Public/generated/Get-KriticalUtcmEXOHostedOutboundSpamFilterPolicy.ps1

# Kritical.PS.UTCM | Microsoft Graph UTCM REST API toolkit
# (c) 2026 Kritical Pty Ltd | https://kritical.net
# Kritical brand banner is rendered at module load via Write-KriticalUtcmBanner.

function Get-KriticalUtcmEXOHostedOutboundSpamFilterPolicy {
<#
.SYNOPSIS
    Kritical.UTCM shim for M365DSC resource EXOHostedOutboundSpamFilterPolicy.

.DESCRIPTION

    Search-replace safe: callers that today invoke
        Get-M365DSCEXOHostedOutboundSpamFilterPolicy -Credential $cred -TenantId $tid
    can rename to
        Get-KriticalUtcmEXOHostedOutboundSpamFilterPolicy -Credential $cred -TenantId $tid
    with ZERO other edits. Parameter shape matches the M365DSC .schema.mof
    exactly. By default -PreferM365DscBehavior is true.

    Actual Graph dispatch is delegated to Invoke-KriticalUtcmM365DscSchemaBridge.
    Bridge maps resource → Graph endpoint per per-resource wave; where mapping
    is not yet shipped, bridge returns an object with Verdict='UNMAPPED'.

.NOTES
    Workload: Exchange
    Param count: 17
#>

[CmdletBinding()]
param(
        # The Identity parameter specifies the name of the policy that you want to modify. There is only one policy named 'Default'
[Parameter(Mandatory)] [string]$Identity,
        # The AdminDisplayName parameter specifies a description for the policy.
[string]$AdminDisplayName,
        # The BccSuspiciousOutboundMail parameter enables or disables adding recipients to the Bcc field of outgoing spam messages. Valid input for this parameter is $true or $false. The default value is $false. You specify the additional recipients using the BccSuspiciousOutboundAdditionalRecipients parameter.
[bool]$BccSuspiciousOutboundMail,
        # The NotifyOutboundSpam parameter enables or disables sending notification messages to administrators when an outgoing message is determined to be spam. Valid input for this parameter is $true or $false. The default value is $false. You specify the administrators to notify by using the NotifyOutboundSpamRecipients parameter.
[bool]$NotifyOutboundSpam,
        # The RecipientLimitInternalPerHour parameter specifies the maximum number of internal recipients that a user can send to within an hour. A valid value is 0 to 10000. The default value is 0, which means the service defaults are used.
[int]$RecipientLimitInternalPerHour,
        # The RecipientLimitPerDay parameter specifies the maximum number of recipients that a user can send to within a day. A valid value is 0 to 10000. The default value is 0, which means the service defaults are used.
[int]$RecipientLimitPerDay,
        # The RecipientLimitExternalPerHour parameter specifies the maximum number of external recipients that a user can send to within an hour. A valid value is 0 to 10000. The default value is 0, which means the service defaults are used.
[int]$RecipientLimitExternalPerHour,
        # The ActionWhenThresholdReached parameter specifies the action to take when any of the limits specified in the policy are reached. Valid values are: Alert, BlockUser, BlockUserForToday. BlockUserForToday is the default value.
[string]$ActionWhenThresholdReached,
        # The AutoForwardingMode specifies how the policy controls automatic email forwarding to outbound recipients. Valid values are: Automatic, On, Off.
[string]$AutoForwardingMode,
        # Specify if this policy should exist or not.
[ValidateSet('Present','Absent')] [string]$Ensure,
        # Credentials of the Exchange Global Admin
[string]$Credential,
        # Id of the Azure Active Directory application to authenticate with.
[string]$ApplicationId,
        # Id of the Azure Active Directory tenant used for authentication.
[string]$TenantId,
        # Thumbprint of the Azure Active Directory application's authentication certificate to use for authentication.
[string]$CertificateThumbprint,
        # Username can be made up to anything but password will be used for CertificatePassword
[string]$CertificatePassword,
        # Path to certificate used in service principal usually a PFX file.
[string]$CertificatePath,
        # Managed ID being used for authentication.
[bool]$ManagedIdentity
)
    Invoke-KriticalUtcmM365DscSchemaBridge -ResourceName 'EXOHostedOutboundSpamFilterPolicy' -Workload 'Exchange' -Verb 'Get' -CallerParams $PSBoundParameters
}