Add-CertificateEnrollmentPolicyServer
Add-CertificateEnrollmentPolicyServer
Adds an enrollment policy server to the current user or local system configuration.
구문
Parameter Set: Default
Add-CertificateEnrollmentPolicyServer -context <Context> {Machine | User} -Url <Uri> [-AutoEnrollmentEnabled] [-Credential <PkiCredential> ] [-NoClobber] [-RequireStrongValidation] [ <CommonParameters>]
자세한 설명
The Add-CertificateEnrollmentPolicyServer cmdlet adds an enrollment policy server to the current user or local system configuration. If an enrollment policy server already exists, then this cmdlet will overwrite it. Group Policy can be configured to prevent enrollment policy servers from being added.
Delegation may be required when using this cmdlet with Windows PowerShell® remoting and changing user configuration.
매개 변수
-AutoEnrollmentEnabled
Enables auto-enrollment for the policy server being added.
별칭 |
없음 |
필수 여부 |
false |
위치 |
named |
기본값 |
없음 |
파이프라인 입력 적용 여부 |
True (ByPropertyName) |
와일드카드 문자 허용 여부 |
false |
-context<Context>
Stores information about the policy server in the configuration for the Current User or Local computer.
별칭 |
없음 |
필수 여부 |
true |
위치 |
named |
기본값 |
없음 |
파이프라인 입력 적용 여부 |
false |
와일드카드 문자 허용 여부 |
false |
-Credential<PkiCredential>
Specifies the credential used to authenticate to the policy server. This credential can be a PSCredential object, which is a username and password, an x509 certificate, or a path to an x509 certificate. Kerberos authentication is used if no credential is specified.
별칭 |
없음 |
필수 여부 |
false |
위치 |
named |
기본값 |
없음 |
파이프라인 입력 적용 여부 |
false |
와일드카드 문자 허용 여부 |
false |
-NoClobber
Prevents an enrollment policy server from overwriting an existing one.
별칭 |
없음 |
필수 여부 |
false |
위치 |
named |
기본값 |
없음 |
파이프라인 입력 적용 여부 |
false |
와일드카드 문자 허용 여부 |
false |
-RequireStrongValidation
Specifies that the certificate obtained through this enrollment policy server must be trusted on the client.
별칭 |
없음 |
필수 여부 |
false |
위치 |
named |
기본값 |
없음 |
파이프라인 입력 적용 여부 |
True (ByPropertyName) |
와일드카드 문자 허용 여부 |
false |
-Url<Uri>
Identifies the uniform resource locator (URL) of the enrollment policy server to configure.
별칭 |
없음 |
필수 여부 |
true |
위치 |
named |
기본값 |
없음 |
파이프라인 입력 적용 여부 |
True (ByValue, ByPropertyName) |
와일드카드 문자 허용 여부 |
false |
<CommonParameters>
이 cmdlet은 일반 매개 변수 -Verbose, -Debug, -ErrorAction, -ErrorVariable, -OutBuffer 및 -OutVariable을 지원합니다. 자세한 내용은 다음을 참조하세요. about_CommonParameters(https://go.microsoft.com/fwlink/p/?LinkID=113216).
입력
입력 유형은 cmdlet에 파이프할 수 있는 개체의 유형입니다.
Microsoft.CertificateServices.Commands.EnrollmentPolicyServer
The EnrollmentPolicyServer object contains information about the certificate enrollment policy.
출력
출력 유형은 cmdlet이 내보내는 개체의 유형입니다.
Microsoft.CertificateServices.Commands.EnrollmentPolicyServer
The EnrollmentPolicyServer object contains information about the certificate enrollment policy.
예제
EXAMPLE 1
This example loads a policy from $url using Windows integrated authentication under the computer context, using the computer account credentials. This example also adds the policy server to the local computer configuration. Auto enrollment is off and strong validation is off.
PS C:\> Add-CertificateEnrollmentPolicyServer -Url $url -Context Machine
EXAMPLE 2
This example loads a policy using $cert as the authentication credential and adds the policy to the local computer local configuration since the context is the local computer (Machine).
PS C:\> $cert = ( Get-ChildItem -Path cert:\LocalMachine\My\EEDEF61D4FF6EDBAAD538BB08CCAADDC3EE28FF )
PS C:\> Add-CertificateEnrollmentPolicyServer -Url $cert.EnrollmentPolicyEndPoint.Url -Credential $cert -Context Machine
EXAMPLE 3
This example loads a policy using the username and password from $url. This example adds the policy server to the local computer configuration.
PS C:\> $up = Get-Credential
PS C:\> Add-CertificateEnrollmentPolicyServer -Url $url -Context Machine -Credential $up
EXAMPLE 4
This example loads policy using the Path object for a certificate. Use the certificate to authenticate to the URL and add the policy server into the local user configuration.
PS C:\> $cert = (Get-ChildItem -Path cert:\CurrentUser\My\EEDEF61D4FF6EDBAAD538BB08CCAADDC3EE28FF)
PS C:\> Add-CertificateEnrollmentPolicyServer -Url $cert.EnrollmentPolicyEndPoint.Url -Credential $cert.PSPath -Context Machine
EXAMPLE 5
This example shows that if the policy cannot be loaded or if there is a conflict with an identifier (ID) or URL, then this will be the output.
If the policy server already exists, then the output will state that the existing policy server configuration will be overwritten.
PS C:\> $up = Get-Credential
PS C:\> Add-CertificateEnrollmentPolicyServer -Url $url -Context User -Credential $up –WhatIf
관련 항목
Get-CertificateEnrollmentPolicyServer