Version: 2.0.1 (preview)

Test-MtXspmHybridUsersWithAssignedEntraIdRoles

SYNOPSIS

Tests if hybrid users have been assigned eligible or permanent to Entra ID roles.

SYNTAX

Test-MtXspmHybridUsersWithAssignedEntraIdRoles [-ProgressAction <ActionPreference>] [<CommonParameters>]

DESCRIPTION

This function checks if any hybrid users (synchronized from on-premises Active Directory) have been assigned eligible or permanent Entra ID roles, which can lead to privilege escalation by compromising the on-premises AD.

EXAMPLES

EXAMPLE 1

Test-MtXspmHybridUsersWithAssignedEntraIdRoles

PARAMETERS

-ProgressAction

Type: ActionPreference
Parameter Sets: (All)
Aliases: proga

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

INPUTS

OUTPUTS

[bool] - Returns $true if no hybrid users with assigned Entra ID roles are found, $false if any are found, $null if skipped or prerequisites not met.

NOTES

https://maester.dev/docs/commands/Test-MtXspmHybridUsersWithAssignedEntraIdRoles

SYNOPSIS​

SYNTAX​

DESCRIPTION​

EXAMPLES​

EXAMPLE 1​

PARAMETERS​

-ProgressAction​

CommonParameters​

INPUTS​

OUTPUTS​

[bool] - Returns $true if no hybrid users with assigned Entra ID roles are found, $false if any are found, $null if skipped or prerequisites not met.​

NOTES​

RELATED LINKS​