New-RASMFA
Last updated
Last updated
New-RASMFA
Creates a new Multi Factor Authentication.
New-RASMFA [-] <string> [[-] <uint>] - <SwitchParameter> - <string> - <uint> - <string> [- <bool>] [- <bool>] [- <string>] [- <string>] [- {MandatoryForAllUsers | CreateTokenForDomainAuthenticatedUsers | UsersWithDeepnetAcc}] [- <string>] [- <string>] [- <bool>] [- <bool>] [- {MobileID | QuickID}] [<>]
New-RASMFA [-] <string> [[-] <uint>] - <string> - <SwitchParameter> [- <string>] [- <bool>] [- <string>] [- <string>] [- <string>] [- <bool>] [- {RASDatabase | ADMail | ADCustom}] [- <uint>] [- <uint>] [- {Always | IfEnrollmentIsAllowed | Never}] [- <DateTime>] [- {Allow | AllowUntil | DoNotAllow}] [- <string>] [<>]
New-RASMFA [-] <string> [[-] <uint>] - <string> - <SwitchParameter> - <uint> - <string> - <uint> - <SecureString> - <uint> [- <string>] [- <string>] [- <bool>] [- <bool>] [- {Parallel | Serial}] [- {PAP | CHAP}] [- {Radius | AzureRadius | DuoRadius | FortiRadius | TekRadius}] [- <string>] [- <bool>] [<>]
New-RASMFA [-] <string> [[-] <uint>] - <string> - <SwitchParameter> [- <string>] [- <bool>] [- {MandatoryForAllUsers | CreateTokenForDomainAuthenticatedUsers | UsersWithSafeNetAcc}] [- <string>] [- <string>] [<>]
New-RASMFA [-] <string> [[-] <uint>] - <string> - <SwitchParameter> [- <string>] [- <bool>] [- {Always | IfEnrollmentIsAllowed | Never}] [- <uint>] [- {GAuthTOTP | TOTP | MicrosoftTOTP}] [- <DateTime>] [- {Allow | AllowUntil | DoNotAllow}] [- <string>] [<>]
Creates a new Multi Factor Authentication.
-Name <string> The name of the target Multi Factor Authentication.
This must be the actual Multi Factor Authentication name used in the RAS farm.
-SiteId <uint> Site ID in which to modify the specified Multi Factor Authentication.
If the parameter is omitted, the site ID of the Licensing Server will be used.
-Description <string> A user-defined Multi Factor Authentication description.
-Enabled <bool> Enable or disable the Multi Factor Authentication upon creation.
If the parameter is omitted, the Multi Factor Authentication is initialised as Disabled.
-Deepnet <SwitchParameter>
-ActivateEmail <bool> Whether the activation email is enabled or disabled.
-ActivateSMS <bool> Whether the activation SMS is enabled or disabled.
-App <string> A value that represents the application name.
-AppID <string> A value that represents the application ID.
Possible values: MandatoryForAllUsers, CreateTokenForDomainAuthenticatedUsers, UsersWithDeepnetAcc
-DeepnetAgent <string> A value that represents the name of Deepnet Agent.
-DefaultDomain <string> A value that represents the Default Domain.
-SSL <bool> Whether SSL is allowed or not.
-DeepnetServer <string> The server of the second level authentication provider.
-DeepnetPort <uint> The port number of the second level authentication provider.
Possible values: MobileID, QuickID
-Radius <SwitchParameter> Radius SwitchParameter
Possible values: Radius, AzureRadius, DuoRadius, FortiRadius, TekRadius
-RadiusServer <string> The server of the second level authentication provider.
-RadiusPort <uint> The port number of the second level authentication provider.
Possible values: PAP, CHAP
-Retries <uint> Number of retries.
-Timeout <uint> Connection timeout (in seconds).
-DisplayName <string> RADIUS type name.
-UsernameOnly <bool> Specifies if forwarding of only the Username to RADIUS Server is enabled or not.
-ForwardFirstPwdToAD <bool> Specifies if forwarding of first password to Windows authentication provider is enabled or not.
-BackupServer <string> The backup server of the second level authentication provider.
Possible values: Parallel, Serial
-SecretKey <SecureString> RADIUS setting. The secret key.
-Safenet <SwitchParameter> Safenet SwitchParameter
Possible values: MandatoryForAllUsers, CreateTokenForDomainAuthenticatedUsers, UsersWithSafeNetAcc
-OTPServiceURL <string> OTP Service URL
-UserRepository <string> A value representing User Store
-TMSWebApiURL <string> The URL of the web service
-TOTP <SwitchParameter> TOTP SwitchParameter
Possible values: GAuthTOTP, TOTP, MicrosoftTOTP
Possible values: Allow, AllowUntil, DoNotAllow
Possible values: Always, IfEnrollmentIsAllowed, Never
-UntilDateTime <DateTime> Allow User Enrollment until date/time
-Tolerance <uint> TOTP tolerance in seconds. Accepted values are 0 (None), 30, 60, 90 and 120
-EmailOTP <SwitchParameter> Email OTP SwitchParameter
-OTPLifespanSec <uint> The lifespan of the OTP (seconds)
Possible values: RASDatabase, ADMail, ADCustom
-EmailContent <string> The content of the email. Possible variables: %OTP%, %DURATION%
-EmailSubject <string> The subject of the email. Possible variables: %OTP%
-UserMessagePrompt <string> User message prompt
-ADCustomAttribute <string> AD Custom Attribute
-AllowEnrollExternalEmail <bool> Allow enrollment of external email
-OTPLength <uint> The length of the OTP generated
<CommonParameters>
-none-
---------- EXAMPLE 1 ----------
New-RASMFA "MFA"
Creates a new Multi Factor Authentication with the specified name.
-AuthMode <> Authentication mode which defines the type of user for which a token will be created.
-TokenType <> Token Type (Mobile ID or Quick ID).
-RadiusType <> RADIUS Type
-PasswordEncoding <> The type of password encoding to be used.
-HAMode <> The type of high availability mode to be used.
-SafenetAuthMode <> SafeNet Authentication Mode
-TOTPType <> TOTP Type
-UserEnrollment <> Use of Enrollment
-ShowInformationForUnenrolledUsers <> Show information for unenrolled users
-ExternalEmailStorage <> The storage where the external email is stored