Running from Win 7 Ent environment with AV disabled.
Have MFA setup but have been able able to use the app password.
That table shows every mailbox listed as having auditing enabled but I do not think that is the case. Executed the script Friday. Over the weekend, the Microsoft Security Score dashboard still has us with only 87 out of 150 mailboxes with auditing turned on.
cmdlet Get-Credential at command pipeline position 1
Supply values for the following parameters:
WARNING: Proxy creation has been skipped for the following command: 'Add-AvailabilityAddressSpace, Add-DistributionGroupMember, Add-MailboxFolderPermission, Add-MailboxLocation, Add
-MailboxPermission, Add-ManagementRoleEntry, Add-PublicFolderClientPermission, Add-RecipientPermission, Add-RoleGroupMember, Add-UnifiedGroupLinks, Approve-ElevatedAccessRequest, Cl
ear-ActiveSyncDevice, Clear-MobileDevice, Clear-TextMessagingAccount, Compare-TextMessagingVerificationCode, Complete-MigrationBatch, ConvertFrom-ExoJobData.ps1, Delete-QuarantineMe
ssage, Deny-ElevatedAccessRequest, Disable-AntiPhishRule, Disable-App, Disable-HostedContentFilterRule, Disable-InboxRule, Disable-JournalArchiving, Disable-JournalRule, Disable-Mai
lbox, Disable-MailPublicFolder, Disable-MalwareFilterRule, Disable-OutlookProtectionRule, Disable-SweepRule, Disable-TransportRule, Disable-UMAutoAttendant, Disable-UMCallAnsweringR
ule, Disable-UMIPGateway, Disable-UMMailbox, Enable-AntiPhishRule, Enable-App, Enable-HostedContentFilterRule, Enable-InboxRule, Enable-JournalRule, Enable-Mailbox, Enable-MailPubli
cFolder, Enable-MalwareFilterRule, Enable-OrganizationCustomization, Enable-OutlookProtectionRule, Enable-SweepRule, Enable-TransportRule, Enable-UMAutoAttendant, Enable-UMCallAnswe
ringRule, Enable-UMIPGateway, Enable-UMMailbox, Export-DlpPolicyCollection, Export-MailboxDiagnosticLogs, Export-MigrationReport, Export-QuarantineMessage, Export-TransportRuleColle
ction, Export-UMCallDataRecord, Export-UMPrompt, Get-AcceptedDomain, Get-ActiveSyncDevice, Get-ActiveSyncDeviceAccessRule, Get-ActiveSyncDeviceClass, Get-ActiveSyncDeviceStatistics,
Get-ActiveSyncMailboxPolicy, Get-ActiveSyncOrganizationSettings, Get-AddressBookPolicy, Get-AdminAuditLogConfig, Get-AdministrativeUnit, Get-AdvancedThreatProtectionDocumentDetail,
Get-AdvancedThreatProtectionDocumentReport, Get-AntiPhishPolicy, Get-AntiPhishRule, Get-App, Get-ApplicationAccessPolicy, Get-ATPTotalTrafficReport, Get-AuditConfig, Get-AuditConfi
gurationPolicy, Get-AuditConfigurationRule, Get-AuditLogSearch, Get-AuthenticationPolicy, Get-AuthServer, Get-AvailabilityAddressSpace, Get-AvailabilityConfig, Get-BlockedSenderAddr
ess, Get-CalendarDiagnosticAnalysis, Get-CalendarDiagnosticLog, Get-CalendarDiagnosticObjects, Get-CalendarNotification, Get-CalendarProcessing, Get-CalendarViewDiagnostics, Get-CAS
Mailbox, Get-CASMailboxPlan, Get-ClassificationRuleCollection, Get-ClientAccessRule, Get-Clutter, Get-CompliancePolicyFileSyncNotification, Get-CompliancePolicySyncNotification, Get
-ComplianceTag, Get-ComplianceTagStorage, Get-ConnectionByClientTypeDetailReport, Get-ConnectionByClientTypeReport, Get-ConnectSubscription, Get-Contact, Get-CsActiveUserReport, Get
-CsAVConferenceTimeReport, Get-CsClientDeviceDetailReport, Get-CsClientDeviceReport, Get-CsConferenceReport, Get-CsP2PAVTimeReport, Get-CsP2PSessionReport, Get-CsPSTNConferenceTimeR
eport, Get-CsPSTNUsageDetailReport, Get-CsUserActivitiesReport, Get-CsUsersBlockedReport, Get-DataClassification, Get-DataClassificationConfig, Get-DataEncryptionPolicy, Get-DataRet
entionReport, Get-DeviceComplianceDetailsReport, Get-DeviceComplianceDetailsReportFilter, Get-DeviceCompliancePolicyInventory, Get-DeviceComplianceReportDate, Get-DeviceComplianceSu
mmaryReport, Get-DeviceComplianceUserInventory, Get-DeviceComplianceUserReport, Get-DeviceConditionalAccessPolicy, Get-DeviceConditionalAccessRule, Get-DeviceConfigurationPolicy, Ge
t-DeviceConfigurationRule, Get-DevicePolicy, Get-DeviceTenantPolicy, Get-DeviceTenantRule, Get-DistributionGroup, Get-DistributionGroupMember, Get-DkimSigningConfig, Get-DlpDetailRe
port, Get-DlpDetectionsReport, Get-DlpIncidentDetailReport, Get-DlpKeywordDictionary, Get-DlpPolicy, Get-DlpPolicyTemplate, Get-DlpSensitiveInformationTypeRulePackage, Get-DlpSiDete
ctionsReport, Get-DynamicDistributionGroup, Get-ElevatedAccessApprovalPolicy, Get-ElevatedAccessAuthorization, Get-ElevatedAccessRequest, Get-EligibleDistributionGroupForMigration,
Get-EmailAddressPolicy, Get-FailedContentIndexDocuments, Get-FederatedOrganizationIdentifier, Get-FederationInformation, Get-FederationTrust, Get-FfoMigrationReport, Get-FocusedInbo
x, Get-Group, Get-GroupActivityReport, Get-GroupMailbox, Get-HistoricalSearch, Get-HostedConnectionFilterPolicy, Get-HostedContentFilterPolicy, Get-HostedContentFilterRule, Get-Host
edOutboundSpamFilterPolicy, Get-HotmailSubscription, Get-HybridMailflow, Get-HybridMailflowDatacenterIPs, Get-ImapSubscription, Get-InboundConnector, Get-InboxRule, Get-InformationB
arrierReportDetails, Get-InformationBarrierReportSummary, Get-IntraOrganizationConfiguration, Get-IntraOrganizationConnector, Get-IRMConfiguration, Get-JournalRule, Get-LicenseVsUsa
geSummaryReport, Get-LinkedUser, Get-LogonStatistics, Get-Mailbox, Get-MailboxActivityReport, Get-MailboxAuditBypassAssociation, Get-MailboxAutoReplyConfiguration, Get-MailboxCalend
arConfiguration, Get-MailboxCalendarFolder, Get-MailboxFolder, Get-MailboxFolderPermission, Get-MailboxFolderStatistics, Get-MailboxJunkEmailConfiguration, Get-MailboxLocation, Get-
MailboxMessageConfiguration, Get-MailboxOverrideConfiguration, Get-MailboxPermission, Get-MailboxPlan, Get-MailboxPreferredLocation, Get-MailboxRegionalConfiguration, Get-MailboxRes
toreRequest, Get-MailboxRestoreRequestStatistics, Get-MailboxSearch, Get-MailboxSpellingConfiguration, Get-MailboxStatistics, Get-MailboxUsageDetailReport, Get-MailboxUsageReport, G
et-MailboxUserConfiguration, Get-MailContact, Get-MailDetailATPReport, Get-MailDetailDlpPolicyReport, Get-MailDetailMalwareReport, Get-MailDetailReport, Get-MailDetailSpamReport, Ge
t-MailDetailTransportRuleReport, Get-MailFilterListReport, Get-MailPublicFolder, Get-MailTrafficATPReport, Get-MailTrafficPolicyReport, Get-MailTrafficReport, Get-MailTrafficSummary
Report, Get-MailTrafficTopReport, Get-MailUser, Get-MalwareFilterPolicy, Get-MalwareFilterRule, Get-ManagementRole, Get-ManagementRoleAssignment, Get-ManagementRoleEntry, Get-Manage
mentScope, Get-MessageCategory, Get-MessageClassification, Get-MessageRecallResult, Get-MessageTrace, Get-MessageTraceDetail, Get-MessageTrackingReport, Get-MigrationBatch, Get-Migr
ationConfig, Get-MigrationEndpoint, Get-MigrationStatistics, Get-MigrationUser, Get-MigrationUserStatistics, Get-MobileDevice, Get-MobileDeviceDashboardSummaryReport, Get-MobileDevi
ceMailboxPolicy, Get-MobileDeviceStatistics, Get-MoveRequest, Get-MoveRequestStatistics, Get-MxRecordReport, Get-MxRecordsReport, Get-Notification, Get-O365ClientBrowserDetailReport
, Get-O365ClientBrowserReport, Get-O365ClientOSDetailReport, Get-O365ClientOSReport, Get-OMEConfiguration, Get-OMEMessageStatus, Get-OnlineMeetingConfiguration, Get-OnPremisesOrgani
zation, Get-OrganizationalUnit, Get-OrganizationConfig, Get-OrganizationRelationship, Get-OutboundConnector, Get-OutboundConnectorReport, Get-OutlookProtectionRule, Get-OwaMailboxPo
licy, Get-PartnerApplication, Get-PartnerCustomerUserReport, Get-PerimeterConfig, Get-PerimeterMessageTrace, Get-PhishFilterPolicy, Get-Place, Get-PolicyTipConfig, Get-PopSubscripti
on, Get-PublicFolder, Get-PublicFolderClientPermission, Get-PublicFolderItemStatistics, Get-PublicFolderMailboxDiagnostics, Get-PublicFolderMailboxMigrationRequest, Get-PublicFolder
MailboxMigrationRequestStatistics, Get-PublicFolderMigrationRequest, Get-PublicFolderMigrationRequestStatistics, Get-PublicFolderStatistics, Get-QuarantineMessage, Get-QuarantineMes
sageHeader, Get-RbacDiagnosticInfo, Get-Recipient, Get-RecipientPermission, Get-RecipientStatisticsReport, Get-RemoteDomain, Get-ReportExecutionInstance, Get-ReportSchedule, Get-Rep
ortScheduleList, Get-ResourceConfig, Get-RetentionEvent, Get-RetentionPolicy, Get-RetentionPolicyTag, Get-RMSTemplate, Get-RMSTrustedPublishingDomain, Get-RoleAssignmentPolicy, Get-
RoleGroup, Get-RoleGroupMember, Get-SCInsights, Get-ScorecardClientDeviceReport, Get-ScorecardClientOSReport, Get-ScorecardClientOutlookReport, Get-ScorecardMetricsReport, Get-Searc
hDocumentFormat, Get-SecurityPrincipal, Get-SendAddress, Get-SenderPermission, Get-ServiceDeliveryReport, Get-ServiceStatus, Get-SharingPolicy, Get-SiteMailbox, Get-SiteMailboxDiagn
ostics, Get-SiteMailboxProvisioningPolicy, Get-SmimeConfig, Get-SPOActiveUserReport, Get-SpoofMailReport, Get-SPOSkyDriveProDeployedReport, Get-SPOSkyDriveProStorageReport, Get-SPOT
eamSiteDeployedReport, Get-SPOTeamSiteStorageReport, Get-SPOTenantStorageMetricReport, Get-StaleMailboxDetailReport, Get-StaleMailboxReport, Get-Subscription, Get-SupervisoryReviewA
ctivity, Get-SupervisoryReviewPolicyReport, Get-SupervisoryReviewPolicyV2, Get-SupervisoryReviewReport, Get-SupervisoryReviewRule, Get-SweepRule, Get-SyncConfig, Get-SyncRequest, Ge
t-SyncRequestStatistics, Get-TenantAnalyticsConfig, Get-TextMessagingAccount, Get-ToolInformation, Get-TransportConfig, Get-TransportRule, Get-TransportRuleAction, Get-TransportRule
Predicate, Get-UMAutoAttendant, Get-UMCallAnsweringRule, Get-UMCallDataRecord, Get-UMCallSummaryReport, Get-UMDialPlan, Get-UMHuntGroup, Get-UMIPGateway, Get-UMMailbox, Get-UMMailbo
xConfiguration, Get-UMMailboxPIN, Get-UMMailboxPlan, Get-UMMailboxPolicy, Get-UMPhoneSession, Get-UnifiedAuditSetting, Get-UnifiedGroup, Get-UnifiedGroupLinks, Get-User, Get-UserAna
lyticsConfig, Get-UserPhoto, Import-ContactList, Import-DlpPolicyCollection, Import-RecipientDataProperty, Import-RMSTrustedPublishingDomain, Import-TransportRuleCollection, Import-
UMPrompt, New-ActiveSyncDeviceAccessRule, New-ActiveSyncMailboxPolicy, New-AdminAuditLogSearch, New-AntiPhishPolicy, New-AntiPhishRule, New-App, New-ApplicationAccessPolicy, New-Aut
henticationPolicy, New-AvailabilityConfig, New-ClassificationRuleCollection, New-ClientAccessRule, New-CompliancePolicySyncNotification, New-ConnectSubscription, New-DataClassificat
ion, New-DistributionGroup, New-DkimSigningConfig, New-DlpPolicy, New-DynamicDistributionGroup, New-ElevatedAccessRequest, New-EmailAddressPolicy, New-Fingerprint, New-HostedConnect
ionFilterPolicy, New-HostedContentFilterPolicy, New-HostedContentFilterRule, New-InboundConnector, New-InboxRule, New-IntraOrganizationConnector, New-JournalRule, New-Mailbox, New-M
ailboxAuditLogSearch, New-MailboxFolder, New-MailboxRestoreRequest, New-MailboxSearch, New-MailContact, New-MailMessage, New-MailUser, New-MalwareFilterPolicy, New-MalwareFilterRule
, New-ManagementRole, New-ManagementRoleAssignment, New-ManagementScope, New-MessageClassification, New-MigrationBatch, New-MigrationEndpoint, New-MobileDeviceMailboxPolicy, New-Mov
eRequest, New-OMEConfiguration, New-OnPremisesOrganization, New-OrganizationRelationship, New-OutboundConnector, New-OutlookProtectionRule, New-OwaMailboxPolicy, New-PartnerApplicat
ion, New-PolicyTipConfig, New-PrivilegedIdentityManagementRequest, New-ProtectionServicePolicy, New-PublicFolder, New-PublicFolderMigrationRequest, New-RemoteDomain, New-ReportSched
ule, New-RetentionPolicy, New-RetentionPolicyTag, New-RoleAssignmentPolicy, New-RoleGroup, New-SchedulingMailbox, New-SharingPolicy, New-SiteMailbox, New-SiteMailboxProvisioningPoli
cy, New-SweepRule, New-SyncMailPublicFolder, New-SyncRequest, New-TransportRule, New-UMAutoAttendant, New-UMCallAnsweringRule, New-UMDialPlan, New-UMHuntGroup, New-UMMailboxPolicy,
New-UnifiedGroup, Preview-QuarantineMessage, Release-QuarantineMessage, Remove-ActiveSyncDevice, Remove-ActiveSyncDeviceAccessRule, Remove-ActiveSyncMailboxPolicy, Remove-AntiPhishP
olicy, Remove-AntiPhishRule, Remove-App, Remove-ApplicationAccessPolicy, Remove-AuditConfigurationPolicy, Remove-AuditConfigurationRule, Remove-AuditStubFolder, Remove-Authenticatio
nPolicy, Remove-AvailabilityAddressSpace, Remove-AvailabilityConfig, Remove-BlockedSenderAddress, Remove-CalendarEvents, Remove-ClassificationRuleCollection, Remove-ClientAccessRule
, Remove-CompliancePolicyFileSyncNotification, Remove-CompliancePolicySyncNotification, Remove-ConnectSubscription, Remove-DataClassification, Remove-DistributionGroup, Remove-Distr
ibutionGroupMember, Remove-DlpPolicy, Remove-DynamicDistributionGroup, Remove-EmailAddressPolicy, Remove-HostedConnectionFilterPolicy, Remove-HostedContentFilterPolicy, Remove-Hoste
dContentFilterRule, Remove-HybridConfiguration, Remove-InboundConnector, Remove-InboxRule, Remove-IntraOrganizationConnector, Remove-JournalRule, Remove-Mailbox, Remove-MailboxFolde
rPermission, Remove-MailboxLocation, Remove-MailboxPermission, Remove-MailboxRestoreRequest, Remove-MailboxSearch, Remove-MailboxUserConfiguration, Remove-MailContact, Remove-MailUs
er, Remove-MalwareFilterPolicy, Remove-MalwareFilterRule, Remove-ManagementRole, Remove-ManagementRoleAssignment, Remove-ManagementRoleEntry, Remove-ManagementScope, Remove-MessageC
lassification, Remove-MigrationBatch, Remove-MigrationEndpoint, Remove-MigrationUser, Remove-MobileDevice, Remove-MobileDeviceMailboxPolicy, Remove-MoveRequest, Remove-OMEConfigurat
ion, Remove-OnPremisesOrganization, Remove-OrganizationRelationship, Remove-OutboundConnector, Remove-OutlookProtectionRule, Remove-OwaMailboxPolicy, Remove-PartnerApplication, Remo
ve-PolicyTipConfig, Remove-PublicFolder, Remove-PublicFolderClientPermission, Remove-PublicFolderMailboxMigrationRequest, Remove-PublicFolderMigrationRequest, Remove-RecipientPermis
sion, Remove-RemoteDomain, Remove-ReportSchedule, Remove-RetentionPolicy, Remove-RetentionPolicyTag, Remove-RMSTrustedPublishingDomain, Remove-RoleAssignmentPolicy, Remove-RoleGroup
, Remove-RoleGroupMember, Remove-SharingPolicy, Remove-Subscription, Remove-SweepRule, Remove-SyncMailPublicFolder, Remove-SyncRequest, Remove-TransportRule, Remove-UMAutoAttendant,
Remove-UMCallAnsweringRule, Remove-UMDialPlan, Remove-UMHuntGroup, Remove-UMIPGateway, Remove-UMMailboxPolicy, Remove-UnifiedGroup, Remove-UnifiedGroupLinks, Remove-UserPhoto, Resu
me-MailboxRestoreRequest, Resume-MoveRequest, Resume-PublicFolderMailboxMigrationRequest, Resume-PublicFolderMigrationRequest, Resume-SyncRequest, Revoke-ElevatedAccessAuthorization
, Rotate-DkimSigningConfig, Search-AdminAuditLog, Search-MailboxAuditLog, Search-MessageTrackingReport, Search-UnifiedAuditLog, Send-TextMessagingVerificationCode, Set-AcceptedDomai
n, Set-ActiveSyncDeviceAccessRule, Set-ActiveSyncMailboxPolicy, Set-ActiveSyncOrganizationSettings, Set-AdminAuditLogConfig, Set-AntiPhishPolicy, Set-AntiPhishRule, Set-App, Set-App
licationAccessPolicy, Set-AuthenticationPolicy, Set-AvailabilityConfig, Set-CalendarNotification, Set-CalendarProcessing, Set-CASMailbox, set-CASMailboxPlan, Set-ClassificationRuleC
ollection, Set-ClientAccessRule, Set-Clutter, Set-ConnectSubscription, Set-Contact, Set-DataClassification, Set-DataEncryptionPolicy, Set-DistributionGroup, Set-DkimSigningConfig, S
et-DlpPolicy, Set-DynamicDistributionGroup, Set-ElevatedAccessRequest, Set-EmailAddressPolicy, Set-FederatedOrganizationIdentifier, Set-FocusedInbox, Set-Group, Set-GroupMailbox, Se
t-HostedConnectionFilterPolicy, Set-HostedContentFilterPolicy, Set-HostedContentFilterRule, Set-HostedOutboundSpamFilterPolicy, Set-HotmailSubscription, Set-HybridMailflow, Set-Imap
Subscription, Set-InboundConnector, Set-InboxRule, Set-IntraOrganizationConnector, Set-IRMConfiguration, Set-JournalRule, Set-LinkedUser, Set-Mailbox, Set-MailboxAuditBypassAssociat
ion, Set-MailboxAutoReplyConfiguration, Set-MailboxCalendarConfiguration, Set-MailboxCalendarFolder, Set-MailboxFolderPermission, Set-MailboxJunkEmailConfiguration, Set-MailboxLocat
ion, Set-MailboxMessageConfiguration, Set-MailboxPlan, Set-MailboxRegionalConfiguration, Set-MailboxRestoreRequest, Set-MailboxSearch, Set-MailboxSpellingConfiguration, Set-MailCont
act, Set-MailPublicFolder, Set-MailUser, Set-MalwareFilterPolicy, Set-MalwareFilterRule, Set-ManagementRoleAssignment, Set-ManagementRoleEntry, Set-ManagementScope, Set-MessageClass
ification, Set-MigrationBatch, Set-MigrationConfig, Set-MigrationEndpoint, Set-MigrationUser, Set-MobileDeviceMailboxPolicy, Set-MoveRequest, Set-Notification, Set-OMEConfiguration,
Set-OMEMessageRevocation, Set-OnPremisesOrganization, Set-Organization, Set-OrganizationConfig, Set-OrganizationRelationship, Set-OutboundConnector, Set-OutlookProtectionRule, Set-
OwaMailboxPolicy, Set-PartnerApplication, Set-PerimeterConfig, Set-PhishFilterPolicy, Set-Place, Set-PolicyTipConfig, Set-PopSubscription, Set-ProtectionServicePolicy, Set-PublicFol
der, Set-PublicFolderMailboxMigrationRequest, Set-PublicFolderMigrationRequest, Set-RemoteDomain, Set-ReportSchedule, Set-ResourceConfig, Set-RetentionPolicy, Set-RetentionPolicyTag
, Set-RMSTemplate, Set-RMSTrustedPublishingDomain, Set-RoleAssignmentPolicy, Set-RoleGroup, Set-SharingPolicy, Set-SiteMailbox, Set-SiteMailboxProvisioningPolicy, Set-SmimeConfig, S
et-SweepRule, Set-SyncRequest, Set-TenantAnalyticsConfig, Set-TextMessagingAccount, Set-TransportConfig, Set-TransportRule, Set-UMAutoAttendant, Set-UMCallAnsweringRule, Set-UMDialP
lan, Set-UMIPGateway, Set-UMMailbox, Set-UMMailboxConfiguration, Set-UMMailboxPIN, Set-UMMailboxPolicy, Set-UnifiedAuditSetting, Set-UnifiedGroup, Set-User, Set-UserAnalyticsConfig,
Set-UserPhoto, Start-AuditAssistant, Start-HistoricalSearch, Start-ManagedFolderAssistant, Start-MigrationBatch, Start-MigrationUser, Start-UMPhoneSession, Stop-HistoricalSearch, S
top-MigrationBatch, Stop-MigrationUser, Stop-UMPhoneSession, Suspend-MailboxRestoreRequest, Suspend-MoveRequest, Suspend-PublicFolderMailboxMigrationRequest, Suspend-PublicFolderMig
rationRequest, Suspend-SyncRequest, Test-ApplicationAccessPolicy, Test-ClientAccessRule, Test-DataClassification, Test-DataEncryptionPolicy, Test-IRMConfiguration, Test-MAPIConnecti
vity, Test-MigrationServerAvailability, Test-OAuthConnectivity, Test-OrganizationRelationship, Test-SiteMailbox, Test-TextExtraction, Troubleshoot-AgendaMail, Undo-SoftDeletedMailbo
x, Undo-SoftDeletedUnifiedGroup, Update-DistributionGroupMember, Update-HybridConfiguration, Update-PublicFolderMailbox, Update-Recipient, Update-RoleGroupMember, Update-SiteMailbox
, Upgrade-DistributionGroup, Validate-OutboundConnector, Validate-RetentionRuleQuery, Write-AdminAuditLog', because it would shadow an existing local command. Use the AllowClobber
parameter if you want to shadow existing local commands.
Import-PSSession : No command proxies have been created, because all of the requested remote commands would shadow existing local commands. Use the AllowClobber parameter if you
want to shadow existing local commands.
At AuditMailboxEnabled.ps1:7 char:1
+ Import-PSSession $ExoSession
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : InvalidResult: (:) [Import-PSSession], ArgumentException
+ FullyQualifiedErrorId : ErrorNoCommandsImportedBecauseOfSkipping,Microsoft.PowerShell.Commands.ImportPSSessionCommand
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent