Skip to main content
< All Articles

How to create a group naming policy in Microsoft Entra ID

Posted on September 5, 2024
Microsoft 365

Some time ago, I published a post on best practices associated with the site/group naming convention in SharePoint and Microsoft 365. What if, after reading that article, you decided to enforce some sort of convention? Well, you came to the right spot; let me explain how this works and how you can create a group naming policy in Microsoft Entra ID.

SharePoint site name best practices

Before we get into the technical steps, perhaps it would make sense to get familiar with some best practices for site name/group name conventions. Check out this article first.

What is Microsoft Entra ID?

In case you are confused by the name, Entra ID is the new name for the Azure Active Directory, which I blogged about previously. It is an Admin location where Administrators can manage users, security groups, devices, etc.

How to create a group naming policy in Microsoft Entra ID

    1. You must be a Global Microsoft 365 Admin or Microsoft Entra ID Admin to do this
    2. From Microsoft 365 App Launcher, choose AdminCreategroupnamingpolicymicrosoftentraid1
    3. Under Admin centers, click IdentityCreategroupnamingpolicymicrosoftentraid2
    4. Once in the Microsoft Entra Admin Center, click Groups > Group settingsCreategroupnamingpolicymicrosoftentraid3
    5. Under Settings, click on Naming policycreate a group naming policy in Microsoft Entra ID
    6. There are 2 things you can configure here: Blocked words and Group naming policy. For the Blocked words, download the CSV file, update it with blocked words, and reupload.create a group naming policy in Microsoft Entra ID
    7. If you want to set up a Group naming policy, click on the Group naming policy tab.create a group naming policy in Microsoft Entra ID
    8. You can add prefixes and suffixes to the group name. Prefixes/Suffixes can be based on attributes/properties from Entra ID (Azure AD) or fixed strings.create a group naming policy in Microsoft Entra ID
    9. In my case, I added Attribute Country, followed by string “-” as a prefix, and string “-” followed by Department Attribute as a suffixcreate a group naming policy in Microsoft Entra ID
    10. Click the Save button to save the changes to the policy. You will receive a confirmation message.Creategroupnamingpolicymicrosoftentraid9

User Experience

Once the user tries to create a Team Site in SharePoint or a Team in Teams, the group naming policy will make the appropriate corrections. For example, in the example below, a user tried to create a Team site using some profanity words that were on a Blocked list.

Creategroupnamingpolicymicrosoftentraid11

Likewise, once the user tries to create a SharePoint Team Site, it adjusts the name accordingly per the group naming policy.

create a group naming policy in Microsoft Entra ID

Important Notes

  1. Group Naming policy is not enforced on users with the Global Admin role. So, if you are an admin and create a group, the policy will not apply to you. It only applies to regular users.
  2. For the group naming policy to work, you must have all the proper attributes/properties defined for your users in Microsoft Entra ID (i.e. Country, Department, etc.)
  3. The group naming policy applies to all Microsoft 365 Groups, no matter how they are created. So if someone creates a Team Site in SharePoint or a Team in MS Teams, or plan in Planner, etc, the Group naming policy applies to all these scenarios
  4. Group naming policy only applies to Team Sites, since those are connected to Microsoft 365 Groups. The policy does not apply to Communication Sites.

About Me

I’m Greg Zelfond, a U.S. based SharePoint consultant, and I provide affordable out-of-the-box SharePoint consulting, training, and configuration assistance to small and medium-sized businesses all over the world.

Need help?