Forum Discussion
Microsoft Graph PowerShell SDK Module OneDrive Folder Permissions Assignment
As an M365 Global Admin, I have been tasked with creating a new folder in other users OneDrive root folder (Documents) we can call that folder 'myFolder', then I need to assign a Microsoft Azure Security group ('myGroup') to that folder with read/write permissions. I have a list of users (taking input from txt file of UPNs), and am able to loop through the users and create the folder, so step one is possible, but where I am failing is the assignment of the permissions, am using PowerShell 7 and the MS Graph PowerShell Mod, actually for the folder creation I used the API and invoke-method, but I am running into problems since OneDrive is on top of SharePoint, I am not sure how to accomplish this task. Any help would be greatly appreciated!
Original Post:
https://techcommunity.microsoft.com/t5/microsoft-365/microsoft-graph-powershell-sdk-module-onedrive-folder/m-p/3940795
1 Reply
How about this:
- Get the Drive ID for each user
$drive = Get-MgUserDrive -UserId $userUPN- Get the Folder ID
Assuming you created myFolder in root/Documents:
$folder = Get-MgDriveItem -DriveId $drive.Id -ItemId 'root:/Documents/myFolder'- Get the Group ID
$group = Get-MgGroup -Filter "displayName eq 'myGroup'"- Assign Permissions
Use New-MgDriveItemPermission to grant access:
New-MgDriveItemPermission -DriveId $drive.Id ` -DriveItemId $folder.Id ` -Roles @("write") ` -GrantedToIdentities @(@{Group=@{Id=$group.Id}})
