diff --git a/docs/docs/resources/exchange/EXOInboundConnector.md b/docs/docs/resources/exchange/EXOInboundConnector.md index e78bbd243a..cd9a5b7152 100644 --- a/docs/docs/resources/exchange/EXOInboundConnector.md +++ b/docs/docs/resources/exchange/EXOInboundConnector.md @@ -6,9 +6,9 @@ | --- | --- | --- | --- | --- | | **Identity** | Key | String | The Identity parameter specifies the outbound connector that you want to modify. | | | **AssociatedAcceptedDomains** | Write | StringArray[] | The AssociatedAcceptedDomains parameter specifies the accepted domains that the connector applies to, thereby limiting its scope. For example, you can apply the connector to a specific accepted domain in your organization, such as contoso.com. | | -| **CloudServicesMailEnabled** | Write | Boolean | The CloudServicesMailEnabled parameter specifies whether the connector is used for hybrid mail flow between an on-premises Exchange environment and Microsoft Office 365. Specifically, this parameter controls how certain internal X-MS-Exchange-Organization-* message headers are handled in messages that are sent between accepted domains in the on-premises and cloud organizations. These headers are collectively known as cross-premises headers. DO NOT USE MANUALLY! Valid values are: $true | $false | | +| **CloudServicesMailEnabled** | Write | Boolean | The CloudServicesMailEnabled parameter specifies whether the connector is used for hybrid mail flow between an on-premises Exchange environment and Microsoft Office 365. Specifically, this parameter controls how certain internal X-MS-Exchange-Organization-* message headers are handled in messages that are sent between accepted domains in the on-premises and cloud organizations. These headers are collectively known as cross-premises headers. DO NOT USE MANUALLY! | | | **Comment** | Write | String | The Comment parameter specifies an optional comment. | | -| **ConnectorSource** | Write | String | The ConnectorSource parameter specifies how the connector is created. DO NOT CHANGE THIS! values are Default (the default) | Migrated | HybridWizard | `Default`, `Migrated`, `HybridWizard` | +| **ConnectorSource** | Write | String | The ConnectorSource parameter specifies how the connector is created. DO NOT CHANGE THIS! | `Default`, `Migrated`, `HybridWizard` | | **ConnectorType** | Write | String | The ConnectorType parameter specifies a category for the domains that are serviced by the connector. Valid values are Partner and OnPremises | `Partner`, `OnPremises` | | **EFSkipIPs** | Write | StringArray[] | The EFSkipIPs parameter specifies the source IP addresses to skip in Enhanced Filtering for Connectors when the EFSkipLastIP parameter value is $false. | | | **EFSkipLastIP** | Write | Boolean | The EFSkipLastIP parameter specifies the behavior of Enhanced Filtering for Connectors. | | diff --git a/docs/docs/resources/exchange/EXOMailTips.md b/docs/docs/resources/exchange/EXOMailTips.md index bca289784c..c567d10c8e 100644 --- a/docs/docs/resources/exchange/EXOMailTips.md +++ b/docs/docs/resources/exchange/EXOMailTips.md @@ -4,13 +4,13 @@ | Parameter | Attribute | DataType | Description | Allowed Values | | --- | --- | --- | --- | --- | -| **Organization** | Key | String | | | +| **Organization** | Key | String | Specify the name of your organization. | | | **MailTipsAllTipsEnabled** | Write | Boolean | Specifies whether MailTips are enabled. | | | **MailTipsGroupMetricsEnabled** | Write | Boolean | Specifies whether MailTips that rely on group metrics data are enabled. | | | **MailTipsLargeAudienceThreshold** | Write | UInt32 | Specifies what a large audience is. | | | **MailTipsMailboxSourcedTipsEnabled** | Write | Boolean | Specifies whether MailTips that rely on mailbox data (out-of-office or full mailbox) are enabled. | | | **MailTipsExternalRecipientsTipsEnabled** | Write | Boolean | Specifies whether MailTips for external recipients are enabled. | | -| **Ensure** | Write | String | | `Present`, `Absent` | +| **Ensure** | Write | String | Specifies if this MailTip should exist. | `Present`, `Absent` | | **Credential** | Write | PSCredential | Credentials of the Exchange Global Admin | | | **ApplicationId** | Write | String | Id of the Azure Active Directory application to authenticate with. | | | **TenantId** | Write | String | Id of the Azure Active Directory tenant used for authentication. | | diff --git a/docs/docs/resources/exchange/EXOOutboundConnector.md b/docs/docs/resources/exchange/EXOOutboundConnector.md index f4e1ef0956..3848275f5d 100644 --- a/docs/docs/resources/exchange/EXOOutboundConnector.md +++ b/docs/docs/resources/exchange/EXOOutboundConnector.md @@ -8,18 +8,18 @@ | **Enabled** | Write | Boolean | Specifies whether connector is enabled. | | | **UseMXRecord** | Write | Boolean | Specifies whether connector should use MXRecords for target resolution. | | | **Comment** | Write | String | The Comment parameter specifies an optional comment. | | -| **ConnectorSource** | Write | String | The ConnectorSource parameter specifies how the connector is created. DO NOT CHANGE THIS! values are Default (the default) | Migrated | HybridWizard | `Default`, `Migrated`, `HybridWizard` | -| **ConnectorType** | Write | String | The ConnectorType parameter specifies a category for the domains that are serviced by the connector. Valid values are Partner and OnPremises | `Partner`, `OnPremises` | +| **ConnectorSource** | Write | String | The ConnectorSource parameter specifies how the connector is created. DO NOT CHANGE THIS! | `Default`, `Migrated`, `HybridWizard` | +| **ConnectorType** | Write | String | The ConnectorType parameter specifies a category for the domains that are serviced by the connector. | `Partner`, `OnPremises` | | **RecipientDomains** | Write | StringArray[] | The RecipientDomains parameter specifies the domain that the Outbound connector routes mail to. You can specify multiple domains separated by commas. | | | **SmartHosts** | Write | StringArray[] | The SmartHosts parameter specifies the smart hosts the Outbound connector uses to route mail. This parameter is required if you set the UseMxRecord parameter to $false and must be specified on the same command line. | | | **TlsDomain** | Write | String | The TlsDomain parameter specifies the domain name that the Outbound connector uses to verify the FQDN of the target certificate when establishing a TLS secured connection. This parameter is only used if the TlsSettings parameter is set to DomainValidation. Valid input for the TlsDomain parameter is an SMTP domain. You can use a wildcard character to specify all subdomains of a specified domain, as shown in the following example: *.contoso.com. However, you can't embed a wildcard character, as shown in the following example: domain.*.contoso.com | | -| **TlsSettings** | Write | String | The TlsSettings parameter specifies the TLS authentication level that's used for outbound TLS connections established by this Outbound connector. Valid values are:EncryptionOnly | CertificateValidation | DomainValidation | `EncryptionOnly`, `CertificateValidation`, `DomainValidation` | -| **IsTransportRuleScoped** | Write | Boolean | The IsTransportRuleScoped parameter specifies whether the Outbound connector is associated with a transport rule (also known as a mail flow rule). Valid values are: $true | $false | | -| **RouteAllMessagesViaOnPremises** | Write | Boolean | The RouteAllMessagesViaOnPremises parameter specifies that all messages serviced by this connector are first routed through the on-premises messaging system (Centralized mailrouting). Valid values are: $true | $false | | -| **CloudServicesMailEnabled** | Write | Boolean | The CloudServicesMailEnabled parameter specifies whether the connector is used for hybrid mail flow between an on-premises Exchange environment and Microsoft Office 365. Specifically, this parameter controls how certain internal X-MS-Exchange-Organization-* message headers are handled in messages that are sent between accepted domains in the on-premises and cloud organizations. These headers are collectively known as cross-premises headers. DO NOT USE MANUALLY! Valid values are: $true | $false | | -| **AllAcceptedDomains** | Write | Boolean | The AllAcceptedDomains parameter specifies whether the Outbound connector is used in hybrid organizations where message recipients are in accepted domains of the cloud-based organization. Valid values are: $true | $false (default) | | +| **TlsSettings** | Write | String | The TlsSettings parameter specifies the TLS authentication level that's used for outbound TLS connections established by this Outbound connector. | `EncryptionOnly`, `CertificateValidation`, `DomainValidation` | +| **IsTransportRuleScoped** | Write | Boolean | The IsTransportRuleScoped parameter specifies whether the Outbound connector is associated with a transport rule (also known as a mail flow rule). | | +| **RouteAllMessagesViaOnPremises** | Write | Boolean | The RouteAllMessagesViaOnPremises parameter specifies that all messages serviced by this connector are first routed through the on-premises messaging system (Centralized mailrouting). | | +| **CloudServicesMailEnabled** | Write | Boolean | The CloudServicesMailEnabled parameter specifies whether the connector is used for hybrid mail flow between an on-premises Exchange environment and Microsoft Office 365. Specifically, this parameter controls how certain internal X-MS-Exchange-Organization-* message headers are handled in messages that are sent between accepted domains in the on-premises and cloud organizations. These headers are collectively known as cross-premises headers. DO NOT USE MANUALLY! | | +| **AllAcceptedDomains** | Write | Boolean | The AllAcceptedDomains parameter specifies whether the Outbound connector is used in hybrid organizations where message recipients are in accepted domains of the cloud-based organization. | | | **SenderRewritingEnabled** | Write | Boolean | The SenderRewritingEnabled parameter specifies that all messages that normally qualify for SRS rewriting are rewritten for routing through the on-premises email system. | | -| **TestMode** | Write | Boolean | The TestMode parameter specifies whether you want to enabled or disable test mode for the Outbound connector. Valid values are: $true | $false (default) | | +| **TestMode** | Write | Boolean | The TestMode parameter specifies whether you want to enabled or disable test mode for the Outbound connector. | | | **ValidationRecipients** | Write | StringArray[] | The ValidationRecipients parameter specifies the email addresses of the validation recipients for the Outbound connector. You can specify multiple email addresses separated by commas. | | | **Ensure** | Write | String | Specifies if this Outbound connector should exist. | `Present`, `Absent` | | **Credential** | Write | PSCredential | Credentials of the Exchange Global Admin | | diff --git a/docs/docs/resources/intune/IntuneDeviceConfigurationPolicyMacOS.md b/docs/docs/resources/intune/IntuneDeviceConfigurationPolicyMacOS.md index bd1438f974..1992587186 100644 --- a/docs/docs/resources/intune/IntuneDeviceConfigurationPolicyMacOS.md +++ b/docs/docs/resources/intune/IntuneDeviceConfigurationPolicyMacOS.md @@ -4,11 +4,11 @@ | Parameter | Attribute | DataType | Description | Allowed Values | | --- | --- | --- | --- | --- | -| **Id** | Write | String | | | -| **DisplayName** | Key | String | | | -| **Description** | Write | String | | | -| **AddingGameCenterFriendsBlocked** | Write | Boolean | | | -| **AirDropBlocked** | Write | Boolean | | | +| **Id** | Write | String | Id of the Intune policy. | | +| **DisplayName** | Key | String | Display name of the Intune policy. | | +| **Description** | Write | String | Description of the Intune policy. | | +| **AddingGameCenterFriendsBlocked** | Write | Boolean | Configures users from adding friends to Game Center. Available for devices running macOS versions 10.13 and later. | | +| **AirDropBlocked** | Write | Boolean | Configures whether or not to allow AirDrop. | | | **AppleWatchBlockAutoUnlock** | Write | Boolean | Blocks users from unlocking their Mac with Apple Watch. | | | **CameraBlocked** | Write | Boolean | Blocks users from taking photographs and videos. | | | **ClassroomAppBlockRemoteScreenObservation** | Write | Boolean | Blocks AirPlay, screen sharing to other devices, and a Classroom app feature used by teachers to view their students' screens. This setting isn't available if you've blocked screenshots. | | @@ -17,12 +17,12 @@ | **ClassroomForceRequestPermissionToLeaveClasses** | Write | Boolean | Students enrolled in an unmanaged Classroom course must get teacher consent to leave the course. | | | **ClassroomForceUnpromptedAppAndDeviceLock** | Write | Boolean | Teachers can lock a student's device or app without the student's approval. | | | **CompliantAppListType** | Write | String | Device compliance can be viewed in the Restricted Apps Compliance report. | `none`, `appsInListCompliant`, `appsNotInListCompliant` | -| **CompliantAppsList** | Write | MSFT_MicrosoftGraphapplistitemMacOS[] | | | -| **ContentCachingBlocked** | Write | Boolean | | | +| **CompliantAppsList** | Write | MSFT_MicrosoftGraphapplistitemMacOS[] | List of apps in the compliance (either allow list or block list, controlled by CompliantAppListType). | | +| **ContentCachingBlocked** | Write | Boolean | Configures whether or not to allow content caching. | | | **DefinitionLookupBlocked** | Write | Boolean | Block look up, a feature that looks up the definition of a highlighted word. | | | **EmailInDomainSuffixes** | Write | StringArray[] | Emails that the user sends or receives which don't match the domains you specify here will be marked as untrusted. | | -| **EraseContentAndSettingsBlocked** | Write | Boolean | | | -| **GameCenterBlocked** | Write | Boolean | | | +| **EraseContentAndSettingsBlocked** | Write | Boolean | Configures the reset option on supervised devices. Available for devices running macOS versions 12.0 and later. | | +| **GameCenterBlocked** | Write | Boolean | Configured if the Game Center icon is removed from the Home screen. Available for devices running macOS versions 10.13 and later. | | | **ICloudBlockActivityContinuation** | Write | Boolean | Handoff lets users start work on one MacOS device, and continue it on another MacOS or iOS device. Available for macOS 10.15 and later. | | | **ICloudBlockAddressBook** | Write | Boolean | Blocks iCloud from syncing contacts. | | | **ICloudBlockBookmarks** | Write | Boolean | Blocks iCloud from syncing bookmarks. | | @@ -32,40 +32,40 @@ | **ICloudBlockNotes** | Write | Boolean | Blocks iCloud from syncing notes. | | | **ICloudBlockPhotoLibrary** | Write | Boolean | Any photos not fully downloaded from iCloud Photo Library to device will be removed from local storage. | | | **ICloudBlockReminders** | Write | Boolean | Blocks iCloud from syncing reminders. | | -| **ICloudDesktopAndDocumentsBlocked** | Write | Boolean | | | -| **ICloudPrivateRelayBlocked** | Write | Boolean | | | +| **ICloudDesktopAndDocumentsBlocked** | Write | Boolean | Configures if the synchronization of cloud desktop and documents is blocked. Available for devices running macOS 10.12.4 and later. | | +| **ICloudPrivateRelayBlocked** | Write | Boolean | Configures if iCloud private relay is blocked or not. Available for devices running macOS 12 and later. | | | **ITunesBlockFileSharing** | Write | Boolean | Blocks files from being transferred using iTunes. | | -| **ITunesBlockMusicService** | Write | Boolean | | | +| **ITunesBlockMusicService** | Write | Boolean | Configures whether or not to block files from being transferred using iTunes. | | | **KeyboardBlockDictation** | Write | Boolean | Block dictation, which is a feature that converts the user's voice to text. | | | **KeychainBlockCloudSync** | Write | Boolean | Disables syncing credentials stored in the Keychain to iCloud | | -| **MultiplayerGamingBlocked** | Write | Boolean | | | -| **PasswordBlockAirDropSharing** | Write | Boolean | | | -| **PasswordBlockAutoFill** | Write | Boolean | | | +| **MultiplayerGamingBlocked** | Write | Boolean | Configures whether multiplayer gaming when using Game Center is blocked. Available for devices running macOS versions 10.13 and later. | | +| **PasswordBlockAirDropSharing** | Write | Boolean | Configures whether or not to block sharing passwords with the AirDrop passwords feature. | | +| **PasswordBlockAutoFill** | Write | Boolean | Configures whether or not to block the AutoFill Passwords feature. | | | **PasswordBlockFingerprintUnlock** | Write | Boolean | Requires user to set a non-biometric passcode or password to unlock the device. | | | **PasswordBlockModification** | Write | Boolean | Blocks user from changing the set passcode. | | -| **PasswordBlockProximityRequests** | Write | Boolean | | | +| **PasswordBlockProximityRequests** | Write | Boolean | Configures whether or not to block requesting passwords from nearby devices. | | | **PasswordBlockSimple** | Write | Boolean | Block simple password sequences, such as 1234 or 1111. | | | **PasswordExpirationDays** | Write | UInt32 | Number of days until device password must be changed. (1-65535) | | -| **PasswordMaximumAttemptCount** | Write | UInt32 | | | +| **PasswordMaximumAttemptCount** | Write | UInt32 | Configures the number of allowed failed attempts to enter the passcode at the device's lock screen. Valid values 2 to 11 | | | **PasswordMinimumCharacterSetCount** | Write | UInt32 | Minimum number (0-4) of non-alphanumeric characters, such as #, %, !, etc., required in the password. The default value is 0. | | | **PasswordMinimumLength** | Write | UInt32 | Minimum number of digits or characters in password (4-16). | | | **PasswordMinutesOfInactivityBeforeLock** | Write | UInt32 | Set to 0 to require a password immediately. There is no maximum number of minutes, and this number overrides the number currently set on the device. | | | **PasswordMinutesOfInactivityBeforeScreenTimeout** | Write | UInt32 | Set to 0 to use the device's minimum possible value. This number (0-60 minutes) overrides the number currently set on the device. | | -| **PasswordMinutesUntilFailedLoginReset** | Write | UInt32 | | | +| **PasswordMinutesUntilFailedLoginReset** | Write | UInt32 | Configures the number of minutes before the login is reset after the maximum number of unsuccessful login attempts is reached. | | | **PasswordPreviousPasswordBlockCount** | Write | UInt32 | Number of new passwords that must be used until an old one can be reused. (1-24) | | -| **PasswordRequired** | Write | Boolean | Specify the type of password required. | | +| **PasswordRequired** | Write | Boolean | Specify the type of password required. | | | **PasswordRequiredType** | Write | String | Specify the type of password required. | `deviceDefault`, `alphanumeric`, `numeric` | | **PrivacyAccessControls** | Write | MSFT_MicrosoftGraphmacosprivacyaccesscontrolitem[] | Configure an app's access to specific data, folders, and apps on a device. These settings apply to devices running macOS Mojave 10.14 and later. | | | **SafariBlockAutofill** | Write | Boolean | Blocks Safari from remembering what users enter in web forms. | | -| **ScreenCaptureBlocked** | Write | Boolean | | | -| **SoftwareUpdateMajorOSDeferredInstallDelayInDays** | Write | UInt32 | | | -| **SoftwareUpdateMinorOSDeferredInstallDelayInDays** | Write | UInt32 | | | -| **SoftwareUpdateNonOSDeferredInstallDelayInDays** | Write | UInt32 | | | +| **ScreenCaptureBlocked** | Write | Boolean | Configures whether or not to block the user from taking Screenshots. | | +| **SoftwareUpdateMajorOSDeferredInstallDelayInDays** | Write | UInt32 | Specify the number of days (1-90) to delay visibility of major OS software updates. Available for devices running macOS versions 11.3 and later. Valid values 0 to 90 | | +| **SoftwareUpdateMinorOSDeferredInstallDelayInDays** | Write | UInt32 | Specify the number of days (1-90) to delay visibility of minor OS software updates. Available for devices running macOS versions 11.3 and later. Valid values 0 to 90 | | +| **SoftwareUpdateNonOSDeferredInstallDelayInDays** | Write | UInt32 | Specify the number of days (1-90) to delay visibility of non-OS software updates. Available for devices running macOS versions 11.3 and later. Valid values 0 to 90 | | | **SoftwareUpdatesEnforcedDelayInDays** | Write | UInt32 | Delay the user's software update for this many days. The maximum is 90 days. (1-90) | | | **SpotlightBlockInternetResults** | Write | Boolean | Blocks Spotlight from returning any results from an Internet search | | -| **TouchIdTimeoutInHours** | Write | UInt32 | | | -| **UpdateDelayPolicy** | Write | StringArray[] | | `none`, `delayOSUpdateVisibility`, `delayAppUpdateVisibility`, `unknownFutureValue`, `delayMajorOsUpdateVisibility` | -| **WallpaperModificationBlocked** | Write | Boolean | | | +| **TouchIdTimeoutInHours** | Write | UInt32 | Configures the maximum hours after which the user must enter their password to unlock the device instead of using Touch ID. Available for devices running macOS 12 and later. Valid values 0 to 2147483647 | | +| **UpdateDelayPolicy** | Write | StringArray[] | Configures whether to delay OS and/or app updates for macOS. | `none`, `delayOSUpdateVisibility`, `delayAppUpdateVisibility`, `unknownFutureValue`, `delayMajorOsUpdateVisibility` | +| **WallpaperModificationBlocked** | Write | Boolean | Configures whether the wallpaper can be changed. Available for devices running macOS versions 10.13 and later. | | | **Assignments** | Write | MSFT_DeviceManagementConfigurationPolicyAssignments[] | Represents the assignment to the Intune policy. | | | **Ensure** | Write | String | Present ensures the policy exists, absent ensures it is removed. | `Present`, `Absent` | | **Credential** | Write | PSCredential | Credentials of the Intune Admin | | @@ -94,11 +94,11 @@ | Parameter | Attribute | DataType | Description | Allowed Values | | --- | --- | --- | --- | --- | -| **odataType** | Write | String | | `#microsoft.graph.appleAppListItem` | -| **appId** | Write | String | | | -| **appStoreUrl** | Write | String | | | -| **name** | Write | String | | | -| **publisher** | Write | String | | | +| **odataType** | Write | String | Specify the odataType | `#microsoft.graph.appleAppListItem` | +| **appId** | Write | String | The application or bundle identifier of the application | | +| **appStoreUrl** | Write | String | The Store URL of the application | | +| **name** | Write | String | The application name | | +| **publisher** | Write | String | The publisher of the application | | ### MSFT_MicrosoftGraphmacosprivacyaccesscontrolitem @@ -106,32 +106,32 @@ | Parameter | Attribute | DataType | Description | Allowed Values | | --- | --- | --- | --- | --- | -| **accessibility** | Write | String | | `notConfigured`, `enabled`, `disabled` | -| **addressBook** | Write | String | Blocks iCloud from syncing contacts. | `notConfigured`, `enabled`, `disabled` | -| **appleEventsAllowedReceivers** | Write | MSFT_MicrosoftGraphmacosappleeventreceiver[] | | | -| **blockCamera** | Write | Boolean | | | -| **blockListenEvent** | Write | Boolean | | | -| **blockMicrophone** | Write | Boolean | | | -| **blockScreenCapture** | Write | Boolean | | | -| **calendar** | Write | String | Blocks iCloud from syncing calendars. | `notConfigured`, `enabled`, `disabled` | -| **codeRequirement** | Write | String | | | -| **displayName** | Write | String | | | -| **fileProviderPresence** | Write | String | | `notConfigured`, `enabled`, `disabled` | -| **identifier** | Write | String | | | -| **identifierType** | Write | String | | `bundleID`, `path` | -| **mediaLibrary** | Write | String | | `notConfigured`, `enabled`, `disabled` | -| **photos** | Write | String | | `notConfigured`, `enabled`, `disabled` | -| **postEvent** | Write | String | | `notConfigured`, `enabled`, `disabled` | -| **reminders** | Write | String | Blocks iCloud from syncing reminders. | `notConfigured`, `enabled`, `disabled` | -| **speechRecognition** | Write | String | | `notConfigured`, `enabled`, `disabled` | -| **staticCodeValidation** | Write | Boolean | | | -| **systemPolicyAllFiles** | Write | String | | `notConfigured`, `enabled`, `disabled` | -| **systemPolicyDesktopFolder** | Write | String | | `notConfigured`, `enabled`, `disabled` | -| **systemPolicyDocumentsFolder** | Write | String | | `notConfigured`, `enabled`, `disabled` | -| **systemPolicyDownloadsFolder** | Write | String | | `notConfigured`, `enabled`, `disabled` | -| **systemPolicyNetworkVolumes** | Write | String | | `notConfigured`, `enabled`, `disabled` | -| **systemPolicyRemovableVolumes** | Write | String | | `notConfigured`, `enabled`, `disabled` | -| **systemPolicySystemAdminFiles** | Write | String | | `notConfigured`, `enabled`, `disabled` | +| **accessibility** | Write | String | Allow the app or process to control the Mac via the Accessibility subsystem. | `notConfigured`, `enabled`, `disabled` | +| **addressBook** | Write | String | Allow or block access to contact information managed by Contacts. | `notConfigured`, `enabled`, `disabled` | +| **appleEventsAllowedReceivers** | Write | MSFT_MicrosoftGraphmacosappleeventreceiver[] | Allow or deny the app or process to send a restricted Apple event to another app or process. You will need to know the identifier, identifier type, and code requirement of the receiving app or process. | | +| **blockCamera** | Write | Boolean | Block access to camera app. | | +| **blockListenEvent** | Write | Boolean | Block the app or process from listening to events from input devices such as mouse, keyboard, and trackpad.Requires macOS 10.15 or later. | | +| **blockMicrophone** | Write | Boolean | Block access to microphone. | | +| **blockScreenCapture** | Write | Boolean | Block app from capturing contents of system display. Requires macOS 10.15 or later. | | +| **calendar** | Write | String | Allow or block access to event information managed by Calendar. | `notConfigured`, `enabled`, `disabled` | +| **codeRequirement** | Write | String | Enter the code requirement, which can be obtained with the command 'codesign -display -r -' in the Terminal app. Include everything after '=>'. | | +| **displayName** | Write | String | The display name of the app, process, or executable. | | +| **fileProviderPresence** | Write | String | Allow the app or process to access files managed by another app's file provider extension. Requires macOS 10.15 or later. | `notConfigured`, `enabled`, `disabled` | +| **identifier** | Write | String | The bundle ID or path of the app, process, or executable. | | +| **identifierType** | Write | String | A bundle ID is used to identify an app. A path is used to identify a process or executable. | `bundleID`, `path` | +| **mediaLibrary** | Write | String | Allow or block access to music and the media library. | `notConfigured`, `enabled`, `disabled` | +| **photos** | Write | String | Allow or block access to images managed by Photos. | `notConfigured`, `enabled`, `disabled` | +| **postEvent** | Write | String | Control access to CoreGraphics APIs, which are used to send CGEvents to the system event stream. | `notConfigured`, `enabled`, `disabled` | +| **reminders** | Write | String | Allow or block access to information managed by Reminders. | `notConfigured`, `enabled`, `disabled` | +| **speechRecognition** | Write | String | Allow or block access to system speech recognition facility. | `notConfigured`, `enabled`, `disabled` | +| **staticCodeValidation** | Write | Boolean | Statically validates the code requirement. Use this setting if the process invalidates its dynamic code signature. | | +| **systemPolicyAllFiles** | Write | String | Control access to all protected files on a device. Files might be in locations such as emails, messages, apps, and administrative settings. Apply this setting with caution. | `notConfigured`, `enabled`, `disabled` | +| **systemPolicyDesktopFolder** | Write | String | Allow or block access to Desktop folder. | `notConfigured`, `enabled`, `disabled` | +| **systemPolicyDocumentsFolder** | Write | String | Allow or block access to Documents folder. | `notConfigured`, `enabled`, `disabled` | +| **systemPolicyDownloadsFolder** | Write | String | Allow or block access to Downloads folder. | `notConfigured`, `enabled`, `disabled` | +| **systemPolicyNetworkVolumes** | Write | String | Allow or block access to network volumes. Requires macOS 10.15 or later. | `notConfigured`, `enabled`, `disabled` | +| **systemPolicyRemovableVolumes** | Write | String | Control access to removable volumes on the device, such as an external hard drive. Requires macOS 10.15 or later. | `notConfigured`, `enabled`, `disabled` | +| **systemPolicySystemAdminFiles** | Write | String | Allow app or process to access files used in system administration. | `notConfigured`, `enabled`, `disabled` | ### MSFT_MicrosoftGraphmacosappleeventreceiver @@ -139,10 +139,10 @@ | Parameter | Attribute | DataType | Description | Allowed Values | | --- | --- | --- | --- | --- | -| **allowed** | Write | Boolean | | | -| **codeRequirement** | Write | String | | | -| **identifier** | Write | String | | | -| **identifierType** | Write | String | | `bundleID`, `path` | +| **allowed** | Write | Boolean | Allow or block this app from receiving Apple events. | | +| **codeRequirement** | Write | String | Code requirement for the app or binary that receives the Apple Event. | | +| **identifier** | Write | String | Bundle ID of the app or file path of the process or executable that receives the Apple Event. | | +| **identifierType** | Write | String | Use bundle ID for an app or path for a process or executable that receives the Apple Event. | `bundleID`, `path` | ## Description diff --git a/docs/docs/resources/office365/O365AdminAuditLogConfig.md b/docs/docs/resources/office365/O365AdminAuditLogConfig.md index 2a92250c59..cac59d71ef 100644 --- a/docs/docs/resources/office365/O365AdminAuditLogConfig.md +++ b/docs/docs/resources/office365/O365AdminAuditLogConfig.md @@ -7,7 +7,7 @@ | **IsSingleInstance** | Key | String | Specifies the resource is a single instance, the value must be 'Yes' | `Yes` | | **Ensure** | Write | String | 'Present' is the only value accepted. | `Present` | | **UnifiedAuditLogIngestionEnabled** | Required | String | Determins if Unified Audit Log Ingestion is enabled | `Enabled`, `Disabled` | -| **Credential** | Write | PSCredential | Credentials of the Exchange Global Admin | | +| **Credential** | Write | PSCredential | Credentials of the Global Admin | | | **ApplicationId** | Write | String | Id of the Azure Active Directory application to authenticate with. | | | **TenantId** | Write | String | Id of the Azure Active Directory tenant used for authentication. | | | **CertificateThumbprint** | Write | String | Thumbprint of the Azure Active Directory application's authentication certificate to use for authentication. | | diff --git a/docs/docs/resources/office365/O365Group.md b/docs/docs/resources/office365/O365Group.md index 0ab25d109d..91915dbb46 100644 --- a/docs/docs/resources/office365/O365Group.md +++ b/docs/docs/resources/office365/O365Group.md @@ -10,7 +10,7 @@ | **Description** | Write | String | The group's description. | | | **Members** | Write | StringArray[] | Members of the group. | | | **Ensure** | Write | String | Present ensures the group exists, absent ensures it is removed. | `Present`, `Absent` | -| **Credential** | Write | PSCredential | Credentials of the Exchange Global Admin | | +| **Credential** | Write | PSCredential | Credentials of the Global Admin | | | **ApplicationId** | Write | String | Id of the Azure Active Directory application to authenticate with. | | | **TenantId** | Write | String | Name of the Azure Active Directory tenant used for authentication. Format contoso.onmicrosoft.com | | | **ApplicationSecret** | Write | PSCredential | Secret of the Azure Active Directory application used for authentication. | | diff --git a/docs/docs/resources/office365/O365OrgCustomizationSetting.md b/docs/docs/resources/office365/O365OrgCustomizationSetting.md index a698e12c58..2db392e80c 100644 --- a/docs/docs/resources/office365/O365OrgCustomizationSetting.md +++ b/docs/docs/resources/office365/O365OrgCustomizationSetting.md @@ -6,7 +6,7 @@ | --- | --- | --- | --- | --- | | **IsSingleInstance** | Key | String | Specifies the resource is a single instance, the value must be 'Yes' | `Yes` | | **Ensure** | Write | String | Since there is only one setting availble, this must be set to 'Present' | `Present` | -| **Credential** | Write | PSCredential | Credentials of the Exchange Global Admin | | +| **Credential** | Write | PSCredential | Credentials of the Global Admin | | | **ApplicationId** | Write | String | Id of the Azure Active Directory application to authenticate with. | | | **TenantId** | Write | String | Id of the Azure Active Directory tenant used for authentication. | | | **CertificateThumbprint** | Write | String | Thumbprint of the Azure Active Directory application's authentication certificate to use for authentication. | | diff --git a/docs/docs/resources/sharepoint/SPOTenantSettings.md b/docs/docs/resources/sharepoint/SPOTenantSettings.md index 1bf16b839b..3673bb83b0 100644 --- a/docs/docs/resources/sharepoint/SPOTenantSettings.md +++ b/docs/docs/resources/sharepoint/SPOTenantSettings.md @@ -15,11 +15,11 @@ | **UserVoiceForFeedbackEnabled** | Write | Boolean | Allow feedback via UserVoice. | | | **PublicCdnEnabled** | Write | Boolean | Configure PublicCDN | | | **PublicCdnAllowedFileTypes** | Write | String | Configure filetypes allowed for PublicCDN | | -| **UseFindPeopleInPeoplePicker** | Write | Boolean | When set to $true, users aren't able to share with security groups or SharePoint groups | | -| **NotificationsInSharePointEnabled** | Write | Boolean | When set to $true, users aren't able to share with security groups or SharePoint groups | | -| **OwnerAnonymousNotification** | Write | Boolean | | | -| **ApplyAppEnforcedRestrictionsToAdHocRecipients** | Write | Boolean | | | -| **FilePickerExternalImageSearchEnabled** | Write | Boolean | | | +| **UseFindPeopleInPeoplePicker** | Write | Boolean | When set to $true, users aren't able to share with security groups or SharePoint groups. | | +| **NotificationsInSharePointEnabled** | Write | Boolean | When set to $true, users aren't able to share with security groups or SharePoint groups. | | +| **OwnerAnonymousNotification** | Write | Boolean | Specifies whether an email notification should be sent to the OneDrive for Business owners when an anonymous links are created or changed. | | +| **ApplyAppEnforcedRestrictionsToAdHocRecipients** | Write | Boolean | When the feature is enabled, all guest users are subject to conditional access policy. By default guest users who are accessing SharePoint Online files with pass code are exempt from the conditional access policy. | | +| **FilePickerExternalImageSearchEnabled** | Write | Boolean | Sets whether webparts that support inserting images, like for example Image or Hero webpart, the Web search (Powered by Bing) should allow choosing external images. | | | **HideDefaultThemes** | Write | Boolean | Defines if the default themes are visible or hidden | | | **HideSyncButtonOnTeamSite** | Write | Boolean | To enable or disable Sync button on Team sites | | | **MarkNewFilesSensitiveByDefault** | Write | String | Allow or block external sharing until at least one Office DLP policy scans the content of the file. | `AllowExternalSharing`, `BlockExternalSharing` | diff --git a/docs/docs/resources/teams/TeamsFeedbackPolicy.md b/docs/docs/resources/teams/TeamsFeedbackPolicy.md index 1dbb8e6b1a..d0c7c3c845 100644 --- a/docs/docs/resources/teams/TeamsFeedbackPolicy.md +++ b/docs/docs/resources/teams/TeamsFeedbackPolicy.md @@ -4,13 +4,13 @@ | Parameter | Attribute | DataType | Description | Allowed Values | | --- | --- | --- | --- | --- | -| **UserInitiatedMode** | Write | String | | | -| **ReceiveSurveysMode** | Write | String | | | -| **AllowScreenshotCollection** | Write | Boolean | | | -| **AllowEmailCollection** | Write | Boolean | | | -| **AllowLogCollection** | Write | Boolean | | | -| **EnableFeatureSuggestions** | Write | Boolean | | | -| **Identity** | Key | String | | | +| **Identity** | Key | String | Specify the name of the Teams Feedback Policy. | | +| **UserInitiatedMode** | Write | String | Specifies if users are allowed to give feedback. | | +| **ReceiveSurveysMode** | Write | String | Specifies if users are allowed to receive the survey. | `Enabled`, `Disabled`, `EnabledUserOverride` | +| **AllowScreenshotCollection** | Write | Boolean | Specifies if Screenshot Collection is enabled or not. | | +| **AllowEmailCollection** | Write | Boolean | Specifies if Email Collection is enabled or not. | | +| **AllowLogCollection** | Write | Boolean | Specifies if Log Collection is enabled or not. | | +| **EnableFeatureSuggestions** | Write | Boolean | Specifies if users are allowed to provide feature suggestions | | | **Ensure** | Write | String | Present ensures the instance exists, absent ensures it is removed. | `Present`, `Absent` | | **Credential** | Write | PSCredential | Credentials of the workload's Admin | | | **ApplicationId** | Write | String | Id of the Azure Active Directory application to authenticate with. | | diff --git a/docs/docs/resources/teams/TeamsMobilityPolicy.md b/docs/docs/resources/teams/TeamsMobilityPolicy.md index dbc8781707..ce0f1cfdbf 100644 --- a/docs/docs/resources/teams/TeamsMobilityPolicy.md +++ b/docs/docs/resources/teams/TeamsMobilityPolicy.md @@ -4,7 +4,7 @@ | Parameter | Attribute | DataType | Description | Allowed Values | | --- | --- | --- | --- | --- | -| **Identity** | Key | String | Specify the name of the policy that you are creating. | | +| **Identity** | Key | String | Specify the name of the Teams Mobility Policy. | | | **Description** | Write | String | Enables administrators to provide explanatory text about the policy. For example, the Description might indicate the users the policy should be assigned to. | | | **IPAudioMobileMode** | Write | String | When set to WifiOnly, prohibits the user from making and receiving calls or joining meetings using VoIP calls on the mobile device while on a cellular data connection. Possible values are: WifiOnly, AllNetworks. | `WifiOnly`, `AllNetworks` | | **IPVideoMobileMode** | Write | String | When set to WifiOnly, prohibits the user from making and receiving video calls or enabling video in meetings using VoIP calls on the mobile device while on a cellular data connection. Possible values are: WifiOnly, AllNetworks. | `WifiOnly`, `AllNetworks` | diff --git a/docs/docs/resources/teams/TeamsNetworkRoamingPolicy.md b/docs/docs/resources/teams/TeamsNetworkRoamingPolicy.md index fda32b6d50..7bd09020d3 100644 --- a/docs/docs/resources/teams/TeamsNetworkRoamingPolicy.md +++ b/docs/docs/resources/teams/TeamsNetworkRoamingPolicy.md @@ -4,7 +4,7 @@ | Parameter | Attribute | DataType | Description | Allowed Values | | --- | --- | --- | --- | --- | -| **Identity** | Key | String | | | +| **Identity** | Key | String | Specify the name of the Teams Network Roaming Policy. | | | **AllowIPVideo** | Write | Boolean | Determines whether video is enabled in a user's meetings or calls. Set this to TRUE to allow the user to share their video. Set this to FALSE to prohibit the user from sharing their video. | | | **Description** | Write | String | Description of the new policy to be created. | | | **MediaBitRateKb** | Write | UInt64 | Determines the media bit rate for audio/video/app sharing transmissions in meetings. | |