Get-AdfsAdditionalAuthenticationRule
Get-AdfsAdditionalAuthenticationRule
Retrieves the global rules that trigger additional authentication providers to be invoked.
構文
Get-AdfsAdditionalAuthenticationRule [ <CommonParameters>]
詳細説明
The Get-AdfsAdditionalAuthenticationRule cmdlet retrieves the global rules that govern all applications that trigger additional authentication providers to be invoked. When the claim engine evaluates the additional authentication rules and determines that multiple factor authentication is required, the user is prompted to perform additional authentication. Use this rule only when all your applications are capable of performing web based credential collection through Active Directory フェデレーション サービス (AD FS). Applications that use protocols like WS-Trust will fail to obtain a security token if the trigger is true as a result of evaluation of the rules.
パラメーター
<CommonParameters>
このコマンドレットは次の共通パラメーターをサポートします。-Verbose、-Debug、-ErrorAction、-ErrorVariable、-OutBuffer、-OutVariable.詳細については、以下を参照してください。 about_CommonParameters (https://go.microsoft.com/fwlink/p/?LinkID=113216)。
入力
入力型は、コマンドレットにパイプできるオブジェクトの型です。
出力
出力型は、コマンドレットによって生成されるオブジェクトの型です。
例
Example 1: Retrieve the global additional authentication rules
This command retrieves the global additional authentication rules configured for AD FS. The output of the command shows that multiple factor authentication is required for all extranet access and all devices that are not joined to a workplace.
PS C:\> Get-AdfsAdditionalAuthenticationRule