#AzureAD Automated Expiration for Office 365 Groups is now in Public Preview

August 15, 2017 Chris Spanougakis No comments exist

A few days ago, the Azure AD Team announced a new cool feature related to Microsoft Office 365 Groups. As you probably know, Office 365 is based on Azure AD for its identity service. This is the reason why every Office 365 tenant has already an instance of Azure AD up and running.

Office 365 Groups is a great way to collaborate. In case you don’t really know what you can do with Office 365 Groups, here is something that will help you:

https://www.microsoft.com/en-us/dynamics/crm-customer-center/collaborate-with-your-colleagues-using-office-365-groups.aspx and a lot of other articles and blogs that talk about Office 365 Groups, like this video: https://youtu.be/Cg-y3p4E8sA

So while is a great collaboration tool, it can create some confusion after a while, especially if you have created a lot of groups. As a project is completed, the group that you’ve created for that project will be hanging around. So now it’s the time to turn on and use the automatic expiration of groups.

 

How it works

You have to create a new policy in Azure AD, simply select Users and groups, go to Group settings, and select Expiration:

screen1

 

Group owners will receive a renewal notification 30 days before the expiration date of the group, and they can choose to renew it with just a simple click:

screen2

 

If the owner doesn’t renew the group it will be deleted. They will also receive a notification and they’ll have 30 days to restore it back in case they need it:

screen3

 

This is because there is now a soft-delete functionality. Even if you by mistake let a group expire, you still have the option to un-delete it. You will need the Azure AD PowerShell module for this. Simply type:

Get-AzureADMSDeletedGroup

to see a list of all deleted groups. To restore a group you should type:

Restore-AzureADMSDeletedDirectoryObject –Id <objectId>

or if you want to remove it permanently, you should type:

Remove-AzureADMSDeletedDirectoryObject –Id <objectId>

 

How do you know this worked?

To verify that you’ve successfully restored an Office 365 group, run the Get-AzureADGroup –ObjectId <objectId> cmdlet to display information about the group. After the restore request is completed:

  • The group will appear in the Left nav bar on Exchange
  • The plan for the group will appear in Planner
  • Any Sharepoint sites and all of their contents will be available
  • The group can be accessed from any of the Exchange endpoints and other Office 365 workloads that support Office 365 groups.

Thanks for your time!

Leave a Reply

Your email address will not be published. Required fields are marked *