external help file	Module Name	online version	applicable	title	schema	author	ms.author	ms.reviewer
sharepointonline.xml	Microsoft.Online.SharePoint.PowerShell	https://learn.microsoft.com/powershell/module/sharepoint-online/set-spotenant	SharePoint Online	Set-SPOTenant	2.0.0	trent-green	trgreen

Set-SPOTenant

SYNOPSIS

Sets properties on the SharePoint Online organization.

SYNTAX

Set-SPOTenant [-AIBuilderModelScope<SyntexFeatureScopeValue>] [-AIBuilderModelSelectedSitesIncludesContentCenters<Boolean>] [-AIBuilderModelSelectedSitesList [String[]]] [-AIBuilderModelSelectedSitesListOperation<SelectedSitesListOperations>] [-AllOrganizationSecurityGroupId<Guid>] [-AllowAnonymousMeetingParticipantsToAccessWhiteboards<SharingState>] [-AllowCommentsTextOnEmailEnabled<Boolean>] [-AllowDownloadingNonWebViewableFiles<Boolean>] [-AllowEditing<Boolean>] [-AllowEveryoneExceptExternalUsersClaimInPrivateSite<Boolean>] [-AllowGuestUserShareToUsersNotInSiteCollection<Boolean>] [-AllowOverrideForBlockUserInfoVisibility] [-AllowSensitivityLabelOnRecords<Boolean>] [-AllowSelectSecurityGroupsInSPSitesList [String[]]] [-AllowSelectSGsInODBListInTenant [String[]]] [-AllowSharingOutsideRestrictedAccessControlGroups<Boolean>] [-AllowWebPropertyBagUpdateWhenDenyAddAndCustomizePagesIsEnabled<Boolean>] [-AnyoneLinkTrackUsers<Boolean>] [-AppAccessInformationBarriersAllowList [String[]]] [-AppBypassInformationBarriers<Boolean>] [-ApplyAppEnforcedRestrictionsToAdHocRecipients<Boolean>] [-AutofillColumnScope<SyntexFeatureScopeValue>] [-AutofillColumnsSelectedSitesList [String[]]] [-AutofillColumnsSelectedSitesListOperation<SelectedSitesListOperations>] [-BccExternalSharingInvitations<Boolean>] [-BccExternalSharingInvitationsList<String>] [-BlockDownloadFileTypeIds [SPBlockDownloadFileTypeId[]]] [-BlockDownloadFileTypePolicy<Boolean>] [-BlockDownloadLinksFileType<BlockDownloadLinksFileTypes>] [-BlockSendLabelMismatchEmail<Boolean>] [-BlockUserInfoVisibility<String>] [-BlockUserInfoVisibilityInOneDrive<String>] [-BlockUserInfoVisibilityInSharePoint<String>] [-BusinessConnectivityServiceDisabled<Boolean>] [-CommentsOnFilesDisabled<Boolean>] [-CommentsOnListItemsDisabled<Boolean>] [-CommentsOnSitePagesDisabled<Boolean>] [-ConditionalAccessPolicy<SPOConditionalAccessPolicyType>] [-ConditionalAccessPolicyErrorHelpLink<String>] [-ContentSecurityPolicyEnforcement<Boolean>] [-ContentTypeSyncSiteTemplatesList [String[]]] [-CoreDefaultLinkToExistingAccess<Boolean>] [-CoreDefaultShareLinkRole<SharingRole>] [-CoreDefaultShareLinkScope<SharingScope>] [-CoreLoopDefaultSharingLinkRole<String>] [-CoreLoopDefaultSharingLinkScope<String>] [-CoreRequestFilesLinkEnabled<Boolean>] [-CoreRequestFilesLinkExpirationInDays<Int32>] [-CoreSharingCapability<SharingCapabilities>] [-CustomizedExternalSharingServiceUrl<String>] [-DefaultContentCenterSite<String>] [-DefaultLinkPermission<SharingPermissionType>] [-DefaultOneDriveInformationBarrierMode<String>] [-DefaultSharingLinkType<SharingLinkType>] [-DelayDenyAddAndCustomizePagesEnforcementOnClassicPublishingSites<Boolean>] [-DelegateRestrictedAccessControlManagement<Boolean>] [-DelegateRestrictedContentDiscoverabilityManagement<Boolean>] [-DenySelectSecurityGroupsInSPSitesList [String[]]] [-DenySelectSGsInODBListInTenant [String[]]] [-DisableAddShortcutsToOneDrive<Boolean>] [-DisableBackToClassic<Boolean>] [-DisableCustomAppAuthentication<Boolean>] [-DisabledAdaptiveCardExtensionIds [Guid[]]] [-DisableDocumentLibraryDefaultLabeling<Boolean>] [-DisabledWebPartIds [Guid[]]] [-DisableModernListTemplateIds [Guid[]]] [-DisableOutlookPSTVersionTrimming<Boolean>] [-DisablePersonalListCreation<Boolean>] [-DisableSharePointStoreAccess<Boolean>] [-DisableSpacesActivation<Boolean>] [-DisableVivaConnectionsAnalytics<Boolean>] [-DisableWorkflow2010<Boolean>] [-DisallowInfectedFileDownload<Boolean>] [-DisplayStartASiteOption<Boolean>] [-DocumentTranslationScope<SyntexFeatureScopeValue>] [-DocumentTranslationSelectedSitesList [String[]]] [-DocumentTranslationSelectedSitesListOperation<SelectedSitesListOperations>] [-DocumentUnderstandingModelScope<SyntexFeatureScopeValue>] [-DocumentUnderstandingModelSelectedSitesList [String[]]] [-DocumentUnderstandingModelSelectedSitesListOperation<SelectedSitesListOperations>] [-EmailAttestationReAuthDays<Int32>] [-EmailAttestationRequired<Boolean>] [-EnableAIPIntegration<Boolean>] [-EnableAutoExpirationVersionTrim<Boolean>] [-EnableAutoNewsDigest<Boolean>] [-EnableAzureADB2BIntegration<Boolean>] [-EnableDiscoverableByOrganizationForVideos<Boolean>] [-EnableGuestSignInAcceleration<Boolean>] [-EnableMediaReactions<Boolean>] [-EnableMinimumVersionRequirement<Boolean>] [-EnableModernListTemplateIds [Guid[]]] [-EnablePromotedFileHandlers<Boolean>] [-EnableRestrictedAccessControl<Boolean>] [-EnableSensitivityLabelforPDF<Boolean>] [-EnableVersionExpirationSetting<Boolean>] [-EnforceContentSecurityPolicy<Boolean>] [-EnforceRequestDigest<Boolean>] [-ExcludedBlockDownloadGroupIds [Guid[]]] [-ExcludeSiteTemplate<SwitchParameter>] [-ExemptNativeUsersFromTenantLevelRestricedAccessControl<Boolean>] [-ExpireVersionsAfterDays<int>] [-ExtendPermissionsToUnprotectedFiles<Boolean>] [-ExternalServicesEnabled<Boolean>] [-ExternalUserExpirationRequired<Boolean>] [-ExternalUserExpireInDays<Int32>] [-FileAnonymousLinkType<AnonymousLinkType>] [-FilePickerExternalImageSearchEnabled<Boolean>] [-FolderAnonymousLinkType<AnonymousLinkType>] [-HideSyncButtonOnTeamSite<Boolean>] [-IBImplicitGroupBased<Boolean>] [-IncludeAtAGlanceInShareEmails<Boolean>] [-InformationBarriersSuspension<Boolean>] [-IPAddressAllowList<String>] [-IPAddressEnforcement<Boolean>] [-IPAddressWACTokenLifetime<Int32>] [-IsCollabMeetingNotesFluidEnabled<Boolean>] [-IsDataAccessInCardDesignerEnabled<Boolean>] [-IsEnableAppAuthPopUpEnabled<Boolean>] [-IsLoopEnabled<Boolean>] [-IsSharePointAddInsDisabled<Boolean>] [-IsSharePointAddInsBlocked<Boolean>] [-IsWBFluidEnabled<Boolean>] [-LabelMismatchEmailHelpLink<String>] [-LegacyAuthProtocolsEnabled<Boolean>] [-LegacyBrowserAuthProtocolsEnabled<Boolean>] [-LimitedAccessFileType<SPOLimitedAccessFileType>] [-MajorVersionLimit<int>] [-MarkNewFilesSensitiveByDefault<SensitiveByDefaultState>] [-MassDeleteNotificationDisabled<Boolean>] [-MaxCompatibilityLevel<Int32>] [-MediaTranscription<MediaTranscriptionPolicyType>] [-MediaTranscriptionAutomaticFeatures<MediaTranscriptionAutomaticFeaturesPolicyType>] [-MinCompatibilityLevel<Int32>] [-NoAccessRedirectUrl<String>] [-NotificationsInOneDriveForBusinessEnabled<Boolean>] [-NotificationsInSharePointEnabled<Boolean>] [-NotifyOwnersWhenInvitationsAccepted<Boolean>] [-NotifyOwnersWhenItemsReshared<Boolean>] [-ODBAccessRequests<SharingState>] [-ODBMembersCanShare<SharingState>] [-OfficeClientADALDisabled<Boolean>] [-OneDriveBlockGuestsAsSiteAdmin<SharingState>] [-OneDriveDefaultLinkToExistingAccess<Boolean>] [-OneDriveDefaultShareLinkRole<SharingRole>] [-OneDriveDefaultShareLinkScope<SharingScope>] [-OneDriveForGuestsEnabled<Boolean>] [-OneDriveLoopDefaultSharingLinkRole<String>] [-OneDriveLoopDefaultSharingLinkScope<String>] [-OneDriveRequestFilesLinkEnabled<Boolean>] [-OneDriveRequestFilesLinkExpirationInDays<Int32>] [-OneDriveSharingCapability<SharingCapabilities>] [-OneDriveStorageQuota<Int64>] [-OpticalCharacterRecognitionScope<SyntexFeatureScopeValue>] [-OpticalCharacterRecognitionSelectedSitesList [String[]]] [-OpticalCharacterRecognitionSelectedSitesListOperation<SelectedSitesListOperations>] [-OrphanedPersonalSitesRetentionPeriod<Int32>] [-OwnerAnonymousNotification<Boolean>] [-PermissiveBrowserFileHandlingOverride<Boolean>] [-PrebuiltModelScope<SyntexFeatureScopeValue>] [-PrebuiltModelSelectedSitesList [String[]]] [-PrebuiltModelSelectedSitesListOperation<SelectedSitesListOperations>] [-PreventExternalUsersFromResharing<Boolean>] [-ProvisionSharedWithEveryoneFolder<Boolean>] [-PublicCdnAllowedFileTypes<String>] [-PublicCdnEnabled<Boolean>] [-RecycleBinRetentionPeriod<Int32>] [-ReduceTempTokenLifetimeEnabled<Boolean>] [-ReduceTempTokenLifetimeValue<Int32>] [-RequireAcceptingAccountMatchInvitedAccount<Boolean>] [-RequireAnonymousLinksExpireInDays<Int32>] [-RestrictedAccessControlforSitesErrorHelpLink<String>] [-ResyncContentSecurityPolicyConfigurationEntries<Boolean>] [-ReSyncTenantPrivacyProfile<SwitchParameter>] [-SearchResolveExactEmailOrUPN<Boolean>] [-SelfServiceSiteCreationDisabled<Boolean>] [-SensitivityLabel<String>] [-SharingAllowedDomainList<String>] [-SharingBlockedDomainList<String>] [-SharingCapability<SharingCapabilities>] [-SharingDomainRestrictionMode<SharingDomainRestrictionModes>] [-ShowAllUsersClaim<Boolean>] [-ShowEveryoneClaim<Boolean>] [-ShowEveryoneExceptExternalUsersClaim<Boolean>] [-ShowPeoplePickerGroupSuggestionsForIB<Boolean>] [-ShowPeoplePickerSuggestionsForGuestUsers<Boolean>] [-SignInAccelerationDomain<String>] [-SiteOwnerManageLegacyServicePrincipalEnabled<Boolean>] [-Sites<String>] [-SocialBarOnSitePagesDisabled<Boolean>] [-SpecialCharactersStateInFileFolderNames<SpecialCharactersState>] [-StartASiteFormUrl<String>] [-StopNew2010Workflows<Boolean>] [-StopNew2013Workflows<Boolean>] [-StreamLaunchConfig<Int32>] [-SyncAadB2BManagementPolicy<Boolean>] [-UseFindPeopleInPeoplePicker<Boolean>] [-UsePersistentCookiesForExplorerView<Boolean>] [-ViewersCanCommentOnMediaDisabled<Boolean>] [-ViewInFileExplorerEnabled<Boolean>] [-WhoCanShareAnonymousAllowList [Guid[]]] [-WhoCanShareAuthenticatedGuestAllowList [Guid[]]] [-Workflows2013Enabled<Boolean>] [<CommonParameters>]

DESCRIPTION

You can use the Set-SPOTenant cmdlet to enable external services and to specify the versions in which site collections can be created. You can also use the Set-SPOSite cmdlet together with the Set-SPOTenant cmdlet to block access to a site in your organization and redirect traffic to another site.

You must be a SharePoint Online administrator to run the cmdlet.

EXAMPLES

EXAMPLE 1

Set-SPOSite-Identity https://contoso.sharepoint.com/sites/team1 -LockState NoAccess Set-SPOTenant-NoAccessRedirectUrl 'https://www.contoso.com'

This example blocks access to https://contoso.sharepoint.com/sites/team1 and redirects traffic to https://www.contoso.com.

EXAMPLE 2

Set-SPOTenant-ShowEveryoneExceptExternalUsersClaim $false

This example hides the "Everyone Except External Users" claim in People Picker.

EXAMPLE 3

Set-SPOTenant-ShowAllUsersClaim $false

This example hides the "All Users" claim group in People Picker.

EXAMPLE 4

Set-SPOTenant-UsePersistentCookiesForExplorerView $true

This example enables the use of special persisted cookie for Open with Explorer.

EXAMPLE 5

Set-SPOTenant-LegacyAuthProtocolsEnabled $True

This example enables legacy authentication protocols on the tenant. This can help to enable login in situations where the admin users get an error like "Cannot contact web site 'https://contoso-admin.sharepoint.com/' or the web site does not support SharePoint Online credentials. The response status code is 'Unauthorized'.", and the underlying error is "Access denied. Before opening files in this location, you must first browse to the web site and select the option to login automatically."

EXAMPLE 6

Set-SPOTenant-ContentTypeSyncSiteTemplatesList MySites

This example enables Content Type Hub to push content types to all OneDrive for Business sites. There is no change in Content Type Publishing behavior for other sites.

EXAMPLE 7

Set-SPOTenant-ContentTypeSyncSiteTemplatesList MySites -ExcludeSiteTemplate

This example stops publishing content types to OneDrive for Business sites.

EXAMPLE 8

Set-SPOTenant-SearchResolveExactEmailOrUPN $true

This example disables starts with for all users/partial name search functionality for all SharePoint users, except SharePoint Admins.

EXAMPLE 9

Set-SPOTenant-UseFindPeopleInPeoplePicker $true

This example enables tenant admins to enable ODB and SPO to respect Exchange supports Address Book Policy (ABP) policies in the people picker.

EXAMPLE 10

Set-SPOTenant-ShowPeoplePickerSuggestionsForGuestUsers $true

This example enables the option to search for existing guest users at Tenant Level.

EXAMPLE 11

Set-SPOTenant-EnableAutoExpirationVersionTrim $true

This example sets automatic version history limits on all new document libraries at tenant level.

EXAMPLE 12

Set-SPOTenant-EnableAutoExpirationVersionTrim $false-MajorVersionLimit 500-ExpireVersionsAfterDays 30

This example sets manual version history limits on all new document libraries at tenant level by limiting the number of major versions and the time (in days) versions are kept.

EXAMPLE 13

Set-SPOTenant-EnableAutoExpirationVersionTrim $false-MajorVersionLimit 500-ExpireVersionsAfterDays 0

This example sets manual version history limits on all new document libraries at tenant level by limiting the number of major versions with no time limits.

EXAMPLE 14

Set-SPOTenant-SharingDomainRestrictionMode "AllowList"-SharingAllowedDomainList "contoso.com fabrikam.com"

This example enables users to share with external collaborators from those domains only.

EXAMPLE 15

Set-SPOTenant-SharingDomainRestrictionMode "BlockList"-SharingBlockedDomainList "contoso.com"

This example enables users to share with all external collaborators except for those on the BlockedDomainList.

EXAMPLE 16

Set-SPOTenant-EnableVersionExpirationSetting $true

The EnableVersionExpirationSetting parameter is no longer active, this feature is now automatically enabled for each tenant. Setting EnableVersionExpirationSetting to false would not disable the feature. Learn more about Version History Settings

EXAMPLE 17

Set-SPOTenant-PrebuiltModelScope SelectedSites -PrebuiltModelSelectedSitesList "https://contoso.sharepoint.com/sites/site1","https://contoso.sharepoint.com/sites/site2"-PrebuiltModelSelectedSitesListOperation Append

This example sets the scope of the prebuilt model and prebuilt document processing premium feature to SelectedSites, which limits the feature to only sites included in the selected sites list. This example also appends two sites to the feature's selected sites list.

Use of these parameters require the tenant to either have the required license or pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex.

EXAMPLE 18

Set-SPOTenant-DefaultContentCenterSite "https://contoso.sharepoint.com/sites/contentcenter"

This example sets the tenant's default content center. It can only be used if the tenant does not already have a designated default content center. To learn more about content centers, visit Create a content center in Microsoft Syntex.

Use of this parameter requires the tenant to either have the required license or pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex.

EXAMPLE 19

$list= (Get-SPOTenant|Select-Object WhoCanShareAnonymousAllowList).WhoCanShareAnonymousAllowList Set-SPOTenant –WhoCanShareAnonymousAllowList ($list+<new GUID>)

This example appends a security group to the WhoCanShareAnonymousAllowList. Similar code works for the WhoCanShareAuthenticatedGuestAllowList.

EXAMPLE 20

Set-SPOTenant –WhoCanShareAnonymousAllowList @()

This example empties the WhoCanShareAnonymousAllowList. Similar code works for the WhoCanShareAuthenticatedGuestAllowList.

EXAMPLE 21

Set-SPOTenant-DisabledAdaptiveCardExtensionIds 0d2d0fd0-9489-47ef-acfb-90edca009cba

This example disables the Power Apps Adaptive Card Extension.

PARAMETERS

-AllOrganizationSecurityGroupId

Sets the All-Organization Security Group by object ID. This group is then used for other features, such as "EnableDiscoverableByOrganizationForVideos", if enabled. If you change the group ID associated with the All-Organization Security Group, it will only be effective on new shares or permission events.

Type: GuidParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-ApplyAppEnforcedRestrictionsToAdHocRecipients

When the feature is enabled, all guest users are subject to conditional access policy. By default guest users who are accessing SharePoint Online files with pass code are exempt from the conditional access policy.

The valid values are:

False (default) - Guest access users are exempt from conditional access policy.
True - Conditional access policy is also applied to guest users.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-BccExternalSharingInvitations

When the feature is enabled, all external sharing invitations that are sent will blind copy the e-mail messages listed in the BccExternalSharingsInvitationList.

The valid values are:

False (default) - BCC for external sharing is disabled.
True - All external sharing invitations that are sent will blind copy the e-mail messages listed in the BccExternalSharingsInvitationList.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-BccExternalSharingInvitationsList

Specifies a list of e-mail addresses to be BCC'd when the BCC for External Sharing feature is enabled.
Multiple addresses can be specified by creating a comma separated list with no spaces.

The valid values are:

"" (default) - Blank by default, this will also clear any value that has been set.
Single or Multiple e-mail addresses - joe@contoso.com or joe@contoso.com,bob@contoso.com

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-BlockDownloadLinksFileType

The valid values are:

WebPreviewableFiles
ServerRenderedFilesOnly

Note: ServerRendered (Office Only) and WebPreviewable (All supported files).

Type: BlockDownloadLinksFileTypesParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: WebPreviewableFilesAccept pipeline input: FalseAccept wildcard characters: False

-BusinessConnectivityServiceDisabled

Prevents access to features that depend on the Business Connectivity Service (BCS), including external lists, external columns, and external content types.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-DelegateRestrictedAccessControlManagement

Allows SharePoint administrators to delegate the management of Restricted access control policy on sites to site admins and owners.

The valid values are:

True - Allow site admins and owners to manage Restricted access control policy
False (default) - Do not allow site admins and owners to manage Restricted access control policy

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-DelegateRestrictedContentDiscoverabilityManagement

Allows SharePoint administrators to delegate the management of Restricted content discoverability policy on sites to site admins and owners.

The valid values are:

True - Allow site admins and owners to manage Restricted content discoverability policy
False (default) - Do not allow site admins and owners to manage Restricted content discoverability policy

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-DisplayStartASiteOption

Determines whether tenant users see the Start a Site menu option.

The valid values are:

True (default) - Tenant users will see the Start a Site menu option.
False - Start a Site is hidden from the menu.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: TrueAccept pipeline input: FalseAccept wildcard characters: False

-EnableAIPIntegration

This parameter enables SharePoint to process the content of files stored in SharePoint and OneDrive with sensitivity labels that include encryption. For more information, see Enable sensitivity labels for Office files in SharePoint and OneDrive.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-EnableMinimumVersionRequirement

This parameter was used to opt-out of the versioning setting update. It has no effect as of today as versioning setting has already been rolled out.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: TrueAccept pipeline input: FalseAccept wildcard characters: False

-EnablePromotedFileHandlers

This parameter is reserved for Microsoft internal use.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-MarkNewFilesSensitiveByDefault

If external sharing is turned on, sensitive content could be shared and accessed by guests before the Office DLP rule finishes processing, you can address this issue by configuring this parameter.

Possible values are

BlockExternalSharing: Prevents guests from accessing newly added files until at least one Office DLP policy scans the content of the file.
AllowExternalSharing: Disables this feature.

For more information see Mark new files as sensitive by default.

Type: SensitiveByDefaultStateParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: AllowExternalSharingAccept pipeline input: FalseAccept wildcard characters: False

-ExternalServicesEnabled

Enables external services for a tenant.
External services are defined as services that are not in the Office 365 datacenters.

The valid values are:

True (default) - External services are enabled for the tenant.
False - External services that are outside of the Office 365 datacenters cannot interact with SharePoint.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: TrueAccept pipeline input: FalseAccept wildcard characters: False

-MaxCompatibilityLevel

The only valid value is "15".

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-MinCompatibilityLevel

The only valid value is "15".

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-NoAccessRedirectUrl

Specifies the URL of the redirected site for those site collections which have the locked state "NoAccess."

The valid values are:

"" (default) - Blank by default, this will also remove or clear any value that has been set.
Full URL - Example: https://contoso.sharepoint.com/Pages/Locked.aspx

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-OfficeClientADALDisabled

When set to true this will disable the ability to use Modern Authentication that leverages ADAL across the tenant.

The valid values are:

False (default) - Modern Authentication is enabled/allowed.
True - Modern Authentication via ADAL is disabled.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-ProvisionSharedWithEveryoneFolder

Creates a Shared with Everyone folder in every user's new OneDrive for Business document library.

The valid values are:

True (default) - The Shared with Everyone folder is created.
False - No folder is created when the site and OneDrive for Business document library is created.

The default behavior of the Shared with Everyone folder changed in August 2015.
For additional information about the change, see Provision the Shared with Everyone folder in OneDrive for Business.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: TrueAccept pipeline input: FalseAccept wildcard characters: False

-RequireAcceptingAccountMatchInvitedAccount

This parameter has been deprecated since SharePoint Online legacy invitation flow switched to Entra B2B invitation flow.

-SearchResolveExactEmailOrUPN

Removes the search capability from People Picker. Note, recently resolved names will still appear in the list until browser cache is cleared or expired. This also does not allow SharePoint users to search for security groups or SharePoint groups.

SharePoint Administrators will still be able to use starts with or partial name matching when enabled.

The valid values are:

False (default) - Starts with / partial name search functionality is available.
True - Disables starts with for all users/partial name search functionality for all SharePoint users, except SharePoint Admins.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-SharingCapability

Determines what level of sharing is available for OneDrive and SharePoint sites.

The valid values are:

ExternalUserAndGuestSharing (default) - External user sharing (share by email) and guest link sharing are both enabled.
Disabled - External user sharing (share by email) and guest link sharing are both disabled.
ExternalUserSharingOnly - External user sharing (share by email) is enabled, but guest link sharing is disabled.
ExistingExternalUserSharingOnly - Only guests already in your organization's directory.

For more information about sharing, see Manage sharing settings for your SharePoint online environment.

Type: SharingCapabilitiesParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: ExternalUserAndGuestSharingAccept pipeline input: FalseAccept wildcard characters: False

-ShowAllUsersClaim

Enables the administrator to hide the All Users claim groups in People Picker.

When users share an item with "All Users (x)", it is accessible to all organization members in the tenant's Microsoft Entra ID who have authenticated with via this method. When users share an item with "All Users (x)" it is accessible to all organization members in the tenant that used NTLM to authentication with SharePoint.

Note, the All Users (authenticated) group is equivalent to the Everyone claim, and shows as Everyone. To change this, see -ShowEveryoneClaim.

The valid values are:

True (default) - The All Users claim groups are displayed in People Picker.
False - The All Users claim groups are hidden in People Picker.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: TrueAccept pipeline input: FalseAccept wildcard characters: False

-ShowEveryoneClaim

Enables the administrator to hide the Everyone claim in the People Picker.
When users share an item with Everyone, it is accessible to all authenticated users in the tenant's Microsoft Entra ID, including any active external users who have previously accepted invitations.

Note, that some SharePoint system resources such as templates and pages are required to be shared to Everyone and this type of sharing does not expose any user data or metadata.

The valid values are:

True - The Everyone claim group is displayed in People Picker. This has been the default for tenants older than March 2018
False (default) - The Everyone claim group is hidden from the People Picker. This has become the new default for new tenants.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-ShowEveryoneExceptExternalUsersClaim

Enables the administrator to hide the "Everyone except external users" claim in the People Picker.
When users share an item with "Everyone except external users", it is accessible to all organization members in the tenant's Microsoft Entra ID, but not to any users who have previously accepted invitations.

The valid values are:

True (default) - The Everyone except external users is displayed in People Picker.
False - The Everyone except external users claim is not visible in People Picker.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: TrueAccept pipeline input: FalseAccept wildcard characters: False

-AllowEveryoneExceptExternalUsersClaimInPrivateSite

When this parameter is true, the "Everyone except external users" claim is available in the People Picker of a private site. Set it to false to disable this feature.

The valid values are:

True - The "Everyone except external users" claim is available in People Picker of a private site.
False (default) - The "Everyone except external users" claim is not available in People Picker of a private site.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-SignInAccelerationDomain

Specifies the home realm discovery value to be sent to Microsoft Entra ID during the user sign-in process.

When the organization uses a third-party identity provider, this prevents the user from seeing the Microsoft Entra Home Realm Discovery web page and ensures the user only sees their company's Identity Provider's portal. This value can also be used with Microsoft Entra ID P1 or P2 to customize the Microsoft Entra sign-in page.

Acceleration will not occur on site collections that are shared externally.

This value should be configured with the login domain that is used by your company (that is, example@contoso.com).

If your company has multiple third-party identity providers, configuring the sign-in acceleration value will break sign-in for your organization.

The valid values are:

"" (default) - Blank by default, this will also remove or clear any value that has been set.
Login Domain - For example: "contoso.com"

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-StartASiteFormUrl

Specifies URL of the form to load in the Start a Site dialog.

The valid values are:

"" (default) - Blank by default, this will also remove or clear any value that has been set.
Full URL - Example: "https://contoso.sharepoint.com/path/to/form"

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-UsePersistentCookiesForExplorerView

Note

This setting is not used anymore with Internet Explorer (IE) retired and the parameter would be removed soon. Users need to select "Yes" when prompted for "Stay signed in?" at the time of sign-in for "View in File Explorer" to work with Microsoft Edge.

Lets SharePoint issue a special cookie that will allow this feature to work even when "Keep Me Signed In" is not selected.

"Open with Explorer" requires persisted cookies to operate correctly. When the user does not select "Keep Me Signed in" at the time of sign-in, "Open with Explorer" will fail.

This special cookie expires after 30 minutes and cannot be cleared by closing the browser or signing out of SharePoint Online. To clear this cookie, the user must log out of their Windows session.

The valid values are:

False (default) - No special cookie is generated and the normal Office 365 sign-in length/timing applies.
True - Generates a special cookie that will allow "Open with Explorer" to function if the "Keep Me Signed In" box is not checked at sign-in.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-CommentsOnSitePagesDisabled

Disables or enables commenting functionality on the site pages. PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-CommentsOnFilesDisabled

Disables or enables commenting functionality on the files. PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-CommentsOnListItemsDisabled

Disables or enables commenting functionality on list items. PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-SocialBarOnSitePagesDisabled

Disables or enables the Social Bar.

The Social Bar will appear on all modern SharePoint pages with the exception of the home page of a site. It will give users the ability to like a page, see the number of views, likes, and comments on a page, and see the people who have liked a page.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-DefaultLinkPermission

Lets administrators choose the default permission of the link in the sharing dialog box in OneDrive for Business and SharePoint Online. This applies to anonymous access, internal and direct links.

The valid values are View and Edit (default).

Type: SharingPermissionTypeParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: EditAccept pipeline input: FalseAccept wildcard characters: False

-DefaultSharingLinkType

Lets administrators choose the default link type in the sharing dialog box in OneDrive for Business and SharePoint Online.

For additional information about how to change the default link type, see Change the default link type when users get links for sharing.

Note

Setting this value to "none" will default "get a link" to the most permissive link available (that is, if anonymous links are enabled, the default link will be anonymous access; if they are disabled then the default link will be internal.

The valid values are:

None - Respect the organization default sharing link type
Direct - Sets the default sharing link for this site to the Specific people link
Internal - Sets the default sharing link for this site to the organization link or company shareable link
AnonymousAccess - Sets the default sharing link for this site to an Anonymous Access or Anyone link

Type: SharingLinkTypeParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DisabledWebPartIds

Allows administrators to prevent certain web parts from being added to pages or rendering on pages on which they were previously added. Currently, only the following web parts can be disabled in such a manner:

Amazon Kindle: 46698648-fcd5-41fc-9526-c7f7b2ace919
YouTube: 544dd15b-cf3c-441b-96da-004d5a8cea1d
Twitter: f6fdf4f8-4a24-437b-a127-32e66a5dd9b4
Embed: 490d7c76-1824-45b2-9de3-676421c997fa
Microsoft Bookings: d24a7165-c455-4d43-8bc8-fedb04d6c1b5
Stream: 275c0095-a77e-4f6d-a2a0-6a7626911518

To disable a specific web part, you need to enter its GUID as the parameter. You can enter multiple GUIDs by using a comma to separate them, for example Set-SPOTenant -DisabledWebPartIds 46698648-fcd5-41fc-9526-c7f7b2ace919,544dd15b-cf3c-441b-96da-004d5a8cea1d. To view a list of disabled web parts, use Get-SPOTenant to get DisabledWebPartIds.

To re-enable some disabled web parts, use the Set-SPOTenant with the -DisabledWebPartIds parameter and corresponding GUIDs that you still want to keep disabling. To re-enable all disabled web parts, use Set-SPOTenant -DisabledWebPartIds @().

Type: Guid[]Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DisabledAdaptiveCardExtensionIds

Allows administrators to prevent certain Adaptive Card Extensions from being added to pages or rendering on pages on which they were previously added. Currently, only the following Adaptive Card Extensions can be disabled in such a manner:

Adaptive Card Extension Name	GUID
Power Apps	0d2d0fd0-9489-47ef-acfb-90edca009cba

To disable a specific Adaptive Card Extension, you need to enter its GUID as the parameter. To view a list of disabled Adaptive Card Extensions, use Get-SPOTenant to get DisabledAdaptiveCardExtensionIds.

To re-enable some disabled Adaptive Card Extensions, use the Set-SPOTenant with the -DisabledAdaptiveCardExtensionIds parameter and corresponding GUIDs that you still want to keep disabling. To re-enable all disabled Adaptive Card Extensions, use Set-SPOTenant -DisabledAdaptiveCardExtensionIds @().

Type: Guid[]Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DisallowInfectedFileDownload

Prevents the Download button from being displayed on the Virus Found warning page.

Accepts a value of true (enabled) to hide the Download button or false (disabled) to display the Download button. By default this feature is set to false.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DisableSharePointStoreAccess

This feature allows the SharePoint Administrators to disable SharePoint Store access for all users in the tenant.

Accepts a value of true (enabled) to hide the SharePoint app store or false (disabled) to show the SharePoint app store. By default this feature is set to false.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DisableCustomAppAuthentication

Prevents apps using an Azure Access Control (ACS) app-only access token to access SharePoint. ACS, a service of Microsoft Entra ID, has been retired on November 7, 2018. This retirement does not impact the SharePoint add-in model, which uses the https://accounts.accesscontrol.windows.net hostname (which is not impacted by this retirement). For new tenants, apps using an ACS app-only access token are disabled by default. We recommend using the Microsoft Entra app-only model which is modern and more secure. Note that marking this property to $true doesn't prevent creating apps in SharePoint that use an Azure Access Control (ACS) app-only access token. Marking this property to $true only ensures that such apps can't access SharePoint anymore.

Accepts a value of true or false. By default this feature is set to true.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-IsSharePointAddInsDisabled

When the feature is enabled, all the add-ins features will be disabled.

The valid values are:

False (default) - All the add-ins features are supported.
True - All the add-ins features will be disabled.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-IsSharePointAddInsBlocked

When this feature is enabled, all functionalities of the add-ins will be restricted, preventing them from running or installing.

The valid values are:

False (default) - All the add-ins features are supported.
True - All the add-ins features will be blocked.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-SiteOwnerManageLegacyServicePrincipalEnabled

Allows or disallows the site collection admins to manage the Azure Access Control (ACS) service principal.

When the value is set to false, the service principal can only be created or updated by the SharePoint tenant admin. If the value is set to true, both the SharePoint tenant admin and site collection admin will be able to create or update the service principal through SharePoint.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-EnableGuestSignInAcceleration

Accelerates guest-enabled site collections as well as member-only site collections when the SignInAccelerationDomain parameter is set.

Note

If enabled, your identity provider must be capable of authenticating guest users. If it is not, guest users will be unable to log in and access content that was shared with them.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-FileAnonymousLinkType

Anonymous access links can allow recipients to only view or view and edit. The value can be set separately for folders and files.

The valid values are:

View
Edit

Type: AnonymousLinkTypeParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-FilePickerExternalImageSearchEnabled

For Webparts that support inserting images, like for example Image or Hero webpart, the Web search (Powered by Bing) option will be available if enabled (the default).

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: TrueAccept pipeline input: FalseAccept wildcard characters: False

-FolderAnonymousLinkType

Anonymous access links can allow recipients to only view or view and edit.

The valid values are:

View
Edit

Type: AnonymousLinkTypeParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-IPAddressAllowList

Configures multiple IP addresses or IP address ranges (IPv4 or IPv6), that are recognized as trusted.

Use commas to separate multiple IP addresses or IP address ranges. Verify there are no overlapping IP addresses and ensure IP ranges use Classless Inter-Domain Routing (CIDR) notation. For example, 172.16.0.0, 192.168.1.0/27.

Note

The IPAddressAllowList parameter only lets administrators set IP addresses or ranges that are recognized as trusted. To only grant access from these IP addresses or ranges, set the IPAddressEnforcement parameter to $true.

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-IPAddressEnforcement

Allows access from network locations that are defined by an administrator.

The values are $true and $false. The default value is $false which means the setting is disabled.

Before the IPAddressEnforcement parameter is set, make sure you add a valid IPv4 or IPv6 address to the IPAddressAllowList parameter.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-IPAddressWACTokenLifetime

Allows to set the session timeout. If you are a tenant administrator and you begin IP address enforcement for OneDrive for Business in Office 365, this enforcement automatically activates a tenant parameter IPAddressWACTokenLifetime. The default value is 15 minutes, when IP Address Enforcement is True.

PARAMVALUE: Int32

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-LegacyAuthProtocolsEnabled

By default this value is set to $True, which means that authentication using legacy protocols is enabled.

Setting this parameter to $False prevents Office clients using non-modern authentication protocols from accessing SharePoint Online resources.

True - Enables Office clients using non-modern authentication protocols (such as, Forms-Based Authentication (FBA) or Identity Client Runtime Library (IDCRL)) to access SharePoint resources.
False - Prevents Office clients using non-modern authentication protocols from accessing SharePoint Online resources.

Note

• This may also prevent third-party apps from accessing SharePoint Online resources.
Also, this will also block apps using the SharePointOnlineCredentials class to access SharePoint Online resources. For additional information about SharePointOnlineCredentials, see SharePointOnlineCredentials class.

• The change is not instant. It might take up to 24 hours to be applied.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-MediaTranscription

When the feature is enabled, videos can have transcripts generated on demand or generated automatically in certain scenarios. This is the default because the policy is default on. If a video owner decides they don't want the transcript, they can always hide or delete it from that video. Possible values:

Enabled
Disabled

Type: MediaTranscriptionPolicyTypeParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: EnabledAccept pipeline input: FalseAccept wildcard characters: False

-MediaTranscriptionAutomaticFeatures

When the feature is enabled, videos can have transcripts generated automatically on upload. The policy is default on. If a tenant admin decides to disable the feature, he can do so by disabling the policy at tenant level. This feature can not be enabled or disabled at site level. Possible values:

Enabled
Disabled

Type: MediaTranscriptionAutomaticFeaturesPolicyTypeParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: EnabledAccept pipeline input: FalseAccept wildcard characters: False

-NotificationsInOneDriveForBusinessEnabled

Enables or disables notifications in OneDrive for Business.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-NotificationsInSharePointEnabled

Enables or disables notifications in SharePoint.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-NotifyOwnersWhenInvitationsAccepted

This parameter has been deprecated since SharePoint Online legacy invitation flow switched to Entra B2B invitation flow.

-NotifyOwnersWhenItemsReshared

When this parameter is set to $true and another user re-shares a document from a user's OneDrive for Business, the OneDrive for Business owner is notified by e-mail.

For additional information about how to configure notifications for external sharing, see Configure notifications for external sharing for OneDrive for Business.

The valid values are $true and $false.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-ODBAccessRequests

Lets administrators set policy on access requests and requests to share in OneDrive for Business.

The valid values are:

On - Users without permission to share can trigger sharing requests to the OneDrive for Business owner when they attempt to share. Also, users without permission to a file or folder can trigger access requests to the OneDrive for Business owner when they attempt to access an item they do not have permissions to.
Off - Prevent access requests and requests to share on OneDrive for Business.
Unspecified - Let each OneDrive for Business owner enable or disable access requests and requests to share on their OneDrive.

Type: SharingStateParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-ODBMembersCanShare

Lets administrators set policy on re-sharing behavior in OneDrive for Business.

The valid values are:

On - Users with edit permissions can re-share.
Off - Only OneDrive for Business owner can share. The value of ODBAccessRequests defines whether a request to share gets sent to the owner.
Unspecified - Let each OneDrive for Business owner enable or disable re-sharing behavior on their OneDrive.

Type: SharingStateParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-OneDriveForGuestsEnabled

Lets OneDrive for Business creation for administrator managed guest users. Administrator managed Guest users use credentials in the resource tenant to access the resources.

The valid values are:

$true - Administrator managed Guest users can be given OneDrives, provided needed licenses are assigned.
$false - Administrator managed Guest users can't be given OneDrives as functionality is turned off.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-OneDriveStorageQuota

Sets a default OneDrive for Business storage quota for the tenant. It will be used for new OneDrive for Business sites created.

A typical use will be to reduce the amount of storage associated with OneDrive for Business to a level below what the License entitles the users. For example, it could be used to set the quota to 10 gigabytes (GB) by default.

If value is set to 0, the parameter will have no effect.

If the value is set larger than the Maximum allowed OneDrive for Business quota, it will have no effect.

Type: Int64Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-IsWBFluidEnabled

Sets whether Whiteboard is enabled or disabled for OneDrive for Business users. Whiteboard on OneDrive for Business is automatically enabled for applicable Microsoft 365 tenants but can be disabled.

The valid values are:

$true - Administrator enabled Whiteboard for user with OneDrive for Business Users.
$false - Administrator disable Whiteboard for user with OneDrive for Business Users.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-OrphanedPersonalSitesRetentionPeriod

Specifies the number of days after a user's Active Directory account is deleted that their OneDrive for Business content will be deleted.

The value range is in days, between 30 and 3650. The default value is 30.

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-OwnerAnonymousNotification

Enables or disables owner anonymous notification. If enabled, an email notification will be sent to the OneDrive for Business owners when anonymous links are created or changed.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-PermissiveBrowserFileHandlingOverride

Enables the Permissive browser file handling. By default, the browser file handling is set to Strict. The Strict setting adds headers that force the browser to download certain types of files. The forced download improves security by disallowing the automatic execution of Web content. When the setting is set to Permissive, no headers are added and certain types of files can be executed in the browser instead of download.

The valid values are:

True - Enable the Permissive browser file handling setting.
False - Keep the default Strict browser file handling setting.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-PreventExternalUsersFromResharing

Prevents external users from resharing files, folders, and sites that they do not own.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-PublicCdnAllowedFileTypes

Sets public CDN allowed file types, if the public CDN is enabled.

PARAMVALUE: String

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-PublicCdnEnabled

Enables or disables the public CDN.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-RequireAnonymousLinksExpireInDays

Specifies all anonymous links that have been created (or will be created) will expire after the set number of days.

The value can be from 0 to 730 days.

To remove the expiration requirement, set the value to zero (0).

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-SharingAllowedDomainList

Specifies a list of email domains that are allowed for sharing with the external collaborators. Use the space character as the delimiter for entering multiple values. For example, "contoso.com fabrikam.com".

For additional information about how to restrict a domain sharing, see Restricted Domains Sharing in Office 365 SharePoint Online and OneDrive for Business.

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-SharingBlockedDomainList

Specifies a list of email domains that are blocked or prohibited for sharing with the external collaborators. Use space character as the delimiter for entering multiple values. For example, "contoso.com fabrikam.com".

For additional information about how to restrict a domain sharing, see Restricted Domains Sharing in Office 365 SharePoint Online and OneDrive for Business.

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-SharingDomainRestrictionMode

Specifies the external sharing mode for domains.

The valid values are:

None
AllowList - Users will be able to share with external collaborators coming only from that email domain.
BlockList - Users will be able to share with all external collaborators apart from the ones on the BlockedDomainList.

For additional information about how to restrict a domain sharing, see Restricted Domains Sharing in Office 365 SharePoint Online and OneDrive for Business.

Type: SharingDomainRestrictionModesParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-ShowPeoplePickerSuggestionsForGuestUsers

Shows people picker suggestions for guest users. To enable the option to search for existing guest users at Tenant Level, set this parameter to $true.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-SpecialCharactersStateInFileFolderNames

Permits the use of special characters in file and folder names in SharePoint Online and OneDrive for Business document libraries.

Note

The only two characters that can be managed at this time are the # and % characters.

The valid values are:

NoPreference - Support for feature will be enabled by Microsoft on your Office 365 tenant.
Allowed - Lets the # and % characters in file and folder names in SharePoint Online and OneDrive for Business document libraries.
Disallowed - Disallows the # and % characters in file and folder names in SharePoint Online and OneDrive for Business document libraries.

Type: SpecialCharactersStateParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-ReSyncTenantPrivacyProfile

The 'SyncPrivacyProfileProperties' parameter is obsolete and renamed ReSyncTenantPrivacyProfile.

This parameter enables the synchronization of privacy profile properties.

ReSyncTenantPrivacyProfile sets whether or not the synced tenant properties will be updated on the next request. The request will cause Microsoft Entra ID to grab the tenant's current display name (TenantDisplayName) and privacy profile URL (PrivacyProfileUrl).

Running 'Set-SPOTenant - ReSyncTenantPrivacyProfile' will force a sync from the Microsoft Entra privacy profile URL to SharePoint Online. The sync may take up to 24 hours to complete. Whenever SharePoint Online gets the privacy profile URL, it checks whether the last sync time is out of the sync time window. If it is, it syncs from Microsoft Entra ID to SharePoint Online.

Type: SwitchParameterParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-UseFindPeopleInPeoplePicker

This feature enables tenant admins to enable ODB and SPO to respect Exchange supports Address Book Policy (ABP) policies in the people picker.

PARAMVALUE: True | False

Note

When set to $true, users aren't able to share with security groups or SharePoint groups.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DisableDocumentLibraryDefaultLabeling

This switch allows tenant admins to disable the capability of configuring a default sensitivity label for a document library.

PARAMVALUE: True | False

Note

When set to $true, users aren't able to apply a default sensitivity label for a document library. The default value is false.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: falseAccept pipeline input: FalseAccept wildcard characters: False

-CustomizedExternalSharingServiceUrl

Specifies a URL that will be appended to the error message that is surfaced when a user is blocked from sharing externally by policy. This URL can be used to direct users to internal portals to request help or to inform them about your organization's policies. An example value is "https://www.contoso.com/sharingpolicies".

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-ContentTypeSyncSiteTemplatesList [String[]] [-ExcludeSiteTemplate]

By default Content Type Hub will no longer push content types to OneDrive for Business sites (formerly known as MySites).

In case you want the Content Type Hub to push content types to OneDrive for Business sites, use: Set-SPOTenant -ContentTypeSyncSiteTemplatesList MySites.

When the feature is enabled, the Content Type Hub will push content types to OneDrive for Business sites.

Once you have enabled Content Type publishing to OneDrive for Business sites, you can disable it later using: Set-SPOTenant -ContentTypeSyncSiteTemplatesList MySites -ExcludeSiteTemplate.

Type: String[]Parameter Sets: ParameterSetContentTypeSyncSiteTemplatesListAliases: Required: TruePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-ExcludeSiteTemplate

Excludes the specified template from Content Type hub content type synchronization. Must be used with -ContentTypeSyncSiteTemplatesList [String[]].

Type: SwitchParameterParameter Sets: ParameterSetContentTypeSyncSiteTemplatesListAliases: Required: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-ConditionalAccessPolicy

Please read Control access from unmanaged devices documentation here to understand Conditional Access Policy usage in SharePoint Online.

PARAMVALUE: AllowFullAccess | AllowLimitedAccess | BlockAccess

Type: SPOConditionalAccessPolicyTypeParameter Sets: ParamSet1Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: AllowFullAccessAccept pipeline input: TrueAccept wildcard characters: False

-ConditionalAccessPolicyErrorHelpLink

A Link for help when Conditional Access Policy blocks a user. This should be in a valid URL format. A valid URL format that begins with http:// or https://.

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-AllowDownloadingNonWebViewableFiles

This parameter has been deprecated.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-AllowCommentsTextOnEmailEnabled

When this parameter is true, the email notification that a user receives when is mentioned, includes the surrounding document context. Set it to false to disable this feature.

PARAMVALUE: True | False

Type: BooleanParameter Sets: ParamSet1Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: TrueAccept pipeline input: FalseAccept wildcard characters: False

-AllowEditing

Prevents users from editing Office files in the browser and copying and pasting Office file contents out of the browser window.

PARAMVALUE: True | False

Type: BooleanParameter Sets: ParamSet1Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: TrueAccept pipeline input: FalseAccept wildcard characters: False

-EnableAzureADB2BIntegration

Enables OneDrive and SharePoint integration with Microsoft Entra B2B. For more information, see SharePoint and OneDrive integration with Microsoft Entra B2B.

PARAMVALUE: True | False

Type: BooleanParameter Sets: ParamSet1Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-LimitedAccessFileType

Allows users to preview only Office files in the browser. This option increases security, but may be a barrier to user productivity.

The following parameters can be used with -ConditionalAccessPolicy AllowLimitedAccess for both the organization-wide setting and the site-level setting.

OfficeOnlineFilesOnly: Allows users to preview only Office files in the browser. This option increases security but may be a barrier to user productivity.
LimitedAccessFileType WebPreviewableFiles (default): Allows users to preview Office files in the browser. This option optimizes for user productivity but offers less security for files that aren't Office files. Warning: This option is known to cause problems with PDF and image file types because they can be required to be downloaded to the end user's machine to render in the browser. Plan the use of this control carefully. Otherwise, your users could be faced with unexpected "Access Denied" errors.
LimitedAccessFileType OtherFiles: Allows users to download files that can't be previewed, such as .zip and .exe. This option offers less security.

PARAMVALUE: OfficeOnlineFilesOnly | WebPreviewableFiles | OtherFiles

Type: SPOLimitedAccessFileTypeParameter Sets: ParamSet1Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: WebPreviewableFilesAccept pipeline input: FalseAccept wildcard characters: False

-ExternalUserExpirationRequired

Specifies whether to enable the external user expiration policy, where external users will be expired and removed from the site collection in a given number of days.

Note: Once the policy is enabled, expiration values will be set on external users as they join a site collection (via sharing links or via direct access). When the policy is disabled, it will no longer set expiration values on users, but it will not automatically clear expiration values set on existing users. The users can then have their expiration value cleared by a site collection administrator if required.

The valid values are: True - Enables the Policy. False (default) - Disables the policy.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-EnableSensitivityLabelforPDF

Allows tenant admins to turn on support for PDFs with sensitivity labels for the following scenarios:

Applying a sensitivity label in Office for the web.
Uploading a labeled document, and then extracting and displaying that sensitivity label.
Search, eDiscovery, and data loss prevention.
Auto-labeling policies and default sensitivity labels for SharePoint document libraries.

The valid values are:

True - Enables support for PDFs.
False (default) - Disables support for PDFs.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: falseAccept pipeline input: FalseAccept wildcard characters: False

-ExternalUserExpireInDays

Specifies the number of days before an external user will expire and be removed from the site collection if the policy is enabled. Value can be from 30 to 730 days.

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-EmailAttestationRequired

Sets email attestation to required.

If people who use a verification code select to "stay signed in" in the browser, they must prove that they can access the same account that they used to redeem the sharing invitation. You can set the number of days for email attestation with -EmailAttestationReAuthDays. This setting affects only ad-hoc external recipients.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-EmailAttestationReAuthDays

Sets the number of days for email attestation re-authentication. Value can be from 1 to 365 days.

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-BlockUserInfoVisibility

This feature has not yet been rolled out to Production. Attempting to set this parameter before rollout is complete will result in an error message. More details on this feature will be available on release.

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: ExternalPeopleInODAccept pipeline input: FalseAccept wildcard characters: False

-BlockUserInfoVisibilityInOneDrive

Blocks users from accessing User Info if they have Limited Access permission only to the OneDrive. The policy applies to all OneDrives in the organization.

The valid values are:

ApplyToNoUsers – No users are prevented from accessing User Info when they have Limited Access permission only.
ApplyToAllUsers – All users (internal or external) are prevented from accessing User Info if they have Limited Access permission only.
ApplyToGuestAndExternalUsers (default) – Only external or guest users are prevented from accessing User Info if they have Limited Access permission only.
ApplyToInternalUsers – Only internal users are prevented from accessing User Info if they have Limited Access permission only.

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: ApplyToGuestAndExternalUsersAccept pipeline input: FalseAccept wildcard characters: False

-BlockUserInfoVisibilityInSharePoint

Blocks users from accessing User Info if they have Limited Access permission only to a SharePoint site. The policy applies to all SharePoint sites in the organization.

The valid values are:

ApplyToNoUsers (default) – No users are prevented from accessing User Info when they have Limited Access permission only to a SharePoint site.
ApplyToAllUsers – All users (internal or external) are prevented from accessing User Info if they have Limited Access permission only to a SharePoint site.
ApplyToGuestAndExternalUsers – Only external or guest users are prevented from accessing User Info if they have Limited Access permission only to a SharePoint site.
ApplyToInternalUsers – Only internal users are prevented from accessing User Info if they have Limited Access permission only to a SharePoint site.

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: ApplyToNoUsersAccept pipeline input: FalseAccept wildcard characters: False

-AllowOverrideForBlockUserInfoVisibility

Allow organization level policy for Block User Info Visibility to be overridden for a SharePoint site or OneDrive. Use Set-SPOSite to override the policy for a SharePoint site or OneDrive.

The valid values are:

False (default) – Do not allow the Block User Info Visibility policy to be overridden for a SharePoint site or OneDrive.
True – Allow the Block User Info Visibility policy to be overridden for a SharePoint site or OneDrive.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-EnableAutoNewsDigest

Enable or disable auto news digest. Documentation for auto news digest.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: TrueAccept pipeline input: FalseAccept wildcard characters: False

-IncludeAtAGlanceInShareEmails

Enable or disable the At A Glance feature in sharing e-mails. This provides the key points and time to read for the shared item if available.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: TrueAccept pipeline input: FalseAccept wildcard characters: False

-StopNew2010Workflows

Prevents creation of new SharePoint 2010 classic workflows.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Required: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-StopNew2013Workflows

Prevents creation of new SharePoint 2013 classic workflows.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Required: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-BlockSendLabelMismatchEmail

When a sensitivity label mismatch occurs between the label on the document uploaded and the label on the site, SharePoint Online captures an audit record, and sends an Incompatible sensitivity label detected email notification to the person who uploaded the document and the site owner. The notification contains details of the document which caused the problem and the label assigned to the document and to the site. The comparison happens between the priority of these two labels.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: falseAccept pipeline input: FalseAccept wildcard characters: False

-LabelMismatchEmailHelpLink

This parameter allows tenant admins to customize the "Help Link" in email with the subject "Incompatible sensitivity label detected." When a sensitivity label mismatch occurs between the label on the document uploaded and the label on the site, SharePoint Online captures an audit record and sends an Incompatible sensitivity label detected email notification to the person who uploaded the document and the site owner. The notification contains details of the document which caused the problem and the label assigned to the document and to the site. The comparison happens between the priority of these two labels.

The value can be any valid URL.

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DisableOutlookPSTVersionTrimming

This parameter has no effect and it was used to opt-out of PST files retention policy changes as communicated in MC256835 (May 2021). Starting August 16, 2021, the service started retaining 30 days worth of versions for any PST files stored in OneDrive for Business and SharePoint Online team site document libraries. This change was introduced to prevent cases of previous versions of PST files quickly consuming available storage. The change only impacts previous versions of PST files stored in your document library storage. As a best practice, PST files should not be uploaded on OneDrive for Business and SharePoint Online team site document libraries due to the impact on storage and network bandwidth.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-DisableAddShortcutsToOneDrive

When the feature is disabled ($true), the option Add shortcut to My files will be removed; any folders that have already been added will remain on the user's computer.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-ViewInFileExplorerEnabled

Enables or disables the ability to use View in Explorer in Microsoft Edge (93) or above.

Note

When the value is set the View In Explorer command will become visible in UX for all users using Edge browser version 93 or above however those users still need ConfigureViewInFileExplorer Edge policy enabled for the functionality to work.

Minimum Module Version Required: 16.0.21610.12000

The valid values are:

False (default) - Disables View In Explorer command to become visible in Edge.
True - Enables View In Explorer command to become visible in Edge.

Type: BooleanParameter Sets: (All)Aliases: Required: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-AllowGuestUserShareToUsersNotInSiteCollection

The AllowGuestUserShareToUsersNotInSiteCollection settings (defaulted to false) will allow guests to share to users not in the site.

The valid values are:

False (default) – Guest users will only be able to share to users that exist within the current site.
True – Guest users will be able to find user accounts in the directory by typing in the exact email address match.

Note: When the value is set to True, you will also need to enable SharePoint and OneDrive integration with Microsoft Entra B2B for the functionality to work.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-OneDriveLoopDefaultSharingLinkScope

Gets or sets default share link scope for Loop and Whiteboard files on OneDrive sites.

The valid values are:

Anyone
Organization
SpecificPeople
Uninitialized

Type: SharingScopeParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: UninitializedAccept pipeline input: FalseAccept wildcard characters: False

-OneDriveLoopDefaultSharingLinkRole

This parameter sets the default share link role for Loop and Whiteboard files on OneDrive sites.

The valid values are:

Edit
View
None
Review
RestrictedView

Type: SharingRoleParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-CoreLoopDefaultSharingLinkScope

This parameter sets the default share link scope for Loop and Whiteboard files on SharePoint sites.

The valid values are:

Anyone
Organization
SpecificPeople
Uninitialized

Type: SharingScopeParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: UninitializedAccept pipeline input: FalseAccept wildcard characters: False

-CoreLoopDefaultSharingLinkRole

This parameter sets the default share link role for Loop and Whiteboard files on SharePoint sites.

The valid values are:

Edit
View
None
Review
RestrictedView

Type: SharingRoleParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable.

For more information, see about_CommonParameters.

-ReduceTempTokenLifetimeEnabled

Enables reduced session timeout for temporary URLs used by apps for document download scenarios. Reduction occurs when an app redeeming an IP address does not match the original requesting IP. The default value is 15 minutes if ReduceTempTokenLifetimeValue is not set.

Note: Reducing this value may bring degradation in end-user experience by requiring frequent authentication prompts to users.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-ReduceTempTokenLifetimeValue

Optional parameter to set the session timeout value for temporary URLs. The value can be set between 5 and 15 minutes and the default value is 15 minutes.

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: 15Accept pipeline input: FalseAccept wildcard characters: False

-ShowPeoplePickerGroupSuggestionsForIB

The ShowPeoplePickerGroupSuggestionsForIB setting (defaulted to false) allows showing group suggestions for information barriers (IBs) in the People Picker.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-InformationBarriersSuspension

When InformationBarriersSuspension parameter is set to $false, information barriers in SharePoint and OneDrive is enabled, when set to $true, it is disabled.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-IBImplicitGroupBased

The IBImplicitGroupBased setting enables Microsoft 365 Groups membership-based access and sharing control for all Implicit mode sites.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-DefaultOneDriveInformationBarrierMode

The DefaultOneDriveInformationBarrierMode sets the information barrier mode for all OneDrive sites.

The valid values are:

Open
Explicit
Implicit
OwnerModerated
Mixed

For more information about information barriers, see Use information barriers with SharePoint for your SharePoint Online environment.

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-ViewersCanCommentOnMediaDisabled

Controls whether viewers commenting on media items is disabled or not.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: TrueAccept pipeline input: FalseAccept wildcard characters: False

-CoreSharingCapability

Determines what level of sharing is available for SharePoint sites (not including OneDrive sites).

The valid values are:

ExternalUserAndGuestSharing (default) - External user sharing (share by email) and guest link sharing are both enabled.
Disabled - External user sharing (share by email) and guest link sharing are both disabled.
ExternalUserSharingOnly - External user sharing (share by email) is enabled, but guest link sharing is disabled.
ExistingExternalUserSharingOnly - Only guests already in your organization's directory.

For more information about sharing, see Manage sharing settings for your SharePoint online environment.

Type: SharingCapabilitiesParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: ExternalUserAndGuestSharingAccept pipeline input: FalseAccept wildcard characters: False

-OneDriveRequestFilesLinkEnabled

Enable or disable the Request files link on the OneDrive partition for all OneDrive sites. If this value is not set, the Request files link will only show for OneDrives with Anyone links enabled.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-CoreRequestFilesLinkEnabled

Enable or disable the Request files link on the core partition for all SharePoint sites (not including OneDrive sites). If this value is not set, Request files will only show for OneDrives with Anyone links enabled.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-OneDriveRequestFilesLinkExpirationInDays

Specifies the number of days before a Request files link expires for all OneDrive sites.

The value can be from 0 to 730 days.

To remove the expiration requirement, set the value to zero (0).

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: -1Accept pipeline input: FalseAccept wildcard characters: False

-CoreRequestFilesLinkExpirationInDays

Specifies the number of days before a Request files link expires for all SharePoint sites (not including OneDrive sites).

The value can be from 0 to 730 days.

To remove the expiration requirement, set the value to zero (0).

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: -1Accept pipeline input: FalseAccept wildcard characters: False

-AllowAnonymousMeetingParticipantsToAccessWhiteboards

When you share a whiteboard in a Teams meeting, Whiteboard creates a sharing link. This link is accessible by anyone within the organization. The whiteboard is also shared with any in-tenant users in the meeting. Whiteboards are shared using company-shareable links, regardless of the default setting. Support for the default sharing link type is planned.

There's more capability for temporary collaboration by external and shared device accounts during a Teams meeting. Users can temporarily view and collaborate on whiteboards that are shared in a meeting, in a similar way to PowerPoint Live sharing.

In this case, Whiteboard provides temporary viewing and collaboration on the whiteboard during the Teams meeting only. A share link isn't created and Whiteboard doesn't grant access to the file.

If you have external sharing enabled for OneDrive for Business, no further action is required.

If you restrict external sharing for OneDrive for Business, you can keep it restricted, and just enable this new setting in order for external and shared device accounts to work. For more information, see Manage sharing for Microsoft Whiteboard.

Type: SharingStateParameter Sets: (All)Aliases: Required: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DisableBackToClassic

Enables or disables the link "Return to classic SharePoint" on modern SharePoint list and library pages.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-IsEnableAppAuthPopUpEnabled

Enables or disables users in the organization to authenticate SharePoint applications using popups.

This parameter affects the way code in SharePoint interacts with Microsoft Entra ID to get tokens to access APIs. In scenarios where third-party cookies are disabled (such as Safari browsers with ITP feature enabled), any code that requires a token to access an API automatically triggers a full page refresh. When IsEnableAppAuthPopUpEnabled is set to $true, SharePoint will instead surface a popup in this scenario.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-BlockDownloadFileTypePolicy

You can block the download of Teams meeting recording files from SharePoint or OneDrive. This allows users to remain productive while addressing the risk of accidental data loss. Users have browser-only access to play the meeting recordings with no ability to download or sync files or access them through apps.

This policy applies to new meeting recordings across the entire organization. You can exempt people who are members of specified security groups from the policy. This allows you to specify governance or compliance specialists who should have download access to meeting recordings.

After the policy is turned on, any new Teams meeting recording files created by the Teams service and saved in SharePoint and OneDrive are blocked from download.

Because this policy affects meeting recordings stored in OneDrive and SharePoint, you must be a SharePoint administrator to configure it.

Note that this policy doesn't apply to manually uploaded meeting recording files. For more details, see Block the download of Teams meeting recording files from SharePoint or OneDrive.

PARAMVALUE: True | False

Type: Boolean Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-EnableAutoExpirationVersionTrim

Global and SharePoint Administrators can set organization-level version history limits settings that universally apply to new versions created on all new document libraries created in your organization.

When version history limits are managed automatically, SharePoint employs an algorithm behind the scenes that deletes (thins out) intermittent older versions that are least likely to be needed, while preserving sufficient high-value versions - more versions in the recent past and fewer farther back in time - in case restores are required.

The valid values are:

True – Version history limits for new versions created on all new document libraries in your organization will be managed automatically.
False – Version history limits for new Versions created on all new document libraries in your organization will be managed manually by setting limits to the number of major versions (MajorVersionLimit) and time set (ExpireVersionsAfterDays). Review the documentation of both parameters to manage your organization's version limits manually.

Note

When version history limits are managed manually (EnableAutoExpirationVersionTrim $false), MajorVersionLimit and ExpireVersionsAfterDays are both required parameters with the following acceptable values: a. MajorVersionLimit accepts values from 1 through 50,000 (inclusive). b. ExpireVersionsAfterDays accepts values of 0 to Never Expire or values >= 30 to delete versions that exceed that time period. When version history limits are managed automatically (EnableAutoExpirationVersionTrim $true), setting MajorVersionLimit or ExpireVersionsAfterDays will result in an error as the count limits are set by the service.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-MajorVersionLimit

When version history limits are managed manually (EnableAutoExpirationVersionTrim $false), admins will need to set the limits to the number of major versions (MajorVersionLimit) and the time period the versions are stored (ExpireVersionsAfterDays). Please check the description of EnableAutoExpirationVersionTrim for more details.

PARAMVALUE: Int32

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-ExpireVersionsAfterDays

PARAMVALUE: Int32

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-MassDeleteNotificationDisabled

Enables or disables the mass delete detection feature. When MassDeleteNotificationDisabled is set to $true, tenant admins can perform mass deletion operations without triggering notifications.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-DelayDenyAddAndCustomizePagesEnforcementOnClassicPublishingSites

This parameter controls how SharePoint will deal with classic publishing sites (templates BLANKINTERNETCONTAINER#0, CMSPUBLISHING#0 and BLANKINTERNET#0) where custom scripts are allowed.

The valid values are:

False (default) - for classic publishing site collections where administrators enabled the ability to add custom script, SharePoint will revoke that ability within 24 hours from the last time this setting was changed.
True - All changes performed by administrators to custom script settings are preserved.

Note

This setting affects all classic publishing sites (templates BLANKINTERNETCONTAINER#0, CMSPUBLISHING#0 and BLANKINTERNET#0). There are no options to preserve changes to custom script settings only on some specific sites.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-IsDataAccessInCardDesignerEnabled

The IsDataAccessInCardDesignerEnabled settings (defaulted to false) will allow Viva Connections Dashboard operators to access SharePoint and Graph APIs in the Card Designer card.

The valid values are:

False (default) – SharePoint and Graph APIs cannot be accessed in the Card Designer card.
True – Users with edit permissions on the Dashboard will be able to access SharePoint and Graph APIs in the Card Designer card.

For more information on this feature, see Overview of Viva Connections Card Designer advance API features.

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-EnableVersionExpirationSetting

The EnableVersionExpirationSetting parameter is no longer active, this feature is now automatically enabled for each tenant. Learn more about Version History Settings

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-OneDriveSharingCapability

Determines what level of sharing is available for OneDrive sites. It corresponds to the SharingCapabilities for OneDrive sites.

The valid values are:

ExternalUserAndGuestSharing (default) - External user sharing (share by email) and guest link sharing are both enabled.
Disabled - External user sharing (share by email) and guest link sharing are both disabled.
ExternalUserSharingOnly - External user sharing (share by email) is enabled, but guest link sharing is disabled.
ExistingExternalUserSharingOnly - Only guests already in your organization's directory.

Type: SharingCapabilitiesParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: ExternalUserAndGuestSharingAccept pipeline input: FalseAccept wildcard characters: False

-OneDriveDefaultShareLinkScope

This parameter sets the default share link scope on OneDrive sites. It replaces the DefaultSharingLinkType.

The valid values are:

Anyone: Anyone with the link can access the content.
Organization: Only people within the organization can access the content.
SpecificPeople: Only specific individuals (specified by the user) can access the content.
Uninitialized: The default value, indicating that the default share link scope is not explicitly set.

Type: SharingScopeParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: UninitializedAccept pipeline input: FalseAccept wildcard characters: False

-OneDriveDefaultShareLinkRole

This parameter sets the default share link role on OneDrive sites. It replaces the DefaultLinkPermission.

The valid values are:

None: No permissions granted.
View: View-only permissions.
Edit: Edit permissions.
Review: Review permissions.
RestrictedView: Restricted view permissions.

Type: SharingRoleParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-OneDriveDefaultLinkToExistingAccess

When set to True, the default sharing link will be a "People with Existing Access" link (which does not modify permissions) for OneDrive sites. When set to False (the default), the default sharing link type is controlled by the OneDriveDefaultShareLinkScope parameter.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-CoreDefaultShareLinkScope

This parameter sets the default share link scope on SharePoint sites. It replaces the DefaultSharingLinkType.

The valid values are:

Anyone: Anyone with the link can access the content.
Organization: Only people within the organization can access the content.
SpecificPeople: Only specific individuals (specified by the user) can access the content.
Uninitialized: The default value, indicating that the default share link scope is not explicitly set.

Type: SharingScopeParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: UninitializedAccept pipeline input: FalseAccept wildcard characters: False

-CoreDefaultShareLinkRole

This parameter sets the default share link role on SharePoint sites. It replaces the DefaultLinkPermission.

The valid values are:

None: No permissions granted.
View: View-only permissions.
Edit: Edit permissions.
Review: Review permissions.
RestrictedView: Restricted view permissions.

Type: SharingRoleParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-CoreDefaultLinkToExistingAccess

When set to True, the default sharing link will be a "People with Existing Access" link (which does not modify permissions) for SharePoint sites. When set to False (the default), the default sharing link type is controlled by the CoreDefaultShareLinkScope parameter.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-SelfServiceSiteCreationDisabled

When set to True, users cannot create sites from SharePoint, OneDrive, the PnP PowerShell cmdlet, and the REST API. When set to False (the default), users can create sites from SharePoint, OneDrive, the PnP PowerShell cmdlet, and the REST API.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-SyncAadB2BManagementPolicy

This feature allows SharePoint Online to synchronize several Entra B2B collaboration settings Guest user access restriction and collaboration restriction, and store them on SharePoint Online tenant store. On sharing, SharePoint checks whether those synchronized settings are blocking sharing before sending invitation requests to Entra B2B invitation manager. The sync might take up to 24 hours to complete if you change those Entra B2B collaboration settings. To make the change effective on SharePoint Online immediately, run 'Set-SPOTenant -SyncAadB2BManagementPolicy $true' and it forces a sync from Microsoft Entra.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-ResyncContentSecurityPolicyConfigurationEntries

When set to True, forces a sync of Content Security Policy sources for SharePoint Framework components in the tenant application catalog. New sources will be added to the configuration, if not already present, based on the cdnBasedPath property under a solution's .config/write-manifests.json if present. The sync may take up to 24 hours to complete. In multi-geo environments, Content Security Policy configuration is unique to each geo.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-EnforceContentSecurityPolicyConfiguration

When set to TrueContent Security Policy violations will be enforced. In multi-geo environments, Content Security Policy configuration is unique to each geo.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-EnforceRequestDigest

When set to True a valid request digest is required on SOAP API calls that perform a state-changing operation.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-DocumentUnderstandingModelScope

This parameter allows administrators to limit which SharePoint sites the document understanding model and unstructurted document processesing premium feature is available on.

The valid values are:

NoSites: Document understanding models are not available on any sites.
AllSites: Document understanding models are available on all sites.
SelectedSites: Document understanding models are available only on sites within the feature's selected sites list.

Note

Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex. Use of this parameter will clear the current document understanding model selected sites list, if one exists.

Type: SyntexFeatureScopeValueParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DocumentUnderstandingModelSelectedSitesList

This parameter allows administrators to pass a list of SharePoint site URLs to modify the document understanding model and unstructurted document processesing premium feature's selected sites list. By default this parameter overwrites the existing list with the user input list. Additionally, the DocumentUnderstandingModelSelectedSitesListOperation parameter can be used to specify a different operation. This parameter can only be called if the document understanding model's scope is set to SelectedSites. The inputted list of site URLs cannot exceed 100 items.

Note

Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex.

Type: String[]Parameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DocumentUnderstandingModelSelectedSitesListOperation

This parameter allows administrators to specify the operation to perform on the document understanding model and unstructurted document processesing premium feature's current selected sites list using the list of site URLs passed to the DocumentUnderstandingModelSelectedSitesList parameter.

The valid values are:

Overwrite: Overwrite the existing selected sites list. This is the default operation.
Append: Append the input list of sites to the existing selected sites list.
Remove: Remove the input list of sites from the existing selected sites list.

Note

Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex. Calling this parameter without DocumentUnderstandingModelSelectedSitesList has no effect.

Type: SelectedSitesListOperationsParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: OverwriteAccept pipeline input: FalseAccept wildcard characters: False

-AIBuilderModelScope

This parameter allows administrators to limit which SharePoint sites the AI builder model and structured and freeform document processing premium feature is available on.

The valid values are:

NoSites: AI builder models are not available on any sites.
AllSites: AI builder models are available on all sites.
SelectedSites: AI builder models are available only on sites within the feature's selected sites list.

Note

Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex. Use of this parameter will clear the current AI builder model selected sites list, if one exists.

Type: SyntexFeatureScopeValueParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-AIBuilderModelSelectedSitesList

This parameter allows administrators to pass a list of SharePoint site URLs to modify the AI builder model and structured and freeform document processing premium feature's selected sites list. By default this parameter overwrites the existing list with the user input list. Additionally, the AIBuilderModelSelectedSitesListOperation parameter can be used to specify a different operation. This parameter can only be called if the AI builder model's scope is set to SelectedSites. The inputted list of site URLs cannot exceed 100 items.

Note

Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex.

Type: String[]Parameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-AIBuilderModelSelectedSitesListOperation

This parameter allows administrators to specify the operation to perform on the AI builder model and structured and freeform document processing premium feature's current selected sites list using the list of site URLs passed to the AIBuilderModelSelectedSitesList parameter.

The valid values are:

Overwrite: Overwrite the existing selected sites list. This is the default operation.
Append: Append the input list of sites to the existing selected sites list.
Remove: Remove the input list of sites from the existing selected sites list.

Note

Type: SelectedSitesListOperationsParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: OverwriteAccept pipeline input: FalseAccept wildcard characters: False

-AIBuilderModelSelectedSitesIncludesContentCenters

This parameter allows administrators to choose whether or not the AI builder model and structured and freeform document processing premium feature is available on all content center sites when the feature's scope is SelectedSites even if they are not explicitly included within the selected sites list. This parameter can only be called if the AI builder model's scope is set to SelectedSites.

Note

Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-PrebuiltModelScope

This parameter allows administrators to limit which SharePoint sites the prebuilt model and prebuilt document processing premium feature is available on.

The valid values are:

NoSites: Prebuilt models are not available on any sites.
AllSites: Prebuilt models are available on all sites.
SelectedSites: Prebuilt models are available only on sites within the feature's selected sites list.

Note

Type: SyntexFeatureScopeValueParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-PrebuiltModelSelectedSitesList

This parameter allows administrators to pass a list of SharePoint site URLs to modify the prebuilt model and prebuilt document processing premium feature's selected sites list. By default this parameter overwrites the existing list with the user input list. Additionally, the PrebuiltModelSelectedSitesListOperation parameter can be used to specify a different operation. This parameter can only be called if the prebuilt model's scope is set to SelectedSites. The inputted list of site URLs cannot exceed 100 items.

Note

Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex.

Type: String[]Parameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-PrebuiltModelSelectedSitesListOperation

This parameter allows administrators to specify the operation to perform on the prebuilt model and prebuilt document processing premium feature's current selected sites list using the list of site URLs passed to the PrebuiltModelSelectedSitesList parameter.

The valid values are:

Overwrite: Overwrite the existing selected sites list. This is the default operation.
Append: Append the input list of sites to the existing selected sites list.
Remove: Remove the input list of sites from the existing selected sites list.

Note

Type: SelectedSitesListOperationsParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: OverwriteAccept pipeline input: FalseAccept wildcard characters: False

-DefaultContentCenterSite

This parameter allows administrators to set the default content center site for their tenant, if one does not already exist, by providing a content center's URL. The content center configured here is the default for all document processing services. Content center owners can view analytics for all applied models in it, and members can build enterprise models. For more information visit Create a content center in Microsoft Syntex.

Note

Use of this parameter requires that the tenant either have the required license or pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex. You cannot change the designated default content center once it has been set.

Type: StringParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DocumentTranslationScope

This parameter allows administrators to limit which SharePoint sites the document translation premium feature is available on.

The valid values are:

NoSites: Document translation is not available on any sites.
AllSites: Document translation is available on all sites.
SelectedSites: Document translation is available only on sites within the feature's selected sites list.

Note

Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex. Use of this parameter will clear the current document translation selected sites list, if one exists.

Type: SyntexFeatureScopeValueParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DocumentTranslationSelectedSitesList

This parameter allows administrators to pass a list of SharePoint site URLs to modify the document translation premium feature's selected sites list. By default this parameter overwrites the existing list with the user input list. Additionally, the DocumentTranslationSelectedSitesListOperation parameter can be used to specify a different operation. This parameter can only be called if document translation's scope is set to SelectedSites. The inputted list of site URLs cannot exceed 100 items.

Note

Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex.

Type: String[]Parameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DocumentTranslationSelectedSitesListOperation

This parameter allows administrators to specify the operation to perform on the document translation premium feature's current selected sites list using the list of site URLs passed to the DocumentTranslationSelectedSitesList parameter.

The valid values are:

Overwrite: Overwrite the existing selected sites list. This is the default operation.
Append: Append the input list of sites to the existing selected sites list.
Remove: Remove the input list of sites from the existing selected sites list.

Note

Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex. Calling this parameter without DocumentTranslationSelectedSitesList has no effect.

Type: SelectedSitesListOperationsParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: OverwriteAccept pipeline input: FalseAccept wildcard characters: False

-AutofillColumnsScope

This parameter allows administrators to limit which SharePoint sites the autofill columns premium feature is available on.

The valid values are:

NoSites: Autofill columns are not available on any sites.
AllSites: Autofill columns are available on all sites.
SelectedSites: Autofill columns are available only on sites within the feature's selected sites list.

Note

Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex. Use of this parameter will clear the current autofill columns selected sites list, if one exists.

Type: SyntexFeatureScopeValueParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-AutofillColumnsSelectedSitesList

This parameter allows administrators to pass a list of SharePoint site URLs to modify the autofill columns premium feature's selected sites list. By default this parameter overwrites the existing list with the user input list. Additionally, the AutofillColumnsSelectedSitesListOperation parameter can be used to specify a different operation. This parameter can only be called if autofill columns' scope is set to SelectedSites. The inputted list of site URLs cannot exceed 100 items.

Note

Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex.

Type: String[]Parameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-AutofillColumnsSelectedSitesListOperation

This parameter allows administrators to specify the operation to perform on the autofill columns premium feature's current selected sites list using the list of site URLs passed to the AutofillColumnsSelectedSitesList parameter.

The valid values are:

Overwrite: Overwrite the existing selected sites list. This is the default operation.
Append: Append the input list of sites to the existing selected sites list.
Remove: Remove the input list of sites from the existing selected sites list.

Note

Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex. Calling this parameter without AutofillColumnsSelectedSitesList has no effect.

Type: SelectedSitesListOperationsParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: OverwriteAccept pipeline input: FalseAccept wildcard characters: False

-OpticalCharacterRecognitionScope

This parameter allows administrators to limit which SharePoint sites the optical character recognition premium feature is available on.

The valid values are:

NoSites: Optical character recognition is not available on any sites.
AllSites: Optical character recognition is available on all sites.
SelectedSites: Optical character recognition is available only on sites within the feature's selected sites list.

Note

Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex. Use of this parameter will clear the current optical character recognition selected sites list, if one exists.

Type: SyntexFeatureScopeValueParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-OpticalCharacterRecognitionSelectedSitesList

This parameter allows administrators to pass a list of SharePoint site URLs to modify the optical character recognition premium feature's selected sites list. By default this parameter overwrites the existing list with the user input list. Additionally, the OpticalCharacterRecognitionSelectedSitesListOperation parameter can be used to specify a different operation. This parameter can only be called if optical character recognition's scope is set to SelectedSites. The inputted list of site URLs cannot exceed 100 items.

Note

Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex.

Type: String[]Parameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-OpticalCharacterRecognitionSelectedSitesListOperation

This parameter allows administrators to specify the operation to perform on the optical character recognition premium feature's current selected sites list using the list of site URLs passed to the OpticalCharacterRecognitionSelectedSitesList parameter.

The valid values are:

Overwrite: Overwrite the existing selected sites list. This is the default operation.
Append: Append the input list of sites to the existing selected sites list.
Remove: Remove the input list of sites from the existing selected sites list.

Note

Use of this parameter requires that the tenant has pay-as-you-go billing set up. For more information, visit Licensing for Microsoft Syntex. Calling this parameter without OpticalCharacterRecognitionSelectedSitesList has no effect.

Type: SelectedSitesListOperationsParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: OverwriteAccept pipeline input: FalseAccept wildcard characters: False

-AllowWebPropertyBagUpdateWhenDenyAddAndCustomizePagesIsEnabled

Enables or disables web property bag updates in all sites in the tenant. When AllowWebPropertyBagUpdateWhenDenyAddAndCustomizePagesIsEnabled is set to $true, the web property bag can be updated even if the Add And Customize Pages right is denied on a site collection. PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-WhoCanShareAnonymousAllowList

Sets the list of security groups who are allowed to share with anonymous (non-authenticated) users as well as authenticated guest users. Each security group is denoted by its GUID object ID in the Entra directory.

Note

This allow list only accepts security groups, and not Microsoft 365 Groups.

To set this list to be a specific security group, you need to enter its GUID as the argument. You can enter multiple GUIDs by using commas to separate them. To view the current list, use ./Get-SPOTenant.md.

Type: Guid[] Parameter Sets: (All) Aliases: Applicable: SharePoint Online Required: FalsePosition: Named Default value: None Accept pipeline input: FalseAccept wildcard characters: False

-WhoCanShareAuthenticatedGuestAllowList

Sets the list of security groups who are only allowed to share with authenticated guest users. Each security group is denoted by its GUID object ID.

Note

This allow list only accepts security groups, and not Microsoft 365 Groups.

Type: Guid[] Parameter Sets: (All) Aliases: Applicable: SharePoint Online Required: FalsePosition: Named Default value: None Accept pipeline input: FalseAccept wildcard characters: False

-ExtendPermissionsToUnprotectedFiles

This property can be used to turn on/off the capability called "Extended SharePoint permissions to unprotected files". To learn more about this feature check here

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-LegacyBrowserAuthProtocolsEnabled

Controls whether legacy browser authentication protocols are enabled.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-EnableDiscoverableByOrganizationForVideos

When set to true, allows users to easily share a video with the entire company, using the security group defined in "AllOrganizationSecurityGroupId". If this security group is undefined, the Discoverable By Company for Videos feature will remain hidden.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-RestrictedAccessControlforSitesErrorHelpLink

Sets a custom learn more link to inform users who were denied access to a SharePoint site due to the restricted site access control policy.

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-SensitivityLabel

Sets the sensitiviy label for a site.

Type: StringParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DisableWorkflow2010

Controls whether Workflow 2010 is enabled.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-Sites

List of sites that certain properties will apply to, such as a conditional access policy.

The valid values are:

Url
SiteId

Type: SpoSitePipeBindParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: UninitializedAccept pipeline input: FalseAccept wildcard characters: False

-AnyoneLinkTrackUsers

Requires recipients to verify their identity with an email address to access content from an Anyone link.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-OneDriveBlockGuestsAsSiteAdmin

Controls whether guests are blocked from using OneDrive.

The valid values are:

On
Off
Unspecified

Type: SharingStateParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-AllowSharingOutsideRestrictedAccessControlGroups

Controls whether sharing SharePoint sites and their content is allowed with users and groups who are not allowed as per the Restricted access control policy.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-Workflows2013Enabled

Controls whether Workflow 2013 is enabled.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-IsCollabMeetingNotesFluidEnabled

Controls whether collaborative meeting notes are enabled in Microsoft Teams.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-IsLoopEnabled

Controls whether Loop components are available in Microsoft Teams.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-DisablePersonalListCreation

Controls whether users can create a personal list.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-DisableVivaConnectionsAnalytics

Controls whether the Viva Connections analytics feature is enabled.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-AppBypassInformationBarriers

Controls whether applications running in app-only mode can access sites protected by information barriers.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-DisableModernListTemplateIds

Specifies list of modern template IDs not enabled in tenant.

Type: Guid[] Parameter Sets: (All) Aliases: Applicable: SharePoint Online Required: FalsePosition: Named Default value: None Accept pipeline input: FalseAccept wildcard characters: False

-EnableModernListTemplateIds

Specifies list of modern template IDs enabled in tenant.

Type: Guid[] Parameter Sets: (All) Aliases: Applicable: SharePoint Online Required: FalsePosition: Named Default value: None Accept pipeline input: FalseAccept wildcard characters: False

-HideSyncButtonOnTeamSite

When set to true, turns off OneDrive sync from all the SharePoint libraries in your organization.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-StreamLaunchConfig

Sets the default destination for the Stream app launcher tile.

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-EnableRestrictedAccessControl

Lets you and other Global or SharePoint Administrators restrict access to sites.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-BlockDownloadFileTypeIds

Specifies the list of file type IDs that BlockDownloadFileTypePolicy applies to.

The valid values are:

TeamsMeetingRecording

Type: SPBlockDownloadFileTypeId[]Parameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-ExcludedBlockDownloadGroupIds

Exempts users from specified groups from the block download policy and they can fully download any content for the site.

Type: Guid[] Parameter Sets: (All) Aliases: Applicable: SharePoint Online Required: FalsePosition: Named Default value: None Accept pipeline input: FalseAccept wildcard characters: False

-RecycleBinRetentionPeriod

Sets the amount of time content is kept in the in recycle bin in Microsoft365.com before it is deleted.

Type: Int32Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-EnableMediaReactions

Controls whether media reactions are enabled.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-AllowSensitivityLabelOnRecords

Controls whether sensitivity labels can be applied to records.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-ContentSecurityPolicyEnforcement

Controls whether content security policy is enabled.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-DisableSpacesActivation

Controls SharePoint spaces activation.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: FalseAccept pipeline input: FalseAccept wildcard characters: False

-AllowSelectSecurityGroupsInSPSitesList

Allows members of specific security groups to access SharePoint content.

Type: String[]Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DenySelectSecurityGroupsInSPSitesList

Restricts members of specific security groups from accessing SharePoint content.

Type: String[]Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-AllowSelectSGsInODBListInTenant

Allows members of specific security groups to access OneDrive content.

Type: String[]Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-DenySelectSGsInODBListInTenant

Restricts members of specific security groups from accessing OneDrive content.

Type: String[]Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-ExemptNativeUsersFromTenantLevelRestricedAccessControl

Gets or sets the value of a setting which determines whether Native Identity users should be exempted from restricted access control policy at tenant level.

PARAMVALUE: True | False

Type: BooleanParameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

-AppAccessInformationBarriersAllowList

Gets or sets the list of third-party application IDs (GUIDs) that are allowed to access information barriers protected sites and OneDrive accounts in the tenant. Note: The feature associated with this cmdlet will be rolling out soon.

Type: String[]Parameter Sets: (All)Aliases: Applicable: SharePoint OnlineRequired: FalsePosition: NamedDefault value: NoneAccept pipeline input: FalseAccept wildcard characters: False

Files

Set-SPOTenant.md

Latest commit

History

Set-SPOTenant.md

File metadata and controls

Set-SPOTenant

SYNOPSIS

SYNTAX

DESCRIPTION

EXAMPLES

EXAMPLE 1

EXAMPLE 2

EXAMPLE 3

EXAMPLE 4

EXAMPLE 5

EXAMPLE 6

EXAMPLE 7

EXAMPLE 8

EXAMPLE 9

EXAMPLE 10

EXAMPLE 11

EXAMPLE 12

EXAMPLE 13

EXAMPLE 14

EXAMPLE 15

EXAMPLE 16

EXAMPLE 17

EXAMPLE 18

EXAMPLE 19

EXAMPLE 20

EXAMPLE 21

PARAMETERS

-AllOrganizationSecurityGroupId

-ApplyAppEnforcedRestrictionsToAdHocRecipients

-BccExternalSharingInvitations

-BccExternalSharingInvitationsList

-BlockDownloadLinksFileType

-BusinessConnectivityServiceDisabled

-DelegateRestrictedAccessControlManagement

-DelegateRestrictedContentDiscoverabilityManagement

-DisplayStartASiteOption

-EnableAIPIntegration

-EnableMinimumVersionRequirement

-EnablePromotedFileHandlers

-MarkNewFilesSensitiveByDefault

-ExternalServicesEnabled

-MaxCompatibilityLevel

-MinCompatibilityLevel

-NoAccessRedirectUrl

-OfficeClientADALDisabled

-ProvisionSharedWithEveryoneFolder

-RequireAcceptingAccountMatchInvitedAccount

-SearchResolveExactEmailOrUPN

-SharingCapability

-ShowAllUsersClaim

-ShowEveryoneClaim

-ShowEveryoneExceptExternalUsersClaim

-AllowEveryoneExceptExternalUsersClaimInPrivateSite

-SignInAccelerationDomain

-StartASiteFormUrl

-UsePersistentCookiesForExplorerView

-CommentsOnSitePagesDisabled

-CommentsOnFilesDisabled

-CommentsOnListItemsDisabled

-SocialBarOnSitePagesDisabled

-DefaultLinkPermission

-DefaultSharingLinkType

-DisabledWebPartIds

-DisabledAdaptiveCardExtensionIds

-DisallowInfectedFileDownload

-DisableSharePointStoreAccess

-DisableCustomAppAuthentication

-IsSharePointAddInsDisabled

-IsSharePointAddInsBlocked

-SiteOwnerManageLegacyServicePrincipalEnabled

-EnableGuestSignInAcceleration

-FileAnonymousLinkType

-FilePickerExternalImageSearchEnabled

-FolderAnonymousLinkType