Export (0) Print
Expand All

New-SPAuthenticationProvider

 

Applies to: SharePoint Server 2010, SharePoint Foundation 2010

Topic Last Modified: 2010-05-07

Creates a new Authentication provider in the farm.

New-SPAuthenticationProvider [-AllowAnonymous <SwitchParameter>] [-AssignmentCollection <SPAssignmentCollection>] [-DisableKerberos <SwitchParameter>] [-UseBasicAuthentication <SwitchParameter>] [-UseWindowsIntegratedAuthentication <SwitchParameter>]
New-SPAuthenticationProvider -ASPNETMembershipProvider <String> -ASPNETRoleProviderName <String> [-AssignmentCollection <SPAssignmentCollection>]
New-SPAuthenticationProvider -TrustedIdentityTokenIssuer <SPTrustedIdentityTokenIssuerPipeBind> [-AssignmentCollection <SPAssignmentCollection>]

This cmdlet contains more than one parameter set. You may only use parameters from one parameter set, and you may not combine parameters from different parameter sets. For more information about how to use parameter sets, see Cmdlet Parameter Sets.

The New-SPAuthenticationProvider cmdlet creates a new Authentication provider in the farm.

NTLM, Classic NTLM, Negotiate, and Classic Negotiate can be set only in a Web Application.

For ASP.NET Membership Provider or Role providers, no objects are persisted. The object is created and used for setting this type of Authentication provider in a Web application.

For STS Authentication providers, an object is created and persisted in the SPFarm object.

Using classic NTLM with any claims based authentication type is not allowed.

 

Parameter Required Type Description

ASPNETMembershipProvider

Required

System.String

Specifies the name of the membership provider.

The type must be a valid name of an ASPNet membership provider; for example, myMembershipProvider.

ASPNETRoleProviderName

Required

System.String

Specifies the name of the role provider.

The type must be a valid name of an ASPNet role provider; for example, myRoleProvider.

TrustedIdentityTokenIssuer

Required

Microsoft.SharePoint.PowerShell.SPTrustedIdentityTokenIssuerPipeBind

Specifies the identity of the authentication provider.

The type must be a valid GUID, in the form 12345678-90ab-cdef-1234-567890bcdefgh; a valid name of a TrustedIdentityTokenIssuer (for example, myRoleProvider); or an instance of a valid SPTrustedIdentityTokenIssuer object.

AllowAnonymous

Optional

System.Management.Automation.SwitchParameter

Specifies whether the Web application allows anonymous access.

AssignmentCollection

Optional

Microsoft.SharePoint.PowerShell.SPAssignmentCollection

Manages objects for the purpose of proper disposal. Use of objects, such as SPWeb or SPSite, can use large amounts of memory and use of these objects in Windows PowerShell scripts requires proper memory management. Using the SPAssignment object, you can assign objects to a variable and dispose of the objects after they are needed to free up memory. When SPWeb, SPSite, or SPSiteAdministration objects are used, the objects are automatically disposed of if an assignment collection or the Global parameter is not used.

noteNote
When the Global parameter is used, all objects are contained in the global store. If objects are not immediately used, or disposed of by using the Stop-SPAssignment command, an out-of-memory scenario can occur.

DisableKerberos

Optional

System.Management.Automation.SwitchParameter

Specifies whether the Web application disables Kerberos authentication.

UseBasicAuthentication

Optional

System.Management.Automation.SwitchParameter

Specifies whether the Web application uses basic authentication.

UseWindowsIntegratedAuthentication

Optional

System.Management.Automation.SwitchParameter

Specifies whether the Web application uses Windows Integrated Authentication.

---------------------------EXAMPLE1------------------

$ap = New - SPAuthenticationProvider -UseWindowsIntegratedAuthentication
Set-SPWebApplication -Name "Claims Windows Web App" -ApplicationPool "Claims App Pool" -ApplicationPoolAccount "redmond\appool" -Url http://servername -Port 80 -AuthenticationProvider $ap

This example creates a Windows-claims authentication provider

---------------------------EXAMPLE2------------------

$ap = New-SPAuthenticationProvider -ASPNETMembershipProvider "membership" -ASPNETRoleProviderName "rolemanager"
Set-SPWebApplication -Name "Claims Windows Web App" -ApplicationPool "Claims App Pool" -ApplicationPoolAccount "redmond\appool" -Url http://servername -Port 80 -AuthenticationProvider $ap

This example creates an ASP.net membership role provider authentication provider.

---------------------------EXAMPLE3------------------

$ap = New - SPAuthenticationProvider -TrustedIdentityTokenIssuer | Get-SPTrustedIdentityTokenIssuer "LiveIDSTS"
Set-SPWebApplication -Name "Claims Windows Web App" -ApplicationPool "Claims App Pool" -ApplicationPoolAccount "redmond\appool" -Url http://servername -Port 80 -AuthenticationProvider $ap

This example creates a trusted token issuer authentication provider.

Was this page helpful?
(1500 characters remaining)
Thank you for your feedback
Show:
© 2014 Microsoft