
    PowerShell module for common Azure RMS functions and resources used in BitTitan Runbooks
    Version: 0.2.1
    Last updated: 23 October 2018
    Copyright (c) BitTitan, Inc. All rights reserved.
    Licensed under the MIT License.

# Install/import BitTitan.Runbooks.Modules to bootstrap the install/import of the other modules
Install-Module BitTitan.Runbooks.Modules -Scope CurrentUser -AllowClobber
Import-Module BitTitan.Runbooks.Modules -Force

# Install/import the other BitTitan.Runbooks modules
Import-BT_Module BitTitan.Runbooks.MSPComplete -Quiet

    This function connects to Azure RMS using admin account credentials or a MSPComplete Endpoint.
    This function connects to Azure RMS using admin account credentials or a MSPComplete Endpoint.
    It returns whether the connection and logon was successful.
.PARAMETER username
    The username of the Azure RMS admin account.
.PARAMETER password
    The password of the Azure RMS admin account.
.PARAMETER endpoint
    The MSPComplete Endpoint for the Azure RMS admin credentials.
    This endpoint can be masked or unmasked.
    Connect-AzureRmsAdminAccount -Endpoint $Endpoint
    $Endpoint | Connect-AzureRmsAdminAccount
    Connect-AzureRmsAdminAccount -Username $username -Password $password

function Connect-AzureRmsAdminAccount {
    param (
        # The username of the Azure RMS account.
        [Parameter(Mandatory=$true, ParameterSetName="credential")]

        # The password of the Azure RMS account.
        [Parameter(Mandatory=$true, ParameterSetName="credential")]

        # The MSPComplete Endpoint.
        [Parameter(Mandatory=$true, ParameterSetName="endpoint", ValueFromPipeline=$true)]

    # If given endpoint, retrieve credential directly
    if ($PSCmdlet.ParameterSetName -eq "endpoint") {
        $aadrmCredential = $endpoint | Get-CredentialFromMSPCompleteEndpoint
        $username = $aadrmCredential.Username
    # Create the Azure RMS credential from the given username and password
    else {
        $aadrmCredential = New-Object System.Management.Automation.PSCredential($username, $password)

    # Logon to Azure RMS
    try {
        Connect-AadrmService -Credential $aadrmCredential -ErrorAction Stop

        # Logon was successful
        Write-Information "Connection and logon to Azure RMS successful with username '$($username)'."
        return $true
    catch {
        # Logon was unsuccessful
        Write-Error "Failed Azure RMS account login with username '$($username)'. $($_.Exception.Message)"
        return $false