Closed ShaunNeighbourSwale closed 1 year ago
ShaunNeighbourSwale
commented
1 year ago This also appears to apply to "print teamdrives" - I've just run this against my suspended user OU, and this returned 0 results, even though I know there are suspended users still attached to shared drives.
During our suspension process, accounts are renamed so that new users are less likely to have an account name clash....
ShaunNeighbourSwale
commented
1 year ago 
Example user. Tried "print teamdrives" with the current account email address and the alias email address.
taers232c
commented
1 year ago Shaun,
GAM is reporting whatever the Drive API returns.
Send me a Meet/Zoom invitation and we can discuss.
Ross Scroggs @.***
On Sep 2, 2022, at 6:31 AM, ShaunNeighbourSwale @.***> wrote:
https://user-images.githubusercontent.com/51878759/188156616-564dc5de-1243-4750-963b-196a9510ff74.png Example user. Tried "print teamdrives" with the current account email address and the alias email address.
— Reply to this email directly, view it on GitHub https://github.com/taers232c/GAMADV-XTD3/issues/297#issuecomment-1235510183, or unsubscribe https://github.com/notifications/unsubscribe-auth/ACCTYL3D5QUXVWP3MZSKFFLV4H6SZANCNFSM6AAAAAAQDH723Y. You are receiving this because you are subscribed to this thread.
taers232c
commented
1 year ago The Drive API doesn't return Shared Drives for suspended users.
$ gam update user testuser4 suspended true
User: testuser4@domain.com, Updated
$ gam user testuser4 show teamdrives
Getting all Shared Drives for testuser4@domain.com
Got 0 Shared Drives...
User: testuser4@domain.com, Show 0 Shared Drives
$ gam update user testuser4 suspended false
User: testuser4@domain.com, Updated
$ gam user testuser4 show teamdrives
Getting all Shared Drives for testuser4@domain.com
Got 1 Shared Drive...
User: testuser4@domain.com, Show 1 Shared Drive
User: testuser4@domain.com, Shared Drive: T4 Shared Drive (0AJGEJZ5_1_WyUk9PVA)
Shared Drive ID: 0AJGEJZ5_1_WyUkWXYZ
Shared Drive Name: T4 Shared Drive
hidden: False
createdTime: 2022-09-04T15:44:07-07:00
backgroundImageLink: https://ssl.gstatic.com/team_drive_themes/clams_background.jpg
colorRgb: #e91e63
role: organizer
capabilities:
canAddChildren: True
canChangeCopyRequiresWriterPermissionRestriction: True
canChangeDomainUsersOnlyRestriction: True
canChangeDriveBackground: True
canChangeDriveMembersOnlyRestriction: True
canComment: True
canCopy: True
canDeleteChildren: True
canDeleteDrive: True
canDownload: True
canEdit: True
canListChildren: True
canManageMembers: True
canReadRevisions: True
canRename: True
canRenameDrive: True
canResetDriveRestrictions: True
canShare: True
canTrashChildren: True
restrictions:
adminManagedRestrictions: False
copyRequiresWriterPermission: False
domainUsersOnly: False
driveMembersOnly: FalseThanks Ross - Bit of a pain, but if that's the only solution, I'll run this against a few thousand suspended accounts, and will update the automatic suspension process to perform this action.
Regards
Shaun
On Sun, 4 Sept 2022 at 23:48, Ross Scroggs @.***> wrote:
The Drive API doesn't return Shared Drives for suspended users.
$ gam update user testuser4 suspended true User: @.***, Updated
$ gam user testuser4 show teamdrives Getting all Shared Drives for @. Got 0 Shared Drives... User: @., Show 0 Shared Drives
$ gam update user testuser4 suspended false User: @.***, Updated
$ gam user testuser4 show teamdrives Getting all Shared Drives for @. Got 1 Shared Drive... User: @., Show 1 Shared Drive User: @.***, Shared Drive: T4 Shared Drive (0AJGEJZ5_1_WyUk9PVA) Shared Drive ID: 0AJGEJZ5_1_WyUkWXYZ Shared Drive Name: T4 Shared Drive hidden: False createdTime: 2022-09-04T15:44:07-07:00 backgroundImageLink: https://ssl.gstatic.com/team_drive_themes/clams_background.jpg colorRgb: #e91e63 role: organizer capabilities: canAddChildren: True canChangeCopyRequiresWriterPermissionRestriction: True canChangeDomainUsersOnlyRestriction: True canChangeDriveBackground: True canChangeDriveMembersOnlyRestriction: True canComment: True canCopy: True canDeleteChildren: True canDeleteDrive: True canDownload: True canEdit: True canListChildren: True canManageMembers: True canReadRevisions: True canRename: True canRenameDrive: True canResetDriveRestrictions: True canShare: True canTrashChildren: True restrictions: adminManagedRestrictions: False copyRequiresWriterPermission: False domainUsersOnly: False driveMembersOnly: False
— Reply to this email directly, view it on GitHub https://github.com/taers232c/GAMADV-XTD3/issues/297#issuecomment-1236429284, or unsubscribe https://github.com/notifications/unsubscribe-auth/AMLZWZ5ZKYUXWTQPJG43XMTV4URMXANCNFSM6AAAAAAQDH723Y . You are receiving this because you authored the thread.Message ID: @.***>
--
Shaun Neighbour | Trust Infrastructure Manager | Swale Academies Trust
Mobile: 07398 823641
-- Swale Academies TrustAshdown House Johnson Road Sittingbourne Kent, ME10 1JS
Registered in England and Wales Company Number: 07344732
-- CONFIDENTIAL: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. If you are not the intended recipient you are notified that disclosing, copying, distributing, or taking any action in reliance on the contents of this information is strictly prohibited.
taers232c
commented
1 year ago Shaun,
See this: https://github.com/taers232c/GAM-Scripts3/blob/master/GetSuspendedUserSharedDriveACLs.py
I've updated the script to handle aliases for the suspended users.
Ross
Hi
I'm trying to tidy up a few hundred shared drives. I've noticed that "print drivefileacls" appears to report the user's original email address (which is a current alias), rather than their current email address.