poiriersimon · January 9, 2019 15:38
diff --git a/O365 unsafe users.ps1 b/O365 unsafe users.ps1
 #1 - List Managed Domain
 $ManagedDomain = Get-MSOLDomain |where {$_.AuthenticationType -eq "Managed"}
 #2 - Check if 1 users exist in those domain
 $UsedManagedDomains = @()
 foreach ($ManagedDomain in $ManagedDomains){$Users = @(); $users= Get-MSOLUser -All | where {$_.UserPrincipalName -like "*$($ManagedDomain.name)"}}
 #3 - for each of those domain - Get-MSOLUser | where{$_.PasswordNeverExpire -eq $TRUE}
 [array]$UnsafeUsers = $Users |  where {$_.PasswordNeverExpires -eq $True -and StrongPasswordRequired -eq $False}
 #4 - if any Trigger
 If($UnsafeUsers.count -eq 0){Write-host "Pass"} Else {Write-host "Fail : You have $($UnsafeUsers.count) account"}
	#1 - List Managed Domain
	$ManagedDomain = Get-MSOLDomain \|where {$_.AuthenticationType -eq "Managed"}
	#2 - Check if 1 users exist in those domain
	$UsedManagedDomains = @()
	foreach ($ManagedDomain in $ManagedDomains){$Users = @(); $users= Get-MSOLUser -All \| where {$_.UserPrincipalName -like "*$($ManagedDomain.name)"}}
	#3 - for each of those domain - Get-MSOLUser \| where{$_.PasswordNeverExpire -eq $TRUE}
	[array]$UnsafeUsers = $Users \| where {$_.PasswordNeverExpires -eq $True -and StrongPasswordRequired -eq $False}
	#4 - if any Trigger
	If($UnsafeUsers.count -eq 0){Write-host "Pass"} Else {Write-host "Fail : You have $($UnsafeUsers.count) account"}