External/powershell-scripts
1
0
Fork 0
mirror of https://github.com/admindroid-community/powershell-scripts.git synced 2025-12-17 16:35:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
powershell-scripts/Enable Mailbox Auditing for Office 365 Users/EnableMBAuditLogging.ps1

107 lines
5.2 KiB
PowerShell
Raw Normal View History

Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
<# Purpose : Enable mailbox audit logging for all Office 365 mailboxes
Enable Mailbox Auditing Enable Mailbox Auditing
2022-10-22 14:35:38 +05:30
Last updated : Oct 22, 2022
Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
Website : https://O365reports.com
Enable mailbox auditing in Exchange Online Enable mailbox auditing in Exchange Online
2023-09-28 12:40:25 +05:30
Script Highlights:
~~~~~~~~~~~~~~~~~~
1.You can enable mailbox audit logging for all mailboxes using single cmdlet
2.This script allows you to enable mailbox auditing for all mailbox actions or set of actions
3.The script can be executed with MFA enabled account also.
4.This script automatically installs Exchange Online PowerShell Module upon your confirmation
Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
For execution steps and usecases: https://o365reports.com/2020/01/21/enable-mailbox-auditing-in-office-365-powershell
#>
Enable Mailbox Auditing Enable Mailbox Auditing
2022-10-22 14:35:38 +05:30
Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
#Accept input paramenters
param(
[Parameter(Mandatory = $false)]
[string]$UserName,
[string]$Password,
Enable Mailbox Auditing Enable Mailbox Auditing
2022-10-22 14:35:38 +05:30
[ValidateSet('ApplyRecord','Copy','Create','FolderBind','HardDelete','MailItemsAccessed','MessageBind','Move','MoveToDeletedItems','RecordDelete','SearchQueryInitiated','Send','SendAs','SendOnBehalf','SoftDelete','Update','UpdateCalendarDelegation','UpdateComplianceTag','UpdateFolderPermissions','UpdateInboxRules','MailboxLogin')]
[string[]]$Operations=('ApplyRecord','Copy','Create','FolderBind','HardDelete','MailItemAccessed','MessageBind','Move','MoveToDeletedItems','RecordDelete','SearchQueryInitiated','Send','SendAs','SendOnBehalf','SoftDelete','Update','UpdateCalendarDelegation','UpdateComplianceTag','UpdateFolderPermissions','UpdateInboxRules','MailboxLogin')
Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
)
Enable Mailbox Auditing Enable Mailbox Auditing
2022-10-22 14:35:38 +05:30
Function Connect_Exo
{
#Check for EXO v2 module inatallation
$Module = Get-Module ExchangeOnlineManagement -ListAvailable
if($Module.count -eq 0)
Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
{
Enable Mailbox Auditing Enable Mailbox Auditing
2022-10-22 14:35:38 +05:30
Write-Host Exchange Online PowerShell V2 module is not available -ForegroundColor yellow
$Confirm= Read-Host Are you sure you want to install module? [Y] Yes [N] No
if($Confirm -match "[yY]")
Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
{
Enable Mailbox Auditing Enable Mailbox Auditing
2022-10-22 14:35:38 +05:30
Write-host "Installing Exchange Online PowerShell module"
Install-Module ExchangeOnlineManagement -Repository PSGallery -AllowClobber -Force
Import-Module ExchangeOnlineManagement
Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
}
else
{
Enable Mailbox Auditing Enable Mailbox Auditing
2022-10-22 14:35:38 +05:30
Write-Host EXO V2 module is required to connect Exchange Online.Please install module using Install-Module ExchangeOnlineManagement cmdlet.
Exit
}
Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
}
Enable Mailbox Auditing Enable Mailbox Auditing
2022-10-22 14:35:38 +05:30
Write-Host Connecting to Exchange Online...
#Storing credential in script for scheduling purpose/ Passing credential as parameter - Authentication using non-MFA account
if(($UserName -ne "") -and ($Password -ne ""))
{
$SecuredPassword = ConvertTo-SecureString -AsPlainText $Password -Force
$Credential = New-Object System.Management.Automation.PSCredential $UserName,$SecuredPassword
Connect-ExchangeOnline -Credential $Credential
}
else
{
Connect-ExchangeOnline
}
}
Connect_Exo
Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
$MBCount=0
Enable Mailbox Auditing Enable Mailbox Auditing
2022-10-22 14:35:38 +05:30
$AuditAdmin="ApplyRecord","Copy","Create","FolderBind","HardDelete","MailItemsAccessed","Move","MoveToDeletedItems","RecordDelete","Send","SendAs","SendOnBehalf","SoftDelete","Update","UpdateCalendarDelegation","UpdateComplianceTag","UpdateFolderPermissions","UpdateInboxRules"
$AuditDelegate ="ApplyRecord","Create","FolderBind","HardDelete","MailItemsAccessed","Move","MoveToDeletedItems","RecordDelete","SendAs","SendOnBehalf","SoftDelete","Update","UpdateComplianceTag","UpdateFolderPermissions","UpdateInboxRules"
$AuditOwner="ApplyRecord","Create","HardDelete","MailItemsAccessed","MailboxLogin","Move","MoveToDeletedItems","RecordDelete","SearchQueryInitiated","Send","SoftDelete","Update","UpdateCalendarDelegation","UpdateComplianceTag","UpdateFolderPermissions","UpdateInboxRules"
Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
Enable Mailbox Auditing Enable Mailbox Auditing
2022-10-22 14:35:38 +05:30
if($Operations.Length -eq 21)
Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
{
$RequiredOperations=$Operations
Get-Mailbox -ResultSize Unlimited | Select PrimarySmtpAddress,DisplayName | ForEach {
$DisplayName=$_.Displayname
Write-Progress -Activity "`n Processed mailbox count: $MBCount "`n" Currently Processing: $DisplayName"
$MBCount++
Set-Mailbox -Identity $_.PrimarySmtpAddress -AuditEnabled $true -AuditAdmin $AuditAdmin -AuditDelegate $AuditDelegate -AuditOwner $Auditowner
}
}
else
{
$RequiredOperations=$PSBoundParameters.Operations
[System.Collections.ArrayList]$EnableAuditAdmin=@()
[System.Collections.ArrayList]$EnableAuditDelegate=@()
[System.Collections.ArrayList]$EnableAuditOwner=@()
Foreach($Operation in $RequiredOperations)
{
if($AuditAdmin -match $Operation)
{
$EnableAuditAdmin += $Operation
}
if($AuditDelegate -match $Operation)
{
$EnableAuditDelegate += $Operation
}
if($AuditOwner -match $Operation)
{
$EnableAuditOwner += $Operation
}
}
Get-Mailbox -ResultSize Unlimited | Select PrimarySmtpAddress,DisplayName | ForEach {
$DisplayName=$_.Displayname
Write-Progress -Activity "`n Processed mailbox count: $MBCount "`n" Currently Processing: $DisplayName"
$MBCount++
Set-Mailbox -Identity $_.PrimarySmtpAddress -AuditEnabled $true -AuditAdmin $EnableAuditAdmin -AuditDelegate $EnableAuditDelegate -AuditOwner $EnableAuditowner
}
}
Enable mailbox auditing in Exchange Online Enable mailbox auditing in Exchange Online
2023-09-28 12:40:25 +05:30
Write-Host `nMailbox Audit logging enabled for $MBCount mailboxes -ForegroundColor Yellow `n
Create EnableMBAuditLogging.ps1 Enables mailbox auditing in Office 365 mailboxes
2020-01-22 14:32:11 +05:30
Write-Host "Mailbox Audit Logging enabled following operation(s):" $RequiredOperations
Enable mailbox auditing in Exchange Online Enable mailbox auditing in Exchange Online
2023-09-28 12:40:25 +05:30
Write-Host `n~~ Script prepared by AdminDroid Community ~~`n -ForegroundColor Green
Write-Host "~~ Check out " -NoNewline -ForegroundColor Green; Write-Host "admindroid.com" -ForegroundColor Yellow -NoNewline; Write-Host " to get access to 1800+ Microsoft 365 reports. ~~" -ForegroundColor Green `n`n
Reference in New Issue Copy Permalink