New-SPClaimsPrincipal
创建声明主体。
语法
New-SPClaimsPrincipal
[-ClaimValue] <String>
[[-ClaimType] <String>]
[-TrustedIdentityTokenIssuer] <SPTrustedIdentityTokenIssuerPipeBind>
[-IdentifierClaim]
[-AssignmentCollection <SPAssignmentCollection>]
[<CommonParameters>]
New-SPClaimsPrincipal
[-ClaimValue] <String>
[-ClaimType] <String>
[-AssignmentCollection <SPAssignmentCollection>]
-ClaimProvider <SPClaimProvider>
[<CommonParameters>]
New-SPClaimsPrincipal
[-EncodedClaim] <String>
[-AssignmentCollection <SPAssignmentCollection>]
[<CommonParameters>]
New-SPClaimsPrincipal
[-Identity] <String>
[-IdentityType] <SPIdentifierTypes>
[-AssignmentCollection <SPAssignmentCollection>]
[<CommonParameters>]
New-SPClaimsPrincipal
[-Identity] <String>
[-TrustedIdentityTokenIssuer] <SPTrustedIdentityTokenIssuerPipeBind>
[-AssignmentCollection <SPAssignmentCollection>]
[<CommonParameters>]
说明
此 cmdlet 包含多个参数集。 您可以只使用来自一个参数集的参数,也可以不合并来自不同参数集的参数。 若要详细了解如何使用参数集,请参阅 Cmdlet 参数集。
New-SPClaimsPrincipal cmdlet 可创建声明主体。
有关适用于 SharePoint 产品的 Windows PowerShell 的权限和最新信息,请参阅 SharePoint Server cmdlet。
示例
-------------------------示例 1-----------------------------
New-SPSite https://sitename/sites/newsite -owner (New-SPClaimsPrincipal contoso\johndoe -TrustedIdentityTokenIssuer "NTLM")
此示例为 Windows 用户创建声明主体。
-------------------------示例 2-----------------------------
New-SPSite https://localhost/sites/newsite -owner (New-SPClaimsPrincipal contoso\allusers -TrustedIdentityTokenIssuer "NTLM")
此示例为 Windows 组创建声明主体。
------------------示例 3-----------------------
New-SPSite https://sitename/sites/newsite -owner (New-SPClaimsPrincipal -ClaimValue "john@contoso.com" -ClaimType Email -TrustedIdentityTokenIssuer "LiveID STS" -IdentifierClaim Yes)
此示例为受信任的身份令牌颁发者声明创建声明主体。
------------------示例 4-----------------------
$ip = New-SPIdentityProvider -ASPNetMembershipProvider "myMembershipProvider" -ASPNetRoleProvider "myRoleProvider"
New-SPSite https://sitename/sites/newsite -owner (New-SPClaimsPrincipal "john@contoso.com" -TrustedIdentityTokenIssuer $ip)
此示例为 ASPNet 成员关系用户创建声明主体。
------------------示例 5-----------------------
New-SPSite https://sitename/sites/newsite -owner (New-SPClaimsPrincipal "Sales Manager Role" -IdentityProvider "myRoleProvider")
此示例为 ASPNet 角色创建声明主体。
------------------示例 6-----------------------
$cp = New-SPClaimsPrincipal -Identity "redmond\SiteOwner" -IdentityType 1
New-SPSite https://servername:port -OwnerAlias $cp.ToEncodedString() -Template "STS#0"
此示例为基本声明角色创建声明主体(也称为编码声明)。
参数
-AssignmentCollection
管理对象以便正确进行处理。 使用 SPWeb 或 SPSite 等对象可能会耗用大量内存,而且在 Windows PowerShell 脚本中使用这些对象需要正确管理内存。 通过使用 SPAssignment 对象,可以将对象分配给变量,然后在不需要这些对象时对它们进行处理,以释放内存。 在使用 SPWeb、SPSite 或 SPSiteAdministration 对象时,如果不使用分配集合或 Global 参数,则会自动处理这些对象。
在使用 Global 参数时,所有对象均包含在全局存储中。 如果未立即使用对象,或未通过使用 Stop-SPAssignment 命令来处理对象,则可能会发生内存不足的情况。
Type: | SPAssignmentCollection |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | True |
Accept wildcard characters: | False |
Applies to: | SharePoint Server 2010, SharePoint Server 2013, SharePoint Server 2016, SharePoint Server 2019 |
-ClaimProvider
指定将包含声明主体的安全令牌服务标识提供程序。
键入的值必须为 12345678-90ab-cdef-1234-567890bcdefgh 形式的有效 GUID;或标识提供程序的有效名称(例如,MyIDprovider1);或有效 SPIdentityProvider 对象的实例。
Type: | SPClaimProvider |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
Applies to: | SharePoint Server 2010, SharePoint Server 2013, SharePoint Server 2016, SharePoint Server 2019 |
-ClaimType
指定要创建的声明类型。 值 I 表示唯一用户标识声明,值 C 表示所有其他声明。
键入的值必须是下列值之一:I 或 C。
Type: | String |
Position: | 2 |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
Applies to: | SharePoint Server 2010, SharePoint Server 2013, SharePoint Server 2016, SharePoint Server 2019 |
-ClaimValue
指定声明对象的声明值。 声明值指定声明要验证的用户、组或计算机。
类型必须是有效的声明值;例如 。 john@contoso.com
Type: | String |
Position: | 1 |
Default value: | None |
Required: | True |
Accept pipeline input: | True |
Accept wildcard characters: | False |
Applies to: | SharePoint Server 2010, SharePoint Server 2013, SharePoint Server 2016, SharePoint Server 2019 |
-EncodedClaim
将简单声明转换为完整编码的声明。
键入的值必须是有效的声明值;例如,i:001w|redmond\user。
Type: | String |
Position: | 1 |
Default value: | None |
Required: | True |
Accept pipeline input: | True |
Accept wildcard characters: | False |
Applies to: | SharePoint Server 2010, SharePoint Server 2013, SharePoint Server 2016, SharePoint Server 2019 |
-IdentifierClaim
指定新声明是否为标识声明。
Type: | SwitchParameter |
Position: | 4 |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
Applies to: | SharePoint Server 2010, SharePoint Server 2013, SharePoint Server 2016, SharePoint Server 2019 |
-Identity
指定新声明主体的名称。
键入的值必须是声明主体的有效名称。
Type: | String |
Position: | 1 |
Default value: | None |
Required: | True |
Accept pipeline input: | True |
Accept wildcard characters: | False |
Applies to: | SharePoint Server 2010, SharePoint Server 2013, SharePoint Server 2016, SharePoint Server 2019 |
-IdentityType
指定新声明主体的类型。
键入的值必须为下列值之一: WindowsSamAccountName 、 WindowsSecurityGroupSid 、 FormsUser 、 FormsRole 或 EncodedClaim 。
Type: | SPIdentifierTypes |
Position: | 2 |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
Applies to: | SharePoint Server 2010, SharePoint Server 2013, SharePoint Server 2016, SharePoint Server 2019 |
-TrustedIdentityTokenIssuer
指定验证提供程序的 ID。
键入的值必须为 12345678-90ab-cdef-1234-567890bcdefgh 形式的有效 GUID;验证提供程序的有效名称(如 MyAuthprovider1);或有效 SPTrustedIdentityTokenIssuer 对象的实例。
Type: | SPTrustedIdentityTokenIssuerPipeBind |
Position: | 2 |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
Applies to: | SharePoint Server 2010, SharePoint Server 2013, SharePoint Server 2016, SharePoint Server 2019 |