Export (0) Print
Expand All
Expand Minimize
This topic has not yet been rated - Rate this topic

Use Windows PowerShell cmdlets to administer security in SharePoint 2013

Published: July 16, 2012

Summary: Learn about the Windows PowerShell cmdlets that you can use to administer security for SharePoint 2013.

Applies to:  SharePoint Foundation 2013 | SharePoint Server 2013 

The following table shows the Windows PowerShell cmdlets that you can use to administer security for SharePoint 2013.

Index of Windows PowerShell cmdlets for SharePoint 2013 includes a complete list of all cmdlets in SharePoint 2013.

Cmdlet name Description

Add-SPShellAdmin

Adds a user to the SharePoint_Shell_Access role for the specified database.

Get-SPShellAdmin

Returns the names of all users who have the SharePoint_Shell_Access role.

Remove-SPShellAdmin

Removes a user from the SharePoint_Shell_Access role.

Add-SPClaimTypeMapping

Adds a claim mapping to a trusted security token service (STS) identity provider.

Get-SPAuthenticationProvider

Returns an authentication provider.

Get-SPCertificateAuthority

Returns the SharePoint certificate authority (CA).

Get-SPClaimProvider

Returns a claim provider.

Get-SPClaimProviderManager

Returns a claim provider manager.

Get-SPClaimTypeEncoding

Returns a list of all the types of claims.

Get-SPManagedAccount

Retrieves accounts registered in the configuration database.

Get-SPManagedPath

Returns all managed paths that match the given criteria.

Get-SPSecurityTokenServiceConfig

Returns the security token service (STS) for the farm.

Get-SPServiceApplicationSecurity

Returns the SPObjectSecurity object for a service application.

Get-SPTrustedIdentityTokenIssuer

Returns an identity provider.

Get-SPTrustedRootAuthority

Returns a trusted root authority.

Get-SPTrustedServiceTokenIssuer

Returns the object that represents the farm trust.

Grant-SPObjectSecurity

Adds a new security principal to an SPObjectSecurity object.

Initialize-SPResourceSecurity

Enforces resource security on the local server.

New-SPAuthenticationProvider

Creates a new authentication provider in the farm.

New-SPClaimProvider

Registers a new claim provider in the farm.

New-SPClaimsPrincipal

Creates a new claims principal.

New-SPClaimTypeEncoding

Registers a new type of claim.

New-SPClaimTypeMapping

Creates a claim mapping rule for a security token service (STS) identity provider.

New-SPManagedAccount

Registers a new managed account.

New-SPManagedPath

Creates a new managed path for the given Web application for all host header site collections.

New-SPTrustedIdentityTokenIssuer

Creates an identity provider in the farm.

New-SPTrustedRootAuthority

Creates a trusted root authority.

New-SPTrustedServiceTokenIssuer

Creates a trust with a SharePoint farm.

Remove-SPClaimProvider

Unregisters a claim provider.

Remove-SPClaimTypeMapping

Deletes a claim type mapping rule for a security token service (STS) identity provider.

Remove-SPManagedAccount

Removes a managed account registration from the farm.

Remove-SPManagedPath

Deletes the specified managed path from the specified host header or Web application.

Remove-SPTrustedIdentityTokenIssuer

Deletes a security token service (STS) identity provider from the farm.

Remove-SPTrustedRootAuthority

Deletes a trusted root authority.

Remove-SPTrustedServiceTokenIssuer

Deletes the object that represents the farm trust.

Repair-SPManagedAccountDeployment

Repairs the local managed account credential deployment.

Revoke-SPObjectSecurity

Removes a security principal from a SPObjectSecurity object.

Set-SPClaimProvider

Updates registration of a claims provider.

Set-SPManagedAccount

Configures the managed account.

Set-SPSecurityTokenServiceConfig

Updates the settings of the SharePoint security token service (STS) identity provider.

Set-SPServiceApplicationSecurity

Updates the SPObjectSecurity object for a service application.

Set-SPTrustedIdentityTokenIssuer

Sets the identity providers of a Web application.

Set-SPTrustedRootAuthority

Creates a new trusted root authority.

Set-SPTrustedServiceTokenIssuer

Updates a trust with the farm.

Update-SPFarmEncryptionKey

Changes the value of the farm encryption key and, using the new key, re-encrypts all the data.

Get-SPAuthenticationRealm

Returns the authentication realms.

Get-SPTrustedSecurityTokenIssuer

Returns the trusted security token issuer object.

New-SPAzureAccessControlServiceApplicationProxy

Creates a new service application proxy group.

New-SPTrustedSecurityTokenIssuer

Creates a trust between a server to server principal.

Remove-SPTrustedSecurityTokenIssuer

Removes the trusted security token service object.

Set-SPAuthenticationRealm

Sets the authentication realm.

Set-SPTrustedSecurityTokenIssuer

Sets the trusted token issuer.

Get-SPAppPrincipal

Displays a specific app principal object.

Register-SPAppPrincipal

Lets an on-premises or SharePoint Online administrator register an app principal.

Remove-SPAppPrincipalPermission

Removes the permissions on a specified app principal.

Set-SPAppPrincipalPermission

Sets the permissions on a given app principal.

Convert-SPWebApplication

Converts the authentication mode of a web application.

Did you find this helpful?
(1500 characters remaining)
Thank you for your feedback
Show:
© 2014 Microsoft. All rights reserved.