This guide explains how to use the Invoke-MgGraphRequest cmdlet in Microsoft Graph PowerShell to update properties of a Microsoft 365 Group. Learn how to modify group details such as name, description, and visibility with practical examples
The Invoke-MgGraphRequest cmdlet is a versatile tool that allows administrators to send customized requests to the Microsoft Graph API, offering more flexibility than some specific PowerShell cmdlets like Update-MgGroup. When it comes to updating groups in Microsoft 365, using Invoke-MgGraphRequest can provide fine-grained control and is especially useful when you need to modify group properties not covered by built-in cmdlets.
In this article, we will explore how to use Invoke-MgGraphRequest to update group properties, provide usage examples, and highlight scenarios where this approach is particularly useful. We’ll also cover common errors and solutions to ensure smooth operations.
Invoke-MgGraphRequest -Method PATCH -Uri "https://graph.microsoft.com/v1.0/groups/$groupId" -Body <JSON body> -ContentType "application/json"Where:
https://graph.microsoft.com/v1.0/groups/{group-id}).# Define the group ID
$groupId = "e4b1c2f7-a193-43db-b69a-6a23b5b11c8e"
# Define the update payload here updating the display name
$body = @{
displayName = "Marketing Team"
} | ConvertTo-Json
# Perform the PATCH request to update the group's display name
Invoke-MgGraphRequest -Method PATCH -Uri "https://graph.microsoft.com/v1.0/groups/$groupId" -Body $body -ContentType "application/json"This will update the group's display name to "Marketing Team".
$groupId = "e4b1c2f7-a193-43db-b69a-6a23b5b11c8e"
$body = @{
description = "Group for the marketing department"
visibility = "Private"
} | ConvertTo-Json
Invoke-MgGraphRequest -Method PATCH -Uri "https://graph.microsoft.com/v1.0/groups/$groupId" -Body $body -ContentType "application/json"This updates the group's description to "Group for the marketing department" and changes its visibility to "Private".
$groupId = "e4b1c2f7-a193-43db-b69a-6a23b5b11c8e"
$body = @{
mailNickname = "marketingteam"
} | ConvertTo-Json
Invoke-MgGraphRequest -Method PATCH -Uri "https://graph.microsoft.com/v1.0/groups/$groupId" -Body $body -ContentType "application/json"This updates the group’s mailNickname to "marketingteam".
https://graph.microsoft.com/v1.0/groups/{group-id}) when using Invoke-MgGraphRequest to avoid errors.Group.ReadWrite.All to perform updates.ConvertTo-Json to ensure proper formatting.Invoke-MgGraphRequest, you can write scripts to automate these updates efficiently.Invoke-MgGraphRequest gives you full access to the Microsoft Graph API, making it ideal for custom scenarios.Invoke-MgGraphRequest highly useful. It allows for more flexibility compared to predefined cmdlets.| Error | Cause | Solution |
| 401 Unauthorized | Lack of proper permissions | Ensure the service principal or app has Group.ReadWrite.All permissions. |
| 400 Bad Request | Invalid request body or URL | Ensure that the JSON body is formatted correctly and that the group ID is valid. |
| 404 Not Found | Invalid group ID | Double-check the $groupId to ensure it points to a valid group in your tenant. |
| Precondition Failed (412) | Missing If-Match header | Some operations (like deletions) require the If-Match header, which includes the ETag value. |
| 429 Too Many Requests | API rate limit exceeded | Implement retry logic with backoff, especially when updating multiple groups in bulk. |
1. What is Invoke-MgGraphRequest used for?
Invoke-MgGraphRequest is a Microsoft Graph PowerShell cmdlet used to perform custom API calls, including updating Microsoft 365 Group properties.
2. How can I update multiple groups using a CSV file?
Prepare a CSV file with the following format:
GroupId,DisplayName,Description,Visibility
<GroupId1>,New Name 1,New Description 1,Private
<GroupId2>,New Name 2,New Description 2,Public
Use this script to process the CSV and update the groups:
$Groups = Import-Csv -Path "C:\Path\To\File.csv"
foreach ($Group in $Groups) {
$Body = @{
displayName = $Group.DisplayName
description = $Group.Description
visibility = $Group.Visibility
}
Invoke-MgGraphRequest -Method PATCH -Uri "https://graph.microsoft.com/v1.0/groups/$($Group.GroupId)" -Body $Body
}
3. What permissions are required to update Microsoft 365 Groups?
You need the Group.ReadWrite.All or Directory.ReadWrite.All permission in Microsoft Graph PowerShell. Ensure these permissions are granted in Azure AD.
Invoke-MgGraphRequest provides a flexible and powerful way to update Microsoft 365 groups via the Microsoft Graph API. While the Update-MgGroup cmdlet is convenient for standard updates, Invoke-MgGraphRequest is perfect for handling complex scenarios where more control over the API request is needed. It’s especially useful in situations that require updating multiple properties, handling non-standard fields, or automating bulk updates.
By leveraging the flexibility of Invoke-MgGraphRequest, IT administrators can ensure that they can perform any update necessary in their group management workflows, even for properties that are not easily addressed by built-in cmdlets.
If you're looking to gain fine-grained control over group updates, Invoke-MgGraphRequest is an excellent tool to have in your PowerShell toolkit.
© m365corner.com. All Rights Reserved. Design by HTML Codex