search
SupportDocumentation

Set-RASMFA

hashtag
NAME

Set-RASMFA

hashtag
SYNOPSIS

Modifies a multi-factor authentication.

hashtag
SYNTAX

Set-RASMFA [-Idarrow-up-right] <uint> -Deepnetarrow-up-right <SwitchParameter> [-ActivateEmailarrow-up-right <bool>] [-ActivateSMSarrow-up-right <bool>] [-Apparrow-up-right <string>] [-AppIDarrow-up-right <string>] [-AuthModearrow-up-right {MandatoryForAllUsers | CreateTokenForDomainAuthenticatedUsers | UsersWithDeepnetAcc}] [-DeepnetAgentarrow-up-right <string>] [-DeepnetPortarrow-up-right <uint>] [-DeepnetServerarrow-up-right <string>] [-DefaultDomainarrow-up-right <string>] [-Descriptionarrow-up-right <string>] [-Enabledarrow-up-right <bool>] [-InheritDefaultCriteriaSettingsarrow-up-right <bool>] [-NewNamearrow-up-right <string>] [-SSLarrow-up-right <bool>] [-TokenTypearrow-up-right {MobileID | QuickID}] [<CommonParametersarrow-up-right>]

Set-RASMFA [-Id] <uint> -EmailOTP <SwitchParameter> [-ADCustomAttribute <string>] [-AllowEnrollExternalEmail <bool>] [-DefaultEmailContent <SwitchParameter>] [-DefaultEmailSubject <SwitchParameter>] [-DefaultUserMessagePrompt <SwitchParameter>] [-Description <string>] [-DisplayName <string>] [-EmailContent <string>] [-EmailSubject <string>] [-Enabled <bool>] [-ExternalEmailStorage {RASDatabase | ADMail | ADCustom}] [-InheritDefaultCriteriaSettings <bool>] [-NewName <string>] [-OTPLength <uint>] [-OTPLifespanSec <uint>] [-ShowInformationForUnenrolledUsers {Always | IfEnrollmentIsAllowed | Never}] [-UntilDateTime <DateTime>] [-UserEnrollment {Allow | AllowUntil | DoNotAllow}] [-UserMessagePrompt <string>] [<CommonParameters>] Set-RASMFA [-Idarrow-up-right] <uint> -Radiusarrow-up-right <SwitchParameter> [-BackupServerarrow-up-right <string>] [-Descriptionarrow-up-right <string>] [-DisplayNamearrow-up-right <string>] [-Enabledarrow-up-right <bool>] [-ForwardFirstPwdToADarrow-up-right <bool>] [-HAModearrow-up-right {Parallel | Serial}] [-IgnoreErrorsarrow-up-right <string[]>] [-InheritDefaultCriteriaSettingsarrow-up-right <bool>] [-NewNamearrow-up-right <string>] [-PasswordEncodingarrow-up-right {PAP | CHAP}] [-RadiusPortarrow-up-right <uint>] [-RadiusServerarrow-up-right <string>] [-Retriesarrow-up-right <uint>] [-SecretKeyarrow-up-right <SecureString>] [-Timeoutarrow-up-right <uint>] [-UsernameOnlyarrow-up-right <bool>] [<CommonParametersarrow-up-right>] Set-RASMFA [-Idarrow-up-right] <uint> -Safenetarrow-up-right <SwitchParameter> [-Descriptionarrow-up-right <string>] [-Enabledarrow-up-right <bool>] [-InheritDefaultCriteriaSettingsarrow-up-right <bool>] [-NewNamearrow-up-right <string>] [-OTPServiceURLarrow-up-right <string>] [-SafenetAuthModearrow-up-right {MandatoryForAllUsers | CreateTokenForDomainAuthenticatedUsers | UsersWithSafeNetAcc}] [-TMSWebApiURLarrow-up-right <string>] [-UserRepositoryarrow-up-right <string>] [<CommonParametersarrow-up-right>] Set-RASMFA [-Idarrow-up-right] <uint> -TOTParrow-up-right <SwitchParameter> [-Descriptionarrow-up-right <string>] [-DisplayNamearrow-up-right <string>] [-Enabledarrow-up-right <bool>] [-InheritDefaultCriteriaSettingsarrow-up-right <bool>] [-NewNamearrow-up-right <string>] [-ShowInformationForUnenrolledUsers {Always | IfEnrollmentIsAllowed | Never}] [-Tolerancearrow-up-right <uint>] [-UntilDateTimearrow-up-right <DateTime>] [-UserEnrollmentarrow-up-right {Allow | AllowUntil | DoNotAllow}] [<CommonParametersarrow-up-right>]

Set-RASMFA [-InputObjectarrow-up-right] <MFAarrow-up-right> [-ActivateEmailarrow-up-right <bool>] [-ActivateSMSarrow-up-right <bool>] [-Apparrow-up-right <string>] [-AppIDarrow-up-right <string>] [-AuthModearrow-up-right {MandatoryForAllUsers | CreateTokenForDomainAuthenticatedUsers | UsersWithDeepnetAcc}] [-Deepnetarrow-up-right <SwitchParameter>] [-DeepnetAgentarrow-up-right <string>] [-DeepnetPortarrow-up-right <uint>] [-DeepnetServerarrow-up-right <string>] [-DefaultDomainarrow-up-right <string>] [-Descriptionarrow-up-right <string>] [-Enabledarrow-up-right <bool>] [-InheritDefaultCriteriaSettingsarrow-up-right <bool>] [-NewNamearrow-up-right <string>] [-SSLarrow-up-right <bool>] [-TokenTypearrow-up-right {MobileID | QuickID}] [<CommonParametersarrow-up-right>]

Set-RASMFA [-InputObject] <MFA> [-ADCustomAttribute <string>] [-AllowEnrollExternalEmail <bool>] [-DefaultEmailContent <SwitchParameter>] [-DefaultEmailSubject <SwitchParameter>] [-DefaultUserMessagePrompt <SwitchParameter>] [-Description <string>] [-DisplayName <string>] [-EmailContent <string>] [-EmailOTP <SwitchParameter>] [-EmailSubject <string>] [-Enabled <bool>] [-ExternalEmailStorage {RASDatabase | ADMail | ADCustom}] [-InheritDefaultCriteriaSettings <bool>] [-NewName <string>] [-OTPLength <uint>] [-OTPLifespanSec <uint>] [-ShowInformationForUnenrolledUsers {Always | IfEnrollmentIsAllowed | Never}] [-UntilDateTime <DateTime>] [-UserEnrollment {Allow | AllowUntil | DoNotAllow}] [-UserMessagePrompt <string>] [<CommonParameters>] Set-RASMFA [-InputObjectarrow-up-right] <MFAarrow-up-right> [-BackupServerarrow-up-right <string>] [-Descriptionarrow-up-right <string>] [-DisplayNamearrow-up-right <string>] [-Enabledarrow-up-right <bool>] [-HAModearrow-up-right {Parallel | Serial}] [-IgnoreErrorsarrow-up-right <string[]>] [-InheritDefaultCriteriaSettingsarrow-up-right <bool>] [-NewNamearrow-up-right <string>] [-PasswordEncodingarrow-up-right {PAP | CHAP}] [-Radiusarrow-up-right <SwitchParameter>] [-RadiusPortarrow-up-right <uint>] [-RadiusServerarrow-up-right <string>] [-Retriesarrow-up-right <uint>] [-SecretKeyarrow-up-right <SecureString>] [-Timeoutarrow-up-right <uint>] [-UsernameOnlyarrow-up-right <bool>] [<CommonParametersarrow-up-right>] Set-RASMFA [-InputObjectarrow-up-right] <MFAarrow-up-right> [-Descriptionarrow-up-right <string>] [-Enabledarrow-up-right <bool>] [-InheritDefaultCriteriaSettingsarrow-up-right <bool>] [-NewNamearrow-up-right <string>] [-OTPServiceURLarrow-up-right <string>] [-Safenetarrow-up-right <SwitchParameter>] [-SafenetAuthModearrow-up-right {MandatoryForAllUsers | CreateTokenForDomainAuthenticatedUsers | UsersWithSafeNetAcc}] [-TMSWebApiURLarrow-up-right <string>] [-UserRepositoryarrow-up-right <string>] [<CommonParametersarrow-up-right>]

Set-RASMFA [-InputObject] <MFA> [-Description <string>] [-Enabled <bool>] [-InheritDefaultCriteriaSettings <bool>] [-NewName <string>] [-OTPServiceURL <string>] [-Safenet <SwitchParameter>] [-SafenetAuthMode {MandatoryForAllUsers | CreateTokenForDomainAuthenticatedUsers | UsersWithSafeNetAcc}] [-TMSWebApiURL <string>] [-UserRepository <string>] [<CommonParameters>] Set-RASMFA [-InputObjectarrow-up-right] <MFAarrow-up-right> [-Descriptionarrow-up-right <string>] [-DisplayNamearrow-up-right <string>] [-Enabledarrow-up-right <bool>] [-InheritDefaultCriteriaSettingsarrow-up-right <bool>] [-NewNamearrow-up-right <string>] [-Tolerancearrow-up-right <uint>] [-TOTParrow-up-right <SwitchParameter>] [-UntilDateTimearrow-up-right <DateTime>] [-UserEnrollmentarrow-up-right {Allow | AllowUntil | DoNotAllow}] [<CommonParametersarrow-up-right>] Set-RASMFA [-Namearrow-up-right] <string> [[-SiteIdarrow-up-right] <uint>] -Deepnetarrow-up-right <SwitchParameter> [-ActivateEmailarrow-up-right <bool>] [-ActivateSMSarrow-up-right <bool>] [-Apparrow-up-right <string>] [-AppIDarrow-up-right <string>] [-AuthModearrow-up-right {MandatoryForAllUsers | CreateTokenForDomainAuthenticatedUsers | UsersWithDeepnetAcc}] [-DeepnetAgentarrow-up-right <string>] [-DeepnetPortarrow-up-right <uint>] [-DeepnetServerarrow-up-right <string>] [-DefaultDomainarrow-up-right <string>] [-Descriptionarrow-up-right <string>] [-Enabledarrow-up-right <bool>] [-InheritDefaultCriteriaSettingsarrow-up-right <bool>] [-NewNamearrow-up-right <string>] [-SSLarrow-up-right <bool>] [-TokenTypearrow-up-right {MobileID | QuickID}] [<CommonParametersarrow-up-right>]

Set-RASMFA -EmailOTP <SwitchParameter> [-ADCustomAttribute <string>] [-AllowEnrollExternalEmail <bool>] [-DefaultEmailContent <SwitchParameter>] [-DefaultEmailSubject <SwitchParameter>] [-DefaultUserMessagePrompt <SwitchParameter>] [-Description <string>] [-DisplayName <string>] [-EmailContent <string>] [-EmailSubject <string>] [-Enabled <bool>] [-ExternalEmailStorage {RASDatabase | ADMail | ADCustom}] [-InheritDefaultCriteriaSettings <bool>] [-NewName <string>] [-OTPLength <uint>] [-OTPLifespanSec <uint>] [-ShowInformationForUnenrolledUsers {Always | IfEnrollmentIsAllowed | Never}] [-UntilDateTime <DateTime>] [-UserEnrollment {Allow | AllowUntil | DoNotAllow}] [-UserMessagePrompt <string>] [<CommonParameters>] Set-RASMFA [-Namearrow-up-right] <string> [[-SiteIdarrow-up-right] <uint>] -Radiusarrow-up-right <SwitchParameter> [-BackupServerarrow-up-right <string>] [-Descriptionarrow-up-right <string>] [-DisplayNamearrow-up-right <string>] [-Enabledarrow-up-right <bool>] [-ForwardFirstPwdToADarrow-up-right <bool>] [-HAModearrow-up-right {Parallel | Serial}] [-IgnoreErrorsarrow-up-right <string[]>] [-InheritDefaultCriteriaSettingsarrow-up-right <bool>] [-NewNamearrow-up-right <string>] [-PasswordEncodingarrow-up-right {PAP | CHAP}] [-RadiusPortarrow-up-right <uint>] [-RadiusServerarrow-up-right <string>] [-Retriesarrow-up-right <uint>] [-SecretKeyarrow-up-right <SecureString>] [-Timeoutarrow-up-right <uint>] [-UsernameOnlyarrow-up-right <bool>] [<CommonParametersarrow-up-right>] Set-RASMFA [-Namearrow-up-right] <string> [[-SiteIdarrow-up-right] <uint>] -Safenetarrow-up-right <SwitchParameter> [-Descriptionarrow-up-right <string>] [-Enabledarrow-up-right <bool>] [-InheritDefaultCriteriaSettingsarrow-up-right <bool>] [-NewNamearrow-up-right <string>] [-OTPServiceURLarrow-up-right <string>] [-SafenetAuthModearrow-up-right {MandatoryForAllUsers | CreateTokenForDomainAuthenticatedUsers | UsersWithSafeNetAcc}] [-TMSWebApiURLarrow-up-right <string>] [-UserRepositoryarrow-up-right <string>] [<CommonParametersarrow-up-right>] Set-RASMFA [-Namearrow-up-right] <string> [[-SiteIdarrow-up-right] <uint>] -TOTParrow-up-right <SwitchParameter> [-Descriptionarrow-up-right <string>] [-DisplayNamearrow-up-right <string>] [-Enabledarrow-up-right <bool>] [-InheritDefaultCriteriaSettingsarrow-up-right <bool>] [-NewNamearrow-up-right <string>] [-ShowInformationForUnenrolledUsers {Always | IfEnrollmentIsAllowed | Never}] [-Tolerancearrow-up-right <uint>] [-UntilDateTimearrow-up-right <DateTime>] [-UserEnrollmentarrow-up-right {Allow | AllowUntil | DoNotAllow}] [<CommonParametersarrow-up-right>]

hashtag
DESCRIPTION

Modifies properties of a multi-factor authentication.

hashtag
PARAMETERS

-Name <string> The name of the target multi-factor authentication . This must be the actual multi-factor authentication name used in the RAS farm.

-SiteId <uint> Site ID in which to modify the specified multi-factor authentication . If the parameter is omitted, the site ID of the Licensing Server will be used.

-Id <uint> The ID of the multi-factor authentication to modify. To obtain the ID, use the Get-RASMFA cmdlet.

-InputObject <MFAarrow-up-right> The multi factor authentication to modify. To obtain an object of type MFA, use the Get-RASMFA cmdlet.

-NewName <string> The new name of the target multi-factor authentication .

-Description <string> A user-defined multi-factor authentication description.

-Enabled <bool> Enable or disable the specified multi-factor authentication in a site.

-InheritDefaultCriteriaSettings <bool> If true default criteria settings will be inherited.

-Deepnet <SwitchParameter> Deepnet SwitchParameter.

-ActivateEmail <bool> Whether the activation email is enabled or disabled.

-ActivateSMS <bool> Whether the activation SMS is enabled or disabled.

-App <string> A value that represents the application name.

-AppID <string> A value that represents the application ID.

-AuthMode <DeepnetAuthModearrow-up-right> Authentication mode which defines the type of user for which a token will be created. Possible values: MandatoryForAllUsers, CreateTokenForDomainAuthenticatedUsers, UsersWithDeepnetAcc

-DeepnetAgent <string> A value that represents the name of Deepnet Agent.

-DefaultDomain <string> A value that represents the Default Domain.

-SSL <bool> Whether SSL is allowed or not.

-DeepnetServer <string> The server of the second level authentication provider.

-DeepnetPort <uint> The port number of the second level authentication provider.

-TokenType <TokenTypearrow-up-right> Token Type (Flash ID, Mobile ID, Grid ID, or Quick ID). Possible values: MobileID, QuickID

-Radius <SwitchParameter> Radius SwitchParameter

-RadiusServer <string> The server of the second level authentication provider.

-RadiusPort <uint> The port number of the second level authentication provider.

-PasswordEncoding <PasswordEncodingarrow-up-right> The type of password encoding to be used. Possible values: PAP, CHAP

-Retries <uint> Number of retries.

-Timeout <uint> Connection timeout (in seconds).

-DisplayName <string> RADIUS type name.

-UsernameOnly <bool> Specifies if forwarding of only the Username to RADIUS Server is enabled or not.

-ForwardFirstPwdToAD <bool> Specifies if forwarding of first password to Windows authentication provider is enabled or not.

-BackupServer <string> The backup server of the second level authentication provider.

-HAMode <HAModearrow-up-right> The type of high availability mode to be used. Possible values: Parallel, Serial

-SecretKey <SecureString> RADIUS setting. The secret key.

-IgnoreErrors <string[]> Specifies the list of Ignored Errors. This is a DuoRadius only setting.

-Safenet <SwitchParameter> Safenet SwitchParameter

-SafenetAuthMode <SafeNetAuthModearrow-up-right> SafeNet Authentication Mode Possible values: MandatoryForAllUsers, CreateTokenForDomainAuthenticatedUsers, UsersWithSafeNetAcc

-OTPServiceURL <string> OTP Service URL

-UserRepository <string> A value representing User Store

-TMSWebApiURL <string> The URL of the web service

-TOTP <SwitchParameter> TOTP SwitchParameter

-UserEnrollment <UserEnrollmentarrow-up-right> Use of Enrollment Possible values: Allow, AllowUntil, DoNotAllow

-ShowInformationForUnenrolledUsers <ShowInformationForUnenrolledUsers> Show information for unenrolled users Possible values: Always, IfEnrollmentIsAllowed, Never

-UntilDateTime <DateTime> Allow User Enrollment until date/time

-Tolerance <uint> TOTP tolerance in seconds. Accepted values are 0 (None), 30, 60, 90 and 120

<CommonParameters>

hashtag
INPUTS

MFAarrow-up-right

hashtag
OUTPUTS

-none-

hashtag
EXAMPLES

---------- EXAMPLE 1 ---------- Set-RASMFA "MFA" -Deepnet -Enabled $False Disables the multi-factor authentication specified by name and by type. ---------- EXAMPLE 2 ---------- Set-RASMFA -Id 10 -Enabled $False Disables the multi-factor authentication specified by ID.

PreviousSet-RASMailboxSettingsNextSet-RASMFARadiusAuto

Last updated