Select-AzureADGroupIdsUserIsMemberOf

Syntax

Select-AzureADGroupIdsUserIsMemberOf
      -ObjectId <String>
      -GroupIdsForMembershipCheck <GroupIdsForMembershipCheck>
      [-InformationAction <ActionPreference>]
      [-InformationVariable <String>]
      [<CommonParameters>]

Description

The Select-AzureADGroupIdsUserIsMemberOf cmdlet selects the groups that a user is a member of in Azure Actve Directory (AD).

Examples

Example 1: Get the group membership of a group for a user

PS C:\> $Groups = New-Object Microsoft.Open.AzureAD.Model.GroupIdsForMembershipCheck
PS C:\> $Groups.GroupIds = (Get-AzureADGroup -Top 1).ObjectId
PS C:\> $UserID = (Get-AzureADUser -Top 1).ObjectId
PS C:\> Select-AzureADGroupIdsUserIsMemberOf  -ObjectId $UserId -GroupIdsForMembershipCheck $Groups

OdataMetadata                                                                                   Value
-------------                                                                                   -----
https://graph.windows.net/85b5ff1e-0402-400c-9e3c-0f9e965325d1/$metadata#Collection(Edm.String) {093fc0e2-1d6e-4a1b-9bf8-effa0196f1f7}

The first command creates a GroupIdsForMembershipCheck object, and then stores it in the $Groups variable.

The second command gets an ID for a group by using the Get-AzureADGroup cmdlet, and then stores it as a property of $Groups.

The third command gets the ID of a user by using the Get-AzureADUser cmdlet, and then stores it in the $UserId variable.

The final command gets the group membership of a group for a user identified by $UserId. This cmdlet returns an oData object. To find the groups this user is a member of, iterate through the Value attribute of the returned oData objects.

Parameters

-GroupIdsForMembershipCheck

-InformationAction

-InformationVariable

-ObjectId