Skip to content

2025.06 #1

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 4 commits into from
Jul 14, 2025
Merged

2025.06 #1

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
73578cd
feat: add initial script for `Set-BulkUserUPN`
dbrennand Jun 1, 2025
83bc7ce
chore: add psscriptanalyzer
dbrennand Jun 1, 2025
98c5972
fix: remove extra space
dbrennand Jun 1, 2025
7b4ab11
fix: add missing word
dbrennand Jun 1, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
23 changes: 23 additions & 0 deletions .github/workflows/psscriptanalyzer.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
---
name: PSScriptAnalyzer
on:
pull_request:

jobs:
psscriptanalyzer:
name: PSScriptAnalyzer
runs-on: ubuntu-latest
permissions:
security-events: write
steps:
- uses: actions/checkout@v4
- name: Run PSScriptAnalyzer
uses: microsoft/psscriptanalyzer-action@main
with:
path: .\
recurse: true
output: results.sarif
enableExit: true
- uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: results.sarif
1 change: 1 addition & 0 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,2 +1,3 @@
# M365Scripts

Microsoft 365 Administrator Scripts
22 changes: 22 additions & 0 deletions Set-BulkUserUPN/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,22 @@
# Set-BulkUserUPN

Sets all users primary UPN to a new domain. Used for migrating to a new Microsoft 365 domain.

## Prerequisites

* Custom domain registered on your Microsoft 365 tenant.
* Required Microsoft Graph API permissions: `User.ReadWrite.All, Domain.Read.All`

## Dependencies

`Microsoft.Graph >=2.28.0`:

```PowerShell
Install-Module Microsoft.Graph -Scope CurrentUser -Repository PSGallery -Force
```

## Usage

```PowerShell
Set-BulkUserUPN.ps1 -Domain "example.com" -Verbose
```
109 changes: 109 additions & 0 deletions Set-BulkUserUPN/Set-BulkUserUPN.ps1
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,109 @@
<#PSScriptInfo

.VERSION 1.0.0

.GUID 9b1a6f62-c4b3-47f0-b320-4503766514ef

.AUTHOR dbrennand [ 52419383+dbrennand@users.noreply.github.com ]

.TAGS Set Bulk User UPN

.LICENSEURI

.PROJECTURI https://github.com/dbrennand/M365Scripts

.ICONURI

.EXTERNALMODULEDEPENDENCIES

.REQUIREDSCRIPTS

.EXTERNALSCRIPTDEPENDENCIES

.RELEASENOTES

#>

<#
.SYNOPSIS
Set all users primary User Principal Name (UPN) to a new domain.

.DESCRIPTION
Sets all users primary UPN to a new domain. Used for migrating to a new Microsoft 365 domain.

.PARAMETER Domain
The domain to set for all users primary UPN.

.EXAMPLE
Set-BulkUserUPN.ps1 -Domain "example.com" -Verbose

.LINK
https://learn.microsoft.com/en-us/powershell/module/microsoft.graph.authentication/connect-mggraph?view=graph-powershell-1.0
https://learn.microsoft.com/en-us/powershell/microsoftgraph/get-started?view=graph-powershell-1.0
#>
#Requires -Version 7 -Modules @{ ModuleName = "Microsoft.Graph"; ModuleVersion = "2.28.0" }
[CmdletBinding()]
param (
[Parameter(Mandatory = $true)]
[ValidateNotNullOrEmpty()]
[String]
$Domain
)

begin {
#region Connect to Microsoft Graph
$Scopes = "User.ReadWrite.All", "Domain.Read.All"
try {

Write-Verbose -Message "Connecting to Microsoft Graph with scopes: $($Scopes)."
Connect-MgGraph -Scopes $Scopes -Verbose:($PSBoundParameters["Verbose"] -eq $true) -ErrorAction Stop
}
catch {
Write-Error -Message "Failed to connect to Microsoft Graph:`n$($_.Exception.Message)"
exit 1
}
#endregion

#region Check the Domain is registered with the Microsoft 365 tenant
try {
Write-Verbose -Message "Checking if domain $($Domain) is registered with the Microsoft 365 tenant."
$Domains = Get-MgDomain -All
if ($Domain -notin $Domains.Id) {
throw "Domain $($Domain) is not registered."
}
}
catch {
Write-Error -Message "Failed to get domain $($Domain) in the Microsoft 365 tenant:`n$($_.Exception.Message)"
exit 1
}
#endregion
}

process {
#region Collect all users
try {
Write-Verbose -Message "Collecting all users from the Microsoft 365 tenant."
$Users = Get-MgUser -All -Verbose:($PSBoundParameters["Verbose"] -eq $true) -ErrorAction Stop
Write-Output -InputObject "Found $($Users.Count) users in Microsoft 365 tenant."
}
catch {
Write-Error -Message "Failed to connect all users from the Microsoft 365 tenant:`n$($_.Exception.Message)"
exit 1
}
#endregion

#region Change each users UPN to the new domain
try {
foreach ($User in $Users) {
$UserName = ($User.UserPrincipalName -split "@")[0]
$NewUserPrincipleName = "$($UserName)@$($Domain)"
Write-Output -InputObject "Changing User Principle Name from $($User.UserPrincipalName) to $($NewUserPrincipleName)."
Update-MgUser -UserId $User.Id -UserPrincipalName $NewUserPrincipleName -Verbose:($PSBoundParameters["Verbose"] -eq $true) -ErrorAction Stop
}
}
catch {
Write-Error -Message "Failed to modify User Principle Name for $($User.UserPrincipalName):`n$($_.Exception.Message)"
exit 1
}
#endregion
}