Add-AdfsDeviceRegistrationUpnSuffix

Adds a custom UPN suffix.

Syntax

Add-AdfsDeviceRegistrationUpnSuffix
   [-UpnSuffix] <String>
   [-WhatIf]
   [-Confirm]
   [<CommonParameters>]

Description

The Add-AdfsDeviceRegistrationUpnSuffix cmdlet adds a custom user principal name (UPN) suffix that you can use when you register a device with Active Directory Federation Services (AD FS).

In many environments, additional UPN suffixes for users are added after an Active Directory Federation Services (AD FS) deployment is complete. Run this cmdlet to support device registration for users of the new UPN suffix. The cmdlet configures a Secure Sockets Layer (SSL) binding that corresponds to the UPN suffix. The UPN suffix must have a corresponding registration name in the AD FS SSL certificate, for example enterpriseregistration.upn suffix. You can use a wild-card SSL certificate that covers all possible registration names.

Examples

Example 1: Add a UPN suffix for registering a device

PS C:\> Add-AdfsDeviceRegistrationUpnSuffix -UpnSuffix "Northamerica.Contoso.com"

This command adds the UPN suffix Northamerica.Contoso.com to the list of suffixes that AD FS responds to for device registration requests after the initial deployment of the device registration service.

Parameters

-Confirm

Prompts you for confirmation before running the cmdlet.

Type:SwitchParameter
Aliases:cf
Position:Named
Default value:False
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-UpnSuffix

Specifies a UPN suffix. The cmdlet adds and configures the UPN suffix that you specify as a valid registration UPN suffix.

Type:String
Position:0
Default value:None
Required:True
Accept pipeline input:True
Accept wildcard characters:False

-WhatIf

Shows what would happen if the cmdlet runs. The cmdlet is not run.

Type:SwitchParameter
Aliases:wi
Position:Named
Default value:False
Required:False
Accept pipeline input:False
Accept wildcard characters:False

Inputs

String

String objects are received by the UpnSuffix parameter.