Sep 21 2017 03:17 AM
When creating an expiry policy for groups using Set-AzureADMSGroupLifecyclePolicy you can specify if this policy should apply to 'All', 'None', or 'Selected' groups using the -ManagedGroupType parameter.
If this is set to 'All' how does this interact with using Remove-AzureADMSLifecyclePolicyGroup to remove that policy from a specific group?
The options seem to all be set up the wrong way round to me, we would want a policy, we would want to that to apply automatically to self-service created groups, but as admins we would want to exclude certain groups from the policy. The commandlets and UI all seem to be about creating a policy and opting-in to that.
Sep 21 2017 05:55 AM
For me, the fact that we have only one policy is limiting, as is the lack of exclusions. I hope they change it based on feedback, but for now the best we can do is to use PowerShell to assign the policy on demand, it seems.
Sep 21 2017 07:10 AM
Hi, Thanks for the feedback. We are looking into both of these capabilities (exclusion of groups when 'All' is selected, and multiple policies) for the next iteration of the product, but have no dates to share for the moment. Thanks, Kairaz
Sep 20 2022 07:19 AM
Mar 28 2024 12:25 AM
@aidahl anyone know if this ever got delivered?