Set-MsolCompanySettings
Sets company-level configuration settings.
Syntax
Set-MsolCompanySettings
[-SelfServePasswordResetEnabled <Boolean>]
[-UsersPermissionToCreateGroupsEnabled <Boolean>]
[-UsersPermissionToCreateLOBAppsEnabled <Boolean>]
[-UsersPermissionToReadOtherUsersEnabled <Boolean>]
[-UsersPermissionToUserConsentToAppEnabled <Boolean>]
[-DefaultUsageLocation <String>]
[-AllowAdHocSubscriptions <Boolean>]
[-AllowEmailVerifiedUsers <Boolean>]
[-TenantId <Guid>]
[<CommonParameters>] Description
The Set-MsolCompanySettings cmdlet is used to set company-level configuration settings. Use Get-MsolCompanyInformation to read the current values of these settings.
Examples
Example 1: Turns on the self-serve password reset feature
PS C:\> Set-MsolCompanySettings -SelfServePasswordResetEnabled $TrueThis command turns on the self-serve password reset feature for all administrators in the company.
Parameters
-AllowAdHocSubscriptions
Indicates whether to allow users to sign up for email based subscriptions. This setting is applied company-wide.
| Type: | Boolean |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-AllowEmailVerifiedUsers
Indicates whether users can join the tenant by email validation. To join, the user must have an email address in a domain which matches one of the verified domains in the tenant. This setting is applied company-wide for all domains in the tenant.
| Type: | Boolean |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-DefaultUsageLocation
When assigning licenses to Microsoft products this value will be applied to the User.UsageLocation attribute if none is present. If the default value is $Null then the location value for the tenant is used.
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-SelfServePasswordResetEnabled
Indicates whether to allow the use of the self-service password reset feature for all administrators in the company.
| Type: | Boolean |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-TenantId
Specifies the unique ID of the tenant on which to perform the operation. The default value is the tenant of the current user. This parameter applies only to partner users.
| Type: | Guid |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-UsersPermissionToCreateGroupsEnabled
Indicates whether to allow users to create security groups. This setting is applied company-wide. Set to $False to disable users' ability to create security groups.
Note
For information on how to allow users to create Office 365 groups, please see Azure Active Directory Cmdlets for Configuring Group Settings
| Type: | Boolean |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-UsersPermissionToCreateLOBAppsEnabled
Indicates whether to allow users to create new applications. This setting is applied company-wide. Set to False to disable users' ability to create new applications for their organization.
| Type: | Boolean |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-UsersPermissionToReadOtherUsersEnabled
Indicates whether to allow users to view the profile info of other users in their company. This setting is applied company-wide. Set to $False to disable users' ability to use the Azure AD module for Windows PowerShell to access user information for their organization.
| Type: | Boolean |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-UsersPermissionToUserConsentToAppEnabled
Indicates whether to allow users to consent to apps that require access to their cloud user data, such as directory user profile or Office 365 mail and OneDrive for business. This setting is applied company-wide. Set to $False to disable users' ability to grant consent to applications.
| Type: | Boolean |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |