Thursday, September 21, 2023
HomeCloud
CloudTeams

Stop Microsoft Teams Sprawl

Mark Rochester
By Mark Rochester
0
99

Anybody that has come into an organization and looked at the Teams Admin Center, had a heart attack because there are so many Teams created by pretty much everybody in the organization will be wishing that this little setting had been changed right at the start.

Even if you have Teams Sprawl now, you can run this to stop it getting any worse.

Basically it just turns off the ability for every man and his dog from being able to create new Teams. It limits the creation to a single Azure Security Group.

Here is the video showing it all in action, but as I mentioned in the video, the script is pasted below so you have it.

Remember too, that you need to use the AzureADPreview module and not the AzureAD version. Most of us Admins would always be using this one anyway because it has all the latest cmdlets, plus the ones published in the AzureAD version.

Here you go, it’s pretty small but invaluable.

$GroupName = "Teams Creators"
$AllowGroupCreation = $False

#Connect-AzureAD

$settingsObjectID = (Get-AzureADDirectorySetting | Where-object -Property Displayname -Value "Group.Unified" -EQ).id
if(!$settingsObjectID)
{
    $template = Get-AzureADDirectorySettingTemplate | Where-object {$_.displayname -eq "group.unified"}
    $settingsCopy = $template.CreateDirectorySetting()
    New-AzureADDirectorySetting -DirectorySetting $settingsCopy
    $settingsObjectID = (Get-AzureADDirectorySetting | Where-object -Property Displayname -Value "Group.Unified" -EQ).id
}

$settingsCopy = Get-AzureADDirectorySetting -Id $settingsObjectID
$settingsCopy["EnableGroupCreation"] = $AllowGroupCreation

if($GroupName)
{
  $settingsCopy["GroupCreationAllowedGroupId"] = (Get-AzureADGroup -SearchString $GroupName).objectid
} else {
$settingsCopy["GroupCreationAllowedGroupId"] = $GroupName
}
Set-AzureADDirectorySetting -Id $settingsObjectID -DirectorySetting $settingsCopy

(Get-AzureADDirectorySetting -Id $settingsObjectID).Values

Thanks for helping me out by Subscribing to the YouTube channel here.

https://youtube.com/thecloudgeezer?sub_confirmation=1

Have a good week everybody.

Mark – The Cloud Geezer

Previous article
Microsoft 365 Workload Activity Report
Mark Rochester
Mark Rochesterhttps://thecloudgeezer.com
Mark currently works in the cloud space assisting large companies to migrate from either on premises to the cloud, or cloud to cloud. His experience with Enterprise migrations spans more than 25 years which basically makes him old. However, with all the oldness creeping up he still finds technology massively exciting. Please reach out for a chat anytime you would like. :-)

Related Articles

Cloud

Microsoft 365 Workload Activity Report

Well that's a pretty boring title and an even more boring name for a script. However the output is definitely not boring as it...
Read more
Cloud

Migrate GoDaddy M365 Email to a Full M365 Tenant

We do come across this scenario whereby the GoDaddy M365 Email option has been selected when you register your domain and you end up...
Read more
Cloud

Easily Create MailUser Objects

When it comes to the setup and configuration of the Microsoft 365 Cross-Tenant Migration Tools, the first part is obviously the initial configuration and...
Read more

Stay Connected

85FansLike
36,114FollowersFollow
13,361SubscribersSubscribe
- Advertisement -

Latest Articles

Load more

The Cloud Geezer - A collection of articles, tutorials and fun items all based on the Cloud. Please email me with requests or comments. I do enjoy the feedback.

Contact me: [email protected]

© Copyright - The Cloud Geezer - 2023