M365Corner
PowerShell

Fetch Team Member Channel Management Settings

Microsoft Teams is a powerful collaboration tool that allows organizations to create teams, channels, and manage communication across departments. As an IT administrator, managing the settings related to who can create, update, or delete channels within these teams is crucial to maintaining an organized and controlled environment.

In this article, we’ll walk you through a PowerShell script that uses Microsoft Graph to query all teams in your tenant and output the member settings related to channel management. Specifically, the script will show whether team members have the right to create/update channels and delete channels, providing a clear overview of these permissions for each team.


The Script


# Install the Microsoft.Graph.Teams module if not already installed
# Install-Module -Name Microsoft.Graph.Teams

# Import the module
Import-Module Microsoft.Graph.Teams

# Connect to Microsoft Graph
Connect-MgGraph -Scopes 'Team.ReadBasic.All Group.Read.All'

# Retrieve all Teams in the tenant
$teams = Get-MgTeam -All

# Initialize an array to store the results
$results = @()

foreach ($team in $teams) {
    # Get the member settings for each team
    $memberSettings = Get-MgTeam -TeamId $team.Id | Select-Object -ExpandProperty MemberSettings
    
    # Create an object with the required fields
    $result = [PSCustomObject]@{
        "Team Name"              = $team.DisplayName
        "Description"            = $team.Description
        "Create/Update Channels" = $memberSettings.AllowCreateUpdateChannels
        "Allow Delete Channels"  = $memberSettings.AllowDeleteChannels
    }

    # Add the object to the results array
    $results += $result
}

# Output the results in a table format
$results | Format-Table -AutoSize

How the Script Works

  • Importing the Module and Connecting to Microsoft Graph: The script starts by importing the Microsoft.Graph.Teams module, which provides the necessary cmdlets to interact with Microsoft Teams. It then establishes a connection to Microsoft Graph using Connect-MgGraph with the required scopes (Team.ReadBasic.All and Group.Read.All).
  • Retrieving Teams: The script retrieves all teams within the tenant using the Get-MgTeam cmdlet. The -All parameter ensures that every available team is included in the output.
  • Fetching Member Settings: For each team, the script retrieves the member settings, specifically focusing on whether members have the ability to create/update channels and delete channels.
  • Outputting the Results: The relevant information for each team is stored in a custom object. The script then outputs these details in a table format using Format-Table, making it easy to review and assess the channel management permissions for all teams.

Further Enhancing the Script

This script can serve as a foundation for further enhancements depending on your specific needs. Here are a few ideas:

  • Filtering Teams by Specific Criteria: Modify the script to focus on teams that meet specific criteria, such as those created within a certain timeframe or teams with a particular naming convention.
  • Exporting to CSV: If you need to keep a record of the settings or share them with others, you can easily export the output to a CSV file using Export-Csv.
  • Automating the Script: For larger environments, consider scheduling this script to run at regular intervals using Task Scheduler or Azure Automation, ensuring you always have up-to-date information on your teams' member settings.

Possible Errors & Solutions

1. AADSTS65001: Consent Not Granted

Error: "Connect-MgGraph: AADSTS65001: The user or administrator has not consented to use the application."

Solution: Ensure that you have the necessary permissions and that consent has been granted. You can provide consent by logging in to the Azure portal as an admin and granting the necessary permissions for the Microsoft Graph API.

2. Get-MgTeam Not Recognized

Error: "The term 'Get-MgTeam' is not recognized as the name of a cmdlet."

Solution: This error typically occurs if the Microsoft.Graph.Teams module is not installed or not imported correctly. Ensure you have installed the module using Install-Module -Name Microsoft.Graph.Teams and imported it with Import-Module Microsoft.Graph.Teams.

3. Insufficient Privileges

Error: "Insufficient privileges to complete the operation."

Solution: Ensure the account you are using has the appropriate permissions. You may need to adjust the permissions or scope used in the Connect-MgGraph cmdlet.


Conclusion

Managing channel permissions within Microsoft Teams is essential for maintaining an organized and controlled environment. By using the script provided in this article, you can quickly and easily retrieve the member settings for all teams in your tenant, giving you a clear overview of who has the ability to create, update, and delete channels. Whether you’re exporting data for reporting purposes or simply performing routine checks, this script provides a flexible and powerful tool to streamline your Teams management tasks.

Remember, PowerShell is an incredibly versatile tool, and this script can be adapted and expanded to meet your specific needs. Feel free to modify and enhance it as required. Happy scripting!


© m365corner.com. All Rights Reserved. Design by HTML Codex