Englisch + German / English / Microsoft 365

Manage SharePoint Embedded container membership with PowerShell

4. October 2025

Microsoft has added new PowerShell capabilities that allow SharePoint Embedded Administrators to manage container memberships with PowerShell commands.
The following SharePoint Embedded container applications are available:

Owning Application Application ID
Loop Workspaces a187e399-0c36-4b98-8f04-1edc167a0996
Microsoft Designer 5e2795e3-ce8c-4cfb-b302-35fe5cd01597
Outlook Newsletters 155d75a8-799c-4ad4-ae3f-0084ccced5fa
Declarative Agent e8be65d6-d430-4289-a665-51bf2a194bda
Teams Virtual Event VOD 7fc21101-d09b-4343-8eb3-21187e0431a4

This update enhances administrative flexibility by enabling user role management through PowerShell, eliminating the need for dependency on the SharePoint Admin Center.

Timeline

The rollout should be completed in October 2025.

Impact for SharePoint Embedded Administrators

Since December 2024, administrators have been able to manage members of SharePoint Embedded containers through the SharePoint Admin Center.

Read:  Enhanced functionality to manage SharePoint Embedded containers in the SharePoint admin center

Microsoft now extends this functionality to PowerShell with the following commands:

These commands support membership management in all container types, including user-owned containers.

All SPE container types are supported
All SPE container types are supported

The commands are included in the latest Microsoft.Online.SharePoint.PowerShell module update.
Each SharePoint Embedded container includes four roles: Owner, Manager, Writer, and Reader. Newly added members are assigned the Manager role by default.

Managers can add, update, and delete content within a container, and also manage permissions for that container. However, they cannot delete the container itself.

A SharePoint Embedded container includes four roles
A SharePoint Embedded container includes four roles

A SharePoint Embedded Administrator can now update the role of an existing member with PowerShell.
Important: The SharePoint Administrator role does not grant permissions to manage SharePoint Embedded containers.

PowerShell
$SPEContainer = Get-SPOContainer -Identity "<ContainerID>"
Set-SPOContainerUser -ContainerId $SPEContainer.ContainerId -LoginName "[email protected]" -Role Reader

Updating the role of an existing member
Updating the role of an existing member

Adding a new member to the container. You cannot add more than one member at the same time.

PowerShell
Add-SPOContainerUser -ContainerId $SPEContainer.ContainerId -LoginName "[email protected]" -Role Writer

Adding a new member to the container
Adding a new member to the container

Removing a member from the container:

PowerShell
Remove-SPOContainerUser -ContainerId $SPEContainer.ContainerId -LoginName "[email protected]"


Removing the last owner from the container. Also possible > congratulations, you now have an ownerless container.

Removing the last owner from a SPE container
Removing the last owner from a SPE container

Note:
Equivalent PnP PowerShell commands are not yet available. Until then, automation for membership management is not possible through Microsoft.Online.SharePoint.PowerShell module.

Tags:

Share
Avatar photo

Tobias Asböck

Tobias is a Senior System Engineer with around ten years of professional experience with Microsoft 365 products such as SharePoint Online, SharePoint Premium, OneDrive for Business, Teams Collaboration, Entra ID, Information Protection, Universal Print, and Microsoft 365 Licensing. He also has 15+ years of experience planning, administering, and operating SharePoint Server environments. Tobias is a PowerShell Scripter with certifications for Microsoft 365 products. In his spare time, Tobias is busy with updates in the Microsoft 365 world or on the road with his road bike and other sports activities. If you have additional questions, please contact me via LinkedIn or [email protected].

Leave a Reply

Your email address will not be published. Required fields are marked *