Get-AdfsAdditionalAuthenticationRule
Get-AdfsAdditionalAuthenticationRule
Retrieves the global rules that trigger additional authentication providers to be invoked.
Sintaxis
Get-AdfsAdditionalAuthenticationRule [ <CommonParameters>]
Descripción detallada
The Get-AdfsAdditionalAuthenticationRule cmdlet retrieves the global rules that govern all applications that trigger additional authentication providers to be invoked. When the claim engine evaluates the additional authentication rules and determines that multiple factor authentication is required, the user is prompted to perform additional authentication. Use this rule only when all your applications are capable of performing web based credential collection through Servicios de federación de Active Directory (AD FS). Applications that use protocols like WS-Trust will fail to obtain a security token if the trigger is true as a result of evaluation of the rules.
Parámetros
<CommonParameters>
Este cmdlet admite los siguientes parámetros comunes: -Verbose, -Debug, -ErrorAction, -ErrorVariable, -OutBuffer y -OutVariable. Para obtener más información, consulte about_CommonParameters (https://go.microsoft.com/fwlink/p/?LinkID=113216).
Entradas
El tipo de entrada es el tipo de los objetos que se pueden canalizar al cmdlet.
Salidas
El tipo de resultado es el tipo de objetos que emite el cmdlet.
Ejemplos
Example 1: Retrieve the global additional authentication rules
This command retrieves the global additional authentication rules configured for AD FS. The output of the command shows that multiple factor authentication is required for all extranet access and all devices that are not joined to a workplace.
PS C:\> Get-AdfsAdditionalAuthenticationRule