diff --git a/sharepoint/sharepoint-ps/Microsoft.Online.SharePoint.PowerShell/Set-SPOTenant.md b/sharepoint/sharepoint-ps/Microsoft.Online.SharePoint.PowerShell/Set-SPOTenant.md index 91dc4625a..ed5880306 100644 --- a/sharepoint/sharepoint-ps/Microsoft.Online.SharePoint.PowerShell/Set-SPOTenant.md +++ b/sharepoint/sharepoint-ps/Microsoft.Online.SharePoint.PowerShell/Set-SPOTenant.md @@ -652,6 +652,98 @@ This example disables the Power Apps Adaptive Card Extension. ## PARAMETERS +### -AIBuilderModelScope + +> Applicable: SharePoint Online + +This parameter allows administrators to limit which SharePoint sites the AI builder model and [structured and freeform document processing](/microsoft-365/syntex/form-processing-overview) premium feature is available on. + +The valid values are: + +- `NoSites`: AI builder models are not available on any sites. +- `AllSites`: AI builder models are available on all sites. +- `SelectedSites`: AI builder models are available only on sites within the feature's selected sites list. + +> [!NOTE] +> Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> Use of this parameter will clear the current AI builder model selected sites list, if one exists. + +```yaml +Type: SyntexFeatureScopeValue +Parameter Sets: (All) +Required: False +Position: Named +Default value: None +Accept pipeline input: False +Accept wildcard characters: False +``` + +### -AIBuilderModelSelectedSitesIncludesContentCenters + +> Applicable: SharePoint Online + +This parameter allows administrators to choose whether or not the AI builder model and [structured and freeform document processing](/microsoft-365/syntex/form-processing-overview) premium feature is available on all content center sites when the feature's scope is `SelectedSites` even if they are not explicitly included within the selected sites list. This parameter can only be called if the AI builder model's scope is set to `SelectedSites`. + +> [!NOTE] +> Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). + +PARAMVALUE: True | False + +```yaml +Type: Boolean +Parameter Sets: (All) +Required: False +Position: Named +Default value: None +Accept pipeline input: False +Accept wildcard characters: False +``` + +### -AIBuilderModelSelectedSitesList + +> Applicable: SharePoint Online + +This parameter allows administrators to pass a list of SharePoint site URLs to modify the AI builder model and [structured and freeform document processing](/microsoft-365/syntex/form-processing-overview) premium feature's selected sites list. By default this parameter overwrites the existing list with the user input list. Additionally, the `AIBuilderModelSelectedSitesListOperation` parameter can be used to specify a different operation. This parameter can only be called if the AI builder model's scope is set to `SelectedSites`. The inputted list of site URLs cannot exceed 100 items. + +> [!NOTE] +> Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). + +```yaml +Type: String[] +Parameter Sets: (All) +Required: False +Position: Named +Default value: None +Accept pipeline input: False +Accept wildcard characters: False +``` + +### -AIBuilderModelSelectedSitesListOperation + +> Applicable: SharePoint Online + +This parameter allows administrators to specify the operation to perform on the AI builder model and [structured and freeform document processing](/microsoft-365/syntex/form-processing-overview) premium feature's current selected sites list using the list of site URLs passed to the `AIBuilderModelSelectedSitesList` parameter. + +The valid values are: + +- `Overwrite`: Overwrite the existing selected sites list. This is the default operation. +- `Append`: Append the input list of sites to the existing selected sites list. +- `Remove`: Remove the input list of sites from the existing selected sites list. + +> [!NOTE] +> Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> Calling this parameter without `AIBuilderModelSelectedSitesList` has no effect. + +```yaml +Type: SelectedSitesListOperations +Parameter Sets: (All) +Required: False +Position: Named +Default value: Overwrite +Accept pipeline input: False +Accept wildcard characters: False +``` + ### -AllOrganizationSecurityGroupId > Applicable: SharePoint Online @@ -671,7 +763,25 @@ Accept wildcard characters: False ``` ### -AllowAnonymousMeetingParticipantsToAccessWhiteboards -{{ Fill AllowAnonymousMeetingParticipantsToAccessWhiteboards Description }} + +When you share a whiteboard in a Teams meeting, Whiteboard creates a sharing link. This link is +accessible by anyone within the organization. The whiteboard is also shared with any in-tenant users +in the meeting. Whiteboards are shared using company-shareable links, regardless of the default +setting. Support for the default sharing link type is planned. + +There's more capability for temporary collaboration by external and shared device accounts during a +Teams meeting. Users can temporarily view and collaborate on whiteboards that are shared in a +meeting, in a similar way to PowerPoint Live sharing. + +In this case, Whiteboard provides temporary viewing and collaboration on the whiteboard during the +Teams meeting only. A share link isn't created and Whiteboard doesn't grant access to the file. + +If you have external sharing enabled for OneDrive for Business, no further action is required. + +If you restrict external sharing for OneDrive for Business, you can keep it restricted, and just +enable this new setting in order for external and shared device accounts to work. For more +information, see +[Manage sharing for Microsoft Whiteboard](/microsoft-365/whiteboard/manage-sharing-organizations). ```yaml Type: Microsoft.SharePoint.Client.SharingState @@ -838,8 +948,45 @@ Accept pipeline input: False Accept wildcard characters: False ``` +### -AllowSelectSecurityGroupsInSPSitesList + +> Applicable: SharePoint Online + +Allows members of specific security groups to access SharePoint content. + +```yaml +Type: String[] +Parameter Sets: (All) +Aliases: +Required: False +Position: Named +Default value: None +Accept pipeline input: False +Accept wildcard characters: False +``` + +### -AllowSelectSGsInODBListInTenant + +> Applicable: SharePoint Online + +Allows members of specific security groups to access OneDrive content. + +```yaml +Type: String[] +Parameter Sets: (All) +Aliases: +Required: False +Position: Named +Default value: None +Accept pipeline input: False +Accept wildcard characters: False +``` + ### -AllowSensitivityLabelOnRecords -{{ Fill AllowSensitivityLabelOnRecords Description }} + +Controls whether sensitivity labels can be applied to records. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -854,7 +1001,10 @@ Accept wildcard characters: False ``` ### -AllowSharingOutsideRestrictedAccessControlGroups -{{ Fill AllowSharingOutsideRestrictedAccessControlGroups Description }} + +Controls whether sharing SharePoint sites and their content is allowed with users and groups who are not allowed as per the Restricted access control policy. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -869,7 +1019,8 @@ Accept wildcard characters: False ``` ### -AllowWebPropertyBagUpdateWhenDenyAddAndCustomizePagesIsEnabled -{{ Fill AllowWebPropertyBagUpdateWhenDenyAddAndCustomizePagesIsEnabled Description }} +Enables or disables web property bag updates in all sites in the tenant. When `AllowWebPropertyBagUpdateWhenDenyAddAndCustomizePagesIsEnabled` is set to `$true`, the web property bag can be updated even if the Add And Customize Pages right is denied on a site collection. +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -884,7 +1035,10 @@ Accept wildcard characters: False ``` ### -AnyoneLinkTrackUsers -{{ Fill AnyoneLinkTrackUsers Description }} + +Requires recipients to verify their identity with an email address to access content from an Anyone link. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -899,7 +1053,9 @@ Accept wildcard characters: False ``` ### -AppAccessInformationBarriersAllowList -{{ Fill AppAccessInformationBarriersAllowList Description }} + +Gets or sets the list of third-party application IDs (GUIDs) that are allowed to access information barriers protected sites and OneDrive accounts in the tenant. +Note: The feature associated with this cmdlet will be rolling out soon. ```yaml Type: System.Guid[] @@ -914,7 +1070,10 @@ Accept wildcard characters: False ``` ### -AppBypassInformationBarriers -{{ Fill AppBypassInformationBarriers Description }} + +Controls whether applications running in app-only mode can access sites protected by information barriers. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -997,7 +1156,18 @@ Accept wildcard characters: False ``` ### -AutofillColumnsScope -{{ Fill AutofillColumnsScope Description }} + +This parameter allows administrators to limit which SharePoint sites the [autofill columns](/microsoft-365/syntex/autofill-overview) premium feature is available on. + +The valid values are: + +- `NoSites`: Autofill columns are not available on any sites. +- `AllSites`: Autofill columns are available on all sites. +- `SelectedSites`: Autofill columns are available only on sites within the feature's selected sites list. + +> [!NOTE] +> Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> Use of this parameter will clear the current autofill columns selected sites list, if one exists. ```yaml Type: Microsoft.Online.SharePoint.TenantAdministration.SyntexFeatureScopeValue @@ -1012,7 +1182,11 @@ Accept wildcard characters: False ``` ### -AutofillColumnsSelectedSitesList -{{ Fill AutofillColumnsSelectedSitesList Description }} + +This parameter allows administrators to pass a list of SharePoint site URLs to modify the [autofill columns](/microsoft-365/syntex/autofill-overview) premium feature's selected sites list. By default this parameter overwrites the existing list with the user input list. Additionally, the `AutofillColumnsSelectedSitesListOperation` parameter can be used to specify a different operation. This parameter can only be called if autofill columns' scope is set to `SelectedSites`. The inputted list of site URLs cannot exceed 100 items. + +> [!NOTE] +> Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). ```yaml Type: System.String[] @@ -1027,7 +1201,18 @@ Accept wildcard characters: False ``` ### -AutofillColumnsSelectedSitesListOperation -{{ Fill AutofillColumnsSelectedSitesListOperation Description }} + +This parameter allows administrators to specify the operation to perform on the [autofill columns](/microsoft-365/syntex/autofill-overview) premium feature's current selected sites list using the list of site URLs passed to the `AutofillColumnsSelectedSitesList` parameter. + +The valid values are: + +- `Overwrite`: Overwrite the existing selected sites list. This is the default operation. +- `Append`: Append the input list of sites to the existing selected sites list. +- `Remove`: Remove the input list of sites from the existing selected sites list. + +> [!NOTE] +> Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> Calling this parameter without `AutofillColumnsSelectedSitesList` has no effect. ```yaml Type: Microsoft.Online.SharePoint.TenantAdministration.SelectedSitesListOperations @@ -1104,7 +1289,13 @@ Accept wildcard characters: False ``` ### -BlockDownloadFileTypeIds -{{ Fill BlockDownloadFileTypeIds Description }} + +Specifies the list of file type IDs that BlockDownloadFileTypePolicy applies to. + + +The valid values are: + +- TeamsMeetingRecording ```yaml Type: Microsoft.SharePoint.Client.Administration.SPBlockDownloadFileTypeId[] @@ -1119,7 +1310,18 @@ Accept wildcard characters: False ``` ### -BlockDownloadFileTypePolicy -{{ Fill BlockDownloadFileTypePolicy Description }} + +You can block the download of Teams meeting recording files from SharePoint or OneDrive. This allows users to remain productive while addressing the risk of accidental data loss. Users have browser-only access to play the meeting recordings with no ability to download or sync files or access them through apps. + +This policy applies to new meeting recordings across the entire organization. You can exempt people who are members of specified security groups from the policy. This allows you to specify governance or compliance specialists who should have download access to meeting recordings. + +After the policy is turned on, any new Teams meeting recording files created by the Teams service and saved in SharePoint and OneDrive are blocked from download. + +Because this policy affects meeting recordings stored in OneDrive and SharePoint, you must be a SharePoint administrator to configure it. + +Note that this policy doesn't apply to manually uploaded meeting recording files. For more details, see [Block the download of Teams meeting recording files from SharePoint or OneDrive](/microsoftteams/block-download-meeting-recording). + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -1361,7 +1563,10 @@ Accept wildcard characters: False ``` ### -ContentSecurityPolicyEnforcement -{{ Fill ContentSecurityPolicyEnforcement Description }} + +Controls whether content security policy is enabled. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -1412,7 +1617,10 @@ Accept wildcard characters: False ``` ### -CoreDefaultLinkToExistingAccess -{{ Fill CoreDefaultLinkToExistingAccess Description }} + +When set to `True`, the default sharing link will be a "People with Existing Access" link (which does not modify permissions) for SharePoint sites. When set to `False` (the default), the default sharing link type is controlled by the `CoreDefaultShareLinkScope` parameter. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -1427,7 +1635,15 @@ Accept wildcard characters: False ``` ### -CoreDefaultShareLinkRole -{{ Fill CoreDefaultShareLinkRole Description }} + +This parameter sets the default share link role on SharePoint sites. It replaces the `DefaultLinkPermission`. + +The valid values are: +- `None`: No permissions granted. +- `View`: View-only permissions. +- `Edit`: Edit permissions. +- `Review`: Review permissions. +- `RestrictedView`: Restricted view permissions. ```yaml Type: Microsoft.Online.SharePoint.TenantManagement.SharingRole @@ -1442,7 +1658,14 @@ Accept wildcard characters: False ``` ### -CoreDefaultShareLinkScope -{{ Fill CoreDefaultShareLinkScope Description }} + +This parameter sets the default share link scope on SharePoint sites. It replaces the `DefaultSharingLinkType`. + +The valid values are: +- `Anyone`: Anyone with the link can access the content. +- `Organization`: Only people within the organization can access the content. +- `SpecificPeople`: Only specific individuals (specified by the user) can access the content. +- `Uninitialized`: The default value, indicating that the default share link scope is not explicitly set. ```yaml Type: Microsoft.SharePoint.Client.Sharing.SharingScope @@ -1508,7 +1731,10 @@ Accept wildcard characters: False ``` ### -CoreRequestFilesLinkEnabled -{{ Fill CoreRequestFilesLinkEnabled Description }} + +Enable or disable the Request files link on the core partition for all SharePoint sites (not including OneDrive sites). If this value is not set, Request files will only show for OneDrives with Anyone links enabled. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -1523,7 +1749,12 @@ Accept wildcard characters: False ``` ### -CoreRequestFilesLinkExpirationInDays -{{ Fill CoreRequestFilesLinkExpirationInDays Description }} + +Specifies the number of days before a Request files link expires for all SharePoint sites (not including OneDrive sites). + +The value can be from 0 to 730 days. + +To remove the expiration requirement, set the value to zero (0). ```yaml Type: System.Int32 @@ -1538,7 +1769,17 @@ Accept wildcard characters: False ``` ### -CoreSharingCapability -{{ Fill CoreSharingCapability Description }} + +Determines what level of sharing is available for SharePoint sites (not including OneDrive sites). + +The valid values are: + +- ExternalUserAndGuestSharing (default) - External user sharing (share by email) and guest link sharing are both enabled. +- Disabled - External user sharing (share by email) and guest link sharing are both disabled. +- ExternalUserSharingOnly - External user sharing (share by email) is enabled, but guest link sharing is disabled. +- ExistingExternalUserSharingOnly - Only guests already in your organization's directory. + +For more information about sharing, see [Manage sharing settings](/sharepoint/turn-external-sharing-on-or-off) for your SharePoint online environment. ```yaml Type: Microsoft.Online.SharePoint.TenantManagement.SharingCapabilities @@ -1571,7 +1812,12 @@ Accept wildcard characters: False ``` ### -DefaultContentCenterSite -{{ Fill DefaultContentCenterSite Description }} + +This parameter allows administrators to set the default content center site for their tenant, if one does not already exist, by providing a content center's URL. The content center configured here is the default for all document processing services. Content center owners can view analytics for all applied models in it, and members can build enterprise models. For more information visit [Create a content center in Microsoft Syntex](/microsoft-365/syntex/create-a-content-center). + +> [!NOTE] +> Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> You cannot change the designated default content center once it has been set. ```yaml Type: System.String @@ -1606,7 +1852,18 @@ Accept wildcard characters: False ``` ### -DefaultOneDriveInformationBarrierMode -{{ Fill DefaultOneDriveInformationBarrierMode Description }} + +The DefaultOneDriveInformationBarrierMode sets the information barrier mode for all OneDrive sites. + +The valid values are: + +- Open +- Explicit +- Implicit +- OwnerModerated +- Mixed + +For more information about information barriers, see [Use information barriers with SharePoint](/purview/information-barriers-sharepoint) for your SharePoint Online environment. ```yaml Type: System.String @@ -1666,7 +1923,16 @@ Accept wildcard characters: False ``` ### -DelayDenyAddAndCustomizePagesEnforcementOnClassicPublishingSites -{{ Fill DelayDenyAddAndCustomizePagesEnforcementOnClassicPublishingSites Description }} + +This parameter controls how SharePoint will deal with classic publishing sites (templates BLANKINTERNETCONTAINER#0, CMSPUBLISHING#0 and BLANKINTERNET#0) where custom scripts are allowed. + +The valid values are: + +* False (default) - for classic publishing site collections where administrators enabled the ability to add custom script, SharePoint will revoke that ability within 24 hours from the last time this setting was changed. +* True - All changes performed by administrators to custom script settings are preserved. + +> [!NOTE] +> This setting affects all classic publishing sites (templates BLANKINTERNETCONTAINER#0, CMSPUBLISHING#0 and BLANKINTERNET#0). There are no options to preserve changes to custom script settings only on some specific sites. ```yaml Type: System.Boolean @@ -1724,6 +1990,40 @@ Accept pipeline input: False Accept wildcard characters: False ``` +### -DenySelectSecurityGroupsInSPSitesList + +> Applicable: SharePoint Online + +Restricts members of specific security groups from accessing SharePoint content. + +```yaml +Type: String[] +Parameter Sets: (All) +Aliases: +Required: False +Position: Named +Default value: None +Accept pipeline input: False +Accept wildcard characters: False +``` + +### -DenySelectSGsInODBListInTenant + +> Applicable: SharePoint Online + +Restricts members of specific security groups from accessing OneDrive content. + +```yaml +Type: String[] +Parameter Sets: (All) +Aliases: +Required: False +Position: Named +Default value: None +Accept pipeline input: False +Accept wildcard characters: False +``` + ### -DisableAddShortcutsToOneDrive > Applicable: SharePoint Online @@ -1745,7 +2045,8 @@ Accept wildcard characters: False ``` ### -DisableBackToClassic -{{ Fill DisableBackToClassic Description }} + +Enables or disables the link "Return to classic SharePoint" on modern SharePoint list and library pages. ```yaml Type: System.Boolean @@ -1858,7 +2159,10 @@ Accept wildcard characters: False ``` ### -DisableModernListTemplateIds -{{ Fill DisableModernListTemplateIds Description }} + +Specifies list of modern template IDs not enabled in tenant. + +To set this list to be a specific security group, you need to enter its GUID as the argument. You can enter multiple GUIDs by using commas to separate them. To view the current list, use [./Get-SPOTenant.md](Get-SPOTenant.md). ```yaml Type: System.Guid[] @@ -1894,7 +2198,10 @@ Accept wildcard characters: False ``` ### -DisablePersonalListCreation -{{ Fill DisablePersonalListCreation Description }} + +Controls whether users can create a personal list. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -1929,7 +2236,10 @@ Accept wildcard characters: False ``` ### -DisableSpacesActivation -{{ Fill DisableSpacesActivation Description }} + +Controls SharePoint spaces activation. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -1944,7 +2254,10 @@ Accept wildcard characters: False ``` ### -DisableVivaConnectionsAnalytics -{{ Fill DisableVivaConnectionsAnalytics Description }} + +Controls whether the Viva Connections analytics feature is enabled. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -1959,7 +2272,10 @@ Accept wildcard characters: False ``` ### -DisableWorkflow2010 -{{ Fill DisableWorkflow2010 Description }} + +Controls whether Workflow 2010 is enabled. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2017,7 +2333,18 @@ Accept wildcard characters: False ``` ### -DocumentTranslationScope -{{ Fill DocumentTranslationScope Description }} + +This parameter allows administrators to limit which SharePoint sites the [document translation](/microsoft-365/syntex/translation) premium feature is available on. + +The valid values are: + +- `NoSites`: Document translation is not available on any sites. +- `AllSites`: Document translation is available on all sites. +- `SelectedSites`: Document translation is available only on sites within the feature's selected sites list. + +> [!NOTE] +> Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> Use of this parameter will clear the current document translation selected sites list, if one exists. ```yaml Type: Microsoft.Online.SharePoint.TenantAdministration.SyntexFeatureScopeValue @@ -2032,7 +2359,11 @@ Accept wildcard characters: False ``` ### -DocumentTranslationSelectedSitesList -{{ Fill DocumentTranslationSelectedSitesList Description }} + +This parameter allows administrators to pass a list of SharePoint site URLs to modify the [document translation](/microsoft-365/syntex/translation) premium feature's selected sites list. By default this parameter overwrites the existing list with the user input list. Additionally, the `DocumentTranslationSelectedSitesListOperation` parameter can be used to specify a different operation. This parameter can only be called if document translation's scope is set to `SelectedSites`. The inputted list of site URLs cannot exceed 100 items. + +> [!NOTE] +> Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). ```yaml Type: System.String[] @@ -2047,7 +2378,18 @@ Accept wildcard characters: False ``` ### -DocumentTranslationSelectedSitesListOperation -{{ Fill DocumentTranslationSelectedSitesListOperation Description }} + +This parameter allows administrators to specify the operation to perform on the [document translation](/microsoft-365/syntex/translation) premium feature's current selected sites list using the list of site URLs passed to the `DocumentTranslationSelectedSitesList` parameter. + +The valid values are: + +- `Overwrite`: Overwrite the existing selected sites list. This is the default operation. +- `Append`: Append the input list of sites to the existing selected sites list. +- `Remove`: Remove the input list of sites from the existing selected sites list. + +> [!NOTE] +> Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> Calling this parameter without `DocumentTranslationSelectedSitesList` has no effect. ```yaml Type: Microsoft.Online.SharePoint.TenantAdministration.SelectedSitesListOperations @@ -2062,7 +2404,18 @@ Accept wildcard characters: False ``` ### -DocumentUnderstandingModelScope -{{ Fill DocumentUnderstandingModelScope Description }} + +This parameter allows administrators to limit which SharePoint sites the document understanding model and [unstructurted document processesing](/microsoft-365/syntex/document-understanding-overview) premium feature is available on. + +The valid values are: + +- `NoSites`: Document understanding models are not available on any sites. +- `AllSites`: Document understanding models are available on all sites. +- `SelectedSites`: Document understanding models are available only on sites within the feature's selected sites list. + +> [!NOTE] +> Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> Use of this parameter will clear the current document understanding model selected sites list, if one exists. ```yaml Type: Microsoft.Online.SharePoint.TenantAdministration.SyntexFeatureScopeValue @@ -2077,7 +2430,11 @@ Accept wildcard characters: False ``` ### -DocumentUnderstandingModelSelectedSitesList -{{ Fill DocumentUnderstandingModelSelectedSitesList Description }} + +This parameter allows administrators to pass a list of SharePoint site URLs to modify the document understanding model and [unstructurted document processesing](/microsoft-365/syntex/document-understanding-overview) premium feature's selected sites list. By default this parameter overwrites the existing list with the user input list. Additionally, the `DocumentUnderstandingModelSelectedSitesListOperation` parameter can be used to specify a different operation. This parameter can only be called if the document understanding model's scope is set to `SelectedSites`. The inputted list of site URLs cannot exceed 100 items. + +> [!NOTE] +> Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). ```yaml Type: System.String[] @@ -2092,11 +2449,22 @@ Accept wildcard characters: False ``` ### -DocumentUnderstandingModelSelectedSitesListOperation -{{ Fill DocumentUnderstandingModelSelectedSitesListOperation Description }} -```yaml -Type: Microsoft.Online.SharePoint.TenantAdministration.SelectedSitesListOperations -Parameter Sets: (All) +This parameter allows administrators to specify the operation to perform on the document understanding model and [unstructurted document processesing](/microsoft-365/syntex/document-understanding-overview) premium feature's current selected sites list using the list of site URLs passed to the `DocumentUnderstandingModelSelectedSitesList` parameter. + +The valid values are: + +- `Overwrite`: Overwrite the existing selected sites list. This is the default operation. +- `Append`: Append the input list of sites to the existing selected sites list. +- `Remove`: Remove the input list of sites from the existing selected sites list. + +> [!NOTE] +> Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> Calling this parameter without `DocumentUnderstandingModelSelectedSitesList` has no effect. + +```yaml +Type: Microsoft.Online.SharePoint.TenantAdministration.SelectedSitesListOperations +Parameter Sets: (All) Aliases: Required: False @@ -2167,7 +2535,23 @@ Accept wildcard characters: False ``` ### -EnableAutoExpirationVersionTrim -{{ Fill EnableAutoExpirationVersionTrim Description }} + +Global and SharePoint Administrators can set organization-level version history limits settings that universally apply to new versions created on all new document libraries created in your organization. + +When version history limits are managed automatically, SharePoint employs an algorithm behind the scenes that deletes (thins out) intermittent older versions that are least likely to be needed, while preserving sufficient high-value versions - more versions in the recent past and fewer farther back in time - in case restores are required. + +The valid values are: + +- True – Version history limits for new versions created on all new document libraries in your organization will be managed automatically. +- False – Version history limits for new Versions created on all new document libraries in your organization will be managed manually by setting limits to the number of major versions (`MajorVersionLimit`) and time set (`ExpireVersionsAfterDays`). Review the documentation of both parameters to manage your organization's version limits manually. + +> [!NOTE] +> When version history limits are managed manually (`EnableAutoExpirationVersionTrim $false`), `MajorVersionLimit` and `ExpireVersionsAfterDays` are both required parameters with the following acceptable values: +> a. `MajorVersionLimit` accepts values from 1 through 50,000 (inclusive). +> b. `ExpireVersionsAfterDays` accepts values of 0 to Never Expire or values >= 30 to delete versions that exceed that time period. +> When version history limits are managed automatically (`EnableAutoExpirationVersionTrim $true`), setting `MajorVersionLimit` or `ExpireVersionsAfterDays` will result in an error as the count limits are set by the service. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2222,7 +2606,10 @@ Accept wildcard characters: False ``` ### -EnableDiscoverableByOrganizationForVideos -{{ Fill EnableDiscoverableByOrganizationForVideos Description }} + +When set to true, allows users to easily share a video with the entire company, using the security group defined in "AllOrganizationSecurityGroupId". If this security group is undefined, the Discoverable By Company for Videos feature will remain hidden. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2258,7 +2645,10 @@ Accept wildcard characters: False ``` ### -EnableMediaReactions -{{ Fill EnableMediaReactions Description }} + +Controls whether media reactions are enabled. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2293,7 +2683,10 @@ Accept wildcard characters: False ``` ### -EnableModernListTemplateIds -{{ Fill EnableModernListTemplateIds Description }} + +Specifies list of modern template IDs enabled in tenant. + +To set this list to be a specific security group, you need to enter its GUID as the argument. You can enter multiple GUIDs by using commas to separate them. To view the current list, use [./Get-SPOTenant.md](Get-SPOTenant.md). ```yaml Type: System.Guid[] @@ -2328,7 +2721,10 @@ Accept wildcard characters: False ``` ### -EnableRestrictedAccessControl -{{ Fill EnableRestrictedAccessControl Description }} + +Lets you and other Global or SharePoint Administrators restrict access to sites. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2385,8 +2781,48 @@ Accept pipeline input: False Accept wildcard characters: False ``` +### -EnableVersionExpirationSetting + +> Applicable: SharePoint Online + +The `EnableVersionExpirationSetting` parameter is no longer active, this feature is now automatically enabled for each tenant. +[Learn more about Version History Settings](/sharepoint/document-library-version-history-limits) + +```yaml +Type: Boolean +Parameter Sets: (All) +Aliases: +Required: False +Position: Named +Default value: None +Accept pipeline input: False +Accept wildcard characters: False +``` + +### -EnforceContentSecurityPolicyConfiguration + +> Applicable: SharePoint Online + +When set to `True` **Content Security Policy** violations will be enforced. +In multi-geo environments, **Content Security Policy** configuration is unique to each geo. + +PARAMVALUE: True | False + +```yaml +Type: Boolean +Parameter Sets: (All) +Required: False +Position: Named +Default value: False +Accept pipeline input: False +Accept wildcard characters: False +``` + ### -EnforceRequestDigest -{{ Fill EnforceRequestDigest Description }} + +When set to `True` a valid request digest is required on SOAP API calls that perform a state-changing operation. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2401,7 +2837,10 @@ Accept wildcard characters: False ``` ### -ExcludedBlockDownloadGroupIds -{{ Fill ExcludedBlockDownloadGroupIds Description }} + +Exempts users from specified groups from the block download policy and they can fully download any content for the site. + +To set this list to be a specific security group, you need to enter its GUID as the argument. You can enter multiple GUIDs by using commas to separate them. To view the current list, use [./Get-SPOTenant.md](Get-SPOTenant.md). ```yaml Type: System.Guid[] @@ -2430,8 +2869,30 @@ Accept pipeline input: False Accept wildcard characters: False ``` +### -ExemptNativeUsersFromTenantLevelRestricedAccessControl + +> Applicable: SharePoint Online + +Gets or sets the value of a setting which determines whether Native Identity users should be exempted from restricted access control policy at tenant level. + +PARAMVALUE: True | False + +```yaml +Type: Boolean +Parameter Sets: (All) +Aliases: +Required: False +Position: Named +Default value: None +Accept pipeline input: False +Accept wildcard characters: False +``` + ### -ExpireVersionsAfterDays -{{ Fill ExpireVersionsAfterDays Description }} + +When version history limits are managed manually (`EnableAutoExpirationVersionTrim $false`), admins will need to set the limits to the number of major versions (`MajorVersionLimit`) and the time period the versions are stored (`ExpireVersionsAfterDays`). Please check the description of `EnableAutoExpirationVersionTrim` for more details. + +PARAMVALUE: Int32 ```yaml Type: System.Int32 @@ -2446,7 +2907,10 @@ Accept wildcard characters: False ``` ### -ExtendPermissionsToUnprotectedFiles -{{ Fill ExtendPermissionsToUnprotectedFiles Description }} + +This property can be used to turn on/off the capability called "Extended SharePoint permissions to unprotected files". To learn more about this feature check [here](https://aka.ms/ExtendSharePointPermission) + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2592,7 +3056,10 @@ Accept wildcard characters: False ``` ### -HideSyncButtonOnTeamSite -{{ Fill HideSyncButtonOnTeamSite Description }} + +When set to true, turns off OneDrive sync from all the SharePoint libraries in your organization. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2607,7 +3074,10 @@ Accept wildcard characters: False ``` ### -IBImplicitGroupBased -{{ Fill IBImplicitGroupBased Description }} + +The IBImplicitGroupBased setting enables Microsoft 365 Groups membership-based access and sharing control for all Implicit mode sites. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2642,7 +3112,10 @@ Accept wildcard characters: False ``` ### -InformationBarriersSuspension -{{ Fill InformationBarriersSuspension Description }} + +When InformationBarriersSuspension parameter is set to $false, information barriers in SharePoint and OneDrive is enabled, when set to $true, it is disabled. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2722,7 +3195,10 @@ Accept wildcard characters: False ``` ### -IsCollabMeetingNotesFluidEnabled -{{ Fill IsCollabMeetingNotesFluidEnabled Description }} + +Controls whether collaborative meeting notes are enabled in Microsoft Teams. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2737,7 +3213,15 @@ Accept wildcard characters: False ``` ### -IsDataAccessInCardDesignerEnabled -{{ Fill IsDataAccessInCardDesignerEnabled Description }} + +The IsDataAccessInCardDesignerEnabled settings (defaulted to false) will allow Viva Connections Dashboard operators to access SharePoint and Graph APIs in the Card Designer card. + +The valid values are: + +- False (default) – SharePoint and Graph APIs cannot be accessed in the Card Designer card. +- True – Users with edit permissions on the Dashboard will be able to access SharePoint and Graph APIs in the Card Designer card. + +For more information on this feature, see [Overview of Viva Connections Card Designer advance API features](https://learn.microsoft.com/en-us/sharepoint/dev/spfx/viva/features/card-designer/card-designer-api-support). ```yaml Type: System.Boolean @@ -2752,7 +3236,12 @@ Accept wildcard characters: False ``` ### -IsEnableAppAuthPopUpEnabled -{{ Fill IsEnableAppAuthPopUpEnabled Description }} + +Enables or disables users in the organization to authenticate SharePoint applications using popups. + +This parameter affects the way code in SharePoint interacts with Microsoft Entra ID to get tokens to access APIs. In scenarios where third-party cookies are disabled (such as Safari browsers with ITP feature enabled), any code that requires a token to access an API automatically triggers a full page refresh. When IsEnableAppAuthPopUpEnabled is set to $true, SharePoint will instead surface a popup in this scenario. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2782,7 +3271,10 @@ Accept wildcard characters: False ``` ### -IsLoopEnabled -{{ Fill IsLoopEnabled Description }} + +Controls whether Loop components are available in Microsoft Teams. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2912,7 +3404,10 @@ Accept wildcard characters: False ``` ### -LegacyBrowserAuthProtocolsEnabled -{{ Fill LegacyBrowserAuthProtocolsEnabled Description }} + +Controls whether legacy browser authentication connections to SharePoint with legacy Relying Party suite (RPS) protocol are enabled. Legacy protocols are more susceptible to brute-force and phishing attacks because they use non-modern authentication methods. Setting this to False prevents applications, (including third party applications) from using non-modern authentication protocols to access SharePoint Online and OneDrive resources in a browser. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -2953,7 +3448,10 @@ Accept wildcard characters: False ``` ### -MajorVersionLimit -{{ Fill MajorVersionLimit Description }} + +When version history limits are managed manually (`EnableAutoExpirationVersionTrim $false`), admins will need to set the limits to the number of major versions (`MajorVersionLimit`) and the time period the versions are stored (`ExpireVersionsAfterDays`). Please check the description of `EnableAutoExpirationVersionTrim` for more details. + +PARAMVALUE: Int32 ```yaml Type: System.Int32 @@ -2993,7 +3491,10 @@ Accept wildcard characters: False ``` ### -MassDeleteNotificationDisabled -{{ Fill MassDeleteNotificationDisabled Description }} + +Enables or disables the mass delete detection feature. When MassDeleteNotificationDisabled is set to $true, tenant admins can perform mass deletion operations without triggering notifications. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -3263,7 +3764,14 @@ Accept wildcard characters: False ``` ### -OneDriveBlockGuestsAsSiteAdmin -{{ Fill OneDriveBlockGuestsAsSiteAdmin Description }} + +Controls whether guests are blocked from using OneDrive. + +The valid values are: + +- On +- Off +- Unspecified ```yaml Type: Microsoft.SharePoint.Client.SharingState @@ -3278,7 +3786,10 @@ Accept wildcard characters: False ``` ### -OneDriveDefaultLinkToExistingAccess -{{ Fill OneDriveDefaultLinkToExistingAccess Description }} + +When set to `True`, the default sharing link will be a "People with Existing Access" link (which does not modify permissions) for OneDrive sites. When set to `False` (the default), the default sharing link type is controlled by the `OneDriveDefaultShareLinkScope` parameter. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -3293,7 +3804,15 @@ Accept wildcard characters: False ``` ### -OneDriveDefaultShareLinkRole -{{ Fill OneDriveDefaultShareLinkRole Description }} + +This parameter sets the default share link role on OneDrive sites. It replaces the `DefaultLinkPermission`. + +The valid values are: +- `None`: No permissions granted. +- `View`: View-only permissions. +- `Edit`: Edit permissions. +- `Review`: Review permissions. +- `RestrictedView`: Restricted view permissions. ```yaml Type: Microsoft.Online.SharePoint.TenantManagement.SharingRole @@ -3308,7 +3827,14 @@ Accept wildcard characters: False ``` ### -OneDriveDefaultShareLinkScope -{{ Fill OneDriveDefaultShareLinkScope Description }} + +This parameter sets the default share link scope on OneDrive sites. It replaces the `DefaultSharingLinkType`. + +The valid values are: +- `Anyone`: Anyone with the link can access the content. +- `Organization`: Only people within the organization can access the content. +- `SpecificPeople`: Only specific individuals (specified by the user) can access the content. +- `Uninitialized`: The default value, indicating that the default share link scope is not explicitly set. ```yaml Type: Microsoft.SharePoint.Client.Sharing.SharingScope @@ -3397,7 +3923,10 @@ Accept wildcard characters: False ``` ### -OneDriveRequestFilesLinkEnabled -{{ Fill OneDriveRequestFilesLinkEnabled Description }} + +Enable or disable the Request files link on the OneDrive partition for all OneDrive sites. If this value is not set, the Request files link will only show for OneDrives with Anyone links enabled. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -3412,7 +3941,12 @@ Accept wildcard characters: False ``` ### -OneDriveRequestFilesLinkExpirationInDays -{{ Fill OneDriveRequestFilesLinkExpirationInDays Description }} + +Specifies the number of days before a Request files link expires for all OneDrive sites. + +The value can be from 0 to 730 days. + +To remove the expiration requirement, set the value to zero (0). ```yaml Type: System.Int32 @@ -3427,7 +3961,15 @@ Accept wildcard characters: False ``` ### -OneDriveSharingCapability -{{ Fill OneDriveSharingCapability Description }} + +Determines what level of sharing is available for OneDrive sites. It corresponds to the `SharingCapabilities` for OneDrive sites. + +The valid values are: + +- ExternalUserAndGuestSharing (default) - External user sharing (share by email) and guest link sharing are both enabled. +- Disabled - External user sharing (share by email) and guest link sharing are both disabled. +- ExternalUserSharingOnly - External user sharing (share by email) is enabled, but guest link sharing is disabled. +- ExistingExternalUserSharingOnly - Only guests already in your organization's directory. ```yaml Type: Microsoft.Online.SharePoint.TenantManagement.SharingCapabilities @@ -3465,6 +4007,77 @@ Accept pipeline input: False Accept wildcard characters: False ``` +### -OpticalCharacterRecognitionScope + +> Applicable: SharePoint Online + +This parameter allows administrators to limit which SharePoint sites the [optical character recognition](/microsoft-365/syntex/ocr) premium feature is available on. + +The valid values are: + +- `NoSites`: Optical character recognition is not available on any sites. +- `AllSites`: Optical character recognition is available on all sites. +- `SelectedSites`: Optical character recognition is available only on sites within the feature's selected sites list. + +> [!NOTE] +> Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> Use of this parameter will clear the current optical character recognition selected sites list, if one exists. + +```yaml +Type: SyntexFeatureScopeValue +Parameter Sets: (All) +Required: False +Position: Named +Default value: None +Accept pipeline input: False +Accept wildcard characters: False +``` + +### -OpticalCharacterRecognitionSelectedSitesList + +> Applicable: SharePoint Online + +This parameter allows administrators to pass a list of SharePoint site URLs to modify the [optical character recognition](/microsoft-365/syntex/ocr) premium feature's selected sites list. By default this parameter overwrites the existing list with the user input list. Additionally, the `OpticalCharacterRecognitionSelectedSitesListOperation` parameter can be used to specify a different operation. This parameter can only be called if optical character recognition's scope is set to `SelectedSites`. The inputted list of site URLs cannot exceed 100 items. + +> [!NOTE] +> Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). + +```yaml +Type: String[] +Parameter Sets: (All) +Required: False +Position: Named +Default value: None +Accept pipeline input: False +Accept wildcard characters: False +``` + +### -OpticalCharacterRecognitionSelectedSitesListOperation + +> Applicable: SharePoint Online + +This parameter allows administrators to specify the operation to perform on the [optical character recognition](/microsoft-365/syntex/ocr) premium feature's current selected sites list using the list of site URLs passed to the `OpticalCharacterRecognitionSelectedSitesList` parameter. + +The valid values are: + +- `Overwrite`: Overwrite the existing selected sites list. This is the default operation. +- `Append`: Append the input list of sites to the existing selected sites list. +- `Remove`: Remove the input list of sites from the existing selected sites list. + +> [!NOTE] +> Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> Calling this parameter without `OpticalCharacterRecognitionSelectedSitesList` has no effect. + +```yaml +Type: SelectedSitesListOperations +Parameter Sets: (All) +Required: False +Position: Named +Default value: Overwrite +Accept pipeline input: False +Accept wildcard characters: False +``` + ### -OrphanedPersonalSitesRetentionPeriod > Applicable: SharePoint Online @@ -3528,19 +4141,25 @@ Accept pipeline input: False Accept wildcard characters: False ``` -### -PreventExternalUsersFromResharing +### -PrebuiltModelScope > Applicable: SharePoint Online -Prevents external users from resharing files, folders, and sites that they do not own. +This parameter allows administrators to limit which SharePoint sites the prebuilt model and [prebuilt document processing](/microsoft-365/syntex/prebuilt-overview) premium feature is available on. -PARAMVALUE: True | False +The valid values are: + +- `NoSites`: Prebuilt models are not available on any sites. +- `AllSites`: Prebuilt models are available on all sites. +- `SelectedSites`: Prebuilt models are available only on sites within the feature's selected sites list. + +> [!NOTE] +> Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> Use of this parameter will clear the current prebuilt model selected sites list, if one exists. ```yaml -Type: System.Int32 +Type: SyntexFeatureScopeValue Parameter Sets: (All) -Aliases: - Required: False Position: Named Default value: None @@ -3548,24 +4167,18 @@ Accept pipeline input: False Accept wildcard characters: False ``` -### -ProvisionSharedWithEveryoneFolder +### -PrebuiltModelSelectedSitesList > Applicable: SharePoint Online -Creates a Shared with Everyone folder in every user's new OneDrive for Business document library. - -The valid values are: - -- True (default) - The Shared with Everyone folder is created. -- False - No folder is created when the site and OneDrive for Business document library is created. +This parameter allows administrators to pass a list of SharePoint site URLs to modify the prebuilt model and [prebuilt document processing](/microsoft-365/syntex/prebuilt-overview) premium feature's selected sites list. By default this parameter overwrites the existing list with the user input list. Additionally, the `PrebuiltModelSelectedSitesListOperation` parameter can be used to specify a different operation. This parameter can only be called if the prebuilt model's scope is set to `SelectedSites`. The inputted list of site URLs cannot exceed 100 items. -The default behavior of the Shared with Everyone folder changed in August 2015. +> [!NOTE] +> Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). ```yaml -Type: System.Boolean +Type: String[] Parameter Sets: (All) -Aliases: - Required: False Position: Named Default value: None @@ -3573,36 +4186,42 @@ Accept pipeline input: False Accept wildcard characters: False ``` -### -PublicCdnAllowedFileTypes +### -PrebuiltModelSelectedSitesListOperation > Applicable: SharePoint Online -Sets public CDN allowed file types, if the public CDN is enabled. +This parameter allows administrators to specify the operation to perform on the prebuilt model and [prebuilt document processing](/microsoft-365/syntex/prebuilt-overview) premium feature's current selected sites list using the list of site URLs passed to the `PrebuiltModelSelectedSitesList` parameter. -PARAMVALUE: String +The valid values are: + +- `Overwrite`: Overwrite the existing selected sites list. This is the default operation. +- `Append`: Append the input list of sites to the existing selected sites list. +- `Remove`: Remove the input list of sites from the existing selected sites list. + +> [!NOTE] +> Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit [Licensing for Microsoft Syntex](/microsoft-365/syntex/syntex-licensing). +> Calling this parameter without `PrebuiltModelSelectedSitesList` has no effect. ```yaml -Type: System.Boolean +Type: SelectedSitesListOperations Parameter Sets: (All) -Aliases: - Required: False Position: Named -Default value: None +Default value: Overwrite Accept pipeline input: False Accept wildcard characters: False ``` -### -PublicCdnEnabled +### -PreventExternalUsersFromResharing > Applicable: SharePoint Online -Enables or disables the public CDN. +Prevents external users from resharing files, folders, and sites that they do not own. PARAMVALUE: True | False ```yaml -Type: Microsoft.Online.SharePoint.TenantAdministration.SyntexFeatureScopeValue +Type: System.Int32 Parameter Sets: (All) Aliases: @@ -3613,22 +4232,21 @@ Accept pipeline input: False Accept wildcard characters: False ``` -### -RequireAcceptingAccountMatchInvitedAccount - -This parameter has been deprecated since SharePoint Online legacy invitation flow switched to Entra B2B invitation flow. - -### -RequireAnonymousLinksExpireInDays +### -ProvisionSharedWithEveryoneFolder > Applicable: SharePoint Online -Specifies the upper bound for user-created anonymous link expiration periods. All links created after setting this policy will expire by the end of a period spanning the set number of days. +Creates a Shared with Everyone folder in every user's new OneDrive for Business document library. -The value can be from 0 to 730 days. +The valid values are: -To remove the expiration requirement, set the value to zero (0). +- True (default) - The Shared with Everyone folder is created. +- False - No folder is created when the site and OneDrive for Business document library is created. + +The default behavior of the Shared with Everyone folder changed in August 2015. ```yaml -Type: System.String[] +Type: System.Boolean Parameter Sets: (All) Aliases: @@ -3639,18 +4257,16 @@ Accept pipeline input: False Accept wildcard characters: False ``` -### -RequireOrganizationLinksExpireInDays +### -PublicCdnAllowedFileTypes > Applicable: SharePoint Online -Specifies the upper bound for user-created organization link expiration periods. All links created after setting this policy will expire by the end of a period spanning the set number of days. - -The value can be from 7 to 730 days. +Sets public CDN allowed file types, if the public CDN is enabled. -To remove the expiration requirement, set the value to zero (0). +PARAMVALUE: String ```yaml -Type: Microsoft.Online.SharePoint.TenantAdministration.SelectedSitesListOperations +Type: System.Boolean Parameter Sets: (All) Aliases: @@ -3661,20 +4277,16 @@ Accept pipeline input: False Accept wildcard characters: False ``` -### -ReSyncTenantPrivacyProfile +### -PublicCdnEnabled > Applicable: SharePoint Online -The 'SyncPrivacyProfileProperties' parameter is obsolete and renamed ReSyncTenantPrivacyProfile. - -This parameter enables the synchronization of privacy profile properties. - -ReSyncTenantPrivacyProfile sets whether or not the synced tenant properties will be updated on the next request. The request will cause Microsoft Entra ID to grab the tenant's current display name (TenantDisplayName) and privacy profile URL (PrivacyProfileUrl). +Enables or disables the public CDN. -Running 'Set-SPOTenant - ReSyncTenantPrivacyProfile' will force a sync from the Microsoft Entra privacy profile URL to SharePoint Online. The sync may take up to 24 hours to complete. Whenever SharePoint Online gets the privacy profile URL, it checks whether the last sync time is out of the sync time window. If it is, it syncs from Microsoft Entra ID to SharePoint Online. +PARAMVALUE: True | False ```yaml -Type: System.Boolean +Type: Microsoft.Online.SharePoint.TenantAdministration.SyntexFeatureScopeValue Parameter Sets: (All) Aliases: @@ -3685,21 +4297,28 @@ Accept pipeline input: False Accept wildcard characters: False ``` -### -SearchResolveExactEmailOrUPN +### -RecycleBinRetentionPeriod > Applicable: SharePoint Online -Removes the search capability from People Picker. Note, recently resolved names will still appear in the list until browser cache is cleared or expired. This also does not allow SharePoint users to search for security groups or SharePoint groups. +Sets the amount of time content is kept in the in recycle bin in Microsoft365.com before it is deleted. -SharePoint Administrators will still be able to use starts with or partial name matching when enabled. - -The valid values are: +```yaml +Type: Int32 +Parameter Sets: (All) +Aliases: +Required: False +Position: Named +Default value: None +Accept pipeline input: False +Accept wildcard characters: False +``` -- False (default) - Starts with / partial name search functionality is available. -- True - Disables starts with for all users/partial name search functionality for all SharePoint users, except SharePoint Admins. +### -RecycleBinRetentionPeriod +{{ Fill RecycleBinRetentionPeriod Description }} ```yaml -Type: System.Boolean +Type: System.Int32 Parameter Sets: (All) Aliases: @@ -3710,16 +4329,30 @@ Accept pipeline input: False Accept wildcard characters: False ``` -### -SharingAllowedDomainList +### -ReduceTempTokenLifetimeEnabled > Applicable: SharePoint Online -Specifies a list of email domains that are allowed for sharing with the external collaborators. Use the space character as the delimiter for entering multiple values. For example, "contoso.com fabrikam.com". +Enables reduced session timeout for temporary URLs used by apps for document download scenarios. Reduction occurs when an app redeeming an IP address does not match the original requesting IP. The default value is 15 minutes if ReduceTempTokenLifetimeValue is not set. -For additional information about how to restrict a domain sharing, see [Restricted Domains Sharing in Office 365 SharePoint Online and OneDrive for Business](https://support.office.com/en-US/article/Restricted-Domains-Sharing-in-Office-365-SharePoint-Online-and-OneDrive-for-Business-5d7589cd-0997-4a00-a2ba-2320ec49c4e9). +**Note**: Reducing this value may bring degradation in end-user experience by requiring frequent authentication prompts to users. ```yaml -Type: System.String +Type: Boolean +Parameter Sets: (All) +Aliases: +Required: False +Position: Named +Default value: False +Accept pipeline input: False +Accept wildcard characters: False +``` + +### -ReduceTempTokenLifetimeEnabled +{{ Fill ReduceTempTokenLifetimeEnabled Description }} + +```yaml +Type: System.Boolean Parameter Sets: (All) Aliases: @@ -3730,28 +4363,25 @@ Accept pipeline input: False Accept wildcard characters: False ``` -### -SharingBlockedDomainList +### -ReduceTempTokenLifetimeValue > Applicable: SharePoint Online -Specifies a list of email domains that are blocked or prohibited for sharing with the external collaborators. Use space character as the delimiter for entering multiple values. For example, "contoso.com fabrikam.com". - -For additional information about how to restrict a domain sharing, see [Restricted Domains Sharing in Office 365 SharePoint Online and OneDrive for Business](https://support.office.com/en-US/article/Restricted-Domains-Sharing-in-Office-365-SharePoint-Online-and-OneDrive-for-Business-5d7589cd-0997-4a00-a2ba-2320ec49c4e9). +Optional parameter to set the session timeout value for temporary URLs. The value can be set between 5 and 15 minutes and the default value is 15 minutes. ```yaml -Type: System.Boolean +Type: Int32 Parameter Sets: (All) Aliases: - Required: False Position: Named -Default value: None +Default value: 15 Accept pipeline input: False Accept wildcard characters: False ``` -### -RecycleBinRetentionPeriod -{{ Fill RecycleBinRetentionPeriod Description }} +### -ReduceTempTokenLifetimeValue +{{ Fill ReduceTempTokenLifetimeValue Description }} ```yaml Type: System.Int32 @@ -3765,8 +4395,8 @@ Accept pipeline input: False Accept wildcard characters: False ``` -### -ReduceTempTokenLifetimeEnabled -{{ Fill ReduceTempTokenLifetimeEnabled Description }} +### -RequireAcceptingAccountMatchInvitedAccount +This parameter has been deprecated since SharePoint Online legacy invitation flow switched to Entra B2B invitation flow. ```yaml Type: System.Boolean @@ -3780,8 +4410,17 @@ Accept pipeline input: False Accept wildcard characters: False ``` -### -ReduceTempTokenLifetimeValue -{{ Fill ReduceTempTokenLifetimeValue Description }} +### -RequireAcceptingAccountMatchInvitedAccount + +This parameter has been deprecated since SharePoint Online legacy invitation flow switched to Entra B2B invitation flow. + +### -RequireAnonymousLinksExpireInDays + +Specifies the upper bound for user-created anonymous link expiration periods. All links created after setting this policy will expire by the end of a period spanning the set number of days. + +The value can be from 0 to 730 days. + +To remove the expiration requirement, set the value to zero (0). ```yaml Type: System.Int32 @@ -3795,23 +4434,18 @@ Accept pipeline input: False Accept wildcard characters: False ``` -### -RequireAcceptingAccountMatchInvitedAccount -Ensures that an external user can only accept an external sharing invitation with an account matching the invited email address. - -The parameter accepts two values: True or False. - -True-User must accept this invitation with bob@contoso.com. +### -RequireOrganizationLinksExpireInDays -False- When a document is shared with an external user, bob@contoso.com, it can be accepted by any user with access to the invitation link in the original e-mail. +> Applicable: SharePoint Online -Administrators who desire increased control over external collaborators should consider enabling this feature. +Specifies the upper bound for user-created organization link expiration periods. All links created after setting this policy will expire by the end of a period spanning the set number of days. -This only applies to new external users accepting new sharing invitations. +The value can be from 7 to 730 days. -The resource owner must share with an organizational or Microsoft account or the external user will be unable to access the resource. +To remove the expiration requirement, set the value to zero (0). ```yaml -Type: System.Boolean +Type: Microsoft.Online.SharePoint.TenantAdministration.SelectedSitesListOperations Parameter Sets: (All) Aliases: @@ -3838,7 +4472,8 @@ Accept wildcard characters: False ``` ### -RestrictedAccessControlforSitesErrorHelpLink -{{ Fill RestrictedAccessControlforSitesErrorHelpLink Description }} + +Sets a custom learn more link to inform users who were denied access to a SharePoint site due to the restricted site access control policy. ```yaml Type: System.String @@ -3853,7 +4488,37 @@ Accept wildcard characters: False ``` ### -ResyncContentSecurityPolicyConfigurationEntries -{{ Fill ResyncContentSecurityPolicyConfigurationEntries Description }} + +> Applicable: SharePoint Online + +When set to `True`, forces a sync of **Content Security Policy** sources for SharePoint Framework components in the tenant application catalog. +New sources will be added to the configuration, if not already present, based on the `cdnBasedPath` property under a solution's `.config/write-manifests.json` if present. +The sync may take up to 24 hours to complete. +In multi-geo environments, **Content Security Policy** configuration is unique to each geo. + +PARAMVALUE: True | False + +```yaml +Type: Boolean +Parameter Sets: (All) +Required: False +Position: Named +Default value: False +Accept pipeline input: False +Accept wildcard characters: False +``` + +### -ReSyncTenantPrivacyProfile + +> Applicable: SharePoint Online + +The 'SyncPrivacyProfileProperties' parameter is obsolete and renamed ReSyncTenantPrivacyProfile. + +This parameter enables the synchronization of privacy profile properties. + +ReSyncTenantPrivacyProfile sets whether or not the synced tenant properties will be updated on the next request. The request will cause Microsoft Entra ID to grab the tenant's current display name (TenantDisplayName) and privacy profile URL (PrivacyProfileUrl). + +Running 'Set-SPOTenant - ReSyncTenantPrivacyProfile' will force a sync from the Microsoft Entra privacy profile URL to SharePoint Online. The sync may take up to 24 hours to complete. Whenever SharePoint Online gets the privacy profile URL, it checks whether the last sync time is out of the sync time window. If it is, it syncs from Microsoft Entra ID to SharePoint Online. ```yaml Type: System.Boolean @@ -3883,12 +4548,17 @@ Accept wildcard characters: False ``` ### -SearchResolveExactEmailOrUPN -Removes the search capability from People Picker. + +> Applicable: SharePoint Online + +Removes the search capability from People Picker. Note, recently resolved names will still appear in the list until browser cache is cleared or expired. This also does not allow SharePoint users to search for security groups or SharePoint groups. + +SharePoint Administrators will still be able to use starts with or partial name matching when enabled. The valid values are: -* Recently resolved names will still appear in the list. -* False- Restores default search functionality. +- False (default) - Starts with / partial name search functionality is available. +- True - Disables starts with for all users/partial name search functionality for all SharePoint users, except SharePoint Admins. ```yaml Type: System.Boolean @@ -3917,14 +4587,34 @@ Accept pipeline input: False Accept wildcard characters: False ``` +### -SelfServiceSiteCreationDisabled + +> Applicable: SharePoint Online + +When set to `True`, users cannot create sites from SharePoint, OneDrive, the PnP PowerShell cmdlet, and the REST API. When set to `False` (the default), users can create sites from SharePoint, OneDrive, the PnP PowerShell cmdlet, and the REST API. + +PARAMVALUE: True | False + +```yaml +Type: Boolean +Parameter Sets: (All) +Required: False +Position: Named +Default value: False +Accept pipeline input: False +Accept wildcard characters: False +``` + ### -SensitivityLabel -{{ Fill SensitivityLabel Description }} + +> Applicable: SharePoint Online + +Sets the sensitiviy label for a site. ```yaml -Type: System.String -Parameter Sets: ParamSetMultipleSites +Type: String +Parameter Sets: (All) Aliases: - Required: False Position: Named Default value: None @@ -3933,7 +4623,12 @@ Accept wildcard characters: False ``` ### -SharingAllowedDomainList -{{ Fill SharingAllowedDomainList Description }} + +> Applicable: SharePoint Online + +Specifies a list of email domains that are allowed for sharing with the external collaborators. Use the space character as the delimiter for entering multiple values. For example, "contoso.com fabrikam.com". + +For additional information about how to restrict a domain sharing, see [Restricted Domains Sharing in Office 365 SharePoint Online and OneDrive for Business](https://support.office.com/en-US/article/Restricted-Domains-Sharing-in-Office-365-SharePoint-Online-and-OneDrive-for-Business-5d7589cd-0997-4a00-a2ba-2320ec49c4e9). ```yaml Type: System.String @@ -3948,10 +4643,15 @@ Accept wildcard characters: False ``` ### -SharingBlockedDomainList -{{ Fill SharingBlockedDomainList Description }} + +> Applicable: SharePoint Online + +Specifies a list of email domains that are blocked or prohibited for sharing with the external collaborators. Use space character as the delimiter for entering multiple values. For example, "contoso.com fabrikam.com". + +For additional information about how to restrict a domain sharing, see [Restricted Domains Sharing in Office 365 SharePoint Online and OneDrive for Business](https://support.office.com/en-US/article/Restricted-Domains-Sharing-in-Office-365-SharePoint-Online-and-OneDrive-for-Business-5d7589cd-0997-4a00-a2ba-2320ec49c4e9). ```yaml -Type: System.String +Type: System.Boolean Parameter Sets: (All) Aliases: @@ -4109,7 +4809,10 @@ Accept wildcard characters: False ``` ### -ShowPeoplePickerGroupSuggestionsForIB -{{ Fill ShowPeoplePickerGroupSuggestionsForIB Description }} + +The ShowPeoplePickerGroupSuggestionsForIB setting (defaulted to false) allows showing group suggestions for information barriers (IBs) in the People Picker. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -4196,7 +4899,13 @@ Accept wildcard characters: False ``` ### -Sites -{{ Fill Sites Description }} + +List of sites that certain properties will apply to, such as a conditional access policy. + +The valid values are: + +- Url +- SiteId ```yaml Type: Microsoft.Online.SharePoint.PowerShell.SpoSitePipeBind[] @@ -4332,7 +5041,10 @@ Accept wildcard characters: False ``` ### -SyncAadB2BManagementPolicy -{{ Fill SyncAadB2BManagementPolicy Description }} + +This feature allows SharePoint Online to synchronize several Entra B2B collaboration settings [Guest user access restriction and collaboration restriction](https://learn.microsoft.com/en-us/entra/external-id/external-collaboration-settings-configure#configure-settings-in-the-portal), and store them on SharePoint Online tenant store. On sharing, SharePoint checks whether those synchronized settings are blocking sharing before sending invitation requests to Entra B2B invitation manager. The sync might take up to 24 hours to complete if you change those Entra B2B collaboration settings. To make the change effective on SharePoint Online immediately, run 'Set-SPOTenant -SyncAadB2BManagementPolicy $true' and it forces a sync from Microsoft Entra. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -4430,7 +5142,10 @@ Accept wildcard characters: False ``` ### -ViewersCanCommentOnMediaDisabled -{{ Fill ViewersCanCommentOnMediaDisabled Description }} + +Controls whether viewers commenting on media items is disabled or not. + +PARAMVALUE: True | False ```yaml Type: System.Boolean @@ -4470,7 +5185,18 @@ Accept wildcard characters: False ``` ### -WhoCanShareAnonymousAllowList -{{ Fill WhoCanShareAnonymousAllowList Description }} + +Sets the list of security groups who are allowed to share with anonymous (non-authenticated) users +as well as authenticated guest users. Each security group is denoted by its GUID object ID in the +Entra directory. + +> [!NOTE] +> This allow list only accepts security groups, and not Microsoft 365 Groups. + +To set this list to be a specific security group, you need to enter its GUID as the argument. You +can enter multiple GUIDs by using commas to separate them. To view the current list, use +[Get-SPOTenant](Get-SPOTenant.md). + ```yaml Type: System.Guid[] @@ -4485,7 +5211,16 @@ Accept wildcard characters: False ``` ### -WhoCanShareAuthenticatedGuestAllowList -{{ Fill WhoCanShareAuthenticatedGuestAllowList Description }} + +Sets the list of security groups who are only allowed to share with authenticated guest users. Each +security group is denoted by its GUID object ID. + +> [!NOTE] +> This allow list only accepts security groups, and not Microsoft 365 Groups. + +To set this list to be a specific security group, you need to enter its GUID as the argument. You +can enter multiple GUIDs by using commas to separate them. To view the current list, use +[Get-SPOTenant](Get-SPOTenant.md). ```yaml Type: System.Guid[] @@ -4500,7 +5235,8 @@ Accept wildcard characters: False ``` ### -Workflows2013Enabled -{{ Fill Workflows2013Enabled Description }} + +Controls whether Workflow 2013 is enabled. ```yaml Type: System.Boolean