private/get-PBIUserMetaData.ps1
|
function get-PBIUserMetaData{ Param( [Parameter(Mandatory=$true)]$user ) $retVal = [PSCustomObject]@{ principalType = "Internal User" principalEntraId = $user.graphId principalEntraUpn = $user.identifier } if($user.identifier -like "*#EXT#@*"){ $retVal.principalType = "External User" } if($user.userType -eq ""){ #special groups if($user.displayName -eq "Whole Organization"){ $retVal.principalType = "AllInternalUsers" $retVal.principalEntraId = "AllInternalUsers" }else{ $retVal.principalType = $user.displayName $retVal.principalEntraId = $user.displayName } } if($user.PrincipalType -eq "Group"){ $retVal.principalType = "EntraSecurityGroup" } if($user.PrincipalType -eq "App"){ $retVal.principalEntraId = $user.identifier #we want the object ID since that is the 'true' object ID, the graphId points to the appId $retVal.principalEntraUpn = $user.graphId $retVal.principalType = "Service Principal" } return $retVal } |