M365Connect

1.0.1

Public/Remove-MSAccount.ps1

                                function Remove-MSAccount {

    <#

    .SYNOPSIS

        Removes saved Microsoft 365 credentials.

    .DESCRIPTION

        Deletes the saved username, password, and MFA settings from environment variables

        and clears them from the current session.

    .PARAMETER KeepMFA

        If specified, keeps the MFA setting and only removes username/password.

    .EXAMPLE

        Remove-MSAccount

    .EXAMPLE

        Remove-MSAccount -KeepMFA

    .LINK

        https://github.com/nikkelly/M365Connect

    #>

    [CmdletBinding(SupportsShouldProcess)]

    param(

        [switch]$KeepMFA

    )

    $removedItems = @()

    # Remove username

    try {

        if ((Test-Path env:microsoftConnectionUser) -and $PSCmdlet.ShouldProcess('microsoftConnectionUser', 'Remove environment variable')) {

            [System.Environment]::SetEnvironmentVariable("microsoftConnectionUser", $null, "User")

            Remove-Item env:microsoftConnectionUser -ErrorAction SilentlyContinue

            $script:MSProfileState.MicrosoftUser = $null

            $script:MSProfileState.Domain = $null

            Write-Host "`tMicrosoft connection user removed" -ForegroundColor Yellow

            $removedItems += 'User'

        }

    } catch {

        Write-Warning "Failed to remove user: $_"

    }

    # Remove password

    try {

        if ((Test-Path env:microsoftConnectionPass) -and $PSCmdlet.ShouldProcess('microsoftConnectionPass', 'Remove environment variable')) {

            [System.Environment]::SetEnvironmentVariable("microsoftConnectionPass", $null, "User")

            Remove-Item env:microsoftConnectionPass -ErrorAction SilentlyContinue

            $script:MSProfileState.Credential = $null

            Write-Host "`tMicrosoft connection password removed" -ForegroundColor Yellow

            $removedItems += 'Password'

        }

    } catch {

        Write-Warning "Failed to remove password: $_"

    }

    # Remove MFA setting

    if (-not $KeepMFA) {

        try {

            if ((Test-Path env:microsoftConnectionMFA) -and $PSCmdlet.ShouldProcess('microsoftConnectionMFA', 'Remove environment variable')) {

                [System.Environment]::SetEnvironmentVariable("microsoftConnectionMFA", $null, "User")

                Remove-Item env:microsoftConnectionMFA -ErrorAction SilentlyContinue

                $script:MSProfileState.MFAEnabled = $false

                Write-Host "`tMicrosoft connection MFA removed" -ForegroundColor Yellow

                $removedItems += 'MFA'

            }

        } catch {

            Write-Warning "Failed to remove MFA setting: $_"

        }

    }

    if ($removedItems.Count -gt 0) {

        Write-Host "`n`tCredentials removed from this session and persistent storage.`n" -ForegroundColor Green

    } else {

        Write-Host "`tNo saved account found to remove." -ForegroundColor Yellow

    }

}