Export (0) Print
Expand All
Expand Minimize

Use Windows PowerShell cmdlets to administer security in SharePoint 2013

 

Applies to: SharePoint Server 2013, SharePoint Foundation 2013

Topic Last Modified: 2013-12-18

Summary: Learn about the Windows PowerShell cmdlets that you can use to administer security for SharePoint 2013.

The following table shows the Windows PowerShell cmdlets that you can use to administer security for SharePoint 2013.

Index of Windows PowerShell cmdlets for SharePoint 2013 includes a complete list of all cmdlets in SharePoint 2013.

 

Cmdlet name Description

Add-SPShellAdmin

Adds a user to the SharePoint_Shell_Access role for the specified database.

Get-SPShellAdmin

Returns the names of all users who have the SharePoint_Shell_Access role.

Remove-SPShellAdmin

Removes a user from the SharePoint_Shell_Access role.

Add-SPClaimTypeMapping

Adds a claim mapping to a trusted security token service (STS) identity provider.

Get-SPAuthenticationProvider

Returns an authentication provider.

Get-SPCertificateAuthority

Returns the SharePoint certificate authority (CA).

Get-SPClaimProvider

Returns a claim provider.

Get-SPClaimProviderManager

Returns a claim provider manager.

Get-SPClaimTypeEncoding

Returns a list of all the types of claims.

Get-SPManagedAccount

Retrieves accounts registered in the configuration database.

Get-SPManagedPath

Returns all managed paths that match the given criteria.

Get-SPSecurityTokenServiceConfig

Returns the security token service (STS) for the farm.

Get-SPServiceApplicationSecurity

Returns the SPObjectSecurity object for a service application.

Get-SPTrustedIdentityTokenIssuer

Returns an identity provider.

Get-SPTrustedRootAuthority

Returns a trusted root authority.

Get-SPTrustedServiceTokenIssuer

Returns the object that represents the farm trust.

Grant-SPObjectSecurity

Adds a new security principal to an SPObjectSecurity object.

Initialize-SPResourceSecurity

Enforces resource security on the local server.

New-SPAuthenticationProvider

Creates a new authentication provider in the farm.

New-SPClaimProvider

Registers a new claim provider in the farm.

New-SPClaimsPrincipal

Creates a new claims principal.

New-SPClaimTypeEncoding

Registers a new type of claim.

New-SPClaimTypeMapping

Creates a claim mapping rule for a security token service (STS) identity provider.

New-SPManagedAccount

Registers a new managed account.

New-SPManagedPath

Creates a new managed path for the given Web application for all host header site collections.

New-SPTrustedIdentityTokenIssuer

Creates an identity provider in the farm.

New-SPTrustedRootAuthority

Creates a trusted root authority.

New-SPTrustedServiceTokenIssuer

Creates a trust with a SharePoint farm.

Remove-SPClaimProvider

Unregisters a claim provider.

Remove-SPClaimTypeMapping

Deletes a claim type mapping rule for a security token service (STS) identity provider.

Remove-SPManagedAccount

Removes a managed account registration from the farm.

Remove-SPManagedPath

Deletes the specified managed path from the specified host header or Web application.

Remove-SPTrustedIdentityTokenIssuer

Deletes a security token service (STS) identity provider from the farm.

Remove-SPTrustedRootAuthority

Deletes a trusted root authority.

Remove-SPTrustedServiceTokenIssuer

Deletes the object that represents the farm trust.

Repair-SPManagedAccountDeployment

Repairs the local managed account credential deployment.

Revoke-SPObjectSecurity

Removes a security principal from a SPObjectSecurity object.

Set-SPClaimProvider

Updates registration of a claims provider.

Set-SPManagedAccount

Configures the managed account.

Set-SPSecurityTokenServiceConfig

Updates the settings of the SharePoint security token service (STS) identity provider.

Set-SPServiceApplicationSecurity

Updates the SPObjectSecurity object for a service application.

Set-SPTrustedIdentityTokenIssuer

Sets the identity providers of a Web application.

Set-SPTrustedRootAuthority

Creates a new trusted root authority.

Set-SPTrustedServiceTokenIssuer

Updates a trust with the farm.

Update-SPFarmEncryptionKey

Changes the value of the farm encryption key and, using the new key, re-encrypts all the data.

Get-SPAuthenticationRealm

Returns the authentication realms.

Get-SPTrustedSecurityTokenIssuer

Returns the trusted security token issuer object.

New-SPAzureAccessControlServiceApplicationProxy

Creates a new service application proxy group.

New-SPTrustedSecurityTokenIssuer

Creates a trust between a server to server principal.

Remove-SPTrustedSecurityTokenIssuer

Removes the trusted security token service object.

Set-SPAuthenticationRealm

Sets the authentication realm.

Set-SPTrustedSecurityTokenIssuer

Sets the trusted token issuer.

Get-SPAppPrincipal

Displays a specific app principal object.

Register-SPAppPrincipal

Lets an on-premises or SharePoint Online administrator register an app principal.

Remove-SPAppPrincipalPermission

Removes the permissions on a specified app principal.

Set-SPAppPrincipalPermission

Sets the permissions on a given app principal.

Convert-SPWebApplication

Converts the authentication mode of a web application.

Was this page helpful?
(1500 characters remaining)
Thank you for your feedback
Show:
© 2014 Microsoft