Public/generated/Get-KritTcmSPOTenantSettings.ps1
|
<# ·· × × × ··· SirJ's Deaddrop ··· × × × ··· — If you found this, you were meant to — ---------------- A Seriously Kritical™ Production ---------------- [] → (¯`·.¸¸.·´¯) .·´ `·. [] → `·.______________.·´ | +------------------+ | | | Kritical™ | | | | [] [] | | | | | | | | [] [] [] | | | +------------------+ | (._.·´¯`·.¸_) Your last call. And your first move. ★ ☆ ★ +61 1300 274 655 sales at kritical dot net ----------------------------------------------------------------- .COPYRIGHT (c) 2026 Kritical Pty Ltd. All rights reserved. .AUTHOR Joshua Finley <joshua.finley@kritical.net> .COMPANY Kritical Pty Ltd | ABN 39 687 048 086 Level 4 / 60 Moorabool St Geelong VIC 3220 1300 274 655 | sales@kritical.net | https://kritical.net/ .NOTES HARD RULE 13 canonical Kritical branding — do not overlay other agent banners. Auto-generated by Generate-KritTcmFromM365DscSchema.ps1 (.1507o30+). Upstream reference: Microsoft365DSC by Microsoft (MIT). This shim provides literal search-replace equivalence — see Krit.TCM/generated/index.md. #> function Get-KritTcmSPOTenantSettings { <# .SYNOPSIS Krit.TCM shim for M365DSC resource SPOTenantSettings. .DESCRIPTION Auto-generated from M365DSC .schema.mof by scripts/m365-setup/Generate-KritTcmFromM365DscSchema.ps1 (.1507o30). Search-replace safe: callers that today invoke Get-M365DSCSPOTenantSettings -Credential $cred -TenantId $tid can rename to Get-KritTcmSPOTenantSettings -Credential $cred -TenantId $tid with ZERO other edits. Parameter shape matches the M365DSC .schema.mof exactly. Per operator direction, -PreferM365DscBehavior defaults to true. Actual Graph dispatch is delegated to Invoke-KritTcmM365DscSchemaBridge. Bridge maps resource → Graph endpoint per per-resource wave; where mapping is not yet shipped, bridge returns an object with Verdict='UNMAPPED'. .NOTES Workload: SharePoint Original mof: C:\Users\joshl\OneDrive - Kritical Pty Ltd\Github\KRTPax8ToShopifyConnector\.kritm365-mine\Microsoft365DSC\Modules\Microsoft365DSC\DSCResources\MSFT_SPOTenantSettings\MSFT_SPOTenantSettings.schema.mof Param count: 50 Generator wave: .1507o30 #> [CmdletBinding()] param( # Specifies the resource is a single instance, the value must be 'Yes' [Parameter(Mandatory)] [ValidateSet('Yes')] [string]$IsSingleInstance, # Enables OneDrive and SharePoint integration with Microsoft Entra B2B. [bool]$EnableAzureADB2BIntegration, # DEPRECATED - Determines what level of sharing is available for OneDrive sites. It corresponds to the SharingCapabilities for OneDrive sites. [ValidateSet('ExternalUserAndGuestSharing','Disabled','ExternalUserSharingOnly','ExistingExternalUserSharingOnly')] [string]$OneDriveSharingCapability, # Specifies the lower bound on the compatibility level for new sites. [int]$MinCompatibilityLevel, # Specifies the upper bound on the compatibility level for new sites. [int]$MaxCompatibilityLevel, # Removes the search capability from People Picker. Note, recently resolved names will still appear in the list until browser cache is cleared or expired. [bool]$SearchResolveExactEmailOrUPN, # When set to true this will disable the ability to use Modern Authentication that leverages ADAL across the tenant. [bool]$OfficeClientADALDisabled, # Setting this parameter prevents Office clients using non-modern authentication protocols from accessing SharePoint Online resources. [bool]$LegacyAuthProtocolsEnabled, # Specifies the home realm discovery value to be sent to Azure Active Directory (AAD) during the user sign-in process. [string]$SignInAccelerationDomain, # Lets SharePoint issue a special cookie that will allow this feature to work even when Keep Me Signed In is not selected. [bool]$UsePersistentCookiesForExplorerView, # Configure PublicCDN [bool]$PublicCdnEnabled, # Configure filetypes allowed for PublicCDN [string]$PublicCdnAllowedFileTypes, # When set to $true, users aren't able to share with security groups or SharePoint groups. [bool]$UseFindPeopleInPeoplePicker, # When set to $true, users aren't able to share with security groups or SharePoint groups. [bool]$NotificationsInSharePointEnabled, # Specifies whether an email notification should be sent to the OneDrive for Business owners when an anonymous links are created or changed. [bool]$OwnerAnonymousNotification, # When the feature is enabled, all guest users are subject to conditional access policy. By default guest users who are accessing SharePoint Online files with pass code are exempt from the conditional access policy. [bool]$ApplyAppEnforcedRestrictionsToAdHocRecipients, # Sets whether webparts that support inserting images, like for example Image or Hero webpart, the Web search (Powered by Bing) should allow choosing external images. [bool]$FilePickerExternalImageSearchEnabled, # Defines if the default themes are visible or hidden [bool]$HideDefaultThemes, # To enable or disable Sync button on Team sites [bool]$HideSyncButtonOnTeamSite, # Allow or block external sharing until at least one Office DLP policy scans the content of the file. [ValidateSet('AllowExternalSharing','BlockExternalSharing')] [string]$MarkNewFilesSensitiveByDefault, # Disables or enables the Social Bar. It will give users the ability to like a page, see the number of views, likes, and comments on a page, and see the people who have liked a page. [bool]$SocialBarOnSitePagesDisabled, # Set to false to enable a comment section on all site pages, users who have access to the pages can leave comments. Set to true to disable this feature. [bool]$CommentsOnSitePagesDisabled, # Boolean indicating if Azure Information Protection (AIP) should be enabled on the tenant. [bool]$EnableAIPIntegration, # Determines whether or not we need to include external participants in shared channels for SharePoint access restriction. [bool]$ExemptNativeUsersFromTenantLevelRestricedAccessControl, # The default timezone of a tenant for newly created sites. [string]$TenantDefaultTimezone, # Gets or sets a value to specify if user checks handle mobile friendly url. [bool]$MobileFriendlyUrlEnabledInTenant, # Gets or sets a value to specify the advanced setting of the conditional access policy. [bool]$AllowDownloadingNonWebViewableFiles, # Prevents users from editing Office files in the browser and copying and pasting Office file contents out of the browser window. [bool]$AllowEditing, # Set whether to hide the sync button on OneDrive for Business sites. [bool]$HideSyncButtonOnODB, # Configure if ACS-based app-only authentication should be disabled or not. [bool]$DisableCustomAppAuthentication, # Allows configuring whether personal lists created within the OneDrive for Business site of the user is enabled or disabled in the tenant. If set to $false, personal lists will be allowed to be created in the tenant. If set to $true, it will be disabled in the tenant. [bool]$DisablePersonalListCreation, # Allows configuring whether display name of people who view the file are visible in the property pane of the site in SharePoint site collection. [bool]$DisplayNamesOfFileViewersInSpo, # Allows configuration on whether Fluid components are enabled or disabled in the tenant. If set to $true, then this feature will be enabled on all sites in the tenant. If set to $false, it will be disabled on all sites in the tenant. [bool]$IsFluidEnabled, # Allows configuring whether loop components are enabled or disabled in the tenant. If set to $true, loop components will be allowed to be created in the tenant. If set to $false, it will be disabled in the tenant. [bool]$IsLoopEnabled, # Indicates whether the newsfeed is allowed on the modern site pages in SharePoint. [bool]$IsSharePointNewsfeedEnabled, # Indicates whether users are allowed to create sites. [bool]$IsSiteCreationEnabled, # Indicates whether the UI commands for creating sites are shown. [bool]$IsSiteCreationUiEnabled, # Indicates whether creating new modern pages is allowed on SharePoint sites. [bool]$IsSitePagesCreationEnabled, # Specifies the URL of the redirected site for those site collections which have the locked state 'NoAccess'. The valid values are: '' (default) - Blank by default, this will also remove or clear any value that has been set. Full URL - Example: https://contoso.sharepoint.com/Pages/Locked.aspx [string]$NoAccessRedirectUrl, # Ensures that an external user can only accept an external sharing invitation with an account matching the invited email address. Note, this only applies to new external users accepting new sharing invitations. Also, the resource owner must share with an organizational or Microsoft account or the external user will be unable to access the resource. [bool]$RequireAcceptingAccountMatchInvitedAccount, # Permits the use of special characters in file and folder names in SharePoint Online and OneDrive for Business document libraries. The only two characters that can be managed at this time are the # and % characters. [ValidateSet('NoPreference','Allowed','Disallowed')] [string]$SpecialCharactersStateInFileFolderNames, # Only accepted value is 'Present'. [ValidateSet('Present','Absent')] [string]$Ensure, # Credentials of the account to authenticate with. [string]$Credential, # Id of the Azure Active Directory application to authenticate with. [string]$ApplicationId, # Secret of the Azure Active Directory application to authenticate with. [string]$ApplicationSecret, # Name of the Azure Active Directory tenant used for authentication. Format contoso.onmicrosoft.com [string]$TenantId, # Thumbprint of the Azure Active Directory application's authentication certificate to use for authentication. [string]$CertificateThumbprint, # Username can be made up to anything but password will be used for CertificatePassword [string]$CertificatePassword, # Path to certificate used in service principal usually a PFX file. [string]$CertificatePath, # Managed ID being used for authentication. [bool]$ManagedIdentity ) Invoke-KritTcmM365DscSchemaBridge -ResourceName 'SPOTenantSettings' -Workload 'SharePoint' -Verb 'Get' -CallerParams $PSBoundParameters } |