This Graphical PowerShell runbook connects to Office 365 and sends an email. You can run this runbook by itself or call it from another runbook as part of a larger workflow.
REQUIRED
- A system managed identity is enabled in the Automation Account.
- Use PowerShell to Admin Consent for managed identity, the following code MUST run in the local machine where microsoft.graph module installed:
Connect-MgGraph -Scopes Application.Read.All, AppRoleAssignment.ReadWrite.All, RoleManagement.ReadWrite.Directory
$managedIdentityId = "managed identity object id in the AAD"
$roleName = "Mail.Send"
$msgraph = Get-MgServicePrincipal -Filter "AppId eq '00000003-0000-0000-c000-000000000000'"
$role = $Msgraph.AppRoles| Where-Object {$_.Value -eq $roleName}
New-MgServicePrincipalAppRoleAssignment -ServicePrincipalId $managedIdentityId -PrincipalId $managedIdentityId -ResourceId $msgraph.Id -AppRoleId $role.Id Note: This comamnd requires Azure AD Global administrator to approve Admin Consent.
Refer to below screenshot to find Azure automation managed identity ID.
- Import dependencies modules: Microsoft.Graph.Authentication, Microsoft.Graph.Users.Actions in the Azure automation account.
AUTHOR Azure Automation Team
LASTEDIT
2023-8-31
TechNet gallery is retiring! This script was migrated from TechNet script center to GitHub by Microsoft Azure Automation product group. All the Script Center fields like Rating, RatingCount and DownloadCount have been carried over to Github as-is for the migrated scripts only. Note : The Script Center fields will not be applicable for the new repositories created in Github & hence those fields will not show up for new Github repositories.