편집

다음을 통해 공유


Enable-AdfsNonClaimsAwareRelyingPartyTrust

Enables a relying party trust for a non-claims-aware web application or service from the Federation Service.

Syntax

Enable-AdfsNonClaimsAwareRelyingPartyTrust
      [-PassThru]
      [-TargetName] <String>
      [-WhatIf]
      [-Confirm]
      [<CommonParameters>]
Enable-AdfsNonClaimsAwareRelyingPartyTrust
      [-PassThru]
      -TargetIdentifier <String>
      [-WhatIf]
      [-Confirm]
      [<CommonParameters>]
Enable-AdfsNonClaimsAwareRelyingPartyTrust
      [-PassThru]
      -TargetNonClaimsAwareRelyingPartyTrust <NonClaimsAwareRelyingPartyTrust>
      [-WhatIf]
      [-Confirm]
      [<CommonParameters>]

Description

The Enable-AdfsNonClaimsAwareRelyingPartyTrust cmdlet enables a relying party trust for a non-claims-aware web application or service from the Federation Service. When you disable a relying party trust, no authentication is allowed. Non-claims-aware relying party trusts for applications that are published through the Web Application Proxy must be enabled to allow clients outside the network to reach the application through the proxy.

A non-claims aware relying party trust is a relying party trust for web applications or services that do not rely directly on Active Directory Federation Services (AD FS) to issue tokens, but instead rely on a third party that accesses such tokens and transforms them into what applications understand. A non-claims-aware relying party trust is useful for defining authentication and authorization policies for web applications and services that do not rely on AD FS tokens. The Web Application Proxy requests such tokens for pre-authentication to web applications or services that have corresponding non-claims-aware relying party trusts for requests that come from outside the network through the proxy.

Examples

Example 1: Enable a non-claims-aware relying party trust by using a name

PS C:\> Enable-AdfsNonClaimsAwareRelyingPartyTrust -TargetName "ExpenseReport"

This command enables the non-claims-aware relying party trust for the application named ExpenseReport.

Example 2: Enable a non-claims-aware relying party trust by using an identifier

PS C:\> Enable-AdfsNonClaimsAwareRelyingPartyTrust -TargetIdentifier "https://Contosoexpense/"

This command enables the non-claims-aware relying party trust for the expense report application that has the identifier https://Contosoexpense.

Parameters

-Confirm

Prompts you for confirmation before running the cmdlet.

Type:SwitchParameter
Aliases:cf
Position:Named
Default value:False
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-PassThru

Returns an object representing the item with which you are working. By default, this cmdlet does not generate any output.

Type:SwitchParameter
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-TargetIdentifier

Specifies the identifier of the non-claims-aware relying party trust to enable.

Type:String
Position:Named
Default value:None
Required:True
Accept pipeline input:False
Accept wildcard characters:False

-TargetName

Specifies the name of the non-claims-aware relying party trust to enable.

Type:String
Position:0
Default value:None
Required:True
Accept pipeline input:False
Accept wildcard characters:False

-TargetNonClaimsAwareRelyingPartyTrust

Specifies a NonClaimsAwareRelyingPartyTrust object. The cmdlet enables the non-claims-aware relying party trust that you specify. To obtain a NonClaimsAwareRelyingPartyTrust, use the Get-AdfsNonClaimsAwareRelyingPartyTrust cmdlet.

Type:NonClaimsAwareRelyingPartyTrust
Position:Named
Default value:None
Required:True
Accept pipeline input:True
Accept wildcard characters:False

-WhatIf

Shows what would happen if the cmdlet runs. The cmdlet is not run.

Type:SwitchParameter
Aliases:wi
Position:Named
Default value:False
Required:False
Accept pipeline input:False
Accept wildcard characters:False