Table of contents
TLS
TOC
Collapse the table of content
Expand the table of content

Update-AdfsCertificate

Brian Lich|Last Updated: 3/8/2017

SYNOPSIS

Updates the certificates of AD FS.

SYNTAX

Update-AdfsCertificate [[-CertificateType] <String>] [-Urgent] [-PassThru] [-WhatIf] [-Confirm]
 [<CommonParameters>]

DESCRIPTION

The Update-AdfsCertificate cmdlet creates new certificates for Active Directory Federation Services (AD FS). When automatic certificate rollover is enabled and AD FS 2.0 is managing the certificates that are used for signing, this update cmdlet can be used to initiate a rollover.

EXAMPLES

Example 1: Update a token-signing certificate

PS C:\> Update-AdfsCertificate -CertificateType "Token-Signing"

This command updates the token-signing certificate.

PARAMETERS

-CertificateType

Specifies the type of certificate to rollover. The acceptable values for this parameter are:

  • Token-Encryption
  • Token-Signing
Type: String
Parameter Sets: (All)
Aliases: 
Accepted values: Token-Decrypting, Token-Signing

Required: False
Position: 0
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Confirm

Prompts you for confirmation before running the cmdlet.

Type: SwitchParameter
Parameter Sets: (All)
Aliases: cf

Required: False
Position: Named
Default value: False
Accept pipeline input: False
Accept wildcard characters: False

-PassThru

Returns an object representing the item with which you are working. By default, this cmdlet does not generate any output.

Type: SwitchParameter
Parameter Sets: (All)
Aliases: 

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Urgent

Indicates that the certificate rollover should happen immediately. An urgent rollover removes older certificates immediately. It might result in a service outage as trusts update to use the new certificates.

Type: SwitchParameter
Parameter Sets: (All)
Aliases: 

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-WhatIf

Shows what would happen if the cmdlet runs. The cmdlet is not run.

Type: SwitchParameter
Parameter Sets: (All)
Aliases: wi

Required: False
Position: Named
Default value: False
Accept pipeline input: False
Accept wildcard characters: False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

INPUTS

None

OUTPUTS

None

NOTES

  • The Urgent parameter option is useful for emergency rollover situations in which a key might be compromised.

Add-AdfsCertificate

Get-AdfsCertificate

Remove-AdfsCertificate

Set-AdfsCertificate

© 2017 Microsoft