Add scopes - batch 1 for Entra PowerShell cmdlets (#895)

Author: SteveMutungi254

module/docs/entra-powershell-v1.0/Microsoft.Graph.Entra/Add-EntraEnvironment.md

@@ -23,7 +23,6 @@ Adds Microsoft Entra environment to the settings file.
 
 ## Syntax
 
-
 ### Add Entra Environment Name
 
 ```powershell
@@ -46,13 +45,22 @@ Adds Microsoft Entra environment to the settings file.
 ### Example 1: Add a user defined environment
 
 ```powershell
-PS C:\>Add-EntraEnvironment -Name "Canary" -GraphEndpoint "https://canary.graph.microsoft.com" -AzureADEndpoint "https://login.microsoftonline.com"
+$params = @{
+    Name = 'Canary'
+    GraphEndpoint = 'https://canary.graph.microsoft.com'
+    AzureADEndpoint = 'https://login.microsoftonline.com'
+}
+
+Add-EntraEnvironment @params
+```
+
+```Output
 Name     AzureADEndpoint                      GraphEndpoint                 Type
 ----     ---------------                      -------------                 ----
 Canary    https://login.microsoftonline.com   https://microsoftgraph.com User-defined                                                                                    {}
 ```
 
-Adds a User defined Entra environment to the settings file.
+Adds a user-defined Entra environment to the settings file.
 
 ## Parameters
 
@@ -97,7 +105,7 @@ Accept wildcard characters: False
 
 ### CommonParameters
 
-This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see [about_CommonParameters](https://go.microsoft.com/fwlink/?LinkID=113216).
+This cmdlet supports the common parameters: `-Debug`, `-ErrorAction`, `-ErrorVariable`, `-InformationAction`, `-InformationVariable`, `-OutVariable`, `-OutBuffer`, `-PipelineVariable`, `-Verbose`, `-WarningAction`, and `-WarningVariable`. For more information, see [about_CommonParameters](https://go.microsoft.com/fwlink/?LinkID=113216).
 
 ## Inputs
 

module/docs/entra-powershell-v1.0/Microsoft.Graph.Entra/Convert-EntraFederatedUser.md

@@ -19,6 +19,7 @@ schema: 2.0.0
 # Convert-EntraFederatedUser
 
 ## Synopsis
+
 Updates a user in a domain that was recently converted from single sign-on (also known as identity federation) to standard authentication type.
 
 ## Syntax
@@ -31,24 +32,34 @@ Convert-EntraFederatedUser
 ```
 
 ## Description
-The Convert-EntraFederatedUser cmdlet is used to update a user in a domain that was recently converted from single sign-on (also known as identity federation) to standard authentication type. A new password must be provided for the user.
+
+The `Convert-EntraFederatedUser` cmdlet is used to update a user in a domain that was recently converted from single sign-on (also known as identity federation) to standard authentication type. A new password must be provided for the user.
+
+This process writes the new password to Microsoft Entra ID and, if configured with password writeback, pushes it to on-premises Active Directory. The admin can provide a new password or let the system generate one. The user will be prompted to change their password at their next sign-in.
+
+For delegated scenarios, the administrator needs at least the Authentication Administrator or Privileged Authentication Administrator Microsoft Entra role.
+
+Admins with User Administrator, Helpdesk Administrator, or Password Administrator roles can also reset passwords for non-admin users and a limited set of admin roles.
 
 ## Examples
 
 ### EXAMPLE 1: Update a user in a domain
+
 ```powershell
-PS C:\> Convert-EntraFederatedUser -UserPrincipalName "[email protected]"
+Connect-Entra -Scopes 'UserAuthenticationMethod.ReadWrite.All'
+Convert-EntraFederatedUser -UserPrincipalName '[email protected]'
 ```
 
 This command updates a user in a domain.
 
 ## Parameters
 
 ### -UserPrincipalName
+
 The Microsoft Entra ID UserID for the user to convert.
 
 ```yaml
-Type: String
+Type: System.String
 Parameter Sets: (All)
 Aliases:
 
@@ -60,10 +71,13 @@ Accept wildcard characters: False
 ```
 
 ### -NewPassword
+
 The new password of the user.
 
+The new password is required for tenants with hybrid password scenarios. If omitted for a cloud-only password, the system generates a password. This password is a Unicode string with no other encoding. It is validated against the tenant's banned password system before acceptance and must meet the tenant's cloud and/or on-premises password requirements.
+
 ```yaml
-Type: String
+Type: System.String
 Parameter Sets: (All)
 Aliases:
 
@@ -75,12 +89,15 @@ Accept wildcard characters: False
 ```
 
 ### CommonParameters
-This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see [about_CommonParameters](https://go.microsoft.com/fwlink/?LinkID=113216).
+
+This cmdlet supports the common parameters: `-Debug`, `-ErrorAction`, `-ErrorVariable`, `-InformationAction`, `-InformationVariable`, `-OutVariable`, `-OutBuffer`, `-PipelineVariable`, `-Verbose`, `-WarningAction`, and `-WarningVariable`. For more information, see [about_CommonParameters](https://go.microsoft.com/fwlink/?LinkID=113216).
 
 ## Inputs
 
 ## Outputs
 
 ## Notes
 
+- For more information, see [resetPassword](/graph/api/authenticationmethod-resetpassword).
+
 ## Related Links

module/docs/entra-powershell-v1.0/Microsoft.Graph.Entra/Enable-EntraDirectoryRole.md

@@ -19,6 +19,7 @@ schema: 2.0.0
 # Enable-EntraDirectoryRole
 
 ## Synopsis
+
 Activates an existing directory role in Microsoft Entra ID.
 
 ## Syntax
@@ -30,33 +31,39 @@ Enable-EntraDirectoryRole
 ```
 
 ## Description
-The Enable-EntraDirectoryRole cmdlet activates an existing directory role in Microsoft Entra ID.
+
+The `Enable-EntraDirectoryRole` cmdlet activates an existing directory role in Microsoft Entra ID.
+
+The Company Administrators and the default user directory roles (User, Guest User, and Restricted Guest User) are activated by default. To access and assign members to other directory roles, you must first activate them using their corresponding directory role template ID.
 
 ## Examples
 
 ### Example 1: Enable a directory role
+
 ```powershell
-PS C:\> $InviterRole = Get-EntraDirectoryRoleTemplate | Where-Object {$_.DisplayName -eq "Guest Inviter"}
-PS C:\> Enable-EntraDirectoryRole -RoleTemplateId $InviterRole.ObjectId
+Connect-Entra -Scopes 'RoleManagement.ReadWrite.Directory'
+$InviterRole = Get-EntraDirectoryRoleTemplate | Where-Object {$_.DisplayName -eq 'Guest Inviter'}
+Enable-EntraDirectoryRole -RoleTemplateId $InviterRole.ObjectId
 ```
 
-```output
+```Output
 DeletedDateTime Id                                   Description                                      DisplayName   RoleTemplateId
 --------------- --                                   -----------                                      -----------   --------------
                 b5baa59b-86ab-4053-ac3a-0396116d1924 Guest Inviter has access to invite guest users.  Guest Inviter 92ed04bf-c94a-4b82-9729-b799a7a4c178
 ```
 
-The first command gets an inviter role that has the display name Guest Inviter by using the [Get-EntraDirectoryRoleTemplate](./Get-EntraDirectoryRoleTemplate.md) cmdlet and stores Guest Inviter in the $InviterRole variable.  
+The example shows how to enable the directory role.
 
-The final command enables the directory role in $InviterRole.  
+You can use `Get-EntraDirectoryRoleTemplate` to fetch a specific directory role to activate.
 
 ## Parameters
 
 ### -RoleTemplateId
-The ID of the Role template to enable
+
+The ID of the directoryRoleTemplate that the role is based on.
 
 ```yaml
-Type: String
+Type: System.String
 Parameter Sets: (All)
 Aliases:
 
@@ -68,17 +75,19 @@ Accept wildcard characters: False
 ```
 
 ### CommonParameters
-This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see [about_CommonParameters](https://go.microsoft.com/fwlink/?LinkID=113216).
+
+This cmdlet supports the common parameters: `-Debug`, `-ErrorAction`, `-ErrorVariable`, `-InformationAction`, `-InformationVariable`, `-OutVariable`, `-OutBuffer`, `-PipelineVariable`, `-Verbose`, `-WarningAction`, and `-WarningVariable`. For more information, see [about_CommonParameters](https://go.microsoft.com/fwlink/?LinkID=113216).
 
 ## Inputs
 
 ## Outputs
 
 ## Notes
 
+- For additional details see [Activate directoryRole](/graph/api/directoryrole-post-directoryroles).
+
 ## Related Links
 
 [Get-EntraDirectoryRole](Get-EntraDirectoryRole.md)
 
 [Get-EntraDirectoryRoleTemplate](Get-EntraDirectoryRoleTemplate.md)
-

module/docs/entra-powershell-v1.0/Microsoft.Graph.Entra/Get-EntraAccountSku.md

@@ -19,65 +19,75 @@ schema: 2.0.0
 # Get-EntraAccountSku
 
 ## Synopsis
+
 Retrieves all the SKUs for a company.
 
 ## Syntax
 
 ### GetQuery (Default)
+
 ```powershell
 Get-EntraAccountSku 
  [<CommonParameters>]
 ```
 
 ### GetById
+
 ```powershell
 Get-EntraAccountSku 
  [-TenantId <Guid>] 
  [<CommonParameters>]
 ```
 
 ## Description
-The Get-EntraAccountSku returns all the SKUs that the company owns.
+
+The `Get-EntraAccountSku` retrieves the list of commercial subscriptions acquired by an organization.
+
+To map license names as displayed in the Microsoft Entra admin center or the Microsoft 365 admin center to their Microsoft Graph skuId and skuPartNumber properties, refer to the provided mapping information.
 
 ## Examples
 
 ### EXAMPLE 1: Gets a list of SKUs
+
 ```powershell
-PS C:\> Get-EntraAccountSku
+Connect-Entra -Scopes 'Organization.Read.All'
+Get-EntraAccountSku
 ```
 
-```output
+```Output
 Id                                            AccountId                            AccountName   AppliesTo
 --                                            ---------                            -----------   -------
-95d4390e_b05e124f-c7cc-45a0-a6aa-8cf78c946968 d5aec55f-2d12-4442-8d2f-ccca95d4390e M365x99297270 User
-95d4390e_c7df2760-2c81-4ef7-b578-5b5392b571df d5aec55f-2d12-4442-8d2f-ccca95d4390e M365x99297270 User
-95d4390e_6fd2c87f-b296-42f0-b197-1e91e994b900 d5aec55f-2d12-4442-8d2f-ccca95d4390e M365x99297270 User
+eeeeeeee-4444-5555-6666-ffffffffffff aaaabbbb-0000-cccc-1111-dddd2222eeee Contoso User
+ffffffff-5555-6666-7777-aaaaaaaaaaaa aaaabbbb-0000-cccc-1111-dddd2222eeee Contoso User
+dddddddd-3333-4444-5555-eeeeeeeeeeee aaaabbbb-0000-cccc-1111-dddd2222eeee Contoso User
 ```
 
 This command returns a list of SKUs.
 
 ### EXAMPLE 2: Gets a list of SKUs by TenantId
+
 ```powershell
-PS C:\> Get-EntraAccountSku -TenantId "d5aec55f-2d12-4442-8d2f-ccca95d4390e"
+Connect-Entra -Scopes 'Organization.Read.All'
+Get-EntraAccountSku -TenantId 'aaaabbbb-0000-cccc-1111-dddd2222eeee'
 ```
 
-```output
+```Output
 Id                                            AccountId                            AccountName   AppliesTo
 --                                            ---------                            -----------   -------
-95d4390e_b05e124f-c7cc-45a0-a6aa-8cf78c946968 d5aec55f-2d12-4442-8d2f-ccca95d4390e M365x99297270 User
-95d4390e_c7df2760-2c81-4ef7-b578-5b5392b571df d5aec55f-2d12-4442-8d2f-ccca95d4390e M365x99297270 User
-95d4390e_6fd2c87f-b296-42f0-b197-1e91e994b900 d5aec55f-2d12-4442-8d2f-ccca95d4390e M365x99297270 User
+eeeeeeee-4444-5555-6666-ffffffffffff aaaabbbb-0000-cccc-1111-dddd2222eeee Contoso User
+ffffffff-5555-6666-7777-aaaaaaaaaaaa aaaabbbb-0000-cccc-1111-dddd2222eeee Contoso User
+dddddddd-3333-4444-5555-eeeeeeeeeeee aaaabbbb-0000-cccc-1111-dddd2222eeee Contoso User
 ```
 
-This command returns a list of SKUs by TenantId.
+This command returns a list of SKUs for a tenant.
 
 ## Parameters
 
 ### -TenantId
+
 The unique ID of the tenant to perform the operation on.
 If this isn't provided then the value defaults to
 the tenant of the current user.
-This parameter is only applicable to partner users.
 
 ```yaml
 Type: Guid
@@ -92,7 +102,8 @@ Accept wildcard characters: False
 ```
 
 ### CommonParameters
-This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see [about_CommonParameters](https://go.microsoft.com/fwlink/?LinkID=113216).
+
+This cmdlet supports the common parameters: `-Debug`, `-ErrorAction`, `-ErrorVariable`, `-InformationAction`, `-InformationVariable`, `-OutVariable`, `-OutBuffer`, `-PipelineVariable`, `-Verbose`, `-WarningAction`, and `-WarningVariable`. For more information, see [about_CommonParameters](https://go.microsoft.com/fwlink/?LinkID=113216).
 
 ## Inputs
 

module/docs/entra-powershell-v1.0/Microsoft.Graph.Entra/Get-EntraApplicationKeyCredential.md

@@ -18,6 +18,7 @@ schema: 2.0.0
 # Get-EntraApplicationKeyCredential
 
 ## Synopsis
+
 Gets the key credentials for an application.
 
 ## Syntax
@@ -29,42 +30,34 @@ Get-EntraApplicationKeyCredential
 ```
 
 ## Description
-The Get-EntraApplicationKeyCredential cmdlet gets the key credentials for an application.
+
+The `Get-EntraApplicationKeyCredential` cmdlet retrieves the key credentials for an application.
 
 ## Examples
 
 ### Example 1: Get key credentials
+
 ```powershell
-PS C:\> Get-EntraApplicationKeyCredential -ObjectId "3ddd22e7-a150-4bb3-b100-e410dea1cb84"
+Connect-Entra -Scopes 'Application.Read.All'
+Get-EntraApplicationKeyCredential -ObjectId '00001111-aaaa-2222-bbbb-3333cccc4444'
 ```
 
-```output
-CustomKeyIdentifier : {116, 101, 115, 116}
-EndDate             : 10/23/2024 11:36:56 AM
-KeyId               : 52ab6cca-bc59-4f06-8450-75a3d2b8e53b
-StartDate           : 11/22/2023 11:35:16 AM
-Type                : Symmetric
-Usage               : Sign
-Value               :
-
-CustomKeyIdentifier : {84, 101, 115, 116}
-EndDate             : 10/23/2024 9:46:49 AM
-KeyId               : 2e5143ee-9912-40c1-8c6a-a84f8124a6af
-StartDate           : 10/23/2023 9:46:48 AM
-Type                : Symmetric
-Usage               : Sign
-Value               :
+```Output
+CustomKeyIdentifier DisplayName     EndDateTime           Key KeyId                                StartDateTime         Type               Usage
+------------------- -----------     -----------           --- -----                                -------------         ----               -----
+{116, 101, 115, 116…} MyApp Cert 6/27/2024 11:49:17 AM     bbbbbbbb-1c1c-2d2d-3e3e-444444444444 6/27/2023 11:29:17 AM AsymmetricX509Cert Verify
 ```
 
 This command gets the key credentials for the specified application.
 
 ## Parameters
 
 ### -ObjectId
+
 Specifies a unique ID of an application in Microsoft Entra ID for which to get key credentials.
 
 ```yaml
-Type: String
+Type: System.String
 Parameter Sets: (All)
 Aliases:
 
@@ -76,7 +69,8 @@ Accept wildcard characters: False
 ```
 
 ### CommonParameters
-This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see [about_CommonParameters](https://go.microsoft.com/fwlink/?LinkID=113216).
+
+This cmdlet supports the common parameters: `-Debug`, `-ErrorAction`, `-ErrorVariable`, `-InformationAction`, `-InformationVariable`, `-OutVariable`, `-OutBuffer`, `-PipelineVariable`, `-Verbose`, `-WarningAction`, and `-WarningVariable`. For more information, see [about_CommonParameters](https://go.microsoft.com/fwlink/?LinkID=113216).
 
 ## Inputs
 
@@ -89,4 +83,3 @@ This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable
 [New-EntraApplicationKeyCredential](New-EntraApplicationKeyCredential.md)
 
 [Remove-EntraApplicationKeyCredential](Remove-EntraApplicationKeyCredential.md)
-