Merge branch 'dev' of https://github.com/KelvinTegelaar/CIPP-API into dev

KelvinTegelaar · KelvinTegelaar · commit 7f9748251365 · 2026-04-05T18:00:48.000+02:00
diff --git a/Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Tenant/Standards/Invoke-ExecUpdateDriftDeviation.ps1 b/Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Tenant/Standards/Invoke-ExecUpdateDriftDeviation.ps1
@@ -9,7 +9,7 @@ function Invoke-ExecUpdateDriftDeviation {
     param($Request, $TriggerMetadata)
 
     $APIName = $TriggerMetadata.FunctionName
-    Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug'
+    Write-LogMessage -Headers $Request.Headers -API $APINAME -message 'Accessed this API' -Sev 'Debug'
 
     try {
         $TenantFilter = $Request.Body.TenantFilter
@@ -25,7 +25,7 @@ function Invoke-ExecUpdateDriftDeviation {
                     success = $true
                     result  = "All drift customizations removed for tenant $TenantFilter"
                 })
-            Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Removed all drift customizations for tenant $TenantFilter" -Sev 'Info'
+            Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Removed all drift customizations for tenant $TenantFilter" -Sev 'Info'
         } else {
             $Deviations = $Request.Body.deviations
             $Reason = $Request.Body.reason
@@ -39,7 +39,7 @@ function Invoke-ExecUpdateDriftDeviation {
                         success = $true
                         result  = $Result
                     }
-                    Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Updated drift deviation status for $($Deviation.standardName) to $($Deviation.status) with reason: $Reason" -Sev 'Info'
+                    Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Updated drift deviation status for $($Deviation.standardName) to $($Deviation.status) with reason: $Reason" -Sev 'Info'
                     if ($Deviation.status -eq 'DeniedRemediate') {
                         $Setting = $Deviation.standardName -replace 'standards\.', ''
                         $StandardTemplate = Get-CIPPTenantAlignment -TenantFilter $TenantFilter | Where-Object -Property standardType -EQ 'drift'
@@ -62,7 +62,7 @@ function Invoke-ExecUpdateDriftDeviation {
                                 }
                             }
                             if (-not $MatchedTemplate) {
-                                Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Could not find IntuneTemplate $TemplateId in drift standard settings for remediation" -Sev 'Warn'
+                                Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Could not find IntuneTemplate $TemplateId in drift standard settings for remediation" -Sev 'Warn'
                             } else {
                                 $MatchedTemplate | Add-Member -MemberType NoteProperty -Name 'remediate' -Value $true -Force
                                 $MatchedTemplate | Add-Member -MemberType NoteProperty -Name 'report' -Value $true -Force
@@ -132,7 +132,7 @@ function Invoke-ExecUpdateDriftDeviation {
                                 }
                             }
                             Add-CIPPScheduledTask -Task $PersistentTaskBody -hidden $false
-                            Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Scheduled persistent drift remediation task (12h recurrence) for $Setting" -Sev 'Info'
+                            Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Scheduled persistent drift remediation task (12h recurrence) for $Setting" -Sev 'Info'
                         }
                     }
                     if ($Deviation.status -eq 'deniedDelete') {
@@ -148,10 +148,10 @@ function Invoke-ExecUpdateDriftDeviation {
                             Write-Host "Going to delete Policy with ID $($Policy.ID) Deviation Name is $($Deviation.standardName)"
                             $null = New-GraphPostRequest -uri "https://graph.microsoft.com/beta/$($URLName)/$($ID)" -type DELETE -tenant $TenantFilter
                             "Deleted Policy $($ID)"
-                            Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Deleted Policy with ID $($ID)" -Sev 'Info'
+                            Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Deleted Policy with ID $($ID)" -Sev 'Info'
                         } else {
                             "could not find policy with ID $($ID)"
-                            Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Could not find Policy with ID $($ID) to delete for remediation" -sev 'Warn'
+                            Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Could not find Policy with ID $($ID) to delete for remediation" -sev 'Warn'
                         }
 
 
@@ -162,7 +162,7 @@ function Invoke-ExecUpdateDriftDeviation {
                         success      = $false
                         error        = $_.Exception.Message
                     }
-                    Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Failed to update drift deviation for $($Deviation.standardName): $($_.Exception.Message)" -Sev 'Error'
+                    Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Failed to update drift deviation for $($Deviation.standardName): $($_.Exception.Message)" -Sev 'Error'
                 }
             }
         }
@@ -175,7 +175,7 @@ function Invoke-ExecUpdateDriftDeviation {
             })
 
     } catch {
-        Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Failed to update drift deviation: $($_.Exception.Message)" -Sev 'Error'
+        Write-LogMessage -Headers $Request.Headers -API $APINAME -message "Failed to update drift deviation: $($_.Exception.Message)" -Sev 'Error'
         return ([HttpResponseContext]@{
                 StatusCode = [HttpStatusCode]::BadRequest
                 Body       = @{error = $_.Exception.Message }
diff --git a/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardAutopilotStatusPage.ps1 b/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardAutopilotStatusPage.ps1
@@ -93,22 +93,29 @@ function Invoke-CIPPStandardAutopilotStatusPage {
 
     # Remediate if the state is not correct
     if ($Settings.remediate -eq $true) {
-        try {
-            $Parameters = @{
-                TenantFilter          = $Tenant
-                ShowProgress          = $Settings.ShowProgress
-                BlockDevice           = $Settings.BlockDevice
-                InstallWindowsUpdates = $InstallWindowsUpdates
-                AllowReset            = $Settings.AllowReset
-                EnableLog             = $Settings.EnableLog
-                ErrorMessage          = $Settings.ErrorMessage
-                TimeOutInMinutes      = $Settings.TimeOutInMinutes
-                AllowFail             = $Settings.AllowFail
-                OBEEOnly              = $Settings.OBEEOnly
-            }
+        if ($StateIsCorrect -eq $true) {
+            Write-LogMessage -API 'Standards' -tenant $Tenant -message 'Autopilot Enrollment Status Page is already configured correctly.' -sev Info
+        } else {
+            try {
+                $Parameters = @{
+                    TenantFilter          = $Tenant
+                    ShowProgress          = $Settings.ShowProgress
+                    BlockDevice           = $Settings.BlockDevice
+                    InstallWindowsUpdates = $InstallWindowsUpdates
+                    AllowReset            = $Settings.AllowReset
+                    EnableLog             = $Settings.EnableLog
+                    ErrorMessage          = $Settings.ErrorMessage
+                    TimeOutInMinutes      = $Settings.TimeOutInMinutes
+                    AllowFail             = $Settings.AllowFail
+                    OBEEOnly              = $Settings.OBEEOnly
+                }
 
-            Set-CIPPDefaultAPEnrollment @Parameters
-        } catch {
+                Set-CIPPDefaultAPEnrollment @Parameters
+                Write-LogMessage -API 'Standards' -tenant $Tenant -message 'Autopilot Enrollment Status Page settings have been updated.' -sev Info
+            } catch {
+                $ErrorMessage = Get-CippException -Exception $_
+                Write-LogMessage -API 'Standards' -tenant $Tenant -message "Failed to update Autopilot Enrollment Status Page: $($ErrorMessage.NormalizedError)" -sev Error -LogData $ErrorMessage
+            }
         }
     }
 
diff --git a/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardDisableGuests.ps1 b/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardDisableGuests.ps1
@@ -121,7 +121,7 @@ function Invoke-CIPPStandardDisableGuests {
                 Write-LogMessage -API 'Standards' -tenant $tenant -message "Failed to process bulk disable guests request: $($ErrorMessage.NormalizedError)" -sev Error -LogData $ErrorMessage
             }
         } else {
-            Write-LogMessage -API 'Standards' -tenant $tenant -message "No guests accounts with a login longer than $checkDays days ago." -sev Info
+            Write-LogMessage -API 'Standards' -tenant $tenant -message "No guests accounts with a login longer than $checkDays days ago - all guest accounts are already compliant." -sev Info
         }
     }
     if ($Settings.alert -eq $true) {
diff --git a/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardEXODisableAutoForwarding.ps1 b/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardEXODisableAutoForwarding.ps1
@@ -45,21 +45,24 @@ function Invoke-CIPPStandardEXODisableAutoForwarding {
 
     try {
         $CurrentInfo = New-ExoRequest -tenantid $Tenant -cmdlet 'Get-HostedOutboundSpamFilterPolicy' -cmdParams @{Identity = 'Default' } -useSystemMailbox $true
-    }
-    catch {
+    } catch {
         $ErrorMessage = Get-NormalizedError -Message $_.Exception.Message
         Write-LogMessage -API 'Standards' -Tenant $Tenant -Message "Could not get the EXODisableAutoForwarding state for $Tenant. Error: $ErrorMessage" -Sev Error
         return
     }
     $StateIsCorrect = $CurrentInfo.AutoForwardingMode -eq 'Off'
 
     if ($Settings.remediate -eq $true) {
-        try {
-            New-ExoRequest -tenantid $tenant -cmdlet 'Set-HostedOutboundSpamFilterPolicy' -cmdParams @{ Identity = 'Default'; AutoForwardingMode = 'Off' } -useSystemMailbox $true
-            Write-LogMessage -API 'Standards' -tenant $tenant -message 'Disabled auto forwarding' -sev Info
-        } catch {
-            $ErrorMessage = Get-CippException -Exception $_
-            Write-LogMessage -API 'Standards' -tenant $tenant -message "Could not disable auto forwarding. $($ErrorMessage.NormalizedError)" -sev Error
+        if ($StateIsCorrect -eq $true) {
+            Write-LogMessage -API 'Standards' -tenant $tenant -message 'Auto forwarding is already disabled.' -sev Info
+        } else {
+            try {
+                New-ExoRequest -tenantid $tenant -cmdlet 'Set-HostedOutboundSpamFilterPolicy' -cmdParams @{ Identity = 'Default'; AutoForwardingMode = 'Off' } -useSystemMailbox $true
+                Write-LogMessage -API 'Standards' -tenant $tenant -message 'Disabled auto forwarding' -sev Info
+            } catch {
+                $ErrorMessage = Get-CippException -Exception $_
+                Write-LogMessage -API 'Standards' -tenant $tenant -message "Could not disable auto forwarding. $($ErrorMessage.NormalizedError)" -sev Error
+            }
         }
     }
 
diff --git a/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardNudgeMFA.ps1 b/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardNudgeMFA.ps1
@@ -48,30 +48,34 @@ function Invoke-CIPPStandardNudgeMFA {
 
     if ($Settings.remediate -eq $true) {
         $StateName = $State.Substring(0, 1).ToUpper() + $State.Substring(1)
-        try {
-            $GraphRequest = @{
-                tenantid    = $Tenant
-                uri         = 'https://graph.microsoft.com/beta/policies/authenticationMethodsPolicy'
-                AsApp       = $false
-                Type        = 'PATCH'
-                ContentType = 'application/json'
-                Body        = @{
-                    registrationEnforcement = @{
-                        authenticationMethodsRegistrationCampaign = @{
-                            state                                  = $State
-                            snoozeDurationInDays                   = $Settings.snoozeDurationInDays
-                            enforceRegistrationAfterAllowedSnoozes = $true
-                            includeTargets                         = $CurrentState.registrationEnforcement.authenticationMethodsRegistrationCampaign.includeTargets
-                            excludeTargets                         = $CurrentState.registrationEnforcement.authenticationMethodsRegistrationCampaign.excludeTargets
+        if ($StateIsCorrect -eq $true) {
+            Write-LogMessage -API 'Standards' -tenant $Tenant -message "Authenticator App Nudge is already set to $State with a snooze duration of $($Settings.snoozeDurationInDays)." -sev Info
+        } else {
+            try {
+                $GraphRequest = @{
+                    tenantid    = $Tenant
+                    uri         = 'https://graph.microsoft.com/beta/policies/authenticationMethodsPolicy'
+                    AsApp       = $false
+                    Type        = 'PATCH'
+                    ContentType = 'application/json'
+                    Body        = @{
+                        registrationEnforcement = @{
+                            authenticationMethodsRegistrationCampaign = @{
+                                state                                  = $State
+                                snoozeDurationInDays                   = $Settings.snoozeDurationInDays
+                                enforceRegistrationAfterAllowedSnoozes = $true
+                                includeTargets                         = $CurrentState.registrationEnforcement.authenticationMethodsRegistrationCampaign.includeTargets
+                                excludeTargets                         = $CurrentState.registrationEnforcement.authenticationMethodsRegistrationCampaign.excludeTargets
+                            }
                         }
-                    }
-                } | ConvertTo-Json -Depth 10 -Compress
+                    } | ConvertTo-Json -Depth 10 -Compress
+                }
+                New-GraphPostRequest @GraphRequest
+                Write-LogMessage -API 'Standards' -tenant $Tenant -message "$StateName Authenticator App Nudge with a snooze duration of $($Settings.snoozeDurationInDays)" -sev Info
+            } catch {
+                $ErrorMessage = Get-CippException -Exception $_
+                Write-LogMessage -API 'Standards' -tenant $Tenant -message "Failed to set Authenticator App Nudge to $State. Error: $($ErrorMessage.NormalizedError)" -sev Error -LogData $ErrorMessage
             }
-            New-GraphPostRequest @GraphRequest
-            Write-LogMessage -API 'Standards' -tenant $Tenant -message "$StateName Authenticator App Nudge with a snooze duration of $($Settings.snoozeDurationInDays)" -sev Info
-        } catch {
-            $ErrorMessage = Get-CippException -Exception $_
-            Write-LogMessage -API 'Standards' -tenant $Tenant -message "Failed to set Authenticator App Nudge to $State. Error: $($ErrorMessage.NormalizedError)" -sev Error -LogData $ErrorMessage
         }
     }
 
diff --git a/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardPerUserMFA.ps1 b/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardPerUserMFA.ps1
@@ -58,7 +58,7 @@ function Invoke-CIPPStandardPerUserMFA {
         $UpdateDB = $false
         if (($UsersWithoutMFA | Measure-Object).Count -gt 0) {
             try {
-                $MFAMessage = Set-CIPPPerUserMFA -TenantFilter $Tenant -userId @($UsersWithoutMFA.userPrincipalName) -State 'enforced'
+                $MFAMessage = Set-CIPPPerUserMFA -TenantFilter $Tenant -UserId @($UsersWithoutMFA.userPrincipalName) -State 'enforced'
                 Write-LogMessage -API 'Standards' -tenant $tenant -message $MFAMessage -sev Info
                 $UpdateDB = $true
             } catch {
@@ -74,6 +74,8 @@ function Invoke-CIPPStandardPerUserMFA {
                     Write-LogMessage -API 'Standards' -tenant $Tenant -message "Failed to refresh user cache after remediation: $($_.Exception.Message)" -sev Warning
                 }
             }
+        } else {
+            Write-LogMessage -API 'Standards' -tenant $tenant -message 'All users already have Legacy MFA enforced.' -sev Info
         }
     }
     if ($Settings.alert -eq $true) {
diff --git a/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardQuarantineRequestAlert.ps1 b/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardQuarantineRequestAlert.ps1
@@ -50,7 +50,7 @@ function Invoke-CIPPStandardQuarantineRequestAlert {
 
     if ($Settings.remediate -eq $true) {
         if ($StateIsCorrect -eq $true) {
-            Write-LogMessage -API 'Standards' -Tenant $Tenant -Message 'Quarantine Request Alert is configured correctly' -sev Info
+            Write-LogMessage -API 'Standards' -Tenant $Tenant -Message 'Quarantine Request Alert is already configured correctly.' -sev Info
         } else {
             $cmdParams = @{
                 'NotifyUser'      = $Settings.NotifyUser
diff --git a/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardSharePointMassDeletionAlert.ps1 b/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardSharePointMassDeletionAlert.ps1
@@ -66,7 +66,7 @@ function Invoke-CIPPStandardSharePointMassDeletionAlert {
 
     if ($Settings.remediate -eq $true) {
         if ($StateIsCorrect -eq $true) {
-            Write-LogMessage -API 'Standards' -Tenant $Tenant -Message 'SharePoint mass deletion of files alert is configured correctly' -sev Info
+            Write-LogMessage -API 'Standards' -Tenant $Tenant -Message 'SharePoint mass deletion of files alert is already configured correctly.' -sev Info
         } else {
             $cmdParams = @{
                 'NotifyUser'      = $Settings.NotifyUser.value
diff --git a/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardUserPreferredLanguage.ps1 b/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardUserPreferredLanguage.ps1
@@ -77,6 +77,8 @@ function Invoke-CIPPStandardUserPreferredLanguage {
                     Write-LogMessage -API 'Standards' -tenant $Tenant -message "Failed to refresh user cache after remediation: $($_.Exception.Message)" -sev Warning
                 }
             }
+        } else {
+            Write-LogMessage -API 'Standards' -tenant $Tenant -message "All users already have the preferred language set to $preferredLanguage." -sev Info
         }
     }
 
diff --git a/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardlaps.ps1 b/Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardlaps.ps1

Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,7 @@ function Invoke-ExecUpdateDriftDeviation {`
`9`	`9`	`param($Request, $TriggerMetadata)`
`10`	`10`
`11`	`11`	`$APIName = $TriggerMetadata.FunctionName`
`12`		`- Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message 'Accessed this API' -Sev 'Debug'`
	`12`	`+ Write-LogMessage -Headers $Request.Headers -API $APINAME -message 'Accessed this API' -Sev 'Debug'`
`13`	`13`
`14`	`14`	`try {`
`15`	`15`	`$TenantFilter = $Request.Body.TenantFilter`
`@@ -25,7 +25,7 @@ function Invoke-ExecUpdateDriftDeviation {`
`25`	`25`	`success = $true`
`26`	`26`	`result = "All drift customizations removed for tenant $TenantFilter"`
`27`	`27`	`})`
`28`		`- Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Removed all drift customizations for tenant $TenantFilter" -Sev 'Info'`
	`28`	`+ Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Removed all drift customizations for tenant $TenantFilter" -Sev 'Info'`
`29`	`29`	`} else {`
`30`	`30`	`$Deviations = $Request.Body.deviations`
`31`	`31`	`$Reason = $Request.Body.reason`
`@@ -39,7 +39,7 @@ function Invoke-ExecUpdateDriftDeviation {`
`39`	`39`	`success = $true`
`40`	`40`	`result = $Result`
`41`	`41`	`}`
`42`		`- Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Updated drift deviation status for $($Deviation.standardName) to $($Deviation.status) with reason: $Reason" -Sev 'Info'`
	`42`	`+ Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Updated drift deviation status for $($Deviation.standardName) to $($Deviation.status) with reason: $Reason" -Sev 'Info'`
`43`	`43`	`if ($Deviation.status -eq 'DeniedRemediate') {`
`44`	`44`	`$Setting = $Deviation.standardName -replace 'standards\.', ''`
`45`	`45`	`$StandardTemplate = Get-CIPPTenantAlignment -TenantFilter $TenantFilter \| Where-Object -Property standardType -EQ 'drift'`
`@@ -62,7 +62,7 @@ function Invoke-ExecUpdateDriftDeviation {`
`62`	`62`	`}`
`63`	`63`	`}`
`64`	`64`	`if (-not $MatchedTemplate) {`
`65`		`- Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Could not find IntuneTemplate $TemplateId in drift standard settings for remediation" -Sev 'Warn'`
	`65`	`+ Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Could not find IntuneTemplate $TemplateId in drift standard settings for remediation" -Sev 'Warn'`
`66`	`66`	`} else {`
`67`	`67`	`$MatchedTemplate \| Add-Member -MemberType NoteProperty -Name 'remediate' -Value $true -Force`
`68`	`68`	`$MatchedTemplate \| Add-Member -MemberType NoteProperty -Name 'report' -Value $true -Force`
`@@ -132,7 +132,7 @@ function Invoke-ExecUpdateDriftDeviation {`
`132`	`132`	`}`
`133`	`133`	`}`
`134`	`134`	`Add-CIPPScheduledTask -Task $PersistentTaskBody -hidden $false`
`135`		`- Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Scheduled persistent drift remediation task (12h recurrence) for $Setting" -Sev 'Info'`
	`135`	`+ Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Scheduled persistent drift remediation task (12h recurrence) for $Setting" -Sev 'Info'`
`136`	`136`	`}`
`137`	`137`	`}`
`138`	`138`	`if ($Deviation.status -eq 'deniedDelete') {`
`@@ -148,10 +148,10 @@ function Invoke-ExecUpdateDriftDeviation {`
`148`	`148`	`Write-Host "Going to delete Policy with ID $($Policy.ID) Deviation Name is $($Deviation.standardName)"`
`149`	`149`	`$null = New-GraphPostRequest -uri "https://graph.microsoft.com/beta/$($URLName)/$($ID)" -type DELETE -tenant $TenantFilter`
`150`	`150`	`"Deleted Policy $($ID)"`
`151`		`- Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Deleted Policy with ID $($ID)" -Sev 'Info'`
	`151`	`+ Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Deleted Policy with ID $($ID)" -Sev 'Info'`
`152`	`152`	`} else {`
`153`	`153`	`"could not find policy with ID $($ID)"`
`154`		`- Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Could not find Policy with ID $($ID) to delete for remediation" -sev 'Warn'`
	`154`	`+ Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Could not find Policy with ID $($ID) to delete for remediation" -sev 'Warn'`
`155`	`155`	`}`
`156`	`156`
`157`	`157`
`@@ -162,7 +162,7 @@ function Invoke-ExecUpdateDriftDeviation {`
`162`	`162`	`success = $false`
`163`	`163`	`error = $_.Exception.Message`
`164`	`164`	`}`
`165`		`- Write-LogMessage -tenant $TenantFilter -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Failed to update drift deviation for $($Deviation.standardName): $($_.Exception.Message)" -Sev 'Error'`
	`165`	`+ Write-LogMessage -tenant $TenantFilter -Headers $Request.Headers -API $APINAME -message "Failed to update drift deviation for $($Deviation.standardName): $($_.Exception.Message)" -Sev 'Error'`
`166`	`166`	`}`
`167`	`167`	`}`
`168`	`168`	`}`
`@@ -175,7 +175,7 @@ function Invoke-ExecUpdateDriftDeviation {`
`175`	`175`	`})`
`176`	`176`
`177`	`177`	`} catch {`
`178`		`- Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Failed to update drift deviation: $($_.Exception.Message)" -Sev 'Error'`
	`178`	`+ Write-LogMessage -Headers $Request.Headers -API $APINAME -message "Failed to update drift deviation: $($_.Exception.Message)" -Sev 'Error'`
`179`	`179`	`return ([HttpResponseContext]@{`
`180`	`180`	`StatusCode = [HttpStatusCode]::BadRequest`
`181`	`181`	`Body = @{error = $_.Exception.Message }`
Original file line number	Diff line number	Diff line change
`@@ -121,7 +121,7 @@ function Invoke-CIPPStandardDisableGuests {`
`121`	`121`	`Write-LogMessage -API 'Standards' -tenant $tenant -message "Failed to process bulk disable guests request: $($ErrorMessage.NormalizedError)" -sev Error -LogData $ErrorMessage`
`122`	`122`	`}`
`123`	`123`	`} else {`
`124`		`- Write-LogMessage -API 'Standards' -tenant $tenant -message "No guests accounts with a login longer than $checkDays days ago." -sev Info`
	`124`	`+ Write-LogMessage -API 'Standards' -tenant $tenant -message "No guests accounts with a login longer than $checkDays days ago - all guest accounts are already compliant." -sev Info`
`125`	`125`	`}`
`126`	`126`	`}`
`127`	`127`	`if ($Settings.alert -eq $true) {`
Original file line number	Diff line number	Diff line change
`@@ -58,7 +58,7 @@ function Invoke-CIPPStandardPerUserMFA {`
`58`	`58`	`$UpdateDB = $false`
`59`	`59`	`if (($UsersWithoutMFA \| Measure-Object).Count -gt 0) {`
`60`	`60`	`try {`
`61`		`- $MFAMessage = Set-CIPPPerUserMFA -TenantFilter $Tenant -userId @($UsersWithoutMFA.userPrincipalName) -State 'enforced'`
	`61`	`+ $MFAMessage = Set-CIPPPerUserMFA -TenantFilter $Tenant -UserId @($UsersWithoutMFA.userPrincipalName) -State 'enforced'`
`62`	`62`	`Write-LogMessage -API 'Standards' -tenant $tenant -message $MFAMessage -sev Info`
`63`	`63`	`$UpdateDB = $true`
`64`	`64`	`} catch {`
`@@ -74,6 +74,8 @@ function Invoke-CIPPStandardPerUserMFA {`
`74`	`74`	`Write-LogMessage -API 'Standards' -tenant $Tenant -message "Failed to refresh user cache after remediation: $($_.Exception.Message)" -sev Warning`
`75`	`75`	`}`
`76`	`76`	`}`
	`77`	`+ } else {`
	`78`	`+ Write-LogMessage -API 'Standards' -tenant $tenant -message 'All users already have Legacy MFA enforced.' -sev Info`
`77`	`79`	`}`
`78`	`80`	`}`
`79`	`81`	`if ($Settings.alert -eq $true) {`
Original file line number	Diff line number	Diff line change
`@@ -77,6 +77,8 @@ function Invoke-CIPPStandardUserPreferredLanguage {`
`77`	`77`	`Write-LogMessage -API 'Standards' -tenant $Tenant -message "Failed to refresh user cache after remediation: $($_.Exception.Message)" -sev Warning`
`78`	`78`	`}`
`79`	`79`	`}`
	`80`	`+ } else {`
	`81`	`+ Write-LogMessage -API 'Standards' -tenant $Tenant -message "All users already have the preferred language set to $preferredLanguage." -sev Info`
`80`	`82`	`}`
`81`	`83`	`}`
`82`	`84`