andikrueger
commented
7 months ago There is the M365DSCRuleEvaulation Resource which would basically allow the usage of an configuration to monitor your requirements: https://www.youtube.com/watch?v=RPDxCPo8y_k
Your could integrate this resource in a configuration and only run Test-DSCConfiguration against the other tenants.
Internally this resources uses the option to convert a configuration to an PowerShell objects and applies an filters on this object.
Please have a look at the code starting at line 190, if you can somehow repurpose it.
YenNantes
Hi, Is there a way when using Assert-M365DSCBlueprint to audit only specific objects for a given resource and tell M365DSC not to check the others.
For example we have some standard transport rules that should be created on all my company's tenants but local M365 admins are free to add their own transport rules if they need to. I would like to audit that the standard transport rules are created and configured properly but do not audit the other transport rules. The problem right now is that even if I only have the transport rules that I want to audit on my blueprint file, Assert-M365DSCBlueprint will retrieve all transport rules from the remote tenant and find that they are not existing on the blue print file. I would like to find a way to ignore them.
Same for groups, I would like to check that some specific standard Entra ID groups exists.
Thanks