delete user contacts. ", + "displayName": "Have full access to user contacts ", + "id": "d56682ec-c09e-4743-aaf4-1a3aac4caa21", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update, create and delete contacts in your contact folders. ", + "userConsentDisplayName": "Have full access of your contacts ", + "value": "Contacts.ReadWrite" + }, + { + "description": "Allows the app to read the signed-in user's files.", + "displayName": "Read user files", + "id": "10465720-29dd-4523-a11a-6a75c743c9d9", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your files.", + "userConsentDisplayName": "Read your files", + "value": "Files.Read" + }, + { + "description": "Allows the app to read, create, update and delete the signed-in user's files.", + "displayName": "Have full access to user files", + "id": "5c28f0bf-8a70-41f1-8ab2-9032436ddb65", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, create, update, and delete your files.", + "userConsentDisplayName": "Have full access to your files", + "value": "Files.ReadWrite" + }, + { + "description": "Allows the app to read all files the signed-in user can access.", + "displayName": "Read all files that user can access", + "id": "df85f4d6-205c-4ac5-a5ea-6bf408dba283", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all files you can access.", + "userConsentDisplayName": "Read all files that you have access to", + "value": "Files.Read.All" + }, + { + "description": "Allows the app to read, create, update and delete all files the signed-in user can access.", + "displayName": "Have full access to all files user can access", + "id": "863451e7-0667-486c-a5d6-d135439485f0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, create, update and delete all files that you can access.", + "userConsentDisplayName": "Have full access to all files you have access to", + "value": "Files.ReadWrite.All" + }, + { + "description": "Allows the application to read documents and list items in all site collections on behalf of the signed-in user", + "displayName": "Read items in all site collections", + "id": "205e70e5-aba6-4c52-a976-6d2d46c48043", + "Origin": "Delegated", + "userConsentDescription": "Allow the application to read documents and list items in all site collections on your behalf", + "userConsentDisplayName": "Read items in all site collections", + "value": "Sites.Read.All" + }, + { + "description": "Allows users to sign in to the app with their work or school accounts and allows the app to see basic user profile information.", + "displayName": "Sign users in", + "id": "37f7f235-527c-4136-accd-4a02d197296e", + "Origin": "Delegated", + "userConsentDescription": "Allows you to sign in to the app with your work or school account and allows the app to read your basic profile information.", + "userConsentDisplayName": "Sign in as you", + "value": "openid" + }, + { + "description": "Allows the app to read your users' primary email address", + "displayName": "View users' email address", + "id": "64a6cdd6-aab1-4aaf-94b8-3cc8405e90d0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your primary email address", + "userConsentDisplayName": "View your email address", + "value": "email" + }, + { + "description": "Allows the app to read identity risk event information for all users in your organization on behalf of the signed-in user. ", + "displayName": "Read identity risk event information", + "id": "8f6a01e7-0391-4ee5-aa22-a3af122cef27", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read identity risk event information for all users in your organization on behalf of the signed-in user. ", + "userConsentDisplayName": "Read identity risk event information", + "value": "IdentityRiskEvent.Read.All" + }, + { + "description": "Allows the app to read the memberships of hidden groups and administrative units on behalf of the signed-in user, for those hidden groups and administrative units that the signed-in user has access to.", + "displayName": "Read hidden memberships", + "id": "f6a3db3e-f7e8-4ed2-a414-557c8c9830be", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the memberships of hidden groups or administrative units on your behalf, for those hidden groups or adminstrative units that you have access to.", + "userConsentDisplayName": "Read your hidden memberships", + "value": "Member.Read.Hidden" + }, + { + "description": "Allows the app to read a ranked list of relevant people of the signed-in user. The list includes local contacts, contacts from social networking, your organization's directory, and people from recent communications (such as email and Skype).", + "displayName": "Read users' relevant people lists", + "id": "ba47897c-39ec-4d83-8086-ee8256fa737d", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read a list of people in the order that's most relevant to you. This includes your local contacts, your contacts from social networking, people listed in your organization's directory, and people from recent communications.", + "userConsentDisplayName": "Read your relevant people list", + "value": "People.Read" + }, + { + "description": "Allows the application to create or delete document libraries and lists in all site collections on behalf of the signed-in user.", + "displayName": "Create, edit, and delete items and lists in all site collections", + "id": "65e50fdc-43b7-4915-933e-e8138f11f40a", + "Origin": "Delegated", + "userConsentDescription": "Allow the application to create or delete document libraries and lists in all site collections on your behalf.", + "userConsentDisplayName": "Create, edit, and delete items and lists in all your site collections", + "value": "Sites.Manage.All" + }, + { + "description": "Allows the application to have full control of all site collections on behalf of the signed-in user.", + "displayName": "Have full control of all site collections", + "id": "5a54b8b3-347c-476d-8f8e-42d5c7424d29", + "Origin": "Delegated", + "userConsentDescription": "Allow the application to have full control of all site collections on your behalf.", + "userConsentDisplayName": "Have full control of all your site collections", + "value": "Sites.FullControl.All" + }, + { + "description": "Allows the app to read and write your organization\u2019s identity (authentication) providers\u2019 properties on behalf of the user.", + "displayName": "Read and write identity providers", + "id": "f13ce604-1677-429f-90bd-8a10b9f01325", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write your organization\u2019s identity (authentication) providers\u2019 properties on your behalf.", + "userConsentDisplayName": "Read and write identity providers", + "value": "IdentityProvider.ReadWrite.All" + }, + { + "description": "Allows the app to read your organization\u2019s identity (authentication) providers\u2019 properties on behalf of the user.", + "displayName": "Read identity providers", + "id": "43781733-b5a7-4d1b-98f4-e8edff23e1a9", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your organization\u2019s identity (authentication) providers\u2019 properties on your behalf.", + "userConsentDisplayName": "Read identity providers", + "value": "IdentityProvider.Read.All" + }, + { + "description": "Allows an app to read bookings appointments, businesses, customers, services, and staff on behalf of the signed-in user.", + "displayName": "Read bookings information", + "id": "33b1df99-4b29-4548-9339-7a7b83eaeebc", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read bookings appointments, businesses, customers, services, and staff on your behalf.", + "userConsentDisplayName": "Read bookings information", + "value": "Bookings.Read.All" + }, + { + "description": "Allows an app to read and write bookings appointments and customers, and additionally allows read businesses information, services, and staff on behalf of the signed-in user.", + "displayName": "Read and write booking appointments", + "id": "02a5a114-36a6-46ff-a102-954d89d9ab02", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read and write bookings appointments and customers, and additionally allows read businesses information, services, and staff on your behalf.", + "userConsentDisplayName": "Read and write booking appointments", + "value": "BookingsAppointment.ReadWrite.All" + }, + { + "description": "Allows an app to read and write bookings appointments, businesses, customers, services, and staff on behalf of the signed-in user. Does not allow create, delete and publish of booking businesses.", + "displayName": "Read and write bookings information", + "id": "948eb538-f19d-4ec5-9ccc-f059e1ea4c72", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read and write Bookings appointments, businesses, customers, services, and staff on your behalf. Does not allow create, delete and publish of booking businesses.", + "userConsentDisplayName": "Read and write bookings information", + "value": "Bookings.ReadWrite.All" + }, + { + "description": "Allows an app to read, write and manage bookings appointments, businesses, customers, services, and staff on behalf of the signed-in user.", + "displayName": "Manage bookings information", + "id": "7f36b48e-542f-4d3b-9bcb-8406f0ab9fdb", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read, write and manage bookings appointments, businesses, customers, services, and staff on your behalf.", + "userConsentDisplayName": "Manage bookings information", + "value": "Bookings.Manage.All" + }, + { + "description": "Allows the app to have the same access to mailboxes as the signed-in user via Exchange ActiveSync.", + "displayName": "Access mailboxes via Exchange ActiveSync", + "id": "ff91d191-45a0-43fd-b837-bd682c4a0b0f", + "Origin": "Delegated", + "userConsentDescription": "Allows the app full access to your mailboxes on your behalf.", + "userConsentDisplayName": "Access your mailboxes", + "value": "EAS.AccessAsUser.All" + }, + { + "description": "Allows the app to read and write financials data on behalf of the signed-in user.", + "displayName": "Read and write financials data", + "id": "f534bf13-55d4-45a9-8f3c-c92fe64d6131", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write financials data on your behalf.", + "userConsentDisplayName": "Read and write financials data", + "value": "Financials.ReadWrite.All" + }, + { + "description": "Allows the app to read your organization's user flows, on behalf of the signed-in user.", + "displayName": "Read all identity user flows", + "id": "2903d63d-4611-4d43-99ce-a33f3f52e343", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your organization's user flows, on your behalf.", + "userConsentDisplayName": "Read all identity user flows", + "value": "IdentityUserFlow.Read.All" + }, + { + "description": "Allows the app to read or write your organization's user flows, on behalf of the signed-in user.", + "displayName": "Read and write all identity user flows", + "id": "281892cc-4dbf-4e3a-b6cc-b21029bb4e82", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read or write your organization's user flows, on your behalf.", + "userConsentDisplayName": "Read and write all identity user flows", + "value": "IdentityUserFlow.ReadWrite.All" + }, + { + "description": "Allows the app to read all organizational contacts on behalf of the signed-in user. \u00a0These contacts are managed by the organization and are different from a user's personal contacts.", + "displayName": "Read organizational contacts", + "id": "08432d1b-5911-483c-86df-7980af5cdee0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all organizational contacts on your behalf.\u00a0 These contacts are managed by the organization and are different from your personal contacts.", + "userConsentDisplayName": "Read organizational contacts", + "value": "OrgContact.Read.All" + }, + { + "description": "Allows the app to manage permission grants for application permissions to any API (including Microsoft Graph) and application assignments for any app, on behalf of the signed-in user.", + "displayName": "Manage app permission grants and app role assignments", + "id": "84bccea3-f856-4a8a-967b-dbe0a3d53a64", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to manage permission grants for application permissions to any API (including Microsoft Graph) and application assignments for any app, on your behalf.", + "userConsentDisplayName": "Manage app permission grants and app role assignments", + "value": "AppRoleAssignment.ReadWrite.All" + }, + { + "description": "Allows the app to manage permission grants for delegated permissions exposed by any API (including Microsoft Graph), on behalf of the signed in user.", + "displayName": "Manage all delegated permission grants", + "id": "41ce6ca6-6826-4807-84f1-1c82854f7ee5", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to manage permission grants for delegated permissions exposed by any API (including Microsoft Graph), on your behalf. ", + "userConsentDisplayName": "Manage all delegated permission grants", + "value": "DelegatedPermissionGrant.ReadWrite.All" + }, + { + "description": "Allows the app to read online meeting details on behalf of the signed-in user.", + "displayName": "Read user's online meetings", + "id": "9be106e1-f4e3-4df5-bdff-e4bc531cbe43", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read online meeting details on your behalf.", + "userConsentDisplayName": "Read your online meetings", + "value": "OnlineMeetings.Read" + }, + { + "description": "Allows the app to read and create online meetings on behalf of the signed-in user.", + "displayName": "Read and create user's online meetings", + "id": "a65f2972-a4f8-4f5e-afd7-69ccb046d5dc", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and create online meetings on your behalf.", + "userConsentDisplayName": "Read and create your online meetings", + "value": "OnlineMeetings.ReadWrite" + }, + { + "description": "Allows the app to read the signed-in user's teamwork activity feed.", + "displayName": "Read user's teamwork activity feed", + "id": "0e755559-83fb-4b44-91d0-4cc721b9323e", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your teamwork activity feed.", + "userConsentDisplayName": "Read your teamwork activity feed", + "value": "TeamsActivity.Read" + }, + { + "description": "Allows the app to request and manage time-based assignment and just-in-time elevation of user privileges to manage Azure resources (like subscriptions, resource groups, storage, compute) on behalf of the signed-in users.", + "displayName": "Read and write privileged access to Azure resources", + "id": "a84a9652-ffd3-496e-a991-22ba5529156a", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to request and manage time-based assignment and just-in-time elevation of user privileges to manage \u00a0your Azure resources (like your subscriptions, resource groups, storage, compute) on your behalf.", + "userConsentDisplayName": "Read and write privileged access to Azure resources", + "value": "PrivilegedAccess.ReadWrite.AzureResources" + }, + { + "description": "Allows the app to read time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD built-in and custom administrative roles, on behalf of the signed-in user.", + "displayName": "Read privileged access to Azure AD", + "id": "b3a539c9-59cb-4ad5-825a-041ddbdc2bdb", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD built-in and custom administrative roles, on your behalf.", + "userConsentDisplayName": "Read privileged access to Azure AD", + "value": "PrivilegedAccess.Read.AzureAD" + }, + { + "description": "Allows the app to read time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD groups, on behalf of the signed-in user.", + "displayName": "Read privileged access to Azure AD groups", + "id": "d329c81c-20ad-4772-abf9-3f6fdb7e5988", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD groups, on your behalf.", + "userConsentDisplayName": "Read privileged access to Azure AD groups", + "value": "PrivilegedAccess.Read.AzureADGroup" + }, + { + "description": "Allows the app to read time-based assignment and just-in-time elevation of Azure resources (like your subscriptions, resource groups, storage, compute) on behalf of the signed-in user.", + "displayName": "Read privileged access to Azure resources", + "id": "1d89d70c-dcac-4248-b214-903c457af83a", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read time-based assignment and just-in-time elevation of Azure resources (like your subscriptions, resource groups, storage, compute) on your behalf.", + "userConsentDisplayName": "Read privileged access to your Azure resources", + "value": "PrivilegedAccess.Read.AzureResources" + }, + { + "description": "Allows the app to request and manage time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD groups, on behalf of the signed-in user.", + "displayName": "Read and write privileged access to Azure AD groups", + "id": "32531c59-1f32-461f-b8df-6f8a3b89f73b", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to request and manage time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD groups, on your behalf.", + "userConsentDisplayName": "Read and write privileged access to Azure AD groups", + "value": "PrivilegedAccess.ReadWrite.AzureADGroup" + }, + { + "description": "Allows the app to read all the indicators for your organization, on behalf of the signed-in user.", + "displayName": "Read all threat indicators", + "id": "9cc427b4-2004-41c5-aa22-757b755e9796", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all the indicators for your organization, on your behalf.", + "userConsentDisplayName": "Read all threat indicators", + "value": "ThreatIndicators.Read.All" + }, + { + "description": "Allow the app to read external datasets and content, on behalf of the signed-in user.", + "displayName": "Read items in external datasets", + "id": "922f9392-b1b7-483c-a4be-0089be7704fb", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read external datasets and content that you have access to.", + "userConsentDisplayName": "Read items in external datasets", + "value": "ExternalItem.Read.All" + }, + { + "description": "Allows an app to edit channel messages in Microsoft Teams, on behalf of the signed-in user.", + "displayName": "Edit user's channel messages", + "id": "2b61aa8a-6d36-4b2f-ac7b-f29867937c53", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to edit channel messages in Microsoft Teams, on your behalf.", + "userConsentDisplayName": "Edit your channel messages", + "value": "ChannelMessage.Edit" + }, + { + "description": "Allows an app to send channel messages in Microsoft Teams, on behalf of the signed-in user.", + "displayName": "Send channel messages", + "id": "ebf0f66e-9fb1-49e4-a278-222f76911cf4", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to send channel messages in Microsoft Teams, on your behalf.", + "userConsentDisplayName": "Send channel messages", + "value": "ChannelMessage.Send" + }, + { + "description": "Allows the app to manage organization places (conference rooms and room lists) for calendar events and other applications, on behalf of the signed-in user.", + "displayName": "Read and write organization places", + "id": "4c06a06a-098a-4063-868e-5dfee3827264", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to manage organization places (conference rooms and room lists) for calendar events and other applications, on your behalf.", + "userConsentDisplayName": "Read and write organization places", + "value": "Place.ReadWrite.All" + }, + { + "description": "Allows the app to request access to and management of access packages and related entitlement management resources on behalf of the signed-in user.", + "displayName": "Read and write entitlement management resources", + "id": "ae7a573d-81d7-432b-ad44-4ed5c9d89038", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to request access to and management of access packages and related entitlement management resources that you have access to.", + "userConsentDisplayName": "Read and write entitlement management resources", + "value": "EntitlementManagement.ReadWrite.All" + }, + { + "description": "Allows the app to send, read, update and delete user\u2019s notifications.", + "displayName": "Deliver and manage user's notifications", + "id": "26e2f3e8-b2a1-47fc-9620-89bb5b042024", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to send, read, update and delete your app-specific notifications.", + "userConsentDisplayName": "Deliver and manage your notifications", + "value": "UserNotification.ReadWrite.CreatedByApp" + }, + { + "description": "Allows the app to read applications and service principals on behalf of the signed-in user.", + "displayName": "Read applications", + "id": "c79f8feb-a9db-4090-85f9-90d820caa0eb", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read applications and service principals on your behalf.", + "userConsentDisplayName": "Read applications", + "value": "Application.Read.All" + }, + { + "description": "Allows the app to create, read, update and delete applications and service principals on behalf of the signed-in user. Does not allow management of consent grants.", + "displayName": "Read and write all applications", + "id": "bdfbf15f-ee85-4955-8675-146e8e5296b5", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to create, read, update and delete applications and service principals on your behalf. Does not allow management of consent grants.", + "userConsentDisplayName": "Read and write applications", + "value": "Application.ReadWrite.All" + }, + { + "description": "Allows the app to read BitLocker keys on behalf of the signed-in user, for their owned devices. Allows read of the recovery key.", + "displayName": "Read BitLocker keys", + "id": "b27a61ec-b99c-4d6a-b126-c4375d08ae30", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read BitLocker keys for your owned devices. Allows read of the recovery key.", + "userConsentDisplayName": "Read your BitLocker keys", + "value": "BitlockerKey.Read.All" + }, + { + "description": "Allows the app to read basic BitLocker key properties on behalf of the signed-in user, for their owned devices. Does not allow read of the recovery key itself.", + "displayName": "Read BitLocker keys basic information", + "id": "5a107bfc-4f00-4e1a-b67e-66451267bc68", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read basic BitLocker key properties for your owned devices. Does not allow read of the recovery key itself.", + "userConsentDisplayName": "Read your BitLocker keys basic information", + "value": "BitlockerKey.ReadBasic.All" + }, + { + "description": "Allows the app to list groups, read basic group properties and read membership of all groups the signed-in user has access to.", + "displayName": "Read group memberships", + "id": "bc024368-1153-4739-b217-4326f2e966d0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to list groups, read basic group properties and read membership of all your groups.", + "userConsentDisplayName": "Read group memberships", + "value": "GroupMember.Read.All" + }, + { + "description": "Allows the app to list groups, read basic properties, read and update the membership of the groups the signed-in user has access to. Group properties and owners cannot be updated and groups cannot be deleted.", + "displayName": "Read and write group memberships", + "id": "f81125ac-d3b7-4573-a3b2-7099cc39df9e", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to list groups, read basic properties, read and update the membership of your groups. Group properties and owners cannot be updated and groups cannot be deleted.", + "userConsentDisplayName": "Read and write group memberships", + "value": "GroupMember.ReadWrite.All" + }, + { + "description": "Allows an app to read your organization's threat assessment requests on behalf of the signed-in user. Also allows the app to create new requests to assess threats received by your organization on behalf of the signed-in user.", + "displayName": "Read and write threat assessment requests", + "id": "cac97e40-6730-457d-ad8d-4852fddab7ad", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read your organization's threat assessment requests on your behalf. Also allows the app to create new requests to assess threats received by your organization on your behalf.", + "userConsentDisplayName": "Read and write threat assessment requests", + "value": "ThreatAssessment.ReadWrite.All" + }, + { + "description": "Allows the app to read schedule, schedule groups, shifts and associated entities in the Teams or Shifts application on behalf of the signed-in user.", + "displayName": "Read user schedule items", + "id": "fccf6dd8-5706-49fa-811f-69e2e1b585d0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read schedule, schedule groups, shifts and associated entities in the Teams or Shifts application on your behalf.", + "userConsentDisplayName": "Read your schedule items", + "value": "Schedule.Read.All" + }, + { + "description": "Allows the app to manage schedule, schedule groups, shifts and associated entities in the Teams or Shifts application on behalf of the signed-in user.", + "displayName": "Read and write user schedule items", + "id": "63f27281-c9d9-4f29-94dd-6942f7f1feb0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to manage schedule, schedule groups, shifts and associated entities in the Teams or Shifts application on your behalf.", + "userConsentDisplayName": "Read and write your schedule items", + "value": "Schedule.ReadWrite.All" + }, + { + "description": " Allows the app to read and write authentication methods of all users in your organization that the signed-in user has access to. Authentication methods include things like a user\u2019s phone numbers and Authenticator app settings. This does not allow the app to see secret information like passwords, or to sign-in or otherwise use the authentication methods.", + "displayName": "Read and write all users' authentication methods.", + "id": "b7887744-6746-4312-813d-72daeaee7e2d", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write authentication methods of all users you have access to in your organization. Authentication methods include things like a user\u2019s phone numbers and Authenticator app settings. This does not allow the app to see secret information like passwords, or to sign-in or otherwise use the authentication methods.", + "userConsentDisplayName": "Read and write all users' authentication methods", + "value": "UserAuthenticationMethod.ReadWrite.All" + }, + { + "description": "Allows the app to read and write the signed-in user's authentication methods, including phone numbers and Authenticator app settings. This does not allow the app to see secret information like the signed-in user's passwords, or to sign-in or otherwise use the signed-in user's authentication methods. ", + "displayName": "Read and write user authentication methods", + "id": "48971fc1-70d7-4245-af77-0beb29b53ee2", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write your authentication methods, including phone numbers and Authenticator app settings.This does not allow the app to see secret information like your passwords, or to sign-in or otherwise use your authentication methods.", + "userConsentDisplayName": "Read and write your authentication methods", + "value": "UserAuthenticationMethod.ReadWrite" + }, + { + "description": "Allows the app to read authentication methods of all users in your organization that the signed-in user has access to. Authentication methods include things like a user\u2019s phone numbers and Authenticator app settings. This does not allow the app to see secret information like passwords, or to sign-in or otherwise use the authentication methods.", + "displayName": "Read all users' authentication methods", + "id": "aec28ec7-4d02-4e8c-b864-50163aea77eb", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read authentication methods of all users you have access to in your organization. Authentication methods include things like a user\u2019s phone numbers and Authenticator app settings. This does not allow the app to see secret information like passwords, or to sign-in or otherwise use the authentication methods.", + "userConsentDisplayName": "Read all users' authentication methods", + "value": "UserAuthenticationMethod.Read.All" + }, + { + "description": "Allows the app to read the signed-in user's authentication methods, including phone numbers and Authenticator app settings. This does not allow the app to see secret information like the signed-in user's passwords, or to sign-in or otherwise use the signed-in user's authentication methods.", + "displayName": "Read user authentication methods.", + "id": "1f6b61c5-2f65-4135-9c9f-31c0f8d32b52", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your authentication methods, including phone numbers and Authenticator app settings. This does not allow the app to see secret information like your passwords, or to sign-in or otherwise use your authentication methods.", + "userConsentDisplayName": "Read your authentication methods.", + "value": "UserAuthenticationMethod.Read" + }, + { + "description": "Allows the app to create tabs in any team in Microsoft Teams, on behalf of the signed-in user. This does not grant the ability to read, modify or delete tabs after they are created, or give access to the content inside the tabs.", + "displayName": "Create tabs in Microsoft Teams.", + "id": "a9ff19c2-f369-4a95-9a25-ba9d460efc8e", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to create tabs in any team in Microsoft Teams, on your behalf. This does not grant the ability to read, modify or delete tabs after they are created, or give access to the content inside the tabs.", + "userConsentDisplayName": "Create tabs in Microsoft Teams.", + "value": "TeamsTab.Create" + }, + { + "description": "Read the names and settings of tabs inside any team in Microsoft Teams, on behalf of the signed-in user. This does not give access to the content inside the tabs.", + "displayName": "Read tabs in Microsoft Teams.", + "id": "59dacb05-e88d-4c13-a684-59f1afc8cc98", + "Origin": "Delegated", + "userConsentDescription": "Read the names and settings of tabs inside any team in Microsoft Teams, on your behalf. This does not give access to the content inside the tabs.", + "userConsentDisplayName": "Read tabs in Microsoft Teams.", + "value": "TeamsTab.Read.All" + }, + { + "description": "Read and write tabs in any team in Microsoft Teams, on behalf of the signed-in user. This does not give access to the content inside the tabs.", + "displayName": "Read and write tabs in Microsoft Teams.", + "id": "b98bfd41-87c6-45cc-b104-e2de4f0dafb9", + "Origin": "Delegated", + "userConsentDescription": "Read and write tabs in any team in Microsoft Teams, on your behalf. This does not give access to the content inside the tabs.", + "userConsentDisplayName": "Read and write tabs in Microsoft Teams.", + "value": "TeamsTab.ReadWrite.All" + }, + { + "description": "Allows the app to have the same access to mailboxes as the signed-in user via IMAP protocol.", + "displayName": "Read and write access to mailboxes via IMAP.", + "id": "652390e4-393a-48de-9484-05f9b1212954", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update, create and delete email in your mailbox. Does not include permission to send mail.", + "userConsentDisplayName": "Read and write access to your mail.", + "value": "IMAP.AccessAsUser.All" + }, + { + "description": "Allows the app to have the same access to mailboxes as the signed-in user via POP protocol.", + "displayName": "Read and write access to mailboxes via POP.", + "id": "d7b7f2d9-0f45-4ea1-9d42-e50810c06991", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update, create and delete email in your mailbox. Does not include permission to send mail.", + "userConsentDisplayName": "Read and write access to your mail.", + "value": "POP.AccessAsUser.All" + }, + { + "description": "Allows the app to be able to send emails from the user\u2019s mailbox using the SMTP AUTH client submission protocol.", + "displayName": "Send emails from mailboxes using SMTP AUTH.", + "id": "258f6531-6087-4cc4-bb90-092c5fb3ed3f", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to send emails on your behalf from your mailbox.", + "userConsentDisplayName": "Access to sending emails from your mailbox.", + "value": "SMTP.Send" + }, + { + "description": "Allows the app to read all domain properties on behalf of the signed-in user.", + "displayName": "Read domains.", + "id": "2f9ee017-59c1-4f1d-9472-bd5529a7b311", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all domain properties on your behalf.", + "userConsentDisplayName": "Read domains.", + "value": "Domain.Read.All" + }, + { + "description": "Allows the app to read and write all domain properties on behalf of the signed-in user. Also allows the app to add, verify and remove domains.", + "displayName": "Read and write domains", + "id": "0b5d694c-a244-4bde-86e6-eb5cd07730fe", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write all domain properties on your behalf. Also allows the app to add, verify and remove domains.", + "userConsentDisplayName": "Read and write domains", + "value": "Domain.ReadWrite.All" + }, + { + "description": "Allows the app to read and write your organization's application configuration policies on behalf of the signed-in user. This includes policies such as activityBasedTimeoutPolicy, claimsMappingPolicy, homeRealmDiscoveryPolicy, tokenIssuancePolicy and tokenLifetimePolicy.", + "displayName": "Read and write your organization's application configuration policies", + "id": "b27add92-efb2-4f16-84f5-8108ba77985c", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write your organization's application configuration policies on your behalf. This includes policies such as activityBasedTimeoutPolicy, claimsMappingPolicy, homeRealmDiscoveryPolicy, tokenIssuancePolicy and tokenLifetimePolicy.", + "userConsentDisplayName": "Read and write your organization's application configuration policies", + "value": "Policy.ReadWrite.ApplicationConfiguration" + }, + { + "description": "Allows the app to read your organization's devices' configuration information on behalf of the signed-in user.", + "displayName": "Read all devices", + "id": "951183d1-1a61-466f-a6d1-1fde911bfd95", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read devices' configuration information on your behalf.", + "userConsentDisplayName": "Read all devices", + "value": "Device.Read.All" + }, + { + "description": "Allows the app to read, update and delete identities that are associated with a user's account that the signed-in user has access to. This controls the identities users can sign-in with.", + "displayName": "Manage user identities", + "id": "637d7bec-b31e-4deb-acc9-24275642a2c9", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, update and delete identities that are associated with a user's account that you have access to. This controls the identities users can sign-in with.", + "userConsentDisplayName": "Manage user identities", + "value": "User.ManageIdentities.All" + }, + { + "description": "Allows the app to read access packages and related entitlement management resources on behalf of the signed-in user.", + "displayName": "Read all entitlement management resources", + "id": "5449aa12-1393-4ea2-a7c7-d0e06c1a56b2", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read access packages and related entitlement management resources that you have access to.", + "userConsentDisplayName": "Read all entitlement management resources", + "value": "EntitlementManagement.Read.All" + }, + { + "description": "Create channels in any team, on behalf of the signed-in user.", + "displayName": "Create channels", + "id": "101147cf-4178-4455-9d58-02b5c164e759", + "Origin": "Delegated", + "userConsentDescription": "Create channels in any team, on your behalf.", + "userConsentDisplayName": "Create channels", + "value": "Channel.Create" + }, + { + "description": "Delete channels in any team, on behalf of the signed-in user.", + "displayName": "Delete channels", + "id": "cc83893a-e232-4723-b5af-bd0b01bcfe65", + "Origin": "Delegated", + "userConsentDescription": "Delete channels in any team, on your behalf.", + "userConsentDisplayName": "Delete channels", + "value": "Channel.Delete.All" + }, + { + "description": "Read all channel names, channel descriptions, and channel settings, on behalf of the signed-in user.", + "displayName": "Read the names, descriptions, and settings of channels", + "id": "233e0cf1-dd62-48bc-b65b-b38fe87fcf8e", + "Origin": "Delegated", + "userConsentDescription": "Read all channel names, channel descriptions, and channel settings, on your behalf.", + "userConsentDisplayName": "Read the names, descriptions, and settings of channels", + "value": "ChannelSettings.Read.All" + }, + { + "description": "Read and write the names, descriptions, and settings of all channels, on behalf of the signed-in user.", + "displayName": "Read and write the names, descriptions, and settings of channels", + "id": "d649fb7c-72b4-4eec-b2b4-b15acf79e378", + "Origin": "Delegated", + "userConsentDescription": "Read and write the names, descriptions, and settings of all channels, on your behalf.", + "userConsentDisplayName": "Read and write the names, descriptions, and settings of channels", + "value": "ChannelSettings.ReadWrite.All" + }, + { + "description": "Allows the app to read all webhook subscriptions on behalf of the signed-in user.", + "displayName": "Read all webhook subscriptions ", + "id": "5f88184c-80bb-4d52-9ff2-757288b2e9b7", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all webhook subscriptions on your behalf.", + "userConsentDisplayName": "Read all webhook subscriptions ", + "value": "Subscription.Read.All" + }, + { + "description": "Read the names and descriptions of teams, on behalf of the signed-in user.", + "displayName": "Read the names and descriptions of teams", + "id": "485be79e-c497-4b35-9400-0e3fa7f2a5d4", + "Origin": "Delegated", + "userConsentDescription": "Read the names and descriptions of teams, on your behalf.", + "userConsentDisplayName": "Read the names and descriptions of teams", + "value": "Team.ReadBasic.All" + }, + { + "description": "Read channel names and channel descriptions, on behalf of the signed-in user.", + "displayName": "Read the names and descriptions of channels", + "id": "9d8982ae-4365-4f57-95e9-d6032a4c0b87", + "Origin": "Delegated", + "userConsentDescription": "Read channel names and channel descriptions, on your behalf.", + "userConsentDisplayName": "Read the names and descriptions of channels", + "value": "Channel.ReadBasic.All" + }, + { + "description": "Read all teams' settings, on behalf of the signed-in user.", + "displayName": "Read teams' settings", + "id": "48638b3c-ad68-4383-8ac4-e6880ee6ca57", + "Origin": "Delegated", + "userConsentDescription": "Read all teams' settings, on your behalf.", + "userConsentDisplayName": "Read teams' settings", + "value": "TeamSettings.Read.All" + }, + { + "description": "Read and change all teams' settings, on behalf of the signed-in user.", + "displayName": "Read and change teams' settings", + "id": "39d65650-9d3e-4223-80db-a335590d027e", + "Origin": "Delegated", + "userConsentDescription": "Read and change all teams' settings, on your behalf.", + "userConsentDisplayName": "Read and change teams' settings", + "value": "TeamSettings.ReadWrite.All" + }, + { + "description": "Read the members of teams, on behalf of the signed-in user.", + "displayName": "Read the members of teams", + "id": "2497278c-d82d-46a2-b1ce-39d4cdde5570", + "Origin": "Delegated", + "userConsentDescription": "Read the members of teams, on your behalf.", + "userConsentDisplayName": "Read the members of teams", + "value": "TeamMember.Read.All" + }, + { + "description": "Add and remove members from teams, on behalf of the signed-in user. Also allows changing a member's role, for example from owner to non-owner.", + "displayName": "Add and remove members from teams", + "id": "4a06efd2-f825-4e34-813e-82a57b03d1ee", + "Origin": "Delegated", + "userConsentDescription": "Add and remove members from teams, on your behalf. Also allows changing a member's role, for example from owner to non-owner.", + "userConsentDisplayName": "Add and remove members from teams and channels", + "value": "TeamMember.ReadWrite.All" + }, + { + "description": "Allows the app to read consent requests and approvals on behalf of the signed-in user.", + "displayName": "Read consent requests", + "id": "f3bfad56-966e-4590-a536-82ecf548ac1e", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read consent requests and approvals, on your behalf.", + "userConsentDisplayName": "Read consent requests", + "value": "ConsentRequest.Read.All" + }, + { + "description": "Allows the app to read app consent requests and approvals, and deny or approve those requests on behalf of the signed-in user.", + "displayName": "Read and write consent requests", + "id": "497d9dfa-3bd1-481a-baab-90895e54568c", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read app consent requests for your approval, and deny or approve those request on your behalf.", + "userConsentDisplayName": "Read and write consent requests", + "value": "ConsentRequest.ReadWrite.All" + }, + { + "description": "Allows the app to read and write your organization's consent requests policy on behalf of the signed-in user.", + "displayName": "Read and write consent request policy", + "id": "4d135e65-66b8-41a8-9f8b-081452c91774", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write your organization's consent request policy on your behalf.", + "userConsentDisplayName": "Read and write consent request policy", + "value": "Policy.ReadWrite.ConsentRequest" + }, + { + "description": "Allows the app to read presence information on behalf of the signed-in user. Presence information includes activity, availability, status note, calendar out-of-office message, timezone and location.", + "displayName": "Read user's presence information", + "id": "76bc735e-aecd-4a1d-8b4c-2b915deabb79", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your presence information on your behalf. Presence information includes activity, availability, status note, calendar out-of-office message, timezone and location.", + "userConsentDisplayName": "Read your presence information", + "value": "Presence.Read" + }, + { + "description": "Allows the app to read presence information of all users in the directory on behalf of the signed-in user. Presence information includes activity, availability, status note, calendar out-of-office message, timezone and location.", + "displayName": "Read presence information of all users in your organization", + "id": "9c7a330d-35b3-4aa1-963d-cb2b9f927841", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read presence information of all users in the directory on your behalf. Presence information includes activity, availability, status note, calendar out-of-office message, timezone and location.", + "userConsentDisplayName": "Read presence information of all users in your organization", + "value": "Presence.Read.All" + }, + { + "description": "Read the members of channels, on behalf of the signed-in user.", + "displayName": "Read the members of channels", + "id": "2eadaff8-0bce-4198-a6b9-2cfc35a30075", + "Origin": "Delegated", + "userConsentDescription": "Read the members of channels, on your behalf.", + "userConsentDisplayName": "Read the members of teams and channels", + "value": "ChannelMember.Read.All" + }, + { + "description": "Add and remove members from channels, on behalf of the signed-in user. Also allows changing a member's role, for example from owner to non-owner.", + "displayName": "Add and remove members from channels", + "id": "0c3e411a-ce45-4cd1-8f30-f99a3efa7b11", + "Origin": "Delegated", + "userConsentDescription": "Add and remove members from channels, on your behalf. Also allows changing a member's role, for example from owner to non-owner.", + "userConsentDisplayName": "Add and remove members from teams and channels", + "value": "ChannelMember.ReadWrite.All" + }, + { + "description": "Allows the app to read and write the authentication flow policies, on behalf of the signed-in user. ", + "displayName": "Read and write authentication flow policies", + "id": "edb72de9-4252-4d03-a925-451deef99db7", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write the authentication flow policies for your tenant, on your behalf.", + "userConsentDisplayName": "Read and write your authentication flow policies", + "value": "Policy.ReadWrite.AuthenticationFlows" + }, + { + "description": "Allows an app to read a channel's messages in Microsoft Teams, on behalf of the signed-in user.", + "displayName": "Read user channel messages", + "id": "767156cb-16ae-4d10-8f8b-41b657c8c8c8", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read a channel's messages in Microsoft Teams, on your behalf.", + "userConsentDisplayName": "Read your channel messages", + "value": "ChannelMessage.Read.All" + }, + { + "description": "Allows the app to read the apps in the app catalogs.", + "displayName": "Read all app catalogs", + "id": "88e58d74-d3df-44f3-ad47-e89edf4472e4", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read apps in the app catalogs.", + "userConsentDisplayName": "Read all app catalogs", + "value": "AppCatalog.Read.All" + }, + { + "description": "Allows the app to read and write the authentication method policies, on behalf of the signed-in user.\u00a0", + "displayName": "Read and write authentication method policies", + "id": "7e823077-d88e-468f-a337-e18f1f0e6c7c", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write the authentication method policies for your tenant, on your behalf.", + "userConsentDisplayName": "Read and write your authentication method policies ", + "value": "Policy.ReadWrite.AuthenticationMethod" + }, + { + "description": "Allows the app to read and write your organization's authorization policy on behalf of the signed-in user. For example, authorization policies can control some of the permissions that the out-of-the-box user role has by default.", + "displayName": "Read and write your organization's authorization policy", + "id": "edd3c878-b384-41fd-95ad-e7407dd775be", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write your organization's authorization policy on your behalf. For example, authorization policies can control some of the permissions that the out-of-the-box user role has by default.", + "userConsentDisplayName": "Read and write your organization's authorization policy", + "value": "Policy.ReadWrite.Authorization" + }, + { + "description": "Allows the app to read policies related to consent and permission grants for applications, on behalf of the signed-in user.", + "displayName": "Read consent and permission grant policies", + "id": "414de6ea-2d92-462f-b120-6e2a809a6d01", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read policies related to consent and permission grants for applications, on your behalf.", + "userConsentDisplayName": "Read consent and permission grant policies", + "value": "Policy.Read.PermissionGrant" + }, + { + "description": "Allows the app to manage policies related to consent and permission grants for applications, on behalf of the signed-in user.", + "displayName": "Manage consent and permission grant policies", + "id": "2672f8bb-fd5e-42e0-85e1-ec764dd2614e", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to manage policies related to consent and permission grants for applications, on behalf of the signed-in user.", + "userConsentDisplayName": "Manage consent and permission grant policies", + "value": "Policy.ReadWrite.PermissionGrant" + }, + { + "description": "Allows the application to create (register) printers on behalf of the signed-in user.\u00a0", + "displayName": "Register printers\u202f\u00a0", + "id": "90c30bed-6fd1-4279-bf39-714069619721", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to create (register) printers on your behalf.\u00a0", + "userConsentDisplayName": "Register printers\u202f\u00a0", + "value": "Printer.Create" + }, + { + "description": "Allows the application to create (register), read, update, and delete (unregister) printers on behalf of the signed-in user.\u00a0", + "displayName": "Register, read, update, and unregister printers", + "id": "93dae4bd-43a1-4a23-9a1a-92957e1d9121", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to create (register), read, update, and delete (unregister) printers on your behalf.\u00a0\u00a0", + "userConsentDisplayName": "Register, read, update, and unregister printers", + "value": "Printer.FullControl.All" + }, + { + "description": "Allows the application to read printers on behalf of the signed-in user.\u00a0", + "displayName": "Read printers", + "id": "3a736c8a-018e-460a-b60c-863b2683e8bf", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read printers on your behalf.\u00a0", + "userConsentDisplayName": "Read printers", + "value": "Printer.Read.All" + }, + { + "description": "Allows the application to read and update printers on behalf of the signed-in user.\u00a0Does not allow creating (registering) or deleting (unregistering) printers.", + "displayName": "Read and update printers", + "id": "89f66824-725f-4b8f-928e-e1c5258dc565", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read and update printers on your behalf.\u00a0Does not allow creating (registering) or deleting (unregistering) printers.", + "userConsentDisplayName": "Read and update printers", + "value": "Printer.ReadWrite.All" + }, + { + "description": "Allows the application to read printer shares on behalf of the signed-in user.\u00a0", + "displayName": "Read printer shares", + "id": "ed11134d-2f3f-440d-a2e1-411efada2502", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read printer shares on your behalf.\u00a0", + "userConsentDisplayName": "Read printer shares", + "value": "PrinterShare.Read.All" + }, + { + "description": "Allows the application to read and update printer shares on behalf of the signed-in user.\u00a0", + "displayName": "Read and write printer shares", + "id": "06ceea37-85e2-40d7-bec3-91337a46038f", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read and update printer shares on your behalf.\u00a0", + "userConsentDisplayName": "Read and update printer shares", + "value": "PrinterShare.ReadWrite.All" + }, + { + "description": "Allows the application to read the metadata and document content of print jobs that the signed-in user created.", + "displayName": "Read user's print jobs", + "id": "248f5528-65c0-4c88-8326-876c7236df5e", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read the metadata and document content of print jobs that you created.", + "userConsentDisplayName": "Read your print jobs", + "value": "PrintJob.Read" + }, + { + "description": "Allows the application to read the metadata and document content of print jobs on behalf of the signed-in user.\u00a0", + "displayName": "Read print jobs", + "id": "afdd6933-a0d8-40f7-bd1a-b5d778e8624b", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read the metadata and document content of print jobs on your behalf.\u00a0", + "userConsentDisplayName": "Read print jobs", + "value": "PrintJob.Read.All" + }, + { + "description": "Allows the application to read the metadata of print jobs that the signed-in user created. Does not allow access to print job document content.", + "displayName": "Read basic information of user's print jobs", + "id": "6a71a747-280f-4670-9ca0-a9cbf882b274", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read the metadata of print jobs that you created. Does not allow access to print job document content.", + "userConsentDisplayName": "Read basic information of your print jobs", + "value": "PrintJob.ReadBasic" + }, + { + "description": "Allows the application to read the metadata of print jobs on behalf of the signed-in user.\u00a0Does not allow access to print job document content.", + "displayName": "Read basic information of print jobs", + "id": "04ce8d60-72ce-4867-85cf-6d82f36922f3", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read the metadata of print jobs on your behalf.\u00a0Does not allow access to print job document content.", + "userConsentDisplayName": "Read basic information of print jobs", + "value": "PrintJob.ReadBasic.All" + }, + { + "description": "Allows the application to read and update the metadata and document content of print jobs that the signed-in user created.", + "displayName": "Read and write user's print jobs", + "id": "b81dd597-8abb-4b3f-a07a-820b0316ed04", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read and update the metadata and document content of print jobs that you created.", + "userConsentDisplayName": "Read and update your print jobs", + "value": "PrintJob.ReadWrite" + }, + { + "description": "Allows the application to read and update the metadata and document content of print jobs on behalf of the signed-in user.\u00a0", + "displayName": "Read and write print jobs", + "id": "036b9544-e8c5-46ef-900a-0646cc42b271", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read and update the metadata and document content of print jobs on your behalf.\u00a0", + "userConsentDisplayName": "Read and update print jobs", + "value": "PrintJob.ReadWrite.All" + }, + { + "description": "Allows the application to read and update the metadata of print jobs that the signed-in user created. Does not allow access to print job document content.", + "displayName": "Read and write basic information of user's print jobs", + "id": "6f2d22f2-1cb6-412c-a17c-3336817eaa82", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read and update the metadata of print jobs that you created. Does not allow access to print job document content.", + "userConsentDisplayName": "Read and write basic information of your print jobs", + "value": "PrintJob.ReadWriteBasic" + }, + { + "description": "Allows the application to read and update the metadata of print jobs on behalf of the signed-in user.\u00a0Does not allow access to print job document content.", + "displayName": "Read and write basic information of print jobs", + "id": "3a0db2f6-0d2a-4c19-971b-49109b19ad3d", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read and update the metadata of print jobs on your behalf.\u00a0Does not allow access to print job document content.", + "userConsentDisplayName": "Read and write basic information of print jobs", + "value": "PrintJob.ReadWriteBasic.All" + }, + { + "description": "Allows the app to read and write your organization's device configuration policies on behalf of the signed-in user. For example, device registration policy can limit initial provisioning controls using quota restrictions, additional authentication and authorization checks.", + "displayName": "Read and write your organization's device configuration policies", + "id": "40b534c3-9552-4550-901b-23879c90bcf9", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write your organization's device configuration policies on your behalf. For example, device registration policy can limit initial provisioning controls using quota restrictions, additional authentication and authorization checks.", + "userConsentDisplayName": "Read and write your organization's device configuration policies", + "value": "Policy.ReadWrite.DeviceConfiguration" + }, + { + "description": "Allows the app to submit application packages to the catalog and cancel submissions that are pending review on behalf of the signed-in user.", + "displayName": "Submit application packages to the catalog and cancel pending submissions", + "id": "3db89e36-7fa6-4012-b281-85f3d9d9fd2e", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to submit application packages to the catalog and cancel submissions that are pending review on your behalf.", + "userConsentDisplayName": "Submit application packages to your organization's catalog and cancel pending submissions", + "value": "AppCatalog.Submit" + }, + { + "description": "Allows the app to read the Teams apps that are installed in chats the signed-in user can access. Does not give the ability to read application-specific settings.", + "displayName": "Read installed Teams apps in chats", + "id": "bf3fbf03-f35f-4e93-963e-47e4d874c37a", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the Teams apps that are installed in chats that you can access. Does not give the ability to read application-specific settings.", + "userConsentDisplayName": "Read installed Teams apps in chats", + "value": "TeamsAppInstallation.ReadForChat" + }, + { + "description": "Allows the app to read the Teams apps that are installed in teams the signed-in user can access. Does not give the ability to read application-specific settings.", + "displayName": "Read installed Teams apps in teams", + "id": "5248dcb1-f83b-4ec3-9f4d-a4428a961a72", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the Teams apps that are installed in teams that you can access. Does not give the ability to read application-specific settings.", + "userConsentDisplayName": "Read installed Teams apps in teams", + "value": "TeamsAppInstallation.ReadForTeam" + }, + { + "description": "Allows the app to read the Teams apps that are installed for the signed-in user. Does not give the ability to read application-specific settings.", + "displayName": "Read user's installed Teams apps", + "id": "c395395c-ff9a-4dba-bc1f-8372ba9dca84", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the Teams apps that are installed for you. Does not give the ability to read application-specific settings.", + "userConsentDisplayName": "Read your installed Teams apps", + "value": "TeamsAppInstallation.ReadForUser" + }, + { + "description": "Allows the app to read, install, upgrade, and uninstall Teams apps in teams the signed-in user can access. Does not give the ability to read application-specific settings.", + "displayName": "Manage installed Teams apps in teams", + "id": "2e25a044-2580-450d-8859-42eeb6e996c0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, install, upgrade, and uninstall Teams apps in teams you can access. Does not give the ability to read application-specific settings.", + "userConsentDisplayName": "Manage installed Teams apps in teams", + "value": "TeamsAppInstallation.ReadWriteForTeam" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall itself in chats the signed-in user can access.", + "displayName": "Allow the Teams app to manage itself in chats", + "id": "0ce33576-30e8-43b7-99e5-62f8569a4002", + "Origin": "Delegated", + "userConsentDescription": "Allows a Teams app to read, install, upgrade, and uninstall itself in chats you can access.", + "userConsentDisplayName": "Allow the Teams app to manage itself in chats", + "value": "TeamsAppInstallation.ReadWriteSelfForChat" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall itself for the signed-in user.", + "displayName": "Allow the Teams app to manage itself for a user", + "id": "207e0cb1-3ce7-4922-b991-5a760c346ebc", + "Origin": "Delegated", + "userConsentDescription": "Allows a Teams app to read, install, upgrade, and uninstall itself for you.", + "userConsentDisplayName": "Allow the Teams app to manage itself for you", + "value": "TeamsAppInstallation.ReadWriteSelfForUser" + }, + { + "description": "Allows the app to read, install, upgrade, and uninstall Teams apps installed for the signed-in user. Does not give the ability to read application-specific settings.", + "displayName": "Manage user's installed Teams apps", + "id": "093f8818-d05f-49b8-95bc-9d2a73e9a43c", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, install, upgrade, and uninstall Teams apps installed for you. Does not give the ability to read application-specific settings.", + "userConsentDisplayName": "Manage your installed Teams apps", + "value": "TeamsAppInstallation.ReadWriteForUser" + }, + { + "description": "Allows the app to create teams on behalf of the signed-in user.", + "displayName": "Create teams", + "id": "7825d5d6-6049-4ce7-bdf6-3b8d53f4bcd0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to create teams on your behalf.\u00a0", + "userConsentDisplayName": "Create teams", + "value": "Team.Create" + }, + { + "description": "Add and remove members from all teams, on behalf of the signed-in user. Does not allow adding or removing a member with the owner role. Additionally, does not allow the app to elevate an existing member to the owner role.", + "displayName": "Add and remove members with non-owner role for all teams", + "id": "2104a4db-3a2f-4ea0-9dba-143d457dc666", + "Origin": "Delegated", + "userConsentDescription": "Add and remove members from all teams, on your behalf. Does not allow adding or removing a member with the owner role. Additionally, does not allow the app to elevate an existing member to the owner role.", + "userConsentDisplayName": "Add and remove members with non-owner role for all teams", + "value": "TeamMember.ReadWriteNonOwnerRole.All" + }, + { + "description": "Allows the app to read the term store data that the signed-in user has access to. This includes all sets, groups and terms in the term store.", + "displayName": "Read term store data", + "id": "297f747b-0005-475b-8fef-c890f5152b38", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the term store data that you have access to. This includes all sets, groups and terms in the term store.", + "userConsentDisplayName": "Read term store data", + "value": "TermStore.Read.All" + }, + { + "description": "Allows the app to read or modify data that the signed-in user has access to.\u00a0This includes all sets, groups and terms in the term store.", + "displayName": "Read and write term store data", + "id": "6c37c71d-f50f-4bff-8fd3-8a41da390140", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read or modify data that you have access to. This includes all sets, groups and terms in the term store.", + "userConsentDisplayName": "Read and write term store data", + "value": "TermStore.ReadWrite.All" + }, + { + "description": "Allows the app to read your tenant's service announcement messages on behalf of the signed-in user. Messages may include information about new or changed features.", + "displayName": "Read service announcement messages", + "id": "eda39fa6-f8cf-4c3c-a909-432c683e4c9b", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your tenant's service announcement messages on your behalf. Messages may include information about new or changed features.", + "userConsentDisplayName": "Read service messages", + "value": "ServiceMessage.Read.All" + }, + { + "description": "Allows the app to read your tenant's service health information on behalf of the signed-in user. Health information may include service issues or service health overviews.", + "displayName": "Read service health", + "id": "55896846-df78-47a7-aa94-8d3d4442ca7f", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your tenant's service health information on your behalf.Health information may include service issues or service health overviews.", + "userConsentDisplayName": "Read service health", + "value": "ServiceHealth.Read.All" + }, + { + "description": "Allows the app to read all the short notes a sign-in user has access to.", + "displayName": "Read short notes of the signed-in user", + "id": "50f66e47-eb56-45b7-aaa2-75057d9afe08", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your short notes.", + "userConsentDisplayName": "Read your short notes", + "value": "ShortNotes.Read" + }, + { + "description": "Allows the app to read, create, edit, and delete short notes of a signed-in user.", + "displayName": "Read, create, edit, and delete short notes of the signed-in user", + "id": "328438b7-4c01-4c07-a840-e625a749bb89", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, create, edit, and delete your short notes.", + "userConsentDisplayName": "Read, create, edit, and delete your short notes", + "value": "ShortNotes.ReadWrite" + }, + { + "description": "Allows the app to read your organization's conditional access policies on behalf of the signed-in user.", + "displayName": "Read your organization's conditional access policies", + "id": "633e0fce-8c58-4cfb-9495-12bbd5a24f7c", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your organization's conditional access policies on your behalf.", + "userConsentDisplayName": "Read your organization's conditional access policies", + "value": "Policy.Read.ConditionalAccess" + }, + { + "description": "Allows the app to read the role-based access control (RBAC) settings for all RBAC providers, on behalf of the signed-in user. This includes reading role definitions and role assignments.", + "displayName": "Read role management data for all RBAC providers", + "id": "48fec646-b2ba-4019-8681-8eb31435aded", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the role-based access control (RBAC) settings for all RBAC providers, on your behalf. This includes reading role definitions and role assignments.", + "userConsentDisplayName": "Read role management data for all RBAC providers", + "value": "RoleManagement.Read.All" + }, + { + "description": "Allows an app to send one-to-one and group chat messages in Microsoft Teams, on behalf of the signed-in user.", + "displayName": "Send user chat messages", + "id": "116b7235-7cc6-461e-b163-8e55691d839e", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to send one-to-one and group chat messages in Microsoft Teams, on your behalf.", + "userConsentDisplayName": "Send chat messages", + "value": "ChatMessage.Send" + }, + { + "description": "Allows an app to read the members and descriptions of one-to-one and group chat threads, on behalf of the signed-in user.", + "displayName": "Read names and members of user chat threads", + "id": "9547fcb5-d03f-419d-9948-5928bbf71b0f", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read the members and descriptions of one-to-one and group chat threads, on your behalf.", + "userConsentDisplayName": "Read names and members of your chat threads", + "value": "Chat.ReadBasic" + }, + { + "description": "Allows the app to read and write the properties of Cloud PCs on behalf of the signed-in user.", + "displayName": "Read and write Cloud PCs", + "id": "9d77138f-f0e2-47ba-ab33-cd246c8b79d1", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write the properties of Cloud PCs, on your behalf.", + "userConsentDisplayName": "Read and write Cloud PCs", + "value": "CloudPC.ReadWrite.All" + }, + { + "description": "Allows the app to read the properties of Cloud PCs on behalf of the signed-in user.", + "displayName": "Read Cloud PCs", + "id": "5252ec4e-fd40-4d92-8c68-89dd1d3c6110", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the properties of Cloud PCs, on your behalf.", + "userConsentDisplayName": "Read Cloud PCs", + "value": "CloudPC.Read.All" + }, + { + "description": "Allows the app to read, install, upgrade, and uninstall Teams apps in chats the signed-in user can access. Does not give the ability to read application-specific settings.", + "displayName": "Manage installed Teams apps in chats", + "id": "aa85bf13-d771-4d5d-a9e6-bca04ce44edf", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, install, upgrade, and uninstall Teams apps in chats you can access. Does not give the ability to read application-specific settings.", + "userConsentDisplayName": "Manage installed Teams apps in chats", + "value": "TeamsAppInstallation.ReadWriteForChat" + }, + { + "description": "Allows the app to create, read, update, and delete the signed-in user's tasks and task lists, including any shared with the user.", + "displayName": "Create, read, update, and delete user\u2019s tasks and task lists", + "id": "2219042f-cab5-40cc-b0d2-16b1540b4c5f", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to create, read, update, and delete your tasks and task lists, including any shared with you.", + "userConsentDisplayName": "Create, read, update, and delete your tasks and task lists", + "value": "Tasks.ReadWrite" + }, + { + "description": "Allows the app to read the signed-in user\u2019s tasks and task lists, including any shared with the user. Doesn't include permission to create, delete, or update anything.", + "displayName": "Read user's tasks and task lists", + "id": "f45671fb-e0fe-4b4b-be20-3d3ce43f1bcb", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your tasks and task lists, including any shared with you. Doesn't include permission to create, delete, or update anything.", + "userConsentDisplayName": "Read your tasks and task lists", + "value": "Tasks.Read" + }, + { + "description": "Allows an app to read one-to-one and group chat messages, on behalf of the signed-in user.", + "displayName": "Read user chat messages", + "id": "cdcdac3a-fd45-410d-83ef-554db620e5c7", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read one-to-one or group chat messages in Microsoft Teams, on your behalf.", + "userConsentDisplayName": "Read user chat messages", + "value": "ChatMessage.Read" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall all tabs in chats the signed-in user can access.", + "displayName": "Allow the Teams app to manage all tabs in chats", + "id": "ee928332-e9c2-4747-b4a0-f8c164b68de6", + "Origin": "Delegated", + "userConsentDescription": "Allows a Teams app to read, install, upgrade, and uninstall all tabs in chats you can access.", + "userConsentDisplayName": "Allow the Teams app to manage all tabs in chats", + "value": "TeamsTab.ReadWriteForChat" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall all tabs to teams the signed-in user can access.", + "displayName": "Allow the Teams app to manage all tabs in teams", + "id": "c975dd04-a06e-4fbb-9704-62daad77bb49", + "Origin": "Delegated", + "userConsentDescription": "Allows a Teams app to read, install, upgrade, and uninstall all tabs to teams you can access.", + "userConsentDisplayName": "Allow the app to manage all tabs in teams", + "value": "TeamsTab.ReadWriteForTeam" + }, + { + "description": "Allows a Teams app to read, install, upgrade, and uninstall all tabs for the signed-in user.", + "displayName": "Allow the Teams app to manage all tabs for a user", + "id": "c37c9b61-7762-4bff-a156-afc0005847a0", + "Origin": "Delegated", + "userConsentDescription": "Allows a Teams app to read, install, upgrade, and uninstall all tabs for you.", + "userConsentDisplayName": "Allow the Teams app to manage all tabs for you", + "value": "TeamsTab.ReadWriteForUser" + }, + { + "description": "Allows the app to read the API connectors used in user authentication flows, on behalf of the signed-in user.", + "displayName": "Read API connectors for authentication flows", + "id": "1b6ff35f-31df-4332-8571-d31ea5a4893f", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the API connectors used in user authentication flows, on your behalf.", + "userConsentDisplayName": "Read API connectors for authentication flows", + "value": "APIConnectors.Read.All" + }, + { + "description": "Allows the app to read, create and manage the API connectors used in user authentication flows, on behalf of the signed-in user.", + "displayName": "Read and write API connectors for authentication flows", + "id": "c67b52c5-7c69-48b6-9d48-7b3af3ded914", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read, create and manage the API connectors used in user authentication flows, on your behalf.", + "userConsentDisplayName": "Read and write API connectors for authentication flows", + "value": "APIConnectors.ReadWrite.All" + }, + { + "description": "Read the members of chats, on behalf of the signed-in user.", + "displayName": "Read the members of chats", + "id": "c5a9e2b1-faf6-41d4-8875-d381aa549b24", + "Origin": "Delegated", + "userConsentDescription": "Read the members of chats, on your behalf.", + "userConsentDisplayName": "Read the members of chats", + "value": "ChatMember.Read" + }, + { + "description": "Add and remove members from chats, on behalf of the signed-in user.", + "displayName": "Add and remove members from chats", + "id": "dea13482-7ea6-488f-8b98-eb5bbecf033d", + "Origin": "Delegated", + "userConsentDescription": "Add and remove members from chats, on your behalf.", + "userConsentDisplayName": "Add and remove members from chats", + "value": "ChatMember.ReadWrite" + }, + { + "description": "Allows the app to create chats on behalf of the signed-in user.", + "displayName": "Create chats", + "id": "38826093-1258-4dea-98f0-00003be2b8d0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to create chats on your behalf.\u00a0", + "userConsentDisplayName": "Create chats", + "value": "Chat.Create" + }, + { + "description": "Allows the application to read and write tenant-wide print settings on behalf of the signed-in user.", + "displayName": "Read and write tenant-wide print settings", + "id": "9ccc526a-c51c-4e5c-a1fd-74726ef50b8f", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read and write tenant-wide print settings on your behalf.", + "userConsentDisplayName": "Read and write tenant-wide print settings", + "value": "PrintSettings.ReadWrite.All" + }, + { + "description": "Allows the application to read tenant-wide print settings on behalf of the signed-in user.", + "displayName": "Read tenant-wide print settings", + "id": "490f32fd-d90f-4dd7-a601-ff6cdc1a3f6c", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read tenant-wide print settings on your behalf.", + "userConsentDisplayName": "Read tenant-wide print settings", + "value": "PrintSettings.Read.All" + }, + { + "description": "Allows the application to read and write print connectors on behalf of the signed-in user. ", + "displayName": "Read and write print connectors", + "id": "79ef9967-7d59-4213-9c64-4b10687637d8", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read and write print connectors on your behalf.", + "userConsentDisplayName": "Read and write print connectors", + "value": "PrintConnector.ReadWrite.All" + }, + { + "description": "Allows the application to read print connectors on behalf of the signed-in user.", + "displayName": "Read print connectors", + "id": "d69c2d6d-4f72-4f99-a6b9-663e32f8cf68", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read print connectors on your behalf.", + "userConsentDisplayName": "Read print connectors", + "value": "PrintConnector.Read.All" + }, + { + "description": "Allows the application to read basic information about printer shares on behalf of the signed-in user. Does not allow reading access control information.", + "displayName": "Read basic information about printer shares", + "id": "5fa075e9-b951-4165-947b-c63396ff0a37", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read basic information about printer shares on your behalf.", + "userConsentDisplayName": "Read basic information about printer shares", + "value": "PrinterShare.ReadBasic.All" + }, + { + "description": "Allows the application to create print jobs on behalf of the signed-in user and upload document content to print jobs that the signed-in user created.", + "displayName": "Create print jobs", + "id": "21f0d9c0-9f13-48b3-94e0-b6b231c7d320", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to create print jobs on your behalf and upload document content to print jobs that you created.", + "userConsentDisplayName": "Create your print jobs", + "value": "PrintJob.Create" + }, + { + "description": "Allows the app to read Azure AD recommendations, on behalf of the signed-in user.", + "displayName": "Read Azure AD recommendations", + "id": "34d3bd24-f6a6-468c-b67c-0c365c1d6410", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read Azure AD recommendations, on your behalf.", + "userConsentDisplayName": "Read Azure AD recommendations", + "value": "DirectoryRecommendations.Read.All" + }, + { + "description": "Allows the application to list and query user profile information associated with the current tenant on behalf of the signed-in user.\u00a0 It also permits the application to export and remove external user data (e.g. customer content or system-generated logs), associated with the current tenant on behalf of the signed-in user.", + "displayName": "Read shared cross-tenant user profile and export or delete data", + "id": "eed0129d-dc60-4f30-8641-daf337a39ffd", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to list and query shared user profile information associated with the current tenant on your behalf.\u00a0 It also permits the application to export and remove your external user data (e.g. customer content or system-generated logs), associated with the current tenant on your behalf.", + "userConsentDisplayName": "Read shared cross-tenant user profile and export or delete data", + "value": "CrossTenantUserProfileSharing.ReadWrite" + }, + { + "description": "Allows the app to manage restricted resources based on the other permissions granted to the app, on behalf of the signed-in user.", + "displayName": "Manage restricted resources in the directory", + "id": "cba5390f-ed6a-4b7f-b657-0efc2210ed20", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to manage restricted resources based on the other permissions granted to the app, on your behalf.", + "userConsentDisplayName": "Manage restricted resources in the directory", + "value": "Directory.Write.Restricted" + }, + { + "description": "Allows the app to read your organization's threat submission policies on behalf of the signed-in user. Also allows the app to create new threat submission policies on behalf of the signed-in user.", + "displayName": "Read and write all threat submission policies", + "id": "059e5840-5353-4c68-b1da-666a033fc5e8", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your organization's threat submission policies on your behalf. Also allows the app to create new threat submission policies on your behalf.", + "userConsentDisplayName": "Read and write all threat submission policies", + "value": "ThreatSubmissionPolicy.ReadWrite.All" + }, + { + "description": "Allows an app to read the browser site lists configured for your organization, on behalf of the signed-in user.", + "displayName": "Read browser site lists for your organization", + "id": "fb9be2b7-a7fc-4182-aec1-eda4597c43d5", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read the browser site lists configured for your organization, on your behalf.", + "userConsentDisplayName": "Read browser site lists for your organization", + "value": "BrowserSiteLists.Read.All" + }, + { + "description": "Allows the application to list and query any shared user profile information associated with the current tenant on behalf of the signed-in user.\u00a0 It also permits the application to export and remove external user data (e.g. customer content or system-generated logs), for any user associated with the current tenant on behalf of the signed-in user.", + "displayName": "Read all shared cross-tenant user profiles and export or delete their data", + "id": "64dfa325-cbf8-48e3-938d-51224a0cac01", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to list and query any shared user profile information associated with the current tenant on your behalf.\u00a0 It also permits the application to export and remove external user data (e.g. customer content or system-generated logs), for any user associated with the current tenant on your behalf.", + "userConsentDisplayName": "Read any shared cross-tenant user profiles and export or delete data", + "value": "CrossTenantUserProfileSharing.ReadWrite.All" + }, + { + "description": "Allows the app to read the threat submissions and threat submission policies owned by the signed-in user.", + "displayName": "Read threat submissions", + "id": "fd5353c6-26dd-449f-a565-c4e16b9fce78", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the threat submissions and threat submission policies that you own on your behalf.", + "userConsentDisplayName": "Read threat submissions", + "value": "ThreatSubmission.Read" + }, + { + "description": "Allows the app to read the threat submissions and threat submission policies owned by the signed-in user. Also allows the app to create new threat submissions on behalf of the signed-in user.", + "displayName": "Read and write threat submissions", + "id": "68a3156e-46c9-443c-b85c-921397f082b5", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the threat submissions and threat submission policies that you own. Also allows the app to create new threat submissions on your behalf.", + "userConsentDisplayName": "Read and write threat submissions", + "value": "ThreatSubmission.ReadWrite" + }, + { + "description": "Allows the app to read all recordings of online meetings, on behalf of the signed-in user.", + "displayName": "Read all recordings of online meetings.", + "id": "190c2bb6-1fdd-4fec-9aa2-7d571b5e1fe3", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all recordings of online meetings, on your behalf.\u00a0", + "userConsentDisplayName": "Read all recordings of online meetings.\u00a0", + "value": "OnlineMeetingRecording.Read.All" + }, + { + "description": "Allows the application to obtain basic tenant information about another target tenant within the Azure AD ecosystem on behalf of the signed-in user.", + "displayName": "Read cross-tenant basic information", + "id": "81594d25-e88e-49cf-ac8c-fecbff49f994", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to obtain basic tenant information about another target tenant within the Azure AD ecosystem on your behalf.", + "userConsentDisplayName": "Read cross-tenant basic information", + "value": "CrossTenantInformation.ReadBasic.All" + }, + { + "description": "Allows the app to read your organization's authentication event listeners on behalf of the signed-in user.", + "displayName": "Read your organization's authentication event listeners", + "id": "f7dd3bed-5eec-48da-bc73-1c0ef50bc9a1", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your organization's authentication event listeners on your behalf.", + "userConsentDisplayName": "Read your organization's authentication event listeners", + "value": "EventListener.Read.All" + }, + { + "description": "Allows the app to read the Teams app settings on behalf of the signed-in user.", + "displayName": "Read Teams app settings", + "id": "44e060c4-bbdc-4256-a0b9-dcc0396db368", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the Teams app settings on your behalf.", + "userConsentDisplayName": "Read Teams app settings", + "value": "TeamworkAppSettings.Read.All" + }, + { + "description": "Allows\u00a0the\u00a0app\u00a0to\u00a0manage learning\u00a0content\u00a0in\u00a0the\u00a0organization's\u00a0directory, on behalf of the signed-in user.", + "displayName": "Manage\u00a0learning\u00a0content", + "id": "53cec1c4-a65f-4981-9dc1-ad75dbf1c077", + "Origin": "Delegated", + "userConsentDescription": "Allows\u00a0the\u00a0app\u00a0to\u00a0manage learning\u00a0content\u00a0in\u00a0the\u00a0organization's\u00a0directory, on your behalf.", + "userConsentDisplayName": "Manage learning content", + "value": "LearningContent.ReadWrite.All" + }, + { + "description": "Allows the app to create, update, read, and delete data for the learning provider in the organization's directory, on behalf of the signed-in user.", + "displayName": "Manage\u00a0learning\u00a0provider", + "id": "40c2eb57-abaf-49f5-9331-e90fd01f7130", + "Origin": "Delegated", + "userConsentDescription": "Allows\u00a0the\u00a0app\u00a0to\u00a0create, update, read, and delete\u00a0data\u00a0for\u00a0the learning\u00a0provider\u00a0in\u00a0the organization's\u00a0directory, on your behalf.", + "userConsentDisplayName": "Manage learning provider", + "value": "LearningProvider.ReadWrite" + }, + { + "description": "Allows the app to read the lifecycle information like employeeLeaveDateTime of users in your organization, on behalf of the signed-in user.", + "displayName": "Read all users' lifecycle information", + "id": "ed8d2a04-0374-41f1-aefe-da8ac87ccc87", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read the lifecycle information like employeeLeaveDateTime of users in your organization, on behalf of the signed-in user.", + "userConsentDisplayName": "Read all users' lifecycle information", + "value": "User-LifeCycleInfo.Read.All" + }, + { + "description": "Allows an app to read and write the browser site lists configured for your organization, on behalf of the signed-in user.", + "displayName": "Read and write browser site lists for your organization", + "id": "83b34c85-95bf-497b-a04e-b58eca9d49d0", + "Origin": "Delegated", + "userConsentDescription": "Allows an app to read and write the browser site lists configured for your organization, on your behalf.", + "userConsentDisplayName": "Read and write browser site lists for your organization", + "value": "BrowserSiteLists.ReadWrite.All" + }, + { + "description": "Allows the application to list and query user profile information associated with the current tenant on behalf of the signed-in user.\u00a0 It also permits the application to export external user data (e.g. customer content or system-generated logs), associated with the current tenant on behalf of the signed-in user.", + "displayName": "Read shared cross-tenant user profile and export data", + "id": "cb1ba48f-d22b-4325-a07f-74135a62ee41", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to list and query shared user profile information associated with the current tenant on your behalf.\u00a0 It also permits the application to export your external user data (e.g. customer content or system-generated logs), associated with the current tenant on your behalf.", + "userConsentDisplayName": "Read shared cross-tenant user profile and export data", + "value": "CrossTenantUserProfileSharing.Read" + }, + { + "description": "Allows the app to read admin report settings, such as whether to display concealed information in reports, on behalf of the signed-in user", + "displayName": "Read admin report settings", + "id": "84fac5f4-33a9-4100-aa38-a20c6d29e5e7", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read admin report settings, such as whether to display concealed information in reports, on your behalf.", + "userConsentDisplayName": "Read admin report settings", + "value": "ReportSettings.Read.All" + }, + { + "description": "Allows the app to read and write the lifecycle information like employeeLeaveDateTime of users in your organization, on behalf of the signed-in user.", + "displayName": "Read and write all users' lifecycle information", + "id": "7ee7473e-bd4b-4c9f-987c-bd58481f5fa2", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write the lifecycle information like employeeLeaveDateTime of users in your organization, on behalf of the signed-in user.", + "userConsentDisplayName": "Read and write all users' lifecycle information", + "value": "User-LifeCycleInfo.ReadWrite.All" + }, + { + "description": "Allows the app to read and update Azure AD recommendations, on behalf of the signed-in user. ", + "displayName": "Read and update Azure AD recommendations", + "id": "f37235e8-90a0-4189-93e2-e55b53867ccd", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and update Azure AD recommendations, on your behalf.", + "userConsentDisplayName": "Read and update Azure AD recommendations", + "value": "DirectoryRecommendations.ReadWrite.All" + }, + { + "description": "Allows the app to read your organization's threat submissions and threat submission policies on behalf of the signed-in user.", + "displayName": "Read all threat submissions", + "id": "7083913a-4966-44b6-9886-c5822a5fd910", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your organization's threat submissions and threat submission policies on your behalf.", + "userConsentDisplayName": "Read all threat submissions", + "value": "ThreatSubmission.Read.All" + }, + { + "description": "Allows the app to read learning content in the organization's directory, on behalf of the signed-in user.", + "displayName": "Read learning content", + "id": "ea4c1fd9-6a9f-4432-8e5d-86e06cc0da77", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read learning content in the organization's directory, on your behalf.", + "userConsentDisplayName": "Read learning content", + "value": "LearningContent.Read.All" + }, + { + "description": "Allows the app to read data for the learning provider in the organization's directory, on behalf of the signed-in user.", + "displayName": "Read learning provider", + "id": "dd8ce36f-9245-45ea-a99e-8ac398c22861", + "Origin": "Delegated", + "userConsentDescription": "Allows\u00a0the\u00a0app\u00a0to\u00a0read\u00a0data\u00a0for\u00a0the learning\u00a0provider\u00a0in\u00a0the organization's\u00a0directory, on your behalf.", + "userConsentDisplayName": "Read learning provider", + "value": "LearningProvider.Read" + }, + { + "description": "Allows the app to create, update, list, read and delete all workflows, tasks and related lifecycle workflows resources on behalf of the signed-in user.", + "displayName": "Read and write all lifecycle workflows resources", + "id": "84b9d731-7db8-4454-8c90-fd9e95350179", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to create, update, list, read and delete all workflows, tasks and related lifecycle workflows resources on your behalf.", + "userConsentDisplayName": "Read and write all lifecycle workflows resources", + "value": "LifecycleWorkflows.ReadWrite.All" + }, + { + "description": "Allows an app to read all bookmarks that the signed-in user can access.", + "displayName": "Read all bookmarks that the user can access", + "id": "98b17b35-f3b1-4849-a85f-9f13733002f0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all bookmarks you can access.", + "userConsentDisplayName": "Read all bookmarks that you have access to", + "value": "Bookmark.Read.All" + }, + { + "description": "Allows the application to read and change the tenant-level settings of SharePoint and OneDrive on behalf of the signed-in user.", + "displayName": "Read and change SharePoint and OneDrive tenant settings", + "id": "aa07f155-3612-49b8-a147-6c590df35536", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read and change the tenant-level settings of SharePoint and OneDrive on your behalf.", + "userConsentDisplayName": "Read and change SharePoint and OneDrive tenant settings", + "value": "SharePointTenantSettings.ReadWrite.All" + }, + { + "description": "Allows the app to read or write your organization's authentication event listeners on behalf of the signed-in user.", + "displayName": "Read and write your organization's authentication event listeners", + "id": "d11625a6-fe21-4fc6-8d3d-063eba5525ad", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read or write your organization's authentication event listeners on your behalf.", + "userConsentDisplayName": "Read and write your organization's authentication event listeners", + "value": "EventListener.ReadWrite.All" + }, + { + "description": "Allows the app to read and write the Teams app settings on behalf of the signed-in user.", + "displayName": "Read and write Teams app settings", + "id": "87c556f0-2bd9-4eed-bd74-5dd8af6eaf7e", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write the Teams app settings on your behalf.", + "userConsentDisplayName": "Read and write Teams app settings", + "value": "TeamworkAppSettings.ReadWrite.All" + }, + { + "description": "Allows the app to read all authentication context information in your organization on behalf of the signed-in user.", + "displayName": "Read all authentication context information", + "id": "57b030f1-8c35-469c-b0d9-e4a077debe70", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all authentication context information in your organization on your behalf.", + "userConsentDisplayName": "Read all authentication context information", + "value": "AuthenticationContext.Read.All" + }, + { + "description": "Allows the app to read and update all authentication context information in your organization on behalf of the signed-in user.", + "displayName": "Read and write all authentication context information", + "id": "ba6d575a-1344-4516-b777-1404f5593057", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and update all authentication context information in your organization on your behalf.", + "userConsentDisplayName": "Read and write all authentication context information", + "value": "AuthenticationContext.ReadWrite.All" + }, + { + "description": "Allows the app to read and update admin report settings, such as whether to display concealed information in reports, on behalf of the signed-in user.", + "displayName": "Read and write admin report settings", + "id": "b955410e-7715-4a88-a940-dfd551018df3", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and update admin report settings, such as whether to display concealed information in reports, on your behalf.", + "userConsentDisplayName": "Read and write admin report settings", + "value": "ReportSettings.ReadWrite.All" + }, + { + "description": "Allows the app to list and read all workflows, tasks and related lifecycle workflows resources on behalf of the signed-in user.", + "displayName": "Read all lifecycle workflows resources", + "id": "9bcb9916-765a-42af-bf77-02282e26b01a", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to list and read all workflows, tasks and related lifecycle workflows resources on your behalf.", + "userConsentDisplayName": "Read all lifecycle workflows resources", + "value": "LifecycleWorkflows.Read.All" + }, + { + "description": "Allows the application to list and query any shared user profile information associated with the current tenant on behalf of the signed-in user.\u00a0 It also permits the application to export external user data (e.g. customer content or system-generated logs), for any user associated with the current tenant on behalf of the signed-in user.", + "displayName": "Read all shared cross-tenant user profiles and export their data", + "id": "759dcd16-3c90-463c-937e-abf89f991c18", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to list and query any shared user profile information associated with the current tenant on your behalf.\u00a0 It also permits the application to export external user data (e.g. customer content or system-generated logs), for any user associated with the current tenant on your behalf.", + "userConsentDisplayName": "Read any shared cross-tenant user profiles and export data", + "value": "CrossTenantUserProfileSharing.Read.All" + }, + { + "description": "Allows the application to read the tenant-level settings in SharePoint and OneDrive on behalf of the signed-in user.", + "displayName": "Read SharePoint and OneDrive tenant settings", + "id": "2ef70e10-5bfd-4ede-a5f6-67720500b258", + "Origin": "Delegated", + "userConsentDescription": "Allows the application to read the tenant-level settings in SharePoint and OneDrive on your behalf.", + "userConsentDisplayName": "Read SharePoint and OneDrive tenant settings", + "value": "SharePointTenantSettings.Read.All" + }, + { + "description": "Allows the app to read or write your organization's custom authentication extensions on behalf of the signed-in user.", + "displayName": "Read and write your organization's custom authentication extensions", + "id": "8dfcf82f-15d0-43b3-bc78-a958a13a5792", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read or write your organization's custom authentication extensions on your behalf.", + "userConsentDisplayName": "Read and write your organization's custom authentication extensions", + "value": "CustomAuthenticationExtension.ReadWrite.All" + }, + { + "description": "Allows an app to manage license assignments for users and groups, on behalf of the signed-in user.", + "displayName": "Manage all license assignments", + "id": "f55016cc-149c-447e-8f21-7cf3ec1d6350", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to manage all license assignments, on your behalf.", + "userConsentDisplayName": "Manage all license assignments", + "value": "LicenseAssignment.ReadWrite.All" + }, + { + "description": "Allows an app to read all acronyms that the signed-in user can access.", + "displayName": "Read all acronyms that the user can access", + "id": "9084c10f-a2d6-4713-8732-348def50fe02", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all acronyms you can access.", + "userConsentDisplayName": "Read all acronyms that you have access to", + "value": "Acronym.Read.All" + }, + { + "description": "Allows the app to read your organization's custom authentication extensions on behalf of the signed-in user.", + "displayName": "Read your oganization's custom authentication extensions", + "id": "b2052569-c98c-4f36-a5fb-43e5c111e6d0", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read your organization's custom authentication extensions on your behalf.", + "userConsentDisplayName": "Read your organization's custom authentication extensions", + "value": "CustomAuthenticationExtension.Read.All" + }, + { + "description": "Allows the app to read all transcripts of online meetings, on behalf of the signed-in user.", + "displayName": "Read all transcripts of online meetings. ", + "id": "30b87d18-ebb1-45db-97f8-82ccb1f0190c", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read all transcripts of online meetings, on your behalf.", + "userConsentDisplayName": "Read all transcripts of online meetings.", + "value": "OnlineMeetingTranscript.Read.All" + }, + { + "description": "Allows the app to read and write channel messages, on behalf of the signed-in user. This doesn't allow the app to edit the policyViolation of a channel message.", + "displayName": "Read and write user channel messages", + "id": "5922d31f-46c8-4404-9eaf-2117e390a8a4", + "Origin": "Delegated", + "userConsentDescription": "Allows the app to read and write channel messages, on your behalf. This doesn't allow the app to edit the policyViolation of a channel message.", + "userConsentDisplayName": "Read and write user channel messages", + "value": "ChannelMessage.ReadWrite" + }, + { + "description": "Read Threat and Vulnerability Management vulnerability information", + "displayName": "Allows the app to read any Threat and Vulnerability Management vulnerability information", + "id": "63a677ce-818c-4409-9d12-5c6d2e2a6bfe", + "Origin": "Application (WindowsDefenderATP)", + "userConsentDescription": "Allows the app to read any Threat and Vulnerability Management vulnerability information", + "userConsentDisplayName": "Allows the app to read any Threat and Vulnerability Management vulnerability information", + "value": "Vulnerability.Read.All" + }, + { + "description": "Allows the app to read Threat and Vulnerability Management vulnerability information on behalf of the signed-in user", + "displayName": "Read Threat and Vulnerability Management vulnerability information", + "id": "41269fc5-d04d-4bfd-bce7-43a51cea049a", + "Origin": "Delegated (WindowsDefenderATP)", + "userConsentDescription": "Allows the app to read Threat and Vulnerability Management vulnerability information on behalf of the signed-in user", + "userConsentDisplayName": "Read Threat and Vulnerability Management vulnerability information", + "value": "Vulnerability.Read" + }, + { + "description": "Allows the app to manage Exchange Online", + "displayName": "Manage Exchange online", + "id": "ab4f2b77-0b06-4fc1-a9de-02113fc2ab7c", + "Origin": "Delegated (Office 365 Exchange Online)", + "userConsentDescription": "Allows the app to read Threat and Vulnerability Management vulnerability information on behalf of the signed-in user", + "userConsentDisplayName": "Read Threat and Vulnerability Management vulnerability information", + "value": "Exchange.Manage" + }, + { + "description": "Allows the app to have full control of all site collections on behalf of the signed-in user.", + "displayName": "Manage Sharepoint Online", + "id": "56680e0d-d2a3-4ae1-80d8-3c4f2100e3d0", + "Origin": "Delegated (Office 365 SharePoint Online)", + "userConsentDescription": "Have full control of all site collections", + "userConsentDisplayName": "Allows the app to have full control of all site collections on your behalf.", + "value": "AllSites.FullControl" + }, + { + "description": "Allows to read the LAPs passwords.", + "displayName": "Manage LAPs passwords", + "id": "280b3b69-0437-44b1-bc20-3b2fca1ee3e9", + "Origin": "Delegated", + "userConsentDescription": "Allows to read the LAPs passwords.", + "userConsentDisplayName": "Manage LAPs passwords", + "value": "DeviceLocalCredential.Read.All" + }, + { + "description": "Access Microsoft Teams and Skype for Business data as the signed in user", + "displayName": "Access Microsoft Teams and Skype for Business data based on the user's role membership", + "id": "e60370c1-e451-437e-aa6e-d76df38e5f15", + "Origin": "Delegated (Skype and Teams Tenant Admin API)", + "userConsentDescription": "Access Microsoft Teams and Skype for Business data as the signed in user", + "userConsentDisplayName": "Access Microsoft Teams and Skype for Business data based on the user's role membership", + "value": "user_impersonation" + } +] diff --git a/Modules/CIPPCore/Public/Remove-CIPPGraphSubscription.ps1 b/Modules/CIPPCore/Public/Remove-CIPPGraphSubscription.ps1 index 31a877b092bc..9bd4e8df50f9 100644 --- a/Modules/CIPPCore/Public/Remove-CIPPGraphSubscription.ps1 +++ b/Modules/CIPPCore/Public/Remove-CIPPGraphSubscription.ps1 @@ -8,7 +8,7 @@ function Remove-CIPPGraphSubscription { ) try { $WebhookTable = Get-CIPPTable -TableName webhookTable - $WebhookRow = Get-AzDataTableEntity @WebhookTable | Where-Object { $_.RowKey -eq $CIPPID } + $WebhookRow = Get-CIPPAzDataTableEntity @WebhookTable | Where-Object { $_.RowKey -eq $CIPPID } if ($WebhookRow.Resource -eq "M365AuditLogs") { try { $AuditLog = New-GraphPOSTRequest -uri "https://manage.office.com/api/v1.0/$($TenantFilter)/activity/feed/subscriptions/stop?contentType=$($WebhookRow.EventType)" -scope "https://manage.office.com/.default" -tenantid $TenantFilter -type POST -body "{}" -verbose diff --git a/Modules/CIPPCore/Public/Remove-CIPPMailboxPermissions.ps1 b/Modules/CIPPCore/Public/Remove-CIPPMailboxPermissions.ps1 new file mode 100644 index 000000000000..1602e9861665 --- /dev/null +++ b/Modules/CIPPCore/Public/Remove-CIPPMailboxPermissions.ps1 @@ -0,0 +1,38 @@ +function Remove-CIPPMailboxPermissions { + [CmdletBinding()] + param ( + $userid, + $AccessUser, + $TenantFilter, + $PermissionsLevel, + $APIName = "Manage Shared Mailbox Access", + $ExecutingUser + ) + + try { + $Results = $PermissionsLevel | ForEach-Object { + switch ($_) { + "SendOnBehalf" { + $MailboxPerms = New-ExoRequest -Anchor $username -tenantid $Tenantfilter -cmdlet "Set-Mailbox" -cmdParams @{Identity = $userid; GrantSendonBehalfTo = @{'@odata.type' = '#Exchange.GenericHashTable'; remove = $AccessUser }; } + Write-LogMessage -user $ExecutingUser -API $APIName -message "Removed SendOnBehalf permissions for $($AccessUser) from $($userid)'s mailbox." -Sev "Info" -tenant $TenantFilter + "Removed SendOnBehalf permissions for $($AccessUser) from $($userid)'s mailbox." + } + "SendAS" { + $MailboxPerms = New-ExoRequest -Anchor $username -tenantid $Tenantfilter -cmdlet "Remove-RecipientPermission" -cmdParams @{Identity = $userid; Trustee = $AccessUser; accessRights = @("SendAs") } + Write-LogMessage -user $ExecutingUser -API $APIName -message "Removed SendAs permissions for $($AccessUser) from $($userid)'s mailbox." -Sev "Info" -tenant $TenantFilter + "Removed SendAs permissions for $($AccessUser) from $($userid)'s mailbox." + } + "FullAccess" { + $permissions = New-ExoRequest -tenantid $TenantFilter -cmdlet "Remove-MailboxPermission" -cmdParams @{Identity = $userid; user = $AccessUser; accessRights = @("FullAccess") } -Anchor $userid + Write-LogMessage -user $ExecutingUser -API $APIName -message "Removed FullAccess permissions for $($AccessUser) from $($userid)'s mailbox." -Sev "Info" -tenant $TenantFilter + "Removed FullAccess permissions for $($AccessUser) from $($userid)'s mailbox." + } + } + } + return $Results + } + catch { + Write-LogMessage -user $ExecutingUser -API $APIName -message "Could not remove mailbox permissions for $($userid). Error: $($_.Exception.Message)" -Sev "Error" -tenant $TenantFilter + return "Could not remove mailbox permissions for $($userid). Error: $($_.Exception.Message)" + } +} diff --git a/Modules/CIPPCore/Public/SAMManifest.json b/Modules/CIPPCore/Public/SAMManifest.json new file mode 100644 index 000000000000..fc887aed506b --- /dev/null +++ b/Modules/CIPPCore/Public/SAMManifest.json @@ -0,0 +1,208 @@ +{ + "isFallbackPublicClient": true, + "signInAudience": "AzureADMultipleOrgs", + "displayName": "CIPP-SAM", + "web": { + "redirectUris": [ + "https://login.microsoftonline.com/common/oauth2/nativeclient", + "https://localhost", + "http://localhost", + "http://localhost:8400" + ] + }, + "requiredResourceAccess": [ + { + "resourceAppId": "fa3d9a0c-3fb0-42cc-9193-47c7ecd2edbd", + "resourceAccess": [ + { "id": "1cebfa2a-fb4d-419e-b5f9-839b4383e05a", "type": "Scope" } + ] + }, + { + "resourceAppId": "00000003-0000-0000-c000-000000000000", + "resourceAccess": [ + { "id": "aa07f155-3612-49b8-a147-6c590df35536", "type": "Scope" }, + { "id": "0f4595f7-64b1-4e13-81bc-11a249df07a9", "type": "Scope" }, + { "id": "73e75199-7c3e-41bb-9357-167164dbb415", "type": "Scope" }, + { "id": "7ab1d787-bae7-4d5d-8db6-37ea32df9186", "type": "Scope" }, + { "id": "d01b97e9-cbc0-49fe-810a-750afd5527a3", "type": "Scope" }, + { "id": "46ca0847-7e6b-426e-9775-ea810a948356", "type": "Scope" }, + { "id": "dc38509c-b87d-4da0-bd92-6bec988bac4a", "type": "Scope" }, + { "id": "7427e0e9-2fba-42fe-b0c0-848c9e6a8182", "type": "Scope" }, + { "id": "ad902697-1014-4ef5-81ef-2b4301988e8c", "type": "Scope" }, + { "id": "572fea84-0151-49b2-9301-11cb16974376", "type": "Scope" }, + { "id": "e4c9e354-4dc5-45b8-9e7c-e1393b0b1a20", "type": "Scope" }, + { "id": "0883f392-0a7a-443d-8c76-16a6d39c7b63", "type": "Scope" }, + { "id": "7b3f05d5-f68c-4b8d-8c59-a2ecd12f24af", "type": "Scope" }, + { "id": "0c5e8a55-87a6-4556-93ab-adc52c4d862d", "type": "Scope" }, + { "id": "44642bfe-8385-4adc-8fc6-fe3cb2c375c3", "type": "Scope" }, + { "id": "662ed50a-ac44-4eef-ad86-62eed9be2a29", "type": "Scope" }, + { "id": "8696daa5-bce5-4b2e-83f9-51b6defc4e1e", "type": "Scope" }, + { "id": "6aedf524-7e1c-45a7-bd76-ded8cab8d0fc", "type": "Scope" }, + { "id": "bac3b9c2-b516-4ef4-bd3b-c2ef73d8d804", "type": "Scope" }, + { "id": "11d4cd79-5ba5-460f-803f-e22c8ab85ccd", "type": "Scope" }, + { "id": "02e97553-ed7b-43d0-ab3c-f8bace0d040c", "type": "Scope" }, + { "id": "89fe6a52-be36-487e-b7d8-d061c450a026", "type": "Scope" }, + { "id": "a367ab51-6b49-43bf-a716-a1fb06d2a174", "type": "Scope" }, + { "id": "204e0828-b5ca-4ad8-b9f3-f32a958e7cc4", "type": "Scope" }, + { "id": "4e46008b-f24c-477d-8fff-7bb4ec7aafe0", "type": "Scope" }, + { "id": "0e263e50-5827-48a4-b97c-d940288653c7", "type": "Scope" }, + { "id": "e383f46e-2787-4529-855e-0e479a3ffac0", "type": "Scope" }, + { "id": "37f7f235-527c-4136-accd-4a02d197296e", "type": "Scope" }, + { "id": "14dad69e-099b-42c9-810b-d002981feec1", "type": "Scope" }, + { "id": "f6a3db3e-f7e8-4ed2-a414-557c8c9830be", "type": "Scope" }, + { "id": "0e755559-83fb-4b44-91d0-4cc721b9323e", "type": "Scope" }, + { "id": "a84a9652-ffd3-496e-a991-22ba5529156a", "type": "Scope" }, + { "id": "1d89d70c-dcac-4248-b214-903c457af83a", "type": "Scope" }, + { "id": "2b61aa8a-6d36-4b2f-ac7b-f29867937c53", "type": "Scope" }, + { "id": "ebf0f66e-9fb1-49e4-a278-222f76911cf4", "type": "Scope" }, + { "id": "c79f8feb-a9db-4090-85f9-90d820caa0eb", "type": "Scope" }, + { "id": "bdfbf15f-ee85-4955-8675-146e8e5296b5", "type": "Scope" }, + { "id": "f81125ac-d3b7-4573-a3b2-7099cc39df9e", "type": "Scope" }, + { "id": "cac97e40-6730-457d-ad8d-4852fddab7ad", "type": "Scope" }, + { "id": "b7887744-6746-4312-813d-72daeaee7e2d", "type": "Scope" }, + { "id": "48971fc1-70d7-4245-af77-0beb29b53ee2", "type": "Scope" }, + { "id": "aec28ec7-4d02-4e8c-b864-50163aea77eb", "type": "Scope" }, + { "id": "a9ff19c2-f369-4a95-9a25-ba9d460efc8e", "type": "Scope" }, + { "id": "59dacb05-e88d-4c13-a684-59f1afc8cc98", "type": "Scope" }, + { "id": "b98bfd41-87c6-45cc-b104-e2de4f0dafb9", "type": "Scope" }, + { "id": "2f9ee017-59c1-4f1d-9472-bd5529a7b311", "type": "Scope" }, + { "id": "951183d1-1a61-466f-a6d1-1fde911bfd95", "type": "Scope" }, + { "id": "637d7bec-b31e-4deb-acc9-24275642a2c9", "type": "Scope" }, + { "id": "101147cf-4178-4455-9d58-02b5c164e759", "type": "Scope" }, + { "id": "cc83893a-e232-4723-b5af-bd0b01bcfe65", "type": "Scope" }, + { "id": "233e0cf1-dd62-48bc-b65b-b38fe87fcf8e", "type": "Scope" }, + { "id": "d649fb7c-72b4-4eec-b2b4-b15acf79e378", "type": "Scope" }, + { "id": "485be79e-c497-4b35-9400-0e3fa7f2a5d4", "type": "Scope" }, + { "id": "9d8982ae-4365-4f57-95e9-d6032a4c0b87", "type": "Scope" }, + { "id": "48638b3c-ad68-4383-8ac4-e6880ee6ca57", "type": "Scope" }, + { "id": "39d65650-9d3e-4223-80db-a335590d027e", "type": "Scope" }, + { "id": "4a06efd2-f825-4e34-813e-82a57b03d1ee", "type": "Scope" }, + { "id": "f3bfad56-966e-4590-a536-82ecf548ac1e", "type": "Scope" }, + { "id": "4d135e65-66b8-41a8-9f8b-081452c91774", "type": "Scope" }, + { "id": "2eadaff8-0bce-4198-a6b9-2cfc35a30075", "type": "Scope" }, + { "id": "0c3e411a-ce45-4cd1-8f30-f99a3efa7b11", "type": "Scope" }, + { "id": "edb72de9-4252-4d03-a925-451deef99db7", "type": "Scope" }, + { "id": "767156cb-16ae-4d10-8f8b-41b657c8c8c8", "type": "Scope" }, + { "id": "7e823077-d88e-468f-a337-e18f1f0e6c7c", "type": "Scope" }, + { "id": "edd3c878-b384-41fd-95ad-e7407dd775be", "type": "Scope" }, + { "id": "40b534c3-9552-4550-901b-23879c90bcf9", "type": "Scope" }, + { "id": "bf3fbf03-f35f-4e93-963e-47e4d874c37a", "type": "Scope" }, + { "id": "5248dcb1-f83b-4ec3-9f4d-a4428a961a72", "type": "Scope" }, + { "id": "c395395c-ff9a-4dba-bc1f-8372ba9dca84", "type": "Scope" }, + { "id": "2e25a044-2580-450d-8859-42eeb6e996c0", "type": "Scope" }, + { "id": "0ce33576-30e8-43b7-99e5-62f8569a4002", "type": "Scope" }, + { "id": "207e0cb1-3ce7-4922-b991-5a760c346ebc", "type": "Scope" }, + { "id": "093f8818-d05f-49b8-95bc-9d2a73e9a43c", "type": "Scope" }, + { "id": "7825d5d6-6049-4ce7-bdf6-3b8d53f4bcd0", "type": "Scope" }, + { "id": "2104a4db-3a2f-4ea0-9dba-143d457dc666", "type": "Scope" }, + { "id": "eda39fa6-f8cf-4c3c-a909-432c683e4c9b", "type": "Scope" }, + { "id": "55896846-df78-47a7-aa94-8d3d4442ca7f", "type": "Scope" }, + { "id": "aa85bf13-d771-4d5d-a9e6-bca04ce44edf", "type": "Scope" }, + { "id": "ee928332-e9c2-4747-b4a0-f8c164b68de6", "type": "Scope" }, + { "id": "c975dd04-a06e-4fbb-9704-62daad77bb49", "type": "Scope" }, + { "id": "c37c9b61-7762-4bff-a156-afc0005847a0", "type": "Scope" }, + { "id": "b9abcc4f-94fc-4457-9141-d20ce80ec952", "type": "Scope" }, + { "id": "128ca929-1a19-45e6-a3b8-435ec44a36ba", "type": "Scope" }, + { "id": "b27add92-efb2-4f16-84f5-8108ba77985c", "type": "Scope" }, + { "id": "3404d2bf-2b13-457e-a330-c24615765193", "type": "Scope" }, + { "id": "b955410e-7715-4a88-a940-dfd551018df3", "type": "Scope" }, + { "id": "5b07b0dd-2377-4e44-a38d-703f09a0dc3c", "type": "Role" }, + { "id": "19b94e34-907c-4f43-bde9-38b1909ed408", "type": "Role" }, + { "id": "999f8c63-0a38-4f1b-91fd-ed1947bdd1a9", "type": "Role" }, + { "id": "292d869f-3427-49a8-9dab-8c70152b74e9", "type": "Role" }, + { "id": "2f51be20-0bb4-4fed-bf7b-db946066c75e", "type": "Role" }, + { "id": "58ca0d9a-1575-47e1-a3cb-007ef2e4583b", "type": "Role" }, + { "id": "06a5fe6d-c49d-46a7-b082-56b1b14103c7", "type": "Role" }, + { "id": "246dd0d5-5bd0-4def-940b-0421030a5b68", "type": "Role" }, + { "id": "bf394140-e372-4bf9-a898-299cfc7564e5", "type": "Role" }, + { "id": "741f803b-c850-494e-b5df-cde7c675a1ca", "type": "Role" }, + { "id": "230c1aed-a721-4c5d-9cb4-a90514e508ef", "type": "Role" }, + { "id": "b633e1c5-b582-4048-a93e-9f11b44c7e96", "type": "Role" }, + { "id": "5b567255-7703-4780-807c-7be8301ae99b", "type": "Role" }, + { "id": "62a82d76-70ea-41e2-9197-370581804d09", "type": "Role" }, + { "id": "7ab1d382-f21e-4acd-a863-ba3e13f7da61", "type": "Role" }, + { "id": "1138cb37-bd11-4084-a2b7-9f71582aeddb", "type": "Role" }, + { "id": "78145de6-330d-4800-a6ce-494ff2d33d07", "type": "Role" }, + { "id": "9241abd9-d0e6-425a-bd4f-47ba86e767a4", "type": "Role" }, + { "id": "5b07b0dd-2377-4e44-a38d-703f09a0dc3c", "type": "Role" }, + { "id": "243333ab-4d21-40cb-a475-36241daa0842", "type": "Role" }, + { "id": "e330c4f0-4170-414e-a55a-2f022ec2b57b", "type": "Role" }, + { "id": "5ac13192-7ace-4fcf-b828-1a26f28068ee", "type": "Role" }, + { "id": "2f6817f8-7b12-4f0f-bc18-eeaf60705a9e", "type": "Role" }, + { "id": "dbaae8cf-10b5-4b86-a4a1-f871c94c6695", "type": "Role" }, + { "id": "bf7b1a76-6e77-406b-b258-bf5c7720e98f", "type": "Role" }, + { "id": "01c0a623-fc9b-48e9-b794-0756f8e8f067", "type": "Role" }, + { "id": "50483e42-d915-4231-9639-7fdb7fd190e5", "type": "Role" }, + { "id": "dbb9058a-0e50-45d7-ae91-66909b5d4664", "type": "Role" }, + { "id": "a82116e5-55eb-4c41-a434-62fe8a61c773", "type": "Role" }, + { "id": "f3a65bd4-b703-46df-8f7e-0174fea562aa", "type": "Role" }, + { "id": "59a6b24b-4225-4393-8165-ebaec5f55d7a", "type": "Role" }, + { "id": "0121dc95-1b9f-4aed-8bac-58c5ac466691", "type": "Role" }, + { "id": "3b55498e-47ec-484f-8136-9013221c06a9", "type": "Role" }, + { "id": "35930dcf-aceb-4bd1-b99a-8ffed403c974", "type": "Role" }, + { "id": "25f85f3c-f66c-4205-8cd5-de92dd7f0cec", "type": "Role" }, + { "id": "29c18626-4985-4dcd-85c0-193eef327366", "type": "Role" }, + { "id": "4437522e-9a86-4a41-a7da-e380edd4a97d", "type": "Role" }, + { "id": "34bf0e97-1971-4929-b999-9e2442d941d7", "type": "Role" }, + { "id": "45cc0394-e837-488b-a098-1918f48d186c", "type": "Role" }, + { "id": "be74164b-cff1-491c-8741-e671cb536e13", "type": "Role" }, + { "id": "2a60023f-3219-47ad-baa4-40e17cd02a1d", "type": "Role" }, + { "id": "338163d7-f101-4c92-94ba-ca46fe52447c", "type": "Role" }, + { "id": "cac88765-0581-4025-9725-5ebc13f729ee", "type": "Role" }, + { "id": "75359482-378d-4052-8f01-80520e7db3cd", "type": "Role" }, + { "id": "19dbc75e-c2e2-444c-a770-ec69d8559fc7", "type": "Role" }, + { "id": "b27a61ec-b99c-4d6a-b126-c4375d08ae30", "type": "Scope" }, + { "id": "84bccea3-f856-4a8a-967b-dbe0a3d53a64", "type": "Scope" }, + { "id": "280b3b69-0437-44b1-bc20-3b2fca1ee3e9", "type": "Scope" }, + { + "id": "885f682f-a990-4bad-a642-36736a74b0c7", + "type": "Scope" + }, + { + "id": "c2d95988-7604-4ba1-aaed-38a5f82a51c7", + "type": "Scope" + } + ] + }, + { + "resourceAppId": "00000002-0000-0000-c000-000000000000", + "resourceAccess": [ + { "id": "5778995a-e1bf-45b8-affa-663a9f3f4d04", "type": "Role" }, + { "id": "a42657d6-7f20-40e3-b6f0-cee03008a62a", "type": "Scope" }, + { "id": "311a71cc-e848-46a1-bdf8-97ff7156d8e6", "type": "Scope" } + ] + }, + { + "resourceAppId": "fc780465-2017-40d4-a0c5-307022471b92", + "resourceAccess": [ + { "id": "63a677ce-818c-4409-9d12-5c6d2e2a6bfe", "type": "Scope" }, + { "id": "41269fc5-d04d-4bfd-bce7-43a51cea049a", "type": "Role" } + ] + }, + { + "resourceAppId": "00000002-0000-0ff1-ce00-000000000000", + "resourceAccess": [ + { "id": "ab4f2b77-0b06-4fc1-a9de-02113fc2ab7c", "type": "Scope" }, + { "id": "dc50a0fb-09a3-484d-be87-e023b12c6440", "type": "Role" } + ] + }, + { + "resourceAppId": "00000003-0000-0ff1-ce00-000000000000", + "resourceAccess": [ + { "id": "56680e0d-d2a3-4ae1-80d8-3c4f2100e3d0", "type": "Scope" } + ] + }, + { + "resourceAppId": "48ac35b8-9aa8-4d74-927d-1f4a14a0b239", + "resourceAccess": [ + { "id": "e60370c1-e451-437e-aa6e-d76df38e5f15", "type": "Scope" } + ] + }, + { + "resourceAppId": "c5393580-f805-4401-95e8-94b7a6ef2fc2", + "resourceAccess": [ + { "id": "594c1fb6-4f81-4475-ae41-0c394909246c", "type": "Scope" } + ] + } + ] +} diff --git a/Modules/CIPPCore/Public/Send-CIPPAlert.ps1 b/Modules/CIPPCore/Public/Send-CIPPAlert.ps1 index 23a640eb4027..a253311fae29 100644 --- a/Modules/CIPPCore/Public/Send-CIPPAlert.ps1 +++ b/Modules/CIPPCore/Public/Send-CIPPAlert.ps1 @@ -13,7 +13,7 @@ function Send-CIPPAlert { Write-Host "Shipping Alert" $Table = Get-CIPPTable -TableName SchedulerConfig $Filter = "RowKey eq 'CippNotifications' and PartitionKey eq 'CippNotifications'" - $Config = [pscustomobject](Get-AzDataTableEntity @Table -Filter $Filter) + $Config = [pscustomobject](Get-CIPPAzDataTableEntity @Table -Filter $Filter) if ($Type -eq 'email') { Write-Host "Trying to send email" try { @@ -34,12 +34,12 @@ function Send-CIPPAlert { $JSONBody = ConvertTo-Json -Compress -Depth 10 -InputObject $PowerShellBody New-GraphPostRequest -uri 'https://graph.microsoft.com/v1.0/me/sendMail' -tenantid $env:TenantID -NoAuthCheck $true -type POST -body ($JSONBody) } - Write-LogMessage -API 'Webhook Alerts' -message "Sent a webhook alert to email: $Title" -sev info + Write-LogMessage -API 'Webhook Alerts' -message "Sent a webhook alert to email: $Title" -tenant $TenantFilter -sev info } catch { Write-Host "Could not send webhook alert to email: $($_.Exception.message)" - Write-LogMessage -API 'Webhook Alerts' -message "Could not send webhook alerts to email. $($_.Exception.message)" -sev info + Write-LogMessage -API 'Webhook Alerts' -message "Could not send webhook alerts to email. $($_.Exception.message)" -tenant $TenantFilter -sev info } } @@ -66,12 +66,12 @@ function Send-CIPPAlert { } } - Write-LogMessage -API 'Webhook Alerts' -message "Sent Webhook alert $title to External webhook" -sev info + Write-LogMessage -API 'Webhook Alerts' -message "Sent Webhook alert $title to External webhook" -tenant $TenantFilter -sev info } catch { Write-Host "Could not send alerts to webhook: $($_.Exception.message)" - Write-LogMessage -API 'Webhook Alerts' -message "Could not send alerts to : $($_.Exception.message)" -sev info + Write-LogMessage -API 'Webhook Alerts' -message "Could not send alerts to webhook: $($_.Exception.message)" -tenant $TenantFilter -sev info } } Write-Host "Trying to send to PSA" @@ -81,17 +81,17 @@ function Send-CIPPAlert { try { $Alert = @{ - TenantId = $Tenant + TenantId = $TenantFilter AlertText = "$HTMLContent" AlertTitle = "$($Title)" } New-CippExtAlert -Alert $Alert - Write-LogMessage -API 'Webhook Alerts' -message "Sent PSA alert $title" -sev info + Write-LogMessage -API 'Webhook Alerts' -tenant $TenantFilter -message "Sent PSA alert $title" -sev info } catch { Write-Host "Could not send alerts to ticketing system: $($_.Exception.message)" - Write-LogMessage -API 'Webhook Alerts' -message "Could not send alerts to : $($_.Exception.message)" -sev info + Write-LogMessage -API 'Webhook Alerts' -tenant $TenantFilter -message "Could not send alerts to ticketing system: $($_.Exception.message)" -sev info } } } diff --git a/Modules/CIPPCore/Public/Set-CIPPAssignedApplication.ps1 b/Modules/CIPPCore/Public/Set-CIPPAssignedApplication.ps1 new file mode 100644 index 000000000000..745c964bc108 --- /dev/null +++ b/Modules/CIPPCore/Public/Set-CIPPAssignedApplication.ps1 @@ -0,0 +1,119 @@ +function Set-CIPPAssignedApplication { + [CmdletBinding()] + param( + $GroupName, + $Intent, + $AppType, + $ApplicationId, + $TenantFilter, + $APIName = "Assign Application", + $ExecutingUser + ) + + try { + $MobileAppAssignment = switch ($GroupName) { + "AllUsers" { + @(@{ + "@odata.type" = "#microsoft.graph.mobileAppAssignment" + target = @{ + "@odata.type" = "#microsoft.graph.allLicensedUsersAssignmentTarget" + } + intent = $Intent + settings = @{ + "@odata.type" = "#microsoft.graph.$($appType)AppAssignmentSettings" + notifications = "hideAll" + installTimeSettings = $null + restartSettings = $null + } + }) + break + } + "AllDevices" { + @(@{ + "@odata.type" = "#microsoft.graph.mobileAppAssignment" + target = @{ + "@odata.type" = "#microsoft.graph.allDevicesAssignmentTarget" + } + intent = $Intent + settings = @{ + "@odata.type" = "#microsoft.graph.$($appType)AppAssignmentSettings" + notifications = "hideAll" + installTimeSettings = $null + restartSettings = $null + } + }) + break + } + "AllDevicesAndUsers" { + @( + @{ + "@odata.type" = "#microsoft.graph.mobileAppAssignment" + target = @{ + "@odata.type" = "#microsoft.graph.allLicensedUsersAssignmentTarget" + } + intent = $Intent + settings = @{ + "@odata.type" = "#microsoft.graph.$($appType)AppAssignmentSettings" + notifications = "hideAll" + installTimeSettings = $null + restartSettings = $null + } + }, + @{ + "@odata.type" = "#microsoft.graph.mobileAppAssignment" + target = @{ + "@odata.type" = "#microsoft.graph.allDevicesAssignmentTarget" + } + intent = $Intent + settings = @{ + "@odata.type" = "#microsoft.graph.$($appType)AppAssignmentSettings" + notifications = "hideAll" + installTimeSettings = $null + restartSettings = $null + } + } + ) + } + default { + $GroupNames = $GroupName.Split(",") + $GroupIds = New-GraphGetRequest -uri "https://graph.microsoft.com/beta/groups" -tenantid $TenantFilter | ForEach-Object { + $Group = $_ + foreach ($SingleName in $GroupNames) { + if ($_.displayname -like $SingleName) { + $group.id + } + } + } + Write-Host "found $($GroupIds) groups" + foreach ($Group in $GroupIds) { + @{ + "@odata.type" = "#microsoft.graph.mobileAppAssignment" + target = @{ + "@odata.type" = "#microsoft.graph.groupAssignmentTarget" + groupId = $Group + } + intent = $Intent + settings = @{ + "@odata.type" = "#microsoft.graph.$($appType)AppAssignmentSettings" + notifications = "hideAll" + installTimeSettings = $null + restartSettings = $null + } + } + } + } + } + $DefaultAssignmentObject = [PSCustomObject]@{ + mobileAppAssignments = @( + $MobileAppAssignment + ) + } + $assign = New-GraphPOSTRequest -uri "https://graph.microsoft.com/beta/deviceAppManagement/mobileApps/$($ApplicationId)/assign" -tenantid $TenantFilter -type POST -body ($DefaultAssignmentObject | ConvertTo-Json -Compress -Depth 10) + Write-LogMessage -user $ExecutingUser -API $APIName -message "Assigned Application to $($GroupName)" -Sev "Info" -tenant $TenantFilter + return "Assigned Application to $($GroupName)" + } + catch { + Write-LogMessage -user $ExecutingUser -API $APIName -message "Could not assign application to $GroupName" -Sev "Error" -tenant $TenantFilter + return "Could not assign application to $GroupName. Error: $($_.Exception.Message)" + } +} diff --git a/Modules/CIPPCore/Public/Set-CIPPAssignedPolicy.ps1 b/Modules/CIPPCore/Public/Set-CIPPAssignedPolicy.ps1 new file mode 100644 index 000000000000..1303cd72a9bb --- /dev/null +++ b/Modules/CIPPCore/Public/Set-CIPPAssignedPolicy.ps1 @@ -0,0 +1,83 @@ +function Set-CIPPAssignedPolicy { + [CmdletBinding()] + param( + $GroupName, + $PolicyId, + $Type, + $TenantFilter, + $APIName = "Assign Application", + $ExecutingUser + ) + + try { + $assignmentsObject = switch ($GroupName) { + "allLicensedUsers" { + @( + @{ + id = "" + target = @{ + "@odata.type" = "#microsoft.graph.allLicensedUsersAssignmentTarget" + } + } + ) + break + } + "AllDevices" { + @( + @{ + id = "" + target = @{ + "@odata.type" = "#microsoft.graph.allDevicesAssignmentTarget" + } + } + ) + break + } + "AllDevicesAndUsers" { + @( + @{ + id = "" + target = @{ + "@odata.type" = "#microsoft.graph.allDevicesAssignmentTarget" + } + }, + @{ + id = "" + target = @{ + "@odata.type" = "#microsoft.graph.allLicensedUsersAssignmentTarget" + } + } + ) + } + default { + $GroupNames = $GroupName.Split(",") + $GroupIds = New-GraphGetRequest -uri "https://graph.microsoft.com/beta/groups" -tenantid $TenantFilter | ForEach-Object { + $Group = $_ + foreach ($SingleName in $GroupNames) { + if ($_.displayname -like $SingleName) { + $group.id + } + } + } + foreach ($Group in $GroupIds) { + @{ + target = @{ + "@odata.type" = "#microsoft.graph.groupAssignmentTarget" + groupId = $Group + } + } + } + } + } + $assignmentsObject = [PSCustomObject]@{ + assignments = @($assignmentsObject) + } + $assign = New-GraphPOSTRequest -uri "https://graph.microsoft.com/beta/deviceManagement/$Type('$($PolicyId)')/assign" -tenantid $tenantFilter -type POST -body ($assignmentsObject | ConvertTo-Json -Depth 10) + Write-LogMessage -user $ExecutingUser -API $APIName -message "Assigned Policy to $($GroupName)" -Sev "Info" -tenant $TenantFilter + return "Assigned policy to $($GroupName)" + } + catch { + Write-LogMessage -user $ExecutingUser -API $APIName -message "Failed to assign Policy to $GroupName" -Sev "Error" -tenant $TenantFilter + return "Could not assign policy to $GroupName. Error: $($_.Exception.Message)" + } +} diff --git a/Modules/CIPPCore/Public/Set-CIPPCPVConsent.ps1 b/Modules/CIPPCore/Public/Set-CIPPCPVConsent.ps1 new file mode 100644 index 000000000000..a139e2484188 --- /dev/null +++ b/Modules/CIPPCore/Public/Set-CIPPCPVConsent.ps1 @@ -0,0 +1,43 @@ +function Set-CIPPCPVConsent { + [CmdletBinding()] + param( + $Tenantfilter, + $APIName = "CPV Consent", + $ExecutingUser + ) + $Results = [System.Collections.ArrayList]@() + $Tenant = Get-Tenants -IncludeAll -IncludeErrors | Where-Object -Property defaultDomainName -EQ $Tenantfilter + $TenantName = $Tenant.defaultDomainName + $TenantFilter = $Tenant.customerId + + try { + $AppBody = @" +{ + "ApplicationGrants":[ {"EnterpriseApplicationId":"00000003-0000-0000-c000-000000000000","Scope":"Application.ReadWrite.all,DelegatedPermissionGrant.ReadWrite.All,Directory.ReadWrite.All"}], + "ApplicationId": "$($ENV:applicationId)" +} +"@ + $CPVConsent = New-GraphpostRequest -body $AppBody -Type POST -noauthcheck $true -uri "https://api.partnercenter.microsoft.com/v1/customers/$($TenantFilter)/applicationconsents" -scope "https://api.partnercenter.microsoft.com/.default" -tenantid $env:TenantID + $Table = Get-CIPPTable -TableName cpvtenants + $unixtime = [int64](([datetime]::UtcNow) - (Get-Date "1/1/1970")).TotalSeconds + $GraphRequest = @{ + LastApply = "$unixtime" + applicationId = "$($ENV:applicationId)" + Tenant = "$($tenantfilter)" + PartitionKey = 'Tenant' + RowKey = "$($tenantfilter)" + } + Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force + $Results.add("Successfully added CPV Application to tenant $($TenantName)") | Out-Null + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Added our Service Principal to $($TenantName): $($_.Exception.message)" -Sev "Info" -tenant $($Tenantfilter) + + } + catch { + $ErrorMessage = $_.Exception.Message + if ($ErrorMessage -like '*409 (Conflict)*') { return @("We've already added our Service Principal to $($TenantName)") } + + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Could not add our Service Principal to the client tenant $($TenantName): $($_.Exception.message)" -Sev "Error" -tenant $($Tenantfilter) + return @("Could not add our Service Principal to the client tenant $($TenantName): $($_.Exception.message)") + } + return $Results +} diff --git a/Modules/CIPPCore/Public/Set-CIPPGDAPAutoExtend.ps1 b/Modules/CIPPCore/Public/Set-CIPPGDAPAutoExtend.ps1 new file mode 100644 index 000000000000..8d81b0b6448e --- /dev/null +++ b/Modules/CIPPCore/Public/Set-CIPPGDAPAutoExtend.ps1 @@ -0,0 +1,45 @@ +function Set-CIPPGDAPAutoExtend { + [CmdletBinding()] + param ( + $RelationShipid, + [switch]$All, + $APIName = "Set GDAP Auto Exension", + $ExecutingUser + ) + + $ReturnedData = if ($All -eq $true) { + $Relationships = New-GraphGetRequest -uri "https://graph.microsoft.com/beta/tenantRelationships/delegatedAdminRelationships" -tenantid $env:tenantid -NoAuthCheck $true | Where-Object -Property autoExtendDuration -EQ "PT0S" + foreach ($Relation in $Relationships) { + try { + $AddedHeader = @{"If-Match" = $Relation."@odata.etag" } + $GraphRequest = New-GraphPostRequest -uri "https://graph.microsoft.com/beta/tenantRelationships/delegatedAdminRelationships/$($Relation.id)" -tenantid $env:tenantid -type PATCH -body '{"autoExtendDuration":"P180D"}' -Verbose -NoAuthCheck $true -AddedHeaders $AddedHeader + write-LogMessage -user $ExecutingUser -API $APIName -message "Successfully set auto renew for tenant $($Relation.customer.displayName) with ID $($RelationShipid)" -Sev "Info" + @("Successfully set auto renew for tenant $($Relation.customer.displayName) with ID $($Relation.id)" ) + + } + catch { + $ErrorMessage = $_.Exception.Message + $CleanError = Get-NormalizedError -message $ErrorMessage + "Could not set auto renewal for $($Relation.id): $CleanError" + } + + } + } + else { + try { + $Relationship = New-GraphGetRequest -uri "https://graph.microsoft.com/beta/tenantRelationships/delegatedAdminRelationships" -tenantid $env:tenantid -NoAuthCheck $true | Where-Object -Property id -EQ $RelationShipid + $AddedHeader = @{"If-Match" = $Relationship."@odata.etag" } + $GraphRequest = New-GraphPostRequest -uri "https://graph.microsoft.com/beta/tenantRelationships/delegatedAdminRelationships/$($RelationShipid)" -tenantid $env:tenantid -type PATCH -body '{"autoExtendDuration":"P180D"}' -Verbose -NoAuthCheck $true -AddedHeaders $AddedHeader + write-LogMessage -user $ExecutingUser -API $APIName -message "Successfully set auto renew for tenant $($Relationship.customer.displayName) with ID $($RelationShipid)" -Sev "Info" + @("Successfully set auto renew for tenant $($Relationship.customer.displayName) with ID $($RelationShipid)" ) + } + catch { + $ErrorMessage = $_.Exception.Message + $CleanError = Get-NormalizedError -message $ErrorMessage + "Could not set auto renewal for $($RelationShipid): $CleanError" + } + } + + return $ReturnedData + +} \ No newline at end of file diff --git a/Modules/CIPPCore/Public/Set-CIPPGDAPInviteGroups.ps1 b/Modules/CIPPCore/Public/Set-CIPPGDAPInviteGroups.ps1 index a2ebdc386192..e136536cd328 100644 --- a/Modules/CIPPCore/Public/Set-CIPPGDAPInviteGroups.ps1 +++ b/Modules/CIPPCore/Public/Set-CIPPGDAPInviteGroups.ps1 @@ -1,7 +1,7 @@ function Set-CIPPGDAPInviteGroups { Param() $Table = Get-CIPPTable -TableName 'GDAPInvites' - $InviteList = Get-AzDataTableEntity @Table + $InviteList = Get-CIPPAzDataTableEntity @Table if (($InviteList | Measure-Object).Count -gt 0) { #$LastDay = Get-Date (Get-Date).AddHours(-26) -UFormat '+%Y-%m-%dT%H:%M:%S.000Z' diff --git a/Modules/CIPPCore/Public/Set-CIPPGraphSubscription.ps1 b/Modules/CIPPCore/Public/Set-CIPPGraphSubscription.ps1 index 67207ddf1807..1efd17294e93 100644 --- a/Modules/CIPPCore/Public/Set-CIPPGraphSubscription.ps1 +++ b/Modules/CIPPCore/Public/Set-CIPPGraphSubscription.ps1 @@ -19,9 +19,9 @@ function Set-CIPPGraphSubscription { $GraphRequest = New-GraphPostRequest -uri "https://graph.microsoft.com/beta/subscriptions/$($_.id)" -tenantid $TenantFilter -type PATCH -body $body -Verbose $WebhookTable = Get-CIPPTable -TableName webhookTable #get the row from the table, grab it by the webhook notification url, and update the expiration date. - $WebhookRow = Get-AzDataTableEntity @WebhookTable | Where-Object { $_.WebhookNotificationUrl -eq $GraphRequest.notificationUrl } + $WebhookRow = Get-CIPPAzDataTableEntity @WebhookTable | Where-Object { $_.WebhookNotificationUrl -eq $GraphRequest.notificationUrl } $WebhookRow.Expiration = $RenewalDate - $null = Add-AzDataTableEntity @WebhookTable -Entity $WebhookRow -Force + $null = Add-CIPPAzDataTableEntity @WebhookTable -Entity $WebhookRow -Force return "Renewed $($GraphRequest.notificationUrl)" } diff --git a/Modules/CIPPCore/Public/Set-CIPPIntuneTemplate.ps1 b/Modules/CIPPCore/Public/Set-CIPPIntuneTemplate.ps1 new file mode 100644 index 000000000000..65f40a06449d --- /dev/null +++ b/Modules/CIPPCore/Public/Set-CIPPIntuneTemplate.ps1 @@ -0,0 +1,32 @@ +function Set-CIPPIntuneTemplate { + param ( + [Parameter(Mandatory = $true)] + $RawJSON, + $GUID, + $DisplayName, + $Description, + $templateType + ) + + if (!$DisplayName) { throw "You must enter a displayname" } + if ($null -eq ($RawJSON | ConvertFrom-Json)) { throw "the JSON is invalid" } + + $object = [PSCustomObject]@{ + Displayname = $DisplayName + Description = $Description + RAWJson = $RawJSON + Type = $templateType + GUID = $GUID + } | ConvertTo-Json -Depth 10 -Compress + $Table = Get-CippTable -tablename 'templates' + $Table.Force = $true + Add-CIPPAzDataTableEntity @Table -Entity @{ + JSON = "$object" + RowKey = "$GUID" + GUID = "$GUID" + PartitionKey = "IntuneTemplate" + } + Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Created intune policy template named $($Request.body.displayname) with GUID $GUID" -Sev "Debug" + + return "Successfully added template" +} diff --git a/Modules/CIPPCore/Public/Set-CIPPOutOfoffice.ps1 b/Modules/CIPPCore/Public/Set-CIPPOutOfoffice.ps1 index 3fc62069ca5c..0f7efc3dcc47 100644 --- a/Modules/CIPPCore/Public/Set-CIPPOutOfoffice.ps1 +++ b/Modules/CIPPCore/Public/Set-CIPPOutOfoffice.ps1 @@ -2,18 +2,27 @@ function Set-CIPPOutOfOffice { [CmdletBinding()] param ( $userid, - $OOO, + $InternalMessage, + $ExternalMessage, $TenantFilter, $State, $APIName = "Set Out of Office", - $ExecutingUser + $ExecutingUser, + $StartTime, + $EndTime ) try { - if (!$state) { $State = 'Enabled' } - $OutOfOffice = New-ExoRequest -tenantid $TenantFilter -cmdlet "Set-MailboxAutoReplyConfiguration" -cmdParams @{Identity = $userid; AutoReplyState = $State; InternalMessage = $OOO; ExternalMessage = $OOO } -Anchor $userid - Write-LogMessage -user $ExecutingUser -API $APIName -message "Set Out-of-office for $($userid) to $state" -Sev "Info" -tenant $TenantFilter - return "Set Out-of-office for $($userid) to $state" + if ($State -ne "Scheduled") { + $OutOfOffice = New-ExoRequest -tenantid $TenantFilter -cmdlet "Set-MailboxAutoReplyConfiguration" -cmdParams @{Identity = $userid; AutoReplyState = $State; InternalMessage = $InternalMessage; ExternalMessage = $ExternalMessage } -Anchor $userid + Write-LogMessage -user $ExecutingUser -API $APIName -message "Set Out-of-office for $($userid) to $state" -Sev "Info" -tenant $TenantFilter + return "Set Out-of-office for $($userid) to $state" + } + else { + $OutOfOffice = New-ExoRequest -tenantid $TenantFilter -cmdlet "Set-MailboxAutoReplyConfiguration" -cmdParams @{Identity = $userid; AutoReplyState = $State; InternalMessage = $InternalMessage; ExternalMessage = $ExternalMessage; StartTime = $StartTime; EndTime = $EndTime } -Anchor $userid + Write-LogMessage -user $ExecutingUser -API $APIName -message "Scheduled Out-of-office for $($userid) between $StartTime and $EndTime" -Sev "Info" -tenant $TenantFilter + return "Scheduled Out-of-office for $($userid) between $StartTime and $EndTime" + } } catch { Write-LogMessage -user $ExecutingUser -API $APIName -message "Could not add OOO for $($userid)" -Sev "Error" -tenant $TenantFilter diff --git a/Modules/CIPPCore/Public/blank.json b/Modules/CIPPCore/Public/blank.json new file mode 100644 index 000000000000..e69de29bb2d1 diff --git a/Modules/CIPPCore/Public/f283eed0-78b4-4499-b857-0fc33631089a-TransportTemplate.json b/Modules/CIPPCore/Public/f283eed0-78b4-4499-b857-0fc33631089a-TransportTemplate.json new file mode 100644 index 000000000000..e69de29bb2d1 diff --git a/Modules/CippEntrypoints/CippEntrypoints.psm1 b/Modules/CippEntrypoints/CippEntrypoints.psm1 index 4f11543eefa0..ffea0fd0021d 100644 --- a/Modules/CippEntrypoints/CippEntrypoints.psm1 +++ b/Modules/CippEntrypoints/CippEntrypoints.psm1 @@ -5,19 +5,7 @@ function Receive-CippHttpTrigger { $APIName = $TriggerMetadata.FunctionName - $FunctionVerbs = @{ - 'Get' = '^(?List.+$)' - 'Update' = '^(?Edit.+$)' - 'New' = '^(?Add.+$)' - 'Invoke' = '^(?Exec.+$)' - } - - foreach ($FunctionVerb in $FunctionVerbs.Keys) { - if ($APIName -match $FunctionVerbs.$FunctionVerb) { - $FunctionName = '{0}-{1}' -f $FunctionVerb, $Matches.APIName - break - } - } + $FunctionName = 'Invoke-{0}' -f $APIName $HttpTrigger = @{ Request = $Request diff --git a/Modules/CippExtensions/CippExtensions.psd1 b/Modules/CippExtensions/CippExtensions.psd1 index 784f124c9279..e69de29bb2d1 100644 Binary files a/Modules/CippExtensions/CippExtensions.psd1 and b/Modules/CippExtensions/CippExtensions.psd1 differ diff --git a/Modules/CippExtensions/Private/Get-HaloMapping.ps1 b/Modules/CippExtensions/Private/Get-HaloMapping.ps1 index 48eef261e0c0..d86753f29306 100644 --- a/Modules/CippExtensions/Private/Get-HaloMapping.ps1 +++ b/Modules/CippExtensions/Private/Get-HaloMapping.ps1 @@ -5,16 +5,17 @@ function Get-HaloMapping { ) #Get available mappings $Mappings = [pscustomobject]@{} - $Filter = "RowKey eq 'Mapping'" - Get-AzDataTableEntity @CIPPMapping -Filter $Filter | ForEach-Object { + + $Filter = "PartitionKey eq 'Mapping'" + Get-CIPPAzDataTableEntity @CIPPMapping -Filter $Filter | ForEach-Object { $Mappings | Add-Member -NotePropertyName $_.RowKey -NotePropertyValue @{ label = "$($_.HaloPSAName)"; value = "$($_.HaloPSA)" } } - #Get Available TEnants - $Tenants = Get-Tenants - #Get available halo clients + $Tenants = Get-Tenants -IncludeAll $Table = Get-CIPPTable -TableName Extensionsconfig try { - $Configuration = ((Get-AzDataTableEntity @Table).config | ConvertFrom-Json -ea stop).HaloPSA + $Configuration = ((Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json -ea stop).HaloPSA + + $Token = Get-HaloToken -configuration $Configuration $i = 1 $RawHaloClients = do { diff --git a/Modules/CippExtensions/Private/Get-HaloToken.ps1 b/Modules/CippExtensions/Private/Get-HaloToken.ps1 index 4bce00797491..bc75822a9875 100644 --- a/Modules/CippExtensions/Private/Get-HaloToken.ps1 +++ b/Modules/CippExtensions/Private/Get-HaloToken.ps1 @@ -11,9 +11,11 @@ function Get-HaloToken { client_secret = (Get-AzKeyVaultSecret -VaultName $ENV:WEBSITE_DEPLOYMENT_ID -Name 'HaloPSA' -AsPlainText) scope = 'all' } - $token = Invoke-RestMethod -Uri "$($Configuration.AuthURL)/token?tenant=$($Configuration.tenant)" -Method Post -Body $body -ContentType 'application/x-www-form-urlencoded' + if ($Configuration.Tenant -ne "None") { $Tenant = "?tenant=$($Configuration.tenant)" } + $token = Invoke-RestMethod -Uri "$($Configuration.AuthURL)/token$Tenant" -Method Post -Body $body -ContentType 'application/x-www-form-urlencoded' return $token - } else { + } + else { throw 'No Halo configuration' } } \ No newline at end of file diff --git a/Modules/CippExtensions/Private/New-GradientAlert.ps1 b/Modules/CippExtensions/Private/New-GradientAlert.ps1 index 52e87fdd89cb..497052367edf 100644 --- a/Modules/CippExtensions/Private/New-GradientAlert.ps1 +++ b/Modules/CippExtensions/Private/New-GradientAlert.ps1 @@ -7,7 +7,7 @@ function New-GradientAlert { ) $Table = Get-CIPPTable -TableName Extensionsconfig - $Configuration = ((Get-AzDataTableEntity @Table).config | ConvertFrom-Json).Gradient + $Configuration = ((Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json).Gradient #creating accounts in Gradient try { $GradientToken = Get-GradientToken -Configuration $Configuration diff --git a/Modules/CippExtensions/Private/New-GradientServiceSyncRun.ps1 b/Modules/CippExtensions/Private/New-GradientServiceSyncRun.ps1 index 4ed431e3ac23..b16197fa3183 100644 --- a/Modules/CippExtensions/Private/New-GradientServiceSyncRun.ps1 +++ b/Modules/CippExtensions/Private/New-GradientServiceSyncRun.ps1 @@ -5,7 +5,7 @@ function New-GradientServiceSyncRun { ) $Table = Get-CIPPTable -TableName Extensionsconfig - $Configuration = ((Get-AzDataTableEntity @Table).config | ConvertFrom-Json).Gradient + $Configuration = ((Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json).Gradient $Tenants = Get-Tenants #creating accounts in Gradient try { @@ -34,7 +34,7 @@ function New-GradientServiceSyncRun { $ConvertTable = Import-Csv Conversiontable.csv $Table = Get-CIPPTable -TableName cachelicenses $LicenseTable = Get-CIPPTable -TableName ExcludedLicenses - $ExcludedSkuList = Get-AzDataTableEntity @LicenseTable + $ExcludedSkuList = Get-CIPPAzDataTableEntity @LicenseTable $RawGraphRequest = $Tenants | ForEach-Object -Parallel { $domainName = $_.defaultDomainName diff --git a/Modules/CippExtensions/Private/New-HaloPSATicket.ps1 b/Modules/CippExtensions/Private/New-HaloPSATicket.ps1 index c7035417428b..4b0690dc823d 100644 --- a/Modules/CippExtensions/Private/New-HaloPSATicket.ps1 +++ b/Modules/CippExtensions/Private/New-HaloPSATicket.ps1 @@ -7,32 +7,37 @@ function New-HaloPSATicket { ) #Get Halo PSA Token based on the config we have. $Table = Get-CIPPTable -TableName Extensionsconfig - $Configuration = ((Get-AzDataTableEntity @Table).config | ConvertFrom-Json).HaloPSA + $Configuration = ((Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json).HaloPSA $token = Get-HaloToken -configuration $Configuration - #use the token to create a new ticket in HaloPSA - $body = @" -[ - { - "files": null, - "usertype": 1, - "userlookup": { - "id": -1, - "lookupdisplay": "Enter Details Manually" - }, - "client_id": $client, - "site_id": null, - "user_name": null, - "reportedby": null, - "summary": "$($title)", - "details_html": "$description", - "donotapplytemplateintheapi": true, - "attachments": [ - - ] + $Object = [PSCustomObject]@{ + files = $null + usertype = 1 + userlookup = @{ + id = -1 + lookupdisplay = "Enter Details Manually" + } + client_id = $client + site_id = $null + user_name = $null + reportedby = $null + summary = $title + details_html = $description + donotapplytemplateintheapi = $true + attachments = @() + } + + if ($Configuration.TicketType) { + $object | Add-Member -MemberType NoteProperty -Name "tickettype_id" -Value $Configuration.TicketType } -] -"@ - Invoke-RestMethod -Uri "$($Configuration.ResourceURL)/Tickets" -ContentType 'application/json' -Method Post -Body $body -Headers @{Authorization = "Bearer $($token.access_token)" } + #use the token to create a new ticket in HaloPSA + $body = ConvertTo-Json -Compress -Depth 10 -InputObject @($Object) + + + Write-Host "Sending ticket to HaloPSA" + Write-Host $body + + $Ticket = Invoke-RestMethod -Uri "$($Configuration.ResourceURL)/Tickets" -ContentType 'application/json; charset=utf-8' -Method Post -Body $body -Headers @{Authorization = "Bearer $($token.access_token)" } + } \ No newline at end of file diff --git a/Modules/CippExtensions/Private/Set-HaloMapping.ps1 b/Modules/CippExtensions/Private/Set-HaloMapping.ps1 index 865034fe6a29..14180d14d294 100644 --- a/Modules/CippExtensions/Private/Set-HaloMapping.ps1 +++ b/Modules/CippExtensions/Private/Set-HaloMapping.ps1 @@ -13,7 +13,9 @@ function Set-HaloMapping { 'HaloPSA' = "$($mapping.value.value)" 'HaloPSAName' = "$($mapping.value.label)" } - Add-AzDataTableEntity @CIPPMapping -Entity $AddObject -Force + + Add-CIPPAzDataTableEntity @CIPPMapping -Entity $AddObject -Force + Write-LogMessage -API $APINAME -user $request.headers.'x-ms-client-principal' -message "Added mapping for $($mapping.name)." -Sev 'Info' } $Result = [pscustomobject]@{'Results' = "Successfully edited mapping table." } diff --git a/Modules/CippExtensions/Public/New-CippExtAlert.ps1 b/Modules/CippExtensions/Public/New-CippExtAlert.ps1 index 55a7d43e3ab5..827347a613d2 100644 --- a/Modules/CippExtensions/Public/New-CippExtAlert.ps1 +++ b/Modules/CippExtensions/Public/New-CippExtAlert.ps1 @@ -6,16 +6,19 @@ function New-CippExtAlert { ) #Get the current CIPP Alerts table and see what system is configured to receive alerts $Table = Get-CIPPTable -TableName Extensionsconfig - $Configuration = (Get-AzDataTableEntity @Table).config | ConvertFrom-Json -Depth 10 + $Configuration = (Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json -Depth 10 $MappingTable = Get-CIPPTable -TableName CippMapping - $MappingFile = (Get-AzDataTableEntity @MappingTable) + $MappingFile = (Get-CIPPAzDataTableEntity @MappingTable) foreach ($ConfigItem in $Configuration.psobject.properties.name) { switch ($ConfigItem) { "HaloPSA" { If ($Configuration.HaloPSA.enabled) { $TenantId = (Get-Tenants | Where-Object defaultDomainName -EQ $Alert.TenantId).customerId + Write-Host "TenantId: $TenantId" $MappedId = ($MappingFile | Where-Object RowKey -EQ $TenantId).HaloPSA + Write-Host "MappedId: $MappedId" if (!$mappedId) { $MappedId = 1 } + Write-Host "MappedId: $MappedId" New-HaloPSATicket -Title $Alert.AlertTitle -Description $Alert.AlertText -Client $mappedId } } diff --git a/Modules/CippQueue/CippQueue.psm1 b/Modules/CippQueue/CippQueue.psm1 index fa188d597289..e9b86a3bc74e 100644 --- a/Modules/CippQueue/CippQueue.psm1 +++ b/Modules/CippQueue/CippQueue.psm1 @@ -19,7 +19,7 @@ function New-CippQueueEntry { } $CippQueue.Entity = $QueueEntry - Add-AzDataTableEntity @CippQueue + Add-CIPPAzDataTableEntity @CippQueue $QueueEntry } @@ -35,7 +35,7 @@ function Update-CippQueueEntry { $CippQueue = Get-CippTable -TableName CippQueue if ($RowKey) { - $QueueEntry = Get-AzDataTableEntity @CippQueue -Filter ("RowKey eq '{0}'" -f $RowKey) + $QueueEntry = Get-CIPPAzDataTableEntity @CippQueue -Filter ("RowKey eq '{0}'" -f $RowKey) if ($QueueEntry) { if ($Status) { @@ -46,10 +46,12 @@ function Update-CippQueueEntry { } Update-AzDataTableEntity @CippQueue -Entity $QueueEntry $QueueEntry - } else { + } + else { return $false } - } else { + } + else { return $false } } @@ -67,13 +69,14 @@ function Get-CippQueue { } $CippQueue = Get-CippTable -TableName 'CippQueue' - $CippQueueData = Get-AzDataTableEntity @CippQueue | Where-Object { ($_.Timestamp.DateTime) -ge (Get-Date).ToUniversalTime().AddHours(-1) } | Sort-Object -Property Timestamp -Descending + $CippQueueData = Get-CIPPAzDataTableEntity @CippQueue | Where-Object { ($_.Timestamp.DateTime) -ge (Get-Date).ToUniversalTime().AddHours(-1) } | Sort-Object -Property Timestamp -Descending if ($request) { Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ StatusCode = [HttpStatusCode]::OK Body = @($CippQueueData) }) - } else { + } + else { return $CippQueueData } } diff --git a/Modules/GraphRequests/GraphRequests.psm1 b/Modules/GraphRequests/GraphRequests.psm1 deleted file mode 100644 index f584acc34193..000000000000 --- a/Modules/GraphRequests/GraphRequests.psm1 +++ /dev/null @@ -1,12 +0,0 @@ -$Public = @(Get-ChildItem -Path $PSScriptRoot\Public\*.ps1 -ErrorAction SilentlyContinue) -$Private = @(Get-ChildItem -Path $PSScriptRoot\private\*.ps1 -ErrorAction SilentlyContinue) -$Functions = $Public + $Private -foreach ($import in @($Functions)) { - try { - . $import.FullName - } catch { - Write-Error -Message "Failed to import function $($import.FullName): $_" - } -} - -Export-ModuleMember -Function $Public.BaseName -Alias * diff --git a/PublicScripts/run.ps1 b/PublicScripts/run.ps1 index de95d25af20b..0dca13ac3c97 100644 --- a/PublicScripts/run.ps1 +++ b/PublicScripts/run.ps1 @@ -13,7 +13,7 @@ $Table = Get-CippTable -TableName 'MaintenanceScripts' if (![string]::IsNullOrEmpty($Request.Query.Guid)) { $Filter = "PartitionKey eq 'Maintenance' and RowKey eq '{0}'" -f $Request.Query.Guid - $ScriptRow = Get-AzDataTableEntity @Table -Filter $Filter + $ScriptRow = Get-CIPPAzDataTableEntity @Table -Filter $Filter if ($ScriptRow) { if ($ScriptRow.Timestamp.DateTime -lt (Get-Date).AddMinutes(-5)) { $Body = 'Write-Host "Link expired"' diff --git a/PublicWebhooks/run.ps1 b/PublicWebhooks/run.ps1 index 86b31883a712..16dc2319608d 100644 --- a/PublicWebhooks/run.ps1 +++ b/PublicWebhooks/run.ps1 @@ -3,6 +3,17 @@ using namespace System.Net # Input bindings are passed in via param block. param($Request, $TriggerMetadata) + +$WebhookTable = Get-CIPPTable -TableName webhookTable +$Webhooks = Get-CIPPAzDataTableEntity @WebhookTable +Write-Host "Received request" +Write-Host "CIPPID: $($request.Query.CIPPID)" +$url = ($request.headers.'x-ms-original-url').split('/API') | Select-Object -First 1 +Write-Host $url +if ($Request.CIPPID -in $Webhooks.CIPPID) { + Write-Host "Found matching CIPPID" + + Push-OutputBinding -Name QueueWebhook -Value $Request if ($Request.query.ValidationToken -or $Request.body.validationCode) { diff --git a/RemoveCATemplate/run.ps1 b/RemoveCATemplate/run.ps1 index c33483a39688..e518b5b37664 100644 --- a/RemoveCATemplate/run.ps1 +++ b/RemoveCATemplate/run.ps1 @@ -11,7 +11,7 @@ try { $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'CATemplate' and RowKey eq '$id'" - $ClearRow = Get-AzDataTableEntity @Table -Filter $Filter + $ClearRow = Get-CIPPAzDataTableEntity @Table -Filter $Filter Remove-AzDataTableEntity @Table -Entity $clearRow Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Removed Conditional Access Template with ID $ID." -Sev "Info" $body = [pscustomobject]@{"Results" = "Successfully removed Conditional Access Template" } diff --git a/RemoveExConnectorTemplate/run.ps1 b/RemoveExConnectorTemplate/run.ps1 index f0d7a6ce5843..0b2ddf87fc91 100644 --- a/RemoveExConnectorTemplate/run.ps1 +++ b/RemoveExConnectorTemplate/run.ps1 @@ -10,7 +10,7 @@ $ID = $request.query.id try { $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'ExConnectorTemplate' and RowKey eq '$id'" - $ClearRow = Get-AzDataTableEntity @Table -Filter $Filter + $ClearRow = Get-CIPPAzDataTableEntity @Table -Filter $Filter Remove-AzDataTableEntity @Table -Entity $clearRow Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Removed Exchange Connector Template with ID $ID." -Sev "Info" $body = [pscustomobject]@{"Results" = "Successfully removed Exchange Connector Template" } diff --git a/RemoveGroupTemplate/run.ps1 b/RemoveGroupTemplate/run.ps1 index 32e85493eeb1..98b6d7680e03 100644 --- a/RemoveGroupTemplate/run.ps1 +++ b/RemoveGroupTemplate/run.ps1 @@ -13,7 +13,7 @@ try { $Filter = "PartitionKey eq 'GroupTemplate' and RowKey eq '$id'" Write-Host $Filter - $ClearRow = Get-AzDataTableEntity @Table -Filter $Filter + $ClearRow = Get-CIPPAzDataTableEntity @Table -Filter $Filter Remove-AzDataTableEntity @Table -Entity $clearRow Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Removed Intune Template with ID $ID." -Sev "Info" $body = [pscustomobject]@{"Results" = "Successfully removed Template" } diff --git a/RemoveIntuneTemplate/run.ps1 b/RemoveIntuneTemplate/run.ps1 index a5eb35977974..5d716b3e8c52 100644 --- a/RemoveIntuneTemplate/run.ps1 +++ b/RemoveIntuneTemplate/run.ps1 @@ -13,7 +13,7 @@ try { $Filter = "PartitionKey eq 'IntuneTemplate' and RowKey eq '$id'" Write-Host $Filter - $ClearRow = Get-AzDataTableEntity @Table -Filter $Filter + $ClearRow = Get-CIPPAzDataTableEntity @Table -Filter $Filter Remove-AzDataTableEntity @Table -Entity $clearRow Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Removed Intune Template with ID $ID." -Sev "Info" $body = [pscustomobject]@{"Results" = "Successfully removed Intune Template" } diff --git a/RemoveQueuedAlert/run.ps1 b/RemoveQueuedAlert/run.ps1 index bb61f18dadb3..4317546c0a10 100644 --- a/RemoveQueuedAlert/run.ps1 +++ b/RemoveQueuedAlert/run.ps1 @@ -9,7 +9,7 @@ $Table = Get-CIPPTable -TableName 'SchedulerConfig' $ID = $request.query.id try { $Filter = "RowKey eq '{0}' and PartitionKey eq 'Alert'" -f $ID - $Alert = Get-AzDataTableEntity @Table -Filter $Filter + $Alert = Get-CIPPAzDataTableEntity @Table -Filter $Filter Remove-AzDataTableEntity @Table -Entity $Alert Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Removed application queue for $ID." -Sev 'Info' $body = [pscustomobject]@{'Results' = 'Successfully removed from queue.' } diff --git a/RemoveQueuedApp/run.ps1 b/RemoveQueuedApp/run.ps1 index 3c50634b0604..62b7e9a83a64 100644 --- a/RemoveQueuedApp/run.ps1 +++ b/RemoveQueuedApp/run.ps1 @@ -10,7 +10,7 @@ $ID = $request.query.id try { $Table = Get-CippTable -tablename 'apps' $Filter = "PartitionKey eq 'apps' and RowKey eq '$id'" - $ClearRow = Get-AzDataTableEntity @Table -Filter $Filter + $ClearRow = Get-CIPPAzDataTableEntity @Table -Filter $Filter Remove-AzDataTableEntity @Table -Entity $clearRow Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Removed application queue for $ID." -Sev "Info" $body = [pscustomobject]@{"Results" = "Successfully removed from queue." } diff --git a/RemoveScheduledItems/function.json b/RemoveScheduledItem/function.json similarity index 94% rename from RemoveScheduledItems/function.json rename to RemoveScheduledItem/function.json index 925eab5aeae1..b0ca1676cc0b 100644 --- a/RemoveScheduledItems/function.json +++ b/RemoveScheduledItem/function.json @@ -1,19 +1,19 @@ -{ - "bindings": [ - { - "authLevel": "anonymous", - "type": "httpTrigger", - "direction": "in", - "name": "Request", - "methods": [ - "get", - "post" - ] - }, - { - "type": "http", - "direction": "out", - "name": "Response" - } - ] +{ + "bindings": [ + { + "authLevel": "anonymous", + "type": "httpTrigger", + "direction": "in", + "name": "Request", + "methods": [ + "get", + "post" + ] + }, + { + "type": "http", + "direction": "out", + "name": "Response" + } + ] } \ No newline at end of file diff --git a/RemoveScheduledItems/run.ps1 b/RemoveScheduledItem/run.ps1 similarity index 58% rename from RemoveScheduledItems/run.ps1 rename to RemoveScheduledItem/run.ps1 index ce7c0a0dcd9c..191c95570b0f 100644 --- a/RemoveScheduledItems/run.ps1 +++ b/RemoveScheduledItem/run.ps1 @@ -1,11 +1,14 @@ -using namespace System.Net -param($Request, $TriggerMetadata) -$APIName = $TriggerMetadata.FunctionName -Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug' -$task = $Request.Body | ConvertFrom-Json -$Table = Get-CIPPTable -TableName 'ScheduledTasks' -Remove-AzDataTableEntity @Table -PartitionKey 'ScheduledTask' -RowKey $task.TaskID -force -Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ - StatusCode = [HttpStatusCode]::OK - Body = 'Task removed successfully.' -}) \ No newline at end of file +using namespace System.Net +param($Request, $TriggerMetadata) +$APIName = $TriggerMetadata.FunctionName +Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug' +$task = @{ + RowKey = $Request.Query.ID + PartitionKey = 'ScheduledTask' +} +$Table = Get-CIPPTable -TableName 'ScheduledTasks' +Remove-AzDataTableEntity @Table -Entity $task +Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{ + StatusCode = [HttpStatusCode]::OK + Body = @{ Results = 'Task removed successfully.' } + }) \ No newline at end of file diff --git a/RemoveSpamfilterTemplate/run.ps1 b/RemoveSpamfilterTemplate/run.ps1 index 3837d4671295..271fe5ca5cff 100644 --- a/RemoveSpamfilterTemplate/run.ps1 +++ b/RemoveSpamfilterTemplate/run.ps1 @@ -10,7 +10,7 @@ $ID = $request.query.id try { $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'SpamfilterTemplate' and RowKey eq '$id'" - $ClearRow = Get-AzDataTableEntity @Table -Filter $Filter + $ClearRow = Get-CIPPAzDataTableEntity @Table -Filter $Filter Remove-AzDataTableEntity @Table -Entity $clearRow Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Removed Transport Rule Template with ID $ID." -Sev "Info" $body = [pscustomobject]@{"Results" = "Successfully removed Transport Rule Template" } diff --git a/RemoveStandard/run.ps1 b/RemoveStandard/run.ps1 index 695a3af825a0..b1ed82e61385 100644 --- a/RemoveStandard/run.ps1 +++ b/RemoveStandard/run.ps1 @@ -10,7 +10,7 @@ $ID = $request.query.id try { $Table = Get-CippTable -tablename 'standards' $Filter = "PartitionKey eq 'standards' and RowKey eq '$id'" - $ClearRow = Get-AzDataTableEntity @Table -Filter $Filter + $ClearRow = Get-CIPPAzDataTableEntity @Table -Filter $Filter Remove-AzDataTableEntity @Table -Entity $clearRow Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Removed standards for $ID." -Sev "Info" $body = [pscustomobject]@{"Results" = "Successfully removed standards deployment" } diff --git a/RemoveTransportRuleTemplate/run.ps1 b/RemoveTransportRuleTemplate/run.ps1 index 5c6f5f38e045..9ab1b6af2fc0 100644 --- a/RemoveTransportRuleTemplate/run.ps1 +++ b/RemoveTransportRuleTemplate/run.ps1 @@ -10,7 +10,7 @@ $ID = $request.query.id try { $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'TransportTemplate' and RowKey eq '$id'" - $ClearRow = Get-AzDataTableEntity @Table -Filter $Filter + $ClearRow = Get-CIPPAzDataTableEntity @Table -Filter $Filter Remove-AzDataTableEntity @Table -Entity $clearRow Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Removed Transport Rule Template with ID $ID." -Sev 'Info' $body = [pscustomobject]@{'Results' = 'Successfully removed Transport Rule Template' } diff --git a/Scheduler_Alert/run.ps1 b/Scheduler_Alert/run.ps1 index 524cc8c8d993..21f2bc61d55d 100644 --- a/Scheduler_Alert/run.ps1 +++ b/Scheduler_Alert/run.ps1 @@ -9,8 +9,11 @@ try { else { $Filter = "RowKey eq '{0}' and PartitionKey eq 'Alert'" -f $Tenant.tenantid } - $Alerts = Get-AzDataTableEntity @Table -Filter $Filter + $Alerts = Get-CIPPAzDataTableEntity @Table -Filter $Filter + $ConfigFilter = "RowKey eq 'CippNotifications' and PartitionKey eq 'CippNotifications'" + $Config = [pscustomobject](Get-CIPPAzDataTableEntity @Table -Filter $ConfigFilter) + $DeltaTable = Get-CIPPTable -Table DeltaCompare $LastRunTable = Get-CIPPTable -Table AlertLastRun @@ -127,7 +130,7 @@ try { { $_.'NewRole' -eq $true } { try { $Filter = "PartitionKey eq 'AdminDelta' and RowKey eq '{0}'" -f $Tenant.tenantid - $AdminDelta = (Get-AzDataTableEntity @Deltatable -Filter $Filter).delta | ConvertFrom-Json -ErrorAction SilentlyContinue + $AdminDelta = (Get-CIPPAzDataTableEntity @Deltatable -Filter $Filter).delta | ConvertFrom-Json -ErrorAction SilentlyContinue $NewDelta = (New-GraphGetRequest -uri "https://graph.microsoft.com/v1.0/directoryRoles?`$expand=members" -tenantid $Tenant.tenant) | Select-Object displayname, Members | ForEach-Object { @{ GroupName = $_.displayname @@ -140,7 +143,7 @@ try { RowKey = [string]$Tenant.tenantid delta = "$NewDeltatoSave" } - Add-AzDataTableEntity @DeltaTable -Entity $DeltaEntity -Force + Add-CIPPAzDataTableEntity @DeltaTable -Entity $DeltaEntity -Force if ($AdminDelta) { foreach ($Group in $NewDelta) { @@ -169,7 +172,7 @@ try { } { $_.'ExpiringLicenses' -eq $true } { try { - Get-CIPPLicenseOverview -TenantFilter $Tenant.tenant | Where-Object -Property TimeUntilRenew -LT 29 | ForEach-Object { + Get-CIPPLicenseOverview -TenantFilter $Tenant.tenant | Where-Object -Property [int]TimeUntilRenew -LT 29 | ForEach-Object { "$($_.License) will expire in $($_.TimeUntilRenew) days" } } @@ -194,7 +197,7 @@ try { try { #$ConvertTable = Import-Csv Conversiontable.csv $LicenseTable = Get-CIPPTable -TableName ExcludedLicenses - $ExcludedSkuList = Get-AzDataTableEntity @LicenseTable + $ExcludedSkuList = Get-CIPPAzDataTableEntity @LicenseTable New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/subscribedSkus' -tenantid $Tenant.tenant | ForEach-Object { $skuid = $_ foreach ($sku in $skuid) { @@ -215,7 +218,7 @@ try { try { #$ConvertTable = Import-Csv Conversiontable.csv $LicenseTable = Get-CIPPTable -TableName ExcludedLicenses - $ExcludedSkuList = Get-AzDataTableEntity @LicenseTable + $ExcludedSkuList = Get-CIPPAzDataTableEntity @LicenseTable New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/subscribedSkus' -tenantid $Tenant.tenant | ForEach-Object { $skuid = $_ foreach ($sku in $skuid) { @@ -232,10 +235,11 @@ try { } } + { $_.'AppSecretExpiry' -eq $true } { try { $Filter = "RowKey eq 'AppSecretExpiry' and PartitionKey eq '{0}'" -f $Tenant.tenantid - $LastRun = Get-AzDataTableEntity @LastRunTable -Filter $Filter + $LastRun = Get-CIPPAzDataTableEntity @LastRunTable -Filter $Filter $Yesterday = (Get-Date).AddDays(-1) if (-not $LastRun.Timestamp.DateTime -or ($LastRun.Timestamp.DateTime -le $Yesterday)) { New-GraphGetRequest -uri "https://graph.microsoft.com/beta/applications?`$select=appId,displayName,passwordCredentials" -tenantid $Tenant.tenant | ForEach-Object { @@ -253,7 +257,7 @@ try { RowKey = 'AppSecretExpiry' PartitionKey = $Tenant.tenantid } - Add-AzDataTableEntity @LastRunTable -Entity $LastRun -Force + Add-CIPPAzDataTableEntity @LastRunTable -Entity $LastRun -Force } } catch { @@ -264,7 +268,7 @@ try { { $_.'ApnCertExpiry' -eq $true } { try { $Filter = "RowKey eq 'ApnCertExpiry' and PartitionKey eq '{0}'" -f $Tenant.tenantid - $LastRun = Get-AzDataTableEntity @LastRunTable -Filter $Filter + $LastRun = Get-CIPPAzDataTableEntity @LastRunTable -Filter $Filter $Yesterday = (Get-Date).AddDays(-1) if (-not $LastRun.Timestamp.DateTime -or ($LastRun.Timestamp.DateTime -le $Yesterday)) { try { @@ -279,7 +283,7 @@ try { RowKey = 'ApnCertExpiry' PartitionKey = $Tenant.tenantid } - Add-AzDataTableEntity @LastRunTable -Entity $LastRun -Force + Add-CIPPAzDataTableEntity @LastRunTable -Entity $LastRun -Force } catch { #$Message = 'Exception on line {0} - {1}' -f $_.InvocationInfo.ScriptLineNumber, $_.Exception.Message @@ -289,7 +293,7 @@ try { { $_.'VppTokenExpiry' -eq $true } { try { $Filter = "RowKey eq 'VppTokenExpiry' and PartitionKey eq '{0}'" -f $Tenant.tenantid - $LastRun = Get-AzDataTableEntity @LastRunTable -Filter $Filter + $LastRun = Get-CIPPAzDataTableEntity @LastRunTable -Filter $Filter $Yesterday = (Get-Date).AddDays(-1) if (-not $LastRun.Timestamp.DateTime -or ($LastRun.Timestamp.DateTime -le $Yesterday)) { try { @@ -308,7 +312,7 @@ try { RowKey = 'VppTokenExpiry' PartitionKey = $Tenant.tenantid } - Add-AzDataTableEntity @LastRunTable -Entity $LastRun -Force + Add-CIPPAzDataTableEntity @LastRunTable -Entity $LastRun -Force } } catch { @@ -319,7 +323,7 @@ try { { $_.'DepTokenExpiry' -eq $true } { try { $Filter = "RowKey eq 'DepTokenExpiry' and PartitionKey eq '{0}'" -f $Tenant.tenantid - $LastRun = Get-AzDataTableEntity @LastRunTable -Filter $Filter + $LastRun = Get-CIPPAzDataTableEntity @LastRunTable -Filter $Filter $Yesterday = (Get-Date).AddDays(-1) if (-not $LastRun.Timestamp.DateTime -or ($LastRun.Timestamp.DateTime -le $Yesterday)) { try { @@ -335,7 +339,7 @@ try { RowKey = 'DepTokenExpiry' PartitionKey = $Tenant.tenantid } - Add-AzDataTableEntity @LastRunTable -Entity $LastRun -Force + Add-CIPPAzDataTableEntity @LastRunTable -Entity $LastRun -Force } } catch { @@ -346,7 +350,7 @@ try { { $_.'SecDefaultsUpsell' -eq $true } { try { $Filter = "RowKey eq 'SecDefaultsUpsell' and PartitionKey eq '{0}'" -f $Tenant.tenantid - $LastRun = Get-AzDataTableEntity @LastRunTable -Filter $Filter + $LastRun = Get-CIPPAzDataTableEntity @LastRunTable -Filter $Filter $Yesterday = (Get-Date).AddDays(-1) if (-not $LastRun.Timestamp.DateTime -or ($LastRun.Timestamp.DateTime -le $Yesterday)) { try { @@ -360,7 +364,7 @@ try { RowKey = 'SecDefaultsUpsell' PartitionKey = $Tenant.tenantid } - Add-AzDataTableEntity @LastRunTable -Entity $LastRun -Force + Add-CIPPAzDataTableEntity @LastRunTable -Entity $LastRun -Force } } catch { @@ -374,11 +378,16 @@ try { $PartitionKey = Get-Date -UFormat '%Y%m%d' $Filter = "PartitionKey eq '{0}' and Tenant eq '{1}'" -f $PartitionKey, $tenant.tenant Write-Host $Filter - $currentlog = Get-AzDataTableEntity @Table -Filter $Filter + $currentlog = Get-CIPPAzDataTableEntity @Table -Filter $Filter $ShippedAlerts | ForEach-Object { if ($_ -notin $currentlog.Message) { - Write-LogMessage -message $_ -API 'Alerts' -tenant $tenant.tenant -sev Alert + if ($Config.includeTenantId) { + Write-LogMessage -message $_ -API 'Alerts' -tenant $tenant.tenant -sev Alert -tenantid $Tenant.tenantid + } + else { + Write-LogMessage -message $_ -API 'Alerts' -tenant $tenant.tenant -sev Alert + } } } [PSCustomObject]@{ diff --git a/Scheduler_Billing/run.ps1 b/Scheduler_Billing/run.ps1 index 1b3a163d32f3..4c14defea81b 100644 --- a/Scheduler_Billing/run.ps1 +++ b/Scheduler_Billing/run.ps1 @@ -6,7 +6,7 @@ try { Write-LogMessage -API "Scheduler_Billing" -tenant "none" -message "Starting billing processing." -sev Info $Table = Get-CIPPTable -TableName Extensionsconfig - $Configuration = (Get-AzDataTableEntity @Table).config | ConvertFrom-Json -Depth 10 + $Configuration = (Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json -Depth 10 foreach ($ConfigItem in $Configuration.psobject.properties.name) { switch ($ConfigItem) { "Gradient" { diff --git a/Scheduler_CIPPNotifications/run.ps1 b/Scheduler_CIPPNotifications/run.ps1 index 19d4f19b8e2d..f6069d9ac67c 100644 --- a/Scheduler_CIPPNotifications/run.ps1 +++ b/Scheduler_CIPPNotifications/run.ps1 @@ -3,7 +3,7 @@ param($tenant) $Table = Get-CIPPTable -TableName SchedulerConfig $Filter = "RowKey eq 'CippNotifications' and PartitionKey eq 'CippNotifications'" -$Config = [pscustomobject](Get-AzDataTableEntity @Table -Filter $Filter) +$Config = [pscustomobject](Get-CIPPAzDataTableEntity @Table -Filter $Filter) $Settings = [System.Collections.ArrayList]@('Alerts') $Config.psobject.properties.name | ForEach-Object { $settings.add($_) } @@ -16,7 +16,7 @@ Write-Host "Our Severity table is: $severity" $Table = Get-CIPPTable $PartitionKey = Get-Date -UFormat '%Y%m%d' $Filter = "PartitionKey eq '{0}'" -f $PartitionKey -$Currentlog = Get-AzDataTableEntity @Table -Filter $Filter | Where-Object { +$Currentlog = Get-CIPPAzDataTableEntity @Table -Filter $Filter | Where-Object { $_.API -In $Settings -and $_.SentAsAlert -ne $true -and $_.Severity -In $severity } Write-Host ($Currentlog).count @@ -49,6 +49,7 @@ try { } "@ New-GraphPostRequest -uri 'https://graph.microsoft.com/v1.0/me/sendMail' -tenantid $env:TenantID -type POST -body ($JSONBody) + Write-LogMessage -API 'Alerts' -message "Sent alerts to: $($JSONRecipients)" -tenant $Tenant -sev Debug } } } @@ -78,12 +79,13 @@ try { } "@ New-GraphPostRequest -uri 'https://graph.microsoft.com/v1.0/me/sendMail' -tenantid $env:TenantID -type POST -body ($JSONBody) + Write-LogMessage -API 'Alerts' -message "Sent alerts to: $($Config.email)" -tenant $Tenant -sev Debug } } } catch { Write-Host "Could not send alerts to email: $($_.Exception.message)" - Write-LogMessage -API 'Alerts' -message "Could not send alerts to : $($_.Exception.message)" -sev info + Write-LogMessage -API 'Alerts' -message "Could not send alerts to: $($_.Exception.message)" -tenant $Tenant -sev error } @@ -119,7 +121,7 @@ try { Invoke-RestMethod -Uri $config.webhook -Method POST -ContentType 'Application/json' -Body $JSONBody } } - + Write-LogMessage -API 'Alerts' -tenant $Tenant -message "Sent Webhook to $($config.webhook)" -sev Debug } $UpdateLogs = $CurrentLog | ForEach-Object { @@ -127,12 +129,12 @@ try { $_ } if ($UpdateLogs) { - Add-AzDataTableEntity @Table -Entity $UpdateLogs -Force + Add-CIPPAzDataTableEntity @Table -Entity $UpdateLogs -Force } } catch { Write-Host "Could not send alerts to webhook: $($_.Exception.message)" - Write-LogMessage -API 'Alerts' -message "Could not send alerts to : $($_.Exception.message)" -sev info + Write-LogMessage -API 'Alerts' -message "Could not send alerts to : $($_.Exception.message)" -tenant $Tenant -sev error } if ($config.sendtoIntegration) { @@ -150,13 +152,13 @@ if ($config.sendtoIntegration) { $_ } if ($UpdateLogs) { - Add-AzDataTableEntity @Table -Entity $UpdateLogs -Force + Add-CIPPAzDataTableEntity @Table -Entity $UpdateLogs -Force } } } catch { Write-Host "Could not send alerts to ticketing system: $($_.Exception.message)" - Write-LogMessage -API 'Alerts' -message "Could not send alerts to : $($_.Exception.message)" -sev info + Write-LogMessage -API 'Alerts' -tenant $Tenant -message "Could not send alerts to ticketing system: $($_.Exception.message)" -sev Error } } diff --git a/Scheduler_GetQueue/run.ps1 b/Scheduler_GetQueue/run.ps1 index 6500e138d3f5..9714b8421eb9 100644 --- a/Scheduler_GetQueue/run.ps1 +++ b/Scheduler_GetQueue/run.ps1 @@ -1,7 +1,7 @@ param($name) $Table = Get-CIPPTable -TableName SchedulerConfig -$Tenants = Get-AzDataTableEntity @Table +$Tenants = Get-CIPPAzDataTableEntity @Table $object = foreach ($Tenant in $Tenants) { if ($Tenant.tenant -ne 'AllTenants') { diff --git a/Scheduler_UserTasks/_functions.json b/Scheduler_UserTasks/_functions.json deleted file mode 100644 index a4e981dd588d..000000000000 --- a/Scheduler_UserTasks/_functions.json +++ /dev/null @@ -1,15 +0,0 @@ -{ - "bindings": [ - { - "name": "Timer", - "schedule": "0 */15 * * * *", - "direction": "in", - "type": "timerTrigger" - }, - { - "name": "starter", - "type": "durableClient", - "direction": "in" - } - ] - } \ No newline at end of file diff --git a/Scheduler_UserTasks/function.json b/Scheduler_UserTasks/function.json new file mode 100644 index 000000000000..de2a7380d759 --- /dev/null +++ b/Scheduler_UserTasks/function.json @@ -0,0 +1,16 @@ +{ + "bindings": [ + { + "name": "Timer", + "schedule": "0 */15 * * * *", + "direction": "in", + "type": "timerTrigger" + }, + { + "type": "queue", + "direction": "out", + "name": "Msg", + "queueName": "scheduledcommandprocessor" + } + ] +} diff --git a/Scheduler_UserTasks/run.ps1 b/Scheduler_UserTasks/run.ps1 index 91432822b602..802d4624473f 100644 --- a/Scheduler_UserTasks/run.ps1 +++ b/Scheduler_UserTasks/run.ps1 @@ -1,44 +1,50 @@ param($Timer) $Table = Get-CippTable -tablename 'ScheduledTasks' -$Filter = "Results eq 'Not Executed'" -$tasks = Get-AzDataTableEntity @Table -Filter $Filter - +$Filter = "TaskState eq 'Planned' or TaskState eq 'Failed - Planned'" +$tasks = Get-CIPPAzDataTableEntity @Table -Filter $Filter foreach ($task in $tasks) { - # Check if task has not been executed yet (i.e., 'Results' is 'Not Executed') - if ((Get-Date) -ge $task.ExpectedRunTime) { + $tenant = $task.Tenant + $currentUnixTime = [int64](([datetime]::UtcNow) - (Get-Date '1/1/1970')).TotalSeconds + if ($currentUnixTime -ge $task.ScheduledTime) { try { Update-AzDataTableEntity @Table -Entity @{ PartitionKey = $task.PartitionKey - RowKey = $task.RowKey - TaskState = 'Running' - # Update other properties as needed + RowKey = $task.RowKey + ExecutedTime = "$currentUnixTime" + TaskState = 'Running' } + $task.Parameters = $task.Parameters | ConvertFrom-Json -AsHashtable + $task.AdditionalProperties = $task.AdditionalProperties | ConvertFrom-Json - $results = Invoke-Command -ScriptBlock ([ScriptBlock]::Create($task.Command)) -ArgumentList $task.Parameters + if (!$task.Parameters) { $task.Parameters = @{} } + $ScheduledCommand = [pscustomobject]@{ + Command = $task.Command + Parameters = $task.Parameters + TaskInfo = $task + } - Update-AzDataTableEntity @Table -Entity @{ - PartitionKey = $task.PartitionKey - RowKey = $task.RowKey - Results = "$results" - TaskState = 'Completed' - # Update other properties as needed + if ($task.Tenant -eq 'AllTenants') { + $Results = Get-Tenants | ForEach-Object { + $ScheduledCommand.Parameters['TenantFilter'] = $_.defaultDomainName + Push-OutputBinding -Name Msg -Value $ScheduledCommand + } + } else { + $ScheduledCommand.Parameters['TenantFilter'] = $task.Tenant + $Results = Push-OutputBinding -Name Msg -Value $ScheduledCommand } - Write-LogMessage -API "Scheduler_UserTasks" -tenant $tenant -message "Successfully executed task: $($task.RowKey)" -sev Info - } - catch { + } catch { $errorMessage = $_.Exception.Message Update-AzDataTableEntity @Table -Entity @{ PartitionKey = $task.PartitionKey - RowKey = $task.RowKey - Results = "$errorMessage" - TaskState = 'Failed' - # Update other properties as needed + RowKey = $task.RowKey + Results = "$errorMessage" + ExecutedTime = "$currentUnixTime" + TaskState = 'Failed' } - - Write-LogMessage -API "Scheduler_UserTasks" -tenant $tenant -message "Failed to execute task: $errorMessage" -sev Error + Write-LogMessage -API 'Scheduler_UserTasks' -tenant $tenant -message "Failed to execute task $($task.Name): $errorMessage" -sev Error } } } \ No newline at end of file diff --git a/Standards_AuditLog/run.ps1 b/Standards_AuditLog/run.ps1 index cb41ed69e5e9..b4f77d268247 100644 --- a/Standards_AuditLog/run.ps1 +++ b/Standards_AuditLog/run.ps1 @@ -21,6 +21,7 @@ try { } catch { + $ErrorMessage = Get-NormalizedError -Message $_.Exception.Message Write-LogMessage -API "Standards" -tenant $tenant -message "Failed to apply Unified Audit Log. Error: $ErrorMessage" -sev Error } \ No newline at end of file diff --git a/Standards_ConditionalAccess/run.ps1 b/Standards_ConditionalAccess/run.ps1 index 80758f996af8..0730b41371da 100644 --- a/Standards_ConditionalAccess/run.ps1 +++ b/Standards_ConditionalAccess/run.ps1 @@ -1,9 +1,9 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.ConditionalAccess +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.ConditionalAccess if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.ConditionalAccess + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.ConditionalAccess } $APINAME = "Standards" @@ -12,7 +12,7 @@ foreach ($Template in $Setting.TemplateList) { try { $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'CATemplate' and RowKey eq '$($Template.value)'" - $JSONObj = (Get-AzDataTableEntity @Table -Filter $Filter).JSON + $JSONObj = (Get-CIPPAzDataTableEntity @Table -Filter $Filter).JSON $CAPolicy = New-CIPPCAPolicy -TenantFilter $tenant -state $request.body.NewState -RawJSON $JSONObj -Overwrite $true -APIName $APIName -ExecutingUser $request.headers.'x-ms-client-principal' } catch { diff --git a/Standards_DisableM365GroupUsers/run.ps1 b/Standards_DisableM365GroupUsers/run.ps1 index a91b6c71e750..54dc6199d3fa 100644 --- a/Standards_DisableM365GroupUsers/run.ps1 +++ b/Standards_DisableM365GroupUsers/run.ps1 @@ -1,16 +1,16 @@ param($tenant) try { - $CurrentState = (New-GraphGetRequest -Uri "https://graph.microsoft.com/beta/settings" -tenantid $tenant) | Where-Object -Property displayname -EQ 'Group.unified' + $CurrentState = (New-GraphGetRequest -asApp $true -Uri "https://graph.microsoft.com/beta/settings" -tenantid $tenant) | Where-Object -Property displayname -EQ 'Group.unified' if (!$CurrentState) { #if no current configuration is found, we set it to the default template supplied by MS. $CurrentState = '{"id":"","displayName":"Group.Unified","templateId":"62375ab9-6b52-47ed-826b-58e47e0e304b","values":[{"name":"NewUnifiedGroupWritebackDefault","value":"true"},{"name":"EnableMIPLabels","value":"false"},{"name":"CustomBlockedWordsList","value":""},{"name":"EnableMSStandardBlockedWords","value":"false"},{"name":"ClassificationDescriptions","value":""},{"name":"DefaultClassification","value":""},{"name":"PrefixSuffixNamingRequirement","value":""},{"name":"AllowGuestsToBeGroupOwner","value":"false"},{"name":"AllowGuestsToAccessGroups","value":"true"},{"name":"GuestUsageGuidelinesUrl","value":""},{"name":"GroupCreationAllowedGroupId","value":""},{"name":"AllowToAddGuests","value":"true"},{"name":"UsageGuidelinesUrl","value":""},{"name":"ClassificationList","value":""},{"name":"EnableGroupCreation","value":"true"}]}' - (New-GraphPostRequest -tenantid $tenant -Uri "https://graph.microsoft.com/beta/settings/$($CurrentState.id)" -Type POST -Body $CurrentState -ContentType "application/json") - $CurrentState = (New-GraphGetRequest -Uri "https://graph.microsoft.com/beta/settings" -tenantid $tenant) | Where-Object -Property displayname -EQ 'Group.unified' + (New-GraphPostRequest -AsApp $true -tenantid $tenant -Uri "https://graph.microsoft.com/beta/settings/$($CurrentState.id)" -Type POST -Body $CurrentState -ContentType "application/json") + $CurrentState = (New-GraphGetRequest -asApp $true -Uri "https://graph.microsoft.com/beta/settings" -tenantid $tenant) | Where-Object -Property displayname -EQ 'Group.unified' } ($CurrentState.values | Where-Object { $_.name -eq 'EnableGroupCreation' }).value = "false" $body = "{values : $($CurrentState.values | ConvertTo-Json -Compress)}" - (New-GraphPostRequest -tenantid $tenant -Uri "https://graph.microsoft.com/beta/settings/$($CurrentState.id)" -Type patch -Body $body -ContentType "application/json") + (New-GraphPostRequest -AsApp $true -tenantid $tenant -Uri "https://graph.microsoft.com/beta/settings/$($CurrentState.id)" -Type patch -Body $body -ContentType "application/json") Write-LogMessage -API "Standards" -tenant $tenant -message "Standards API: Disabled users from creating M365 Groups." -sev Info } catch { diff --git a/Standards_ExConnector/run.ps1 b/Standards_ExConnector/run.ps1 index 339bd2195b39..9250918a0279 100644 --- a/Standards_ExConnector/run.ps1 +++ b/Standards_ExConnector/run.ps1 @@ -1,17 +1,17 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.ExConnector +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.ExConnector if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.ExConnector + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.ExConnector } $APINAME = "Standards" foreach ($Template in $Setting.TemplateList) { try { $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'ExConnectorTemplate' and RowKey eq '$($Template.value)'" - $connectorType = (Get-AzDataTableEntity @Table -Filter $Filter).direction - $RequestParams = (Get-AzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json + $connectorType = (Get-CIPPAzDataTableEntity @Table -Filter $Filter).direction + $RequestParams = (Get-CIPPAzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json $Existing = New-ExoRequest -ErrorAction SilentlyContinue -tenantid $Tenant -cmdlet "Get-$($ConnectorType)connector" | Where-Object -Property Identity -EQ $RequestParams.name if ($Existing) { $RequestParams | Add-Member -NotePropertyValue $Existing.Identity -NotePropertyName Identity -Force diff --git a/Standards_ExcludedfileExt/run.ps1 b/Standards_ExcludedfileExt/run.ps1 index d46e9e2c6b2d..e8620848f04d 100644 --- a/Standards_ExcludedfileExt/run.ps1 +++ b/Standards_ExcludedfileExt/run.ps1 @@ -1,8 +1,8 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.ExcludedfileExt +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.ExcludedfileExt if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.ExcludedfileExt + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.ExcludedfileExt } try { diff --git a/Standards_GetQueue/run.ps1 b/Standards_GetQueue/run.ps1 index ca2bf7d89361..021fe7017d3e 100644 --- a/Standards_GetQueue/run.ps1 +++ b/Standards_GetQueue/run.ps1 @@ -2,27 +2,30 @@ param($name) Write-Host 'QUEUEQUE' $Table = Get-CippTable -tablename 'standards' -$tenants = (Get-AzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json +$SkipList = Get-Tenants -SkipList +$Tenants = (Get-CIPPAzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json -$object = foreach ($Tenant in $tenants) { - $tenant.standards.psobject.properties.name | ForEach-Object { +$object = foreach ($Tenant in $Tenants) { + $Tenant.standards.psobject.properties.name | ForEach-Object { $Standard = $_ - if ($tenant.Tenant -ne 'AllTenants') { + if ($Tenant.Tenant -ne 'AllTenants' -and $SkipList.defaultDomainName -notcontains $Tenant.Tenant) { Write-Host 'Not all tenants. Single object' - [pscustomobject]@{ + [pscustomobject]@{ Tenant = $tenant.Tenant Standard = $Standard } - } - else { - get-tenants | ForEach-Object { - [pscustomobject]@{ - Tenant = $_.defaultDomainName - Standard = $Standard + } elseif ($Tenant.Tenant -eq 'AllTenants') { + Get-Tenants | ForEach-Object { + $Tenant = $_ + $TenantStandard = $Tenants | Where-Object { $_.Tenant -eq $Tenant.defaultDomainName } + if ($TenantStandard.OverrideAllTenants -ne $true) { + [pscustomobject]@{ + Tenant = $_.defaultDomainName + Standard = $Standard + } } } } } - } $object \ No newline at end of file diff --git a/Standards_GroupTemplate/run.ps1 b/Standards_GroupTemplate/run.ps1 index 86f2154e1e08..4034f513e5ac 100644 --- a/Standards_GroupTemplate/run.ps1 +++ b/Standards_GroupTemplate/run.ps1 @@ -1,9 +1,9 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.GroupTemplate +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.GroupTemplate if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.GroupTemplate + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.GroupTemplate } @@ -12,7 +12,7 @@ foreach ($Template in $Setting.TemplateList) { try { $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'GroupTemplate' and RowKey eq '$($Template.value)'" - $groupobj = (Get-AzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json + $groupobj = (Get-CIPPAzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json $email = if ($groupobj.domain) { "$($groupobj.username)@$($groupobj.domain)" } else { "$($groupobj.username)@$($tenant)" } $CheckExististing = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/groups" -tenantid $tenant | Where-Object -Property displayName -EQ $groupobj.displayname if (!$CheckExististing) { diff --git a/Standards_IntuneTemplate/run.ps1 b/Standards_IntuneTemplate/run.ps1 index 1db59ef6e28e..d33febabede5 100644 --- a/Standards_IntuneTemplate/run.ps1 +++ b/Standards_IntuneTemplate/run.ps1 @@ -1,9 +1,9 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.IntuneTemplate +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.IntuneTemplate if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.IntuneTemplate + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.IntuneTemplate } $APINAME = "Standards" @@ -12,7 +12,7 @@ foreach ($Template in $Setting.TemplateList) { $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'IntuneTemplate'" $Request = @{body = $null } - $Request.body = (Get-AzDataTableEntity @Table -Filter $Filter | Where-Object -Property RowKey -Like "$($template.value)*").JSON | ConvertFrom-Json + $Request.body = (Get-CIPPAzDataTableEntity @Table -Filter $Filter | Where-Object -Property RowKey -Like "$($template.value)*").JSON | ConvertFrom-Json $displayname = $request.body.Displayname $description = $request.body.Description $AssignTo = if ($request.body.Assignto -ne "on") { $request.body.Assignto } diff --git a/Standards_MailContacts/run.ps1 b/Standards_MailContacts/run.ps1 index 17c3f3dbf40f..83cbd4bea699 100644 --- a/Standards_MailContacts/run.ps1 +++ b/Standards_MailContacts/run.ps1 @@ -1,8 +1,8 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Contacts = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.MailContacts +$Contacts = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.MailContacts if (!$Contacts) { - $Contacts = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.MailContacts + $Contacts = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.MailContacts } try { diff --git a/Standards_NudgeMFA/run.ps1 b/Standards_NudgeMFA/run.ps1 index 3ca2f7bf7940..29fb5b21227e 100644 --- a/Standards_NudgeMFA/run.ps1 +++ b/Standards_NudgeMFA/run.ps1 @@ -1,9 +1,9 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.NudgeMFA +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.NudgeMFA if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.NudgeMFA + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.NudgeMFA } Write-Output $setting $status = if ($Setting.enable -and $Setting.disable) { @@ -13,7 +13,9 @@ $status = if ($Setting.enable -and $Setting.disable) { elseif ($setting.enable) { "enabled" } else { "disabled" } Write-Output $status try { - $body = '{"registrationEnforcement":{"authenticationMethodsRegistrationCampaign":{"snoozeDurationInDays":0,"state":"' + $status + '","excludeTargets":[],"includeTargets":[{"id":"all_users","targetType":"group","targetedAuthenticationMethod":"microsoftAuthenticator","displayName":"All users"}]}}}' + $Body = (New-GraphGetRequest -tenantid $tenant -Uri "https://graph.microsoft.com/beta/policies/authenticationMethodsPolicy") + $body.registrationEnforcement.authenticationMethodsRegistrationCampaign.state = $status + $body = ConvertTo-Json -Depth 10 -InputObject ($body | Select-Object registrationEnforcement) New-GraphPostRequest -tenantid $tenant -Uri "https://graph.microsoft.com/beta/policies/authenticationMethodsPolicy" -Type patch -Body $body -ContentType "application/json" Write-LogMessage -API "Standards" -tenant $tenant -message "$status Authenticator App Nudge" -sev Info } diff --git a/Standards_OauthConsent/run.ps1 b/Standards_OauthConsent/run.ps1 index 2de32a7c38fc..03479b028411 100644 --- a/Standards_OauthConsent/run.ps1 +++ b/Standards_OauthConsent/run.ps1 @@ -1,8 +1,8 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$AllowedAppIdsForTenant = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).Standards.OauthConsent.AllowedApps -split ',' +$AllowedAppIdsForTenant = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).Standards.OauthConsent.AllowedApps -split ',' if (!$AllowedAppIdsForTenant) { - $AllowedAppIdsForTenant = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).Standards.OauthConsent.AllowedApps -split ',' + $AllowedAppIdsForTenant = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).Standards.OauthConsent.AllowedApps -split ',' } try { $State = (New-GraphGetRequest -Uri "https://graph.microsoft.com/beta/policies/authorizationPolicy/authorizationPolicy" -tenantid $tenant) diff --git a/Standards_Orchestration/run.ps1 b/Standards_Orchestration/run.ps1 index 81841633afd6..5e20d3ed21d4 100644 --- a/Standards_Orchestration/run.ps1 +++ b/Standards_Orchestration/run.ps1 @@ -7,19 +7,26 @@ $DurableRetryOptions = @{ } $RetryOptions = New-DurableRetryOptions @DurableRetryOptions -$Batch = (Invoke-ActivityFunction -FunctionName 'Standards_GetQueue' -Input 'LetsGo') -$ParallelTasks = foreach ($Item in $Batch) { - if ($item['Standard']) { +$Batch = Invoke-ActivityFunction -FunctionName 'Standards_GetQueue' -Input 'LetsGo' -ErrorAction Stop +if ($null -ne $Batch -and ($Batch | Measure-Object).Count -gt 0) { + $ParallelTasks = foreach ($Item in $Batch) { + if ($item['Standard']) { + try { + Invoke-DurableActivity -FunctionName "Standards_$($item['Standard'])" -Input "$($item['Tenant'])" -NoWait -RetryOptions $RetryOptions -ErrorAction Stop + } catch { + Write-LogMessage -API 'Standards' -tenant $tenant -message "Task error: $($_.Exception.Message)" -sev Error + } + } + } + + if (($ParallelTasks | Measure-Object).Count -gt 0) { try { - Invoke-DurableActivity -FunctionName "Standards_$($item['Standard'])" -Input "$($item['Tenant'])" -NoWait -RetryOptions $RetryOptions -ErrorAction Stop + $Outputs = Wait-ActivityFunction -Task $ParallelTasks -ErrorAction Stop } catch { - Write-LogMessage -API 'Standards' -tenant $tenant -message "Task error: $($_.Exception.Message)" -sev Error - + Write-Information "Standards Wait-ActivityFunction error: $($_.Exception.Message)" } + Write-LogMessage -API 'Standards' -tenant $tenant -message 'Deployment finished.' -sev Info } -} - -if (($ParallelTasks).count -gt 0) { - $Outputs = Wait-ActivityFunction -Task $ParallelTasks - Write-LogMessage -API 'Standards' -tenant $tenant -message 'Deployment finished.' -sev Info +} else { + Write-Information 'No Standards to process' } diff --git a/Standards_OutBoundSpamAlert/run.ps1 b/Standards_OutBoundSpamAlert/run.ps1 index ef6919989ce8..68b3b1952e60 100644 --- a/Standards_OutBoundSpamAlert/run.ps1 +++ b/Standards_OutBoundSpamAlert/run.ps1 @@ -1,8 +1,8 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Contacts = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.OutBoundSpamAlert +$Contacts = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.OutBoundSpamAlert if (!$Contacts) { - $Contacts = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.OutBoundSpamAlert + $Contacts = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.OutBoundSpamAlert } try { diff --git a/Standards_PWcompanionAppAllowedState/run.ps1 b/Standards_PWcompanionAppAllowedState/run.ps1 index aae6b4a28949..ef0dbd2b255f 100644 --- a/Standards_PWcompanionAppAllowedState/run.ps1 +++ b/Standards_PWcompanionAppAllowedState/run.ps1 @@ -1,9 +1,9 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.PWcompanionAppAllowedState +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.PWcompanionAppAllowedState if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.PWcompanionAppAllowedState + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.PWcompanionAppAllowedState } try { diff --git a/Standards_PWdisplayAppInformationRequiredState/run.ps1 b/Standards_PWdisplayAppInformationRequiredState/run.ps1 index f56e9777bac2..8ec998ca485f 100644 --- a/Standards_PWdisplayAppInformationRequiredState/run.ps1 +++ b/Standards_PWdisplayAppInformationRequiredState/run.ps1 @@ -2,7 +2,7 @@ param($tenant) try { $body = @" -{"@odata.type":"#microsoft.graph.microsoftAuthenticatorAuthenticationMethodConfiguration","id":"MicrosoftAuthenticator","includeTargets":[{"id":"all_users","isRegistrationRequired":false,"targetType":"group","authenticationMode":"any"}],"excludeTargets":[],"state":"enabled","isSoftwareOathEnabled":false,"featureSettings":{"displayLocationInformationRequiredState":{"state":"enabled","includeTarget":{"id":"all_users","targetType":"group","displayName":"All users"}},"displayAppInformationRequiredState":{"state":"enabled","includeTarget":{"id":"all_users","targetType":"group","displayName":"All users"}},"companionAppAllowedState":{"state":"default","includeTarget":{"id":"all_users","targetType":"group","displayName":"All users"}}}} +{"@odata.type":"#microsoft.graph.microsoftAuthenticatorAuthenticationMethodConfiguration","id":"MicrosoftAuthenticator","includeTargets":[{"id":"all_users","isRegistrationRequired":false,"targetType":"group","authenticationMode":"any"}],"excludeTargets":[],"state":"enabled","featureSettings":{"displayLocationInformationRequiredState":{"state":"enabled","includeTarget":{"id":"all_users","targetType":"group","displayName":"All users"}},"displayAppInformationRequiredState":{"state":"enabled","includeTarget":{"id":"all_users","targetType":"group","displayName":"All users"}},"companionAppAllowedState":{"state":"default","includeTarget":{"id":"all_users","targetType":"group","displayName":"All users"}}}} "@ (New-GraphPostRequest -tenantid $tenant -Uri "https://graph.microsoft.com/beta/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/microsoftAuthenticator" -Type patch -Body $body -ContentType "application/json") diff --git a/Standards_SafeSendersDisable/function.json b/Standards_SafeSendersDisable/function.json new file mode 100644 index 000000000000..2d4ea9094b24 --- /dev/null +++ b/Standards_SafeSendersDisable/function.json @@ -0,0 +1,9 @@ +{ + "bindings": [ + { + "name": "tenant", + "direction": "in", + "type": "activityTrigger" + } + ] +} \ No newline at end of file diff --git a/Standards_SafeSendersDisable/run.ps1 b/Standards_SafeSendersDisable/run.ps1 new file mode 100644 index 000000000000..1c5cb1d0feb1 --- /dev/null +++ b/Standards_SafeSendersDisable/run.ps1 @@ -0,0 +1,17 @@ +param($tenant) + +try { + $Mailboxes = New-ExoRequest -tenantid $Tenant -cmdlet "Get-Mailbox" | ForEach-Object { + try { + $username = $_.UserPrincipalName + New-ExoRequest -tenantid $Tenant -cmdlet "Set-MailboxJunkEmailConfiguration" -cmdParams @{Identity = $_.GUID ; TrustedRecipientsAndDomains = $null } -anchor $username + } + catch { + Write-LogMessage -API "Standards" -tenant $tenant -message "Could not disbale SafeSenders list for $($username): $($_.Exception.message)" -sev Warn + } + } + Write-LogMessage -API "Standards" -tenant $tenant -message "Safe Senders disabled" -sev Info +} +catch { + Write-LogMessage -API "Standards" -tenant $tenant -message "Failed to disable SafeSenders. Error: $($_.exception.message)" -sev Error +} \ No newline at end of file diff --git a/Standards_SpoofWarn/run.ps1 b/Standards_SpoofWarn/run.ps1 index 470bfa0dbd1d..1fc970fbe231 100644 --- a/Standards_SpoofWarn/run.ps1 +++ b/Standards_SpoofWarn/run.ps1 @@ -1,9 +1,9 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.spoofwarn +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.spoofwarn if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.spoofwarn + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.spoofwarn } $status = if ($Setting.enable -and $Setting.disable) { Write-LogMessage -API "Standards" -tenant $tenant -message "You cannot both enable and disable the Spoof Warnings setting" -sev Error diff --git a/Standards_TAP/run.ps1 b/Standards_TAP/run.ps1 index f1029e28f7ef..b7ca0a778c6e 100644 --- a/Standards_TAP/run.ps1 +++ b/Standards_TAP/run.ps1 @@ -1,8 +1,8 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$TAPConfig = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).Standards.TAP.config +$TAPConfig = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).Standards.TAP.config if (!$TAPConfig) { - $TAPConfig = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).Standards.TAP.config + $TAPConfig = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).Standards.TAP.config } if (!$TAPConfig) { $TAPConfig = 'true' } try { diff --git a/Standards_TransportRuleTemplate/run.ps1 b/Standards_TransportRuleTemplate/run.ps1 index 41212eb09b4e..5b29a2e6934a 100644 --- a/Standards_TransportRuleTemplate/run.ps1 +++ b/Standards_TransportRuleTemplate/run.ps1 @@ -2,15 +2,15 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.TransportRuleTemplate +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.TransportRuleTemplate if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.TransportRuleTemplate + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.TransportRuleTemplate } foreach ($Template in $Setting.TemplateList) { $Table = Get-CippTable -tablename 'templates' $Filter = "PartitionKey eq 'TransportTemplate' and RowKey eq '$($Template.value)'" - $RequestParams = (Get-AzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json + $RequestParams = (Get-CIPPAzDataTableEntity @Table -Filter $Filter).JSON | ConvertFrom-Json $Existing = New-ExoRequest -ErrorAction SilentlyContinue -tenantid $Tenant -cmdlet "Get-TransportRule" -useSystemMailbox $true | Where-Object -Property Identity -EQ $RequestParams.name diff --git a/Standards_UserSubmissions/run.ps1 b/Standards_UserSubmissions/run.ps1 index b0f40c8f25e2..70b961c87ea6 100644 --- a/Standards_UserSubmissions/run.ps1 +++ b/Standards_UserSubmissions/run.ps1 @@ -1,9 +1,9 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.usersubmissions +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.usersubmissions if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.usersubmissions + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.usersubmissions } if ($Setting.enable -and $Setting.disable) { Write-LogMessage -API "Standards" -tenant $tenant -message "You cannot both enable and disable the User Submission policy" -sev Error diff --git a/Standards_calDefault/run.ps1 b/Standards_calDefault/run.ps1 index 80a2169c275c..b3160913ad5b 100644 --- a/Standards_calDefault/run.ps1 +++ b/Standards_calDefault/run.ps1 @@ -1,9 +1,9 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.caldefault +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.caldefault if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.caldefault + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.caldefault } diff --git a/Standards_fwdAdminAlerts/run.ps1 b/Standards_fwdAdminAlerts/run.ps1 index 80a2169c275c..b3160913ad5b 100644 --- a/Standards_fwdAdminAlerts/run.ps1 +++ b/Standards_fwdAdminAlerts/run.ps1 @@ -1,9 +1,9 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.caldefault +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.caldefault if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.caldefault + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.caldefault } diff --git a/Standards_intuneDeviceReg/run.ps1 b/Standards_intuneDeviceReg/run.ps1 index fd83a48ae6b3..20cff265909a 100644 --- a/Standards_intuneDeviceReg/run.ps1 +++ b/Standards_intuneDeviceReg/run.ps1 @@ -1,9 +1,9 @@ param($tenant) try { $ConfigTable = Get-CippTable -tablename 'standards' - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.intuneDeviceReg + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.intuneDeviceReg if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.intuneDeviceReg + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.intuneDeviceReg } $PreviousSetting = New-GraphGetRequest -uri "https://graph.microsoft.com/beta/policies/deviceRegistrationPolicy" -tenantid $Tenant $PreviousSetting.userDeviceQuota = $Setting.max diff --git a/Standards_intuneDeviceRetirementDays/run.ps1 b/Standards_intuneDeviceRetirementDays/run.ps1 index 7ec7d6ed1d4e..2ff61cc18f3e 100644 --- a/Standards_intuneDeviceRetirementDays/run.ps1 +++ b/Standards_intuneDeviceRetirementDays/run.ps1 @@ -1,9 +1,9 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.DeviceInactivityBeforeRetirementInDays +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.DeviceInactivityBeforeRetirementInDays if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.DeviceInactivityBeforeRetirementInDays + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.DeviceInactivityBeforeRetirementInDays } try { diff --git a/Standards_intuneRequireMFA/function.json b/Standards_intuneRequireMFA/function.json new file mode 100644 index 000000000000..ce713ef7d4f6 --- /dev/null +++ b/Standards_intuneRequireMFA/function.json @@ -0,0 +1,9 @@ +{ + "bindings": [ + { + "name": "tenant", + "type": "activityTrigger", + "direction": "in" + } + ] +} \ No newline at end of file diff --git a/Standards_intuneRequireMFA/run.ps1 b/Standards_intuneRequireMFA/run.ps1 new file mode 100644 index 000000000000..445ab1fee6ac --- /dev/null +++ b/Standards_intuneRequireMFA/run.ps1 @@ -0,0 +1,11 @@ +param($tenant) +try { + $PreviousSetting = New-GraphGetRequest -uri "https://graph.microsoft.com/beta/policies/deviceRegistrationPolicy" -tenantid $Tenant + $PreviousSetting.multiFactorAuthConfiguration = '1' + $Newbody = ConvertTo-Json -Compress -InputObject $PreviousSetting + New-GraphPostRequest -tenantid $tenant -Uri "https://graph.microsoft.com/beta/policies/deviceRegistrationPolicy" -Type PUT -Body $NewBody -ContentType "application/json" + Write-LogMessage -API "Standards" -tenant $tenant -message "Set required to use MFA when joining Intune Devices" -sev Info +} +catch { + Write-LogMessage -API "Standards" -tenant $tenant -message "Failed to set require to use MFA when joining Intune Devices: $($_.exception.message)" -sev Error +} \ No newline at end of file diff --git a/Standards_sharingCapability/run.ps1 b/Standards_sharingCapability/run.ps1 index e9b1cb89c2a6..746f067723f5 100644 --- a/Standards_sharingCapability/run.ps1 +++ b/Standards_sharingCapability/run.ps1 @@ -1,9 +1,9 @@ param($tenant) $ConfigTable = Get-CippTable -tablename 'standards' -$Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.sharingCapability +$Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq '$tenant'").JSON | ConvertFrom-Json).standards.sharingCapability if (!$Setting) { - $Setting = ((Get-AzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.sharingCapability + $Setting = ((Get-CIPPAzDataTableEntity @ConfigTable -Filter "PartitionKey eq 'standards' and RowKey eq 'AllTenants'").JSON | ConvertFrom-Json).standards.sharingCapability } try { diff --git a/UpdatePermissions/run.ps1 b/UpdatePermissions/run.ps1 index 70b088355d1c..03faa53ab09f 100644 --- a/UpdatePermissions/run.ps1 +++ b/UpdatePermissions/run.ps1 @@ -1,33 +1,7 @@ # Input bindings are passed in via param block. param($Timer) -# Get the current universal time in the default string format. -$currentUTCtime = (Get-Date).ToUniversalTime() - -$Table = Get-CIPPTable -TableName cpvtenants -$CPVRows = Get-AzDataTableEntity @Table - -$Tenants = get-tenants -$TenantList = $CPVRows.Tenant -foreach ($Row in $Tenants ) { - Write-Output "Processing tenants" - - if (!$CPVRows) { - Write-Output "No list available" - Push-OutputBinding -Name Msg -Value $row.customerId - continue - } - - if ($Row.customerId -notin $TenantList) { - Write-Output "Not in the list: $($row.customerId)" - Push-OutputBinding -Name Msg -Value $row.customerId - continue - - } - - if ($CPVRows | Where-Object { $_.Tenant -eq $row.customerId } | Where-Object { $_.LastApply -EQ $null -or (Get-Date $_.LastApply).AddDays(-14) -gt $currentUTCtime }) { - Write-Output "In list, Old age." - Push-OutputBinding -Name Msg -Value $row.customerId - continue - } +$Tenants = get-tenants -IncludeAll +foreach ($Row in $Tenants) { + Push-OutputBinding -Name Msg -Value $row } \ No newline at end of file diff --git a/UpdatePermissionsQueue/run.ps1 b/UpdatePermissionsQueue/run.ps1 index a8f01f5572aa..8756f33019be 100644 --- a/UpdatePermissionsQueue/run.ps1 +++ b/UpdatePermissionsQueue/run.ps1 @@ -1,91 +1,15 @@ # Input bindings are passed in via param block. -param([string]$QueueItem, $TriggerMetadata) - -# Get the current universal time in the default string format. -Set-Location (Get-Item $PSScriptRoot).Parent.FullName -$TenantFilter = get-tenants | Where-Object customerId -EQ $QueueItem +param($QueueItem, $TriggerMetadata) +Write-Host "Applying permissions for $($QueueItem.defaultDomainName)" $Table = Get-CIPPTable -TableName cpvtenants -$APINAME = "CPV Permissions" -$Translator = Get-Content '.\Cache_SAMSetup\PermissionsTranslator.json' | ConvertFrom-Json -$ExpectedPermissions = Get-Content '.\Cache_SAMSetup\SAMManifest.json' | ConvertFrom-Json -try { - $DeleteOldPermissions = New-GraphpostRequest -Type DELETE -noauthcheck $true -uri "https://api.partnercenter.microsoft.com/v1/customers/$($TenantFilter.customerId)/applicationconsents/$($env:ApplicationID)" -scope "https://api.partnercenter.microsoft.com/.default" -tenantid $env:TenantID - -} -catch { - "no old permissions to delete, moving on" +$CPVRows = Get-CIPPAzDataTableEntity @Table | Where-Object -Property Tenant -EQ $QueueItem.customerId +if (!$CPVRows -or $ENV:ApplicationID -notin $CPVRows.applicationId) { + Write-LogMessage -message "A New tenant has been added, or a new CIPP-SAM Application is in use: $($queueitem.defaultDomainName) with id $($queueitem.customerId)" -Sev "Warn" -API "NewTenant" + Write-Host "Adding CPV permissions" + Set-CIPPCPVConsent -Tenantfilter $QueueItem.defaultDomainName } -$GraphRequest = $ExpectedPermissions.requiredResourceAccess | ForEach-Object { - try { - $Resource = $_ - $Permissionsname = switch ($Resource.ResourceAppId) { - '00000002-0000-0ff1-ce00-000000000000' { 'Office 365 Exchange Online' } - '00000003-0000-0000-c000-000000000000' { "Graph API" } - 'fc780465-2017-40d4-a0c5-307022471b92' { 'WindowsDefenderATP' } - '00000003-0000-0ff1-ce00-000000000000' { 'Sharepoint' } - '48ac35b8-9aa8-4d74-927d-1f4a14a0b239' { 'Skype and Teams Tenant Admin API' } - 'c5393580-f805-4401-95e8-94b7a6ef2fc2' { 'Office 365 Management API' } - - - } - $Scope = ($Translator | Where-Object { $_.id -in $Resource.ResourceAccess.id } | Where-Object { $_.value -notin 'profile', 'openid', 'offline_access' }).value -join ', ' - if ($Scope) { - $RequiredCPVPerms = [PSCustomObject]@{ - EnterpriseApplicationId = $_.ResourceAppId - Scope = "$Scope" - } - $AppBody = @" -{ - "ApplicationGrants":[ $(ConvertTo-Json -InputObject $RequiredCPVPerms -Compress -Depth 10)], - "ApplicationId": "$($env:ApplicationID)" -} -"@ - $CPVConsent = New-GraphpostRequest -body $AppBody -Type POST -noauthcheck $true -uri "https://api.partnercenter.microsoft.com/v1/customers/$($TenantFilter.customerId)/applicationconsents" -scope "https://api.partnercenter.microsoft.com/.default" -tenantid $env:TenantID - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -Tenant $TenantFilter.defaultDomainName -message "Succesfully set CPV Permissions for $PermissionsName" -Sev "Error" - - "Succesfully set CPV permissions for $Permissionsname" - - } - } - catch { - Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -Tenant $TenantFilter.defaultDomainName -message "Could not set CPV permissions for $PermissionsName. Does the Tenant have a license for this API? Error: $($_.Exception.message)" -Sev "Error" - "Could not set CPV permissions for $PermissionsName. Does the Tenant have a license for this API? Error: $($_.Exception.message)" - } -} -$ourSVCPrincipal = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/servicePrincipals(appId='$($ENV:applicationid)')" -tenantid $Tenantfilter.customerid - -# if the app svc principal exists, consent app permissions -$apps = $ExpectedPermissions -$Grants = foreach ($App in $apps.requiredResourceAccess) { - try { - $svcPrincipalId = New-GraphGETRequest -uri "https://graph.microsoft.com/v1.0/servicePrincipals(appId='$($app.resourceAppId)')" -tenantid $Tenantfilter.customerid - } - catch { - continue - } - foreach ($SingleResource in $app.ResourceAccess | Where-Object -Property Type -EQ "Role") { - if ($singleresource.id -In $currentroles.appRoleId) { continue } - [pscustomobject]@{ - principalId = $($ourSVCPrincipal.id) - resourceId = $($svcPrincipalId.id) - appRoleId = "$($SingleResource.Id)" - } - } -} -foreach ($Grant in $grants) { - try { - $SettingsRequest = New-GraphPOSTRequest -body ($grant | ConvertTo-Json) -uri "https://graph.microsoft.com/beta/servicePrincipals/$($ourSVCPrincipal.id)/appRoleAssignedTo" -tenantid $Tenantfilter.customerid -type POST - } - catch { - "Failed to grant $($grant.appRoleId) to $($grant.resourceId): $($_.Exception.Message). " - } -} +Add-CIPPApplicationPermission -RequiredResourceAccess "CippDefaults" -ApplicationId $ENV:ApplicationID -tenantfilter $QueueItem.defaultDomainName +Add-CIPPDelegatedPermission -RequiredResourceAccess "CippDefaults" -ApplicationId $ENV:ApplicationID -tenantfilter $QueueItem.defaultDomainName -$GraphRequest = @{ - LastApply = "$((Get-Date).ToString())" - Tenant = "$($tenantfilter.customerId)" - PartitionKey = 'Tenant' - RowKey = "$($tenantfilter.customerId)" -} -Add-AzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null +Write-LogMessage -message "Updated permissions for $QueueItem" -Sev "Info" -tenant $QueueItem.defaultDomainName -API "UpdatePermissionsQueue" diff --git a/profile.ps1 b/profile.ps1 index 2ab564b82902..056111747b68 100644 --- a/profile.ps1 +++ b/profile.ps1 @@ -18,7 +18,6 @@ try { try { Import-Module Az.Accounts } catch { $_.Exception.Message } -Import-Module GraphRequests Import-Module CippExtensions Import-Module CippCore diff --git a/version_latest.txt b/version_latest.txt index ef8d7569d677..ae153944ee8b 100644 --- a/version_latest.txt +++ b/version_latest.txt @@ -1 +1 @@ -4.2.0 \ No newline at end of file +4.5.0 \ No newline at end of file