Bearbeiten

Freigeben über


Set-AdfsNonClaimsAwareRelyingPartyTrust

Sets the properties of a relying party trust for a non-claims-aware web application or service.

Syntax

Set-AdfsNonClaimsAwareRelyingPartyTrust
   [-AlwaysRequireAuthentication]
   [-Identifier <String[]>]
   [-IssuanceAuthorizationRules <String>]
   [-IssuanceAuthorizationRulesFile <String>]
   [-Name <String>]
   [-Notes <String>]
   [-PassThru]
   [-AdditionalAuthenticationRules <String>]
   [-AdditionalAuthenticationRulesFile <String>]
   [-AccessControlPolicyName <String>]
   [-AccessControlPolicyParameters <Object>]
   [-ClaimsProviderName <String[]>]
   [-TargetName] <String>
   [-WhatIf]
   [-Confirm]
   [<CommonParameters>]
Set-AdfsNonClaimsAwareRelyingPartyTrust
   [-AlwaysRequireAuthentication]
   [-Identifier <String[]>]
   [-IssuanceAuthorizationRules <String>]
   [-IssuanceAuthorizationRulesFile <String>]
   [-Name <String>]
   [-Notes <String>]
   [-PassThru]
   [-AdditionalAuthenticationRules <String>]
   [-AdditionalAuthenticationRulesFile <String>]
   [-AccessControlPolicyName <String>]
   [-AccessControlPolicyParameters <Object>]
   [-ClaimsProviderName <String[]>]
   -TargetIdentifier <String>
   [-WhatIf]
   [-Confirm]
   [<CommonParameters>]
Set-AdfsNonClaimsAwareRelyingPartyTrust
   [-AlwaysRequireAuthentication]
   [-Identifier <String[]>]
   [-IssuanceAuthorizationRules <String>]
   [-IssuanceAuthorizationRulesFile <String>]
   [-Name <String>]
   [-Notes <String>]
   [-PassThru]
   [-AdditionalAuthenticationRules <String>]
   [-AdditionalAuthenticationRulesFile <String>]
   [-AccessControlPolicyName <String>]
   [-AccessControlPolicyParameters <Object>]
   [-ClaimsProviderName <String[]>]
   -TargetNonClaimsAwareRelyingPartyTrust <NonClaimsAwareRelyingPartyTrust>
   [-WhatIf]
   [-Confirm]
   [<CommonParameters>]

Description

The Set-AdfsNonClaimsAwareRelyingPartyTrust cmdlet sets properties on a relying party trust for a non-claims-aware web application or service.

A non-claims aware relying party trust is a relying party trust for web applications or services that do not rely directly on Active Directory Federation Services (AD FS) to issue tokens, but instead rely on a third party that accesses such tokens and transforms them into what applications understand. A non-claims-aware relying party trust is useful for defining authentication and authorization policies for web applications and services that do not rely on AD FS tokens. The Web Application Proxy requests such tokens for pre-authentication to web applications or services that have corresponding non-claims-aware relying party trusts for requests that come from outside the network through the proxy.

Examples

Example 1: Set the non-claims-aware relying party trust to always force authentication

PS C:\> Set-AdfsNonClaimsAwareRelyingPartyTrust -TargetName "ExpenseReport" -AlwaysRequireAuthentication $True

This command sets the non-claims-aware relying party trust for the application named ExpenseReport to always force authentication.

Parameters

-AccessControlPolicyName

Type:String
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-AccessControlPolicyParameters

Type:Object
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-AdditionalAuthenticationRules

Specifies rules for additional authentication for the relying party. For more information about the claims language for rules, see Understanding Claim Rule Language in AD FS 2.0 & Higher on TechNet.

Type:String
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-AdditionalAuthenticationRulesFile

Specifies the file that contains all the rules for additional authentication for the relying party.

Type:String
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-AlwaysRequireAuthentication

Indicates that access requires authentication, even if this relying party has previously authenticated credentials for access. Specify this parameter to require users to always supply credentials to access sensitive resources.

Type:SwitchParameter
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-ClaimsProviderName

Type:String[]
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-Confirm

Prompts you for confirmation before running the cmdlet.

Type:SwitchParameter
Aliases:cf
Position:Named
Default value:False
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-Identifier

Specifies an array of unique identifiers for the non-claims-aware relying party trust. No other trust can use an identifier from this list. As common practice, you can use Uniform Resource Identifiers (URIs) as unique identifiers for a relying party trust, or you can use any string.

Type:String[]
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-IssuanceAuthorizationRules

Specifies the authorization rules for issuing claims to the relying party.

Type:String
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-IssuanceAuthorizationRulesFile

Specifies the file that contains the authorization rules for issuing claims to the relying party.

Type:String
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-Name

Specifies a name. The cmdlet adds the Web Application Proxy relying party trust that has the display name that you specify.

Type:String
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-Notes

Specifies a name. The cmdlet adds the Web Application Proxy relying party trust that has the display name that you specify.

Type:String
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-PassThru

Returns an object representing the item with which you are working. By default, this cmdlet does not generate any output.

Type:SwitchParameter
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-TargetIdentifier

Specifies the identifier of the non-claims-aware relying party trust to modify.

Type:String
Position:Named
Default value:None
Required:True
Accept pipeline input:False
Accept wildcard characters:False

-TargetName

Specifies the name of the non-claims-aware relying party trust to modify.

Type:String
Position:0
Default value:None
Required:True
Accept pipeline input:False
Accept wildcard characters:False

-TargetNonClaimsAwareRelyingPartyTrust

Specifies a NonClaimsAwareRelyingPartyTrust object. The cmdlet removes the non-claims-aware relying party trust that you specify. To obtain a NonClaimsAwareRelyingPartyTrust, use the Get-AdfsNonClaimsAwareRelyingPartyTrust cmdlet.

Type:NonClaimsAwareRelyingPartyTrust
Position:Named
Default value:None
Required:True
Accept pipeline input:True
Accept wildcard characters:False

-WhatIf

Shows what would happen if the cmdlet runs. The cmdlet is not run.

Type:SwitchParameter
Aliases:wi
Position:Named
Default value:False
Required:False
Accept pipeline input:False
Accept wildcard characters:False