Open gibi916 opened 9 months ago
It seems I don't have the issue in the last version of M365 DSC but it still retrieve all members of the admin unit...
2024-05-22T07:51:50.5295661Z [[AADAdministrativeUnit]Test-Dynamic-Unit-DSC::[EntraID]EntraID_Configuration] GET
2024-05-22T07:51:50.5302636Z https://graph.microsoft.com/v1.0/directoryobjects/3cfc3b6e-3bad-476a-8a23-eeae9f731015 with 0-byte payload
2024-05-22T07:51:50.5653597Z VERBOSE: [fv-az516-242]:
2024-05-22T07:51:50.5671419Z [[AADAdministrativeUnit]Test-Dynamic-Unit-DSC::[EntraID]EntraID_Configuration] received 403-byte response of content
2024-05-22T07:51:50.5676066Z type application/json
2024-05-22T07:51:50.5684868Z VERBOSE: [fv-az516-242]:
2024-05-22T07:51:50.5693265Z [[AADAdministrativeUnit]Test-Dynamic-Unit-DSC::[EntraID]EntraID_Configuration] AU {Test-Dynamic-Unit-DSC} member found:
2024-05-22T07:51:50.5701192Z Type 'User' identity 'xxx@xxx.com'
2024-05-22T07:51:50.5708295Z VERBOSE: [fv-az516-242]:
2024-05-22T07:51:50.5715484Z [[AADAdministrativeUnit]Test-Dynamic-Unit-DSC::[EntraID]EntraID_Configuration] GET
2024-05-22T07:51:50.5722362Z https://graph.microsoft.com/v1.0/directoryobjects/37321d6d-2ef4-4d08-a6a9-a54d0674684a with 0-byte payload
2024-05-22T07:51:50.6025143Z VERBOSE: [fv-az516-242]:
2024-05-22T07:51:50.6041054Z [[AADAdministrativeUnit]Test-Dynamic-Unit-DSC::[EntraID]EntraID_Configuration] received 426-byte response of content
2024-05-22T07:51:50.6046533Z type application/json
2024-05-22T07:51:50.6054653Z VERBOSE: [fv-az516-242]:
2024-05-22T07:51:50.6062094Z [[AADAdministrativeUnit]Test-Dynamic-Unit-DSC::[EntraID]EntraID_Configuration] AU {Test-Dynamic-Unit-DSC} member found:
2024-05-22T07:51:50.6069104Z Type 'User' identity 'xxx@xxx.com'
2024-05-22T07:51:50.6075873Z VERBOSE: [fv-az516-242]:
2024-05-22T07:51:50.6082670Z [[AADAdministrativeUnit]Test-Dynamic-Unit-DSC::[EntraID]EntraID_Configuration] GET
2024-05-22T07:51:50.6089792Z https://graph.microsoft.com/v1.0/directoryobjects/0a2b7503-2f93-4824-95d4-be0e192160d2 with 0-byte payload
2024-05-22T07:51:50.6348480Z VERBOSE: [fv-az516-242]:
2024-05-22T07:51:50.6365957Z [[AADAdministrativeUnit]Test-Dynamic-Unit-DSC::[EntraID]EntraID_Configuration] received 502-byte response of content
2024-05-22T07:51:50.6371299Z type application/json
2024-05-22T07:51:50.6379150Z VERBOSE: [fv-az516-242]:
And it takes a lot of execution time. As it's a dyn admin unit, why retrieve all admin unit members ?
Description of the issue
When I deploy for the first time a dynamic Administrative Unit with the following parameters:
Everything goes well and the administrative unit is created correctly, dynamic and membership is also correct.
But, when I deploy the same configuration again via my pipeline, the DSC configuration will first retrieve all the members and then end up with the following error:
I want to deploy dynamic administrative unit and ensure their value through my pipeline. But it seems to work only for creation.
Thanks for your help.
Microsoft 365 DSC Version
1.23.1220.1
Which workloads are affected
Azure Active Directory
The DSC configuration
Verbose logs showing the problem
Environment Information + PowerShell Version