AADCrossTenantAccessPolicyConfigurationDefault throws 'Invalid Property b2BCollaborationInbound' #6065

smccut · 2025-04-29T16:51:25Z

Description of the issue

Without a change in our code definition, or any visible code changes I can see in the module, we have started receiving the error "[Request_BadRequest] : Invalid property 'b2BCollaborationInbound'". I am wondering if this is related to the recent Graph module update.

Microsoft 365 DSC Version

1.25.423.1

Which workloads are affected

Azure Active Directory (Entra ID)

The DSC configuration

AADCrossTenantAccessPolicyConfigurationDefault 'AADCrossTenantAccessPolicyConfigurationDefault' {
    B2BCollaborationInbound  = MSFT_AADCrossTenantAccessPolicyB2BSetting {
        Applications   = MSFT_AADCrossTenantAccessPolicyTargetConfiguration {
            AccessType = 'allowed'
            Targets    = @(
                MSFT_AADCrossTenantAccessPolicyTarget {
                    Target     = 'AllApplications'
                    TargetType = 'application'
                }
            )
        }
        UsersAndGroups = MSFT_AADCrossTenantAccessPolicyTargetConfiguration {
            AccessType = 'allowed'
            Targets    = @(
                MSFT_AADCrossTenantAccessPolicyTarget {
                    Target     = 'AllUsers'
                    TargetType = 'user'
                }
            )
        }
    }
    B2BCollaborationOutbound = MSFT_AADCrossTenantAccessPolicyB2BSetting {
        Applications   = MSFT_AADCrossTenantAccessPolicyTargetConfiguration {
            AccessType = 'blocked'
            Targets    = @(
                MSFT_AADCrossTenantAccessPolicyTarget {
                    Target     = 'AllApplications'
                    TargetType = 'application'
                }
            )
        }
        UsersAndGroups = MSFT_AADCrossTenantAccessPolicyTargetConfiguration {
            AccessType = 'blocked'
            Targets    = @(
                MSFT_AADCrossTenantAccessPolicyTarget {
                    Target     = '<SecurityGroupName>' 
                    TargetType = 'group'
                }
            )
        }
    }
    B2BDirectConnectInbound  = MSFT_AADCrossTenantAccessPolicyB2BSetting {
        Applications   = MSFT_AADCrossTenantAccessPolicyTargetConfiguration {
            AccessType = 'blocked'
            Targets    = @(
                MSFT_AADCrossTenantAccessPolicyTarget {
                    Target     = 'AllApplications'
                    TargetType = 'application'
                }
            )
        }
        UsersAndGroups = MSFT_AADCrossTenantAccessPolicyTargetConfiguration {
            AccessType = 'blocked'
            Targets    = @(
                MSFT_AADCrossTenantAccessPolicyTarget {
                    Target     = 'AllUsers'
                    TargetType = 'user'
                }
            )
        }
    }
    B2BDirectConnectOutbound = MSFT_AADCrossTenantAccessPolicyB2BSetting {
        Applications   = MSFT_AADCrossTenantAccessPolicyTargetConfiguration {
            AccessType = 'blocked'
            Targets    = @(
                MSFT_AADCrossTenantAccessPolicyTarget {
                    Target     = 'AllApplications'
                    TargetType = 'application'
                }
            )
        }
        UsersAndGroups = MSFT_AADCrossTenantAccessPolicyTargetConfiguration {
            AccessType = 'blocked'
            Targets    = @(
                MSFT_AADCrossTenantAccessPolicyTarget {
                    Target     = 'AllUsers'
                    TargetType = 'user'
                }
            )
        }
    }
    Ensure                   = 'Present'
    InboundTrust            = MSFT_AADCrossTenantAccessPolicyInboundTrust {
        IsCompliantDeviceAccepted           = $false
        IsHybridAzureADJoinedDeviceAccepted = $false
        IsMfaAccepted                       = $false
    }
    IsSingleInstance        = 'Yes'
    ApplicationId          = '$ApplicationId'     
    CertificateThumbprint  = '$Thumbprint'         
    TenantId               = '$TenantId'            
}

Verbose logs showing the problem

[[AADCrossTenantAccessPolicyConfigurationDefault]AADCrossTenantAccessPolicyConfigurationDefault:: Updating principal to Id {AllUsers}

VERBOSE:                        
[[AADCrossTenantAccessPolicyConfigurationDefault]AADCrossTenantAccessPolicyConfigurationDefault:: Updating Cross Tenant Access Policy Configuration Default
VERBOSE:   
                         
[[AADCrossTenantAccessPolicyConfigurationDefault]AADCrossTenantAccessPolicyConfigurationDefault::Performing the operation "Update-MgBetaPolicyCrossTenantAccessPolicyDefault_UpdateExpanded" on target "Call 
remote 'PATCH /policies/crossTenantAccessPolicy/default' operation".

[error][Request_BadRequest] : Invalid property 'b2BCollaborationInbound'.
    + CategoryInfo          : InvalidOperation: ({ Headers = , b...rationDefault }:) [], CimException
    + FullyQualifiedErrorId : Request_BadRequest,Microsoft.Graph.Beta.PowerShell.Cmdlets.UpdateMgBetaPolicyCrossTenant 
   AccessPolicyDefault_UpdateExpanded
    + PSComputerName        : localhost

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

AADCrossTenantAccessPolicyConfigurationDefault throws 'Invalid Property b2BCollaborationInbound' #6065

AADCrossTenantAccessPolicyConfigurationDefault throws 'Invalid Property b2BCollaborationInbound' #6065

smccut commented Apr 29, 2025

AADCrossTenantAccessPolicyConfigurationDefault throws 'Invalid Property b2BCollaborationInbound' #6065

AADCrossTenantAccessPolicyConfigurationDefault throws 'Invalid Property b2BCollaborationInbound' #6065

Comments

smccut commented Apr 29, 2025

Description of the issue

Microsoft 365 DSC Version

Which workloads are affected

The DSC configuration

Verbose logs showing the problem

Environment Information + PowerShell Version