Functions/New-IntuneRoleAssignmentGroup.ps1
|
function New-IntuneRoleAssignmentGroup { <# .SYNOPSIS Creates a new scope tag in Intune. .DESCRIPTION Calls the Graph API endpoint to create a new scope tag with the given display name and description. .PARAMETER TagName The display name for the scope tag. .PARAMETER Description (Optional) A description for the scope tag. .EXAMPLE New-IntuneScopeTag -TagName "Finance" -Description "Scope tag for Finance devices" #> [CmdletBinding()] param( [Parameter(Mandatory = $true)] [string]$GroupName, [Parameter(Mandatory = $true)] [string]$Description ) # Check if connected to Microsoft Graph if (-not (Get-MgContext -ErrorAction SilentlyContinue)) { Write-Error "You must run Connect-IntuneGraph before calling this function." return } # Create Role Assignable Groups if (!(Get-MgBetaGroup -Filter "displayName eq '$GroupName'")) { $RoleGroupParams = @{ displayName = $GroupName description = $Description mailEnabled = $false mailNickname = "7ef3c538-0" securityEnabled = $true isAssignableToRole = $true } New-MgBetaGroup -BodyParameter $RoleGroupParams Write-Host "Create Role Assignable Group: $GroupName" -ForegroundColor Cyan } } |