Retrieve last sign-in time of all guest users via PowerShell?
I am trying to export a list of guest user's last sign-in time to a CSV file via PowerShell.
Atfirst, I used Connect-AzureAD to get into Azure AD from PowerShell.
I found the below command where I can fetch only the guest users list.
Get-AzureADUser -Filter "UserType eq 'Guest' and AccountEnabled eq true"
Now, from the above list, I want to retrieve the last sign-in time property along with their displayname or UPN.
I found below link that is partially similar my scenario:
In the above link, they are checking whether the guest user has logged in for the last 30 days or not. But, I want to retrieve the last signInTime of all guest users.
Is this possible? Has anyone tried something like this and achieved it??
I tried in my environment and got last sign-in time of all guest users successfully by using the below PowerShell Script:
$guests = Get-AzureADUser -Filter "userType eq 'Guest'" -All $true
foreach ($guest in $guests) {
$Userlogs = Get-AzureADAuditSignInLogs -Filter "userprincipalname eq `'$($guest.mail)'" -ALL:$true
if ($Userlogs -is [array]) {
$timestamp = $Userlogs[0].createddatetime
}
else {
$timestamp = $Userlogs.createddatetime
}
$Info = [PSCustomObject]@{
Name = $guest.DisplayName
UserType = $guest.UserType
LastSignin = $timestamp
}
$Info | Export-csv C:\GuestUserLastSignins.csv -NoTypeInformation -Append
Remove-Variable Info
}
Write-Host -ForegroundColor Green "Exported Logs successfully"
Output:
After running the above script, csv file generated like below:
- How to create scope using Azure CLI (az ad app)
- Property 'onPremisesSyncEnabled' does not exist as a declared property or extension property
- TLS version issue is being raised while connecting to AzureAD using the Azure Functions
- Cannot find type [Microsoft.Open.AzureAD.Model.ClaimsMappingPolicy] Error
- Azure AD - how to set app manifest properties programatically (accessTokenAcceptedVersion to v2 and signInAudience)?
- Retrieve last sign-in time of all guest users via PowerShell?
- Error occurred while executing GetServicePrincipalOAuth2PermissionGrants
- Grant admin consent failed for office 365 api permissions
- How can I read the mobile value from a B2C user record and transform it to a strongAuthenticationPhoneNumber?
- Getting blank while fetching Delegated permissions of Service Principal via PowerShell
- Authentication_Unauthorized while fetching list of applications in AAD
- Deleting an Application's AppRole in Azure Active Directory
- Unable to fetch ID of SharePoint API permissions
- Invalid value specified for property 'groupTypes' of resource 'Group'
- Is it possible to update the SignInNames of already existing users in Azure AD using Powershell
- Get all users for the Azure AD group in Azure CLI - 100 limit issue
- Get-AzureADMSPrivilegedResource comlet is failing with Gateway Timeout! <AzureADPReview module>
- Azure ad app - Updating manifest programmatically
- How do I get all the details of an Azure AD computer object?
- Bulk Azure AD Update
- Create Teams-room with DynamicMembership using PowerShell module
- Get Azure AD audit logs using Reporting API
- Add-AzureADApplicationPolicy: Error occurred while executing AddApplicationPolicy (Request_ResourceNotFound)
- Grant O365 Management API permissions to a managed identity
- Updating Multiple Users ADGroup by EmployeeID
- Updating Multiple Users to ADGroup
- Get-MsolUserRole Azure AD V2 cmdlet equivalent
- What are the EXACT perms needed to use Get-AzureRmRoleAssignment as an app via a ServicePrincipal
- Azure Graph 403 Authorization_RequestDenied using service principal from VSTS
- Creation of new AzureAD application with powershell