Feb 14 2024 07:34 AM
I have a customer that is trying to added a subdomain (subdomain.contoso.com) to entra id for cloud only user accounts. Curranty they have the root domain (contoso.com) syncing from onprem AD that is federated but this subdomain should not be tied back to that domain.
I have tried these scripts with only errors.
Set-MsolDomainAuthentication -DomainName subdomain.domain.edu -Authentication managed.
***********
Connect-AzureAD
New-AzureADDomain -Name subdomain.domain.edu
Connect-MgGraph -Scopes Domain.ReadWrite.All
Update-MgDomain -DomainId subdomain.domain.edu -BodyParameter @{isRoot=$true}
ERROR - Update-MgDomain : isRoot property is read-only.
***********
Any assistance with this would be appreciated.
Feb 14 2024 08:31 AM
Feb 22 2024 11:47 AM
Feb 22 2024 05:10 PM
Feb 29 2024 11:15 AM
I tried this before and this was the error I received.
Update-MgDomain : Domain operation is not allowed.
At line:1 char:1
+ Update-MgDomain -DomainId "subdomain.domain.edu" -BodyParameter @{Authen ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : InvalidOperation: ({ DomainId = re...tGraphDomain1 }:<>f__AnonymousType90`2) [Update-MgD
omain_Update1], RestException`1
+ FullyQualifiedErrorId : Request_BadRequest,Microsoft.Graph.PowerShell.Cmdlets.UpdateMgDomain_Update1
As I stated this has been resolved after using the information from this link. https://learn.microsoft.com/en-us/graph/api/domain-promote?view=graph-rest-1.0&tabs=http