Have you ever wondered how to automate the mundane task of assigning Microsoft Teams policies to teams users ? In this step-by-step guide, I will show how to assign Microsoft Teams App Setup policy via Azure AD security group membership
- This is the view of Microsoft Teams App setup policy for test user “alabond user1” before any changes
- First, Create Microsoft Teams App setup policy “LeapXpert_AppSetup_Policy” and add required applications.
- Next, Go to Azure AD and create a new Security group “Azure-POLG-LeapXpert_AppSetup_Policy”. This is the security group for the App Setup policy auto-provisioning
- In Azure AD, once the security group is created, make a note of the “Object ID”:{ bba9b092-da69-4b4a-8f3b-146c85b71aff }
- Establish remote PowerShell session to Microsoft Teams and run the command below to create a New Group policy assignment to bind the Microsoft Teams App Setup policy “LeapXpert_AppSetup_Policy” to the Azure AD security group “Azure-POLG-LeapXpert_AppSetup_Policy”. This is to allow automatic provisioning of Microsoft Teams policy via security group membership
New-CsGroupPolicyAssignment -GroupId “bba9b092-da69-4b4a-8f3b-146c85b71aff” -PolicyType “TeamsAppSetupPolicy” -PolicyName “LeapXpert_AppSetup_Policy”
- To apply policy, add user “alabond user1” to security group “Azure-POLG-LeapXpert_AppSetup_Policy”
- Finally, the Microsoft Teams App Setup policy “LeapXpert_AppSetup_Policy” is now assigned and the view for test user “alabond user1” after the change is shown below to confirm that the policy was assigned via Azure AD group membership
That’s all folks.