{"id":6124,"date":"2022-09-06T11:01:51","date_gmt":"2022-09-06T11:01:51","guid":{"rendered":"https:\/\/pariswells.com\/blog\/?p=6124"},"modified":"2022-11-23T00:57:18","modified_gmt":"2022-11-23T00:57:18","slug":"copy-azure-ad-security-groups-and-membership-one-tenancy-to-another","status":"publish","type":"post","link":"https:\/\/pariswells.com\/blog\/research\/copy-azure-ad-security-groups-and-membership-one-tenancy-to-another","title":{"rendered":"Copy Azure AD Security Groups and Membership one Tenancy to Another"},"content":{"rendered":"
\n\t
#Sec Groups list in array "1","2"$SG = "GroupName"#To Grab All#$SG = Get-AzureADGroup -All $true | Select DisplayName$ZSourceDomain = "sourcedomain.com"$CSourceDomain = "sourcedomain2.com"$DestinationDomain = "destinationdomain3.com"foreach($S in $SG){#connect to source tenant , have to save creds if we are working with a lot of groups if not comment out $zpassword and $zpassword\u00a0#https:\/\/sid-500.com\/2020\/12\/01\/powershell-connect-to-azure-with-stored-credentials\/$zpassword = ConvertTo-SecureString (Unprotect-CmsMessage -Path C:\\Scripts\\pwd.txt) -AsPlainText -Force$zcred= New-Object System.Management.Automation.PSCredential ('XXXXXX', $zpassword)Connect-AzureAD -credential $zcred$List = @()$List = Get-AzureADGroup -SearchString "$S"$ZListMembers = @()$ZListMembers = Get-AzureADGroupMember -ObjectId $List.ObjectId | Where-Object {$_.UserPrincipalName -like '*$ZSourceDomain'}$ZListMembersUPN = @()$ZListMembersUPN = $ZListMembers.UserPrincipalName$CListMembers = @()$CListMembers = Get-AzureADGroupMember -ObjectId $List.ObjectId | Where-Object {$_.UserPrincipalName -like '*$CSourceDomain'}$CListMembersUPN = @()$CListMembersUPN = $CListMembers.UserPrincipalName#connect to source tenant , have to save creds if we are working with a lot of groups if not comment out $fpassword and $fpassword\u00a0#connect to destination tenant Azure AD#https:\/\/sid-500.com\/2020\/12\/01\/powershell-connect-to-azure-with-stored-credentials\/$fpassword = ConvertTo-SecureString (Unprotect-CmsMessage -Path C:\\Scripts\\fpwd.txt) -AsPlainText -Force$fcred= New-Object System.Management.Automation.PSCredential ('XXXXXXX', $fpassword)Connect-AzureAD -credential $fcredNew-AzureADGroup -DisplayName $List.DisplayName -MailEnabled $false -SecurityEnabled $true -MailNickName "NotSet"foreach($ZListMemberUPN in $ZListMembersUPN){add-azureadgroupmember -Identity $List.DisplayName -Member $ZListMemberUPN.replace("$ZSourceDomain","$DestinationDomain")}foreach($CListMemberUPN in $CListMembersUPN){add-azureadgroupmember -Identity $List.DisplayName -Member $CListMemberUPN.replace("$CSourceDomain","$DestinationDomain")}}<\/code><\/pre> 
 copy-adzuread-SecurityGroups%2Bmembers.ps1<\/a> view raw<\/a> <\/div> <\/div><\/div>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-6124","post","type-post","status-publish","format-standard","hentry","category-research"],"aioseo_notices":[],"aioseo_head":"\n\t\t\n\t\n\t\n\t\n\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t