Set-AdfsGlobalAuthenticationPolicy

Set-AdfsGlobalAuthenticationPolicy

Modifies the AD FS global policy.

Syntaxe

Parameter Set: IdentifierName
Set-AdfsGlobalAuthenticationPolicy [-AdditionalAuthenticationProvider <String[]> ] [-DeviceAuthenticationEnabled <Boolean> ] [-PassThru] [-PrimaryExtranetAuthenticationProvider <String[]> ] [-PrimaryIntranetAuthenticationProvider <String[]> ] [-WindowsIntegratedFallbackEnabled <Boolean> ] [-Confirm] [-WhatIf] [ <CommonParameters>]

Description détaillée

The Set-AdfsGlobalAuthenticationPolicy cmdlet modifies the services de fédération Active Directory (AD FS) global policy. You can also use the cmdlet to enable an external provider in the global policy.

Paramètres

-AdditionalAuthenticationProvider<String[]>

Specifies an array of names of external authentication providers to add to the global policy.

Specifying this parameter configures an external authentication provider, for second stage authentication, in the global policy. This is the first step in creating an AD FS policy that invokes an external authentication provider for multifactor authentication.

-DeviceAuthenticationEnabled<Boolean>

Specifies whether device authentication is enabled for the global policy.

-PassThru

Retourne un objet qui représente l’élément avec lequel vous travaillez. Par défaut, cette applet de commande ne génère aucun résultat.

-PrimaryExtranetAuthenticationProvider<String[]>

Specifies an array of names of authentication providers for the primary extranet to add to the global policy.

-PrimaryIntranetAuthenticationProvider<String[]>

Specifies an array of names of authentication providers for the primary intranet to add to the global policy.

-WindowsIntegratedFallbackEnabled<Boolean>

Specifies whether fallback to Integrated Windows Authentication is enabled on the intranet.

-Confirm

Votre confirmation sera requise avant l’exécution de l’applet de commande.

-WhatIf

Présente les conséquences éventuelles de l’exécution de l’applet de commande. L’applet de commande n’est pas exécutée.

<CommonParameters>

Cette applet de commande prend en charge les paramètres courants : -Verbose, -Debug, -ErrorAction, -ErrorVariable, -OutBuffer et -OutVariable. Pour plus d’informations, consultez about_CommonParameters (https://go.microsoft.com/fwlink/p/?LinkID=113216).

Entrées

Le type d’entrée correspond au type des objets que vous pouvez transmettre à l’applet de commande.

Sorties

Le type de sortie est le type des objets émis par l’applet de commande.

• System.Object

Exemples

Example 1: Set the primary extranet authentication policy

This command sets the primary extranet authentication policy to forms-based or certificate-based authentication. In this case, the user is provided a choice when the user logs on to an application protected by AD FS from the extranet.

PS C:\> Set-AdfsGlobalAuthenticationPolicy -PrimaryExtranetAuthenticationProvider @('FormsAuthentication', 'CertificateAuthenticaton')

Example 2: Enable an additional authentication provider

This command enables the provider named A1ExternalAuthProvider as an additional authentication provider in the global policy. Note that the value provided for the AdditionalAuthenticationProvider parameter corresponds to the value you provide for the Name parameter in the Register-AdfsAuthenticationProvider cmdlet, and to the Name property in the output from the Get-AdfsAuthenticationProvider cmdlet.

PS C:\> Set-AdfsGlobalAuthenticationPolicy -AdditionalAuthenticationProvider "A1ExternalAuthProvider"

Rubriques connexes

Get-AdfsGlobalAuthenticationPolicy

Register-AdfsAuthenticationProvider

Get-AdfsAuthenticationProvider