Export (0) Print
Expand All

Enable-TlsSessionTicketKey

Windows Server 2012 R2 and Windows 8.1

Updated: October 17, 2013

Applies To: Windows 8.1, Windows PowerShell 4.0, Windows Server 2012 R2

Enable-TlsSessionTicketKey

Configures a TLS server with a TLS session ticket key.

Syntax

Parameter Set: Default
Enable-TlsSessionTicketKey [-Password] <SecureString> [-Path] <String> [-ServiceAccountName] <NTAccount> [-Force] [-Confirm] [-WhatIf] [ <CommonParameters>]




Detailed Description

The Enable-TlsSessionTicketKey cmdlet configures a Transport Layer Security (TLS) server with an administrator-managed TLS session ticket key, and configures the rule that uses the key for the application service account.

TLS creates a session ticket by using the Transport Layer Security (TLS) Session Resumption without Server-Side State mechanism [RFC 5077]. This mechanism helps to improve the performance of TLS. The TLS server uses this mechanism to create a key to encrypt a session ticket. The client can later use the encrypted session ticket to resume communication with the TLS server. Otherwise, the client must restart the communication by acquiring a new session ticket. For more information, see RFC 5077, "Transport Layer Security (TLS) Session Resumption without Server-Side State."

Parameters

-Force

Forces the command to run without asking for user confirmation.

If you specify this parameter, the cmdlet overwrites the existing session ticket key and configuration.


Aliases

none

Required?

false

Position?

named

Default Value

none

Accept Pipeline Input?

false

Accept Wildcard Characters?

false

-Password<SecureString>

Specifies the password, as a secure string, for the configuration file of the TLS server.


Aliases

none

Required?

true

Position?

1

Default Value

none

Accept Pipeline Input?

True (ByValue, ByPropertyName)

Accept Wildcard Characters?

false

-Path<String>

Specifies the path of the configuration file for the TLS server.


Aliases

FullName

Required?

true

Position?

2

Default Value

none

Accept Pipeline Input?

True (ByPropertyName)

Accept Wildcard Characters?

false

-ServiceAccountName<NTAccount>

Specifies the name of a service account. The cmdlet configures the TLS session ticket key for the service account.


Aliases

none

Required?

true

Position?

3

Default Value

none

Accept Pipeline Input?

false

Accept Wildcard Characters?

false

-Confirm

Prompts you for confirmation before running the cmdlet.


Required?

false

Position?

named

Default Value

false

Accept Pipeline Input?

false

Accept Wildcard Characters?

false

-WhatIf

Shows what would happen if the cmdlet runs. The cmdlet is not run.


Required?

false

Position?

named

Default Value

false

Accept Pipeline Input?

false

Accept Wildcard Characters?

false

<CommonParameters>

This cmdlet supports the common parameters: -Verbose, -Debug, -ErrorAction, -ErrorVariable, -OutBuffer, and -OutVariable. For more information, see    about_CommonParameters.

Inputs

The input type is the type of the objects that you can pipe to the cmdlet.

Outputs

The output type is the type of the objects that the cmdlet emits.

Examples

Example 1: Configure a TLS server with a TLS session ticket key

This example configures a TLS server with a key for the TLS session ticket.

The first command prompts the user to enter a password. The command masks the password that the user types at the prompt. The command stores the password in the $Password variable

The second command configures the session ticket key for the TLS server. The command specifies the path for the configuration file on the TLS server, and specifies that the TLS session use the password stored in $Password to access the configuration file.


PS C:\> $Password = read-host -assecurestring
PS C:\> Enable-TlsSessionTicketKey -Path "C:\keyconfig\tlssessionticketKey.config" -Password $Password -ServiceAccountName "Networkservice"

Related topics

Was this page helpful?
(1500 characters remaining)
Thank you for your feedback
Show:
© 2014 Microsoft