Site icon TOSS

Set-ADAccountAuthenticationPolicySilo

Karthik S
powershell

Set-ADAccountAuthenticationPolicySilo is accessible with the help of addsadministration module. To install addsadministration on your system please refer to this link.

Synopsis

Modifies the authentication policy or authentication policy silo of an account.

Description

The Set-ADAccountAuthenticationPolicySilo cmdlet modifies the authentication policy or authentication policy silo of an account. This cmdlet assigns authentication policy silo objects and authentication policy object to an Active Directory Domain Services account. In order for the account to belong to an authentication policy silo, you must use the Grant-ADAuthenticationPolicySiloAccess cmdlet to grant access to the object.

The Identity parameter specifies the Active Directory Domain Services authentication policy to modify. You can identify an authentication policy by its distinguished name (DN), GUID or name. You can also use the Identity parameter to specify a variable that contains an authentication policy object, or you can use the pipeline operator to pass an authentication policy object to the Identity parameter.

Parameters 

-AuthenticationPolicy 
         Specifies an Active Directory Domain Services authentication policy object. Specify the authentication policy object in one of the following formats: 

    --Distinguished Name
    --GUID
    --Name

    Required?                    false
    Position?                    named
    Default value                
    Accept pipeline input?       false
    Accept wildcard characters?  false

-AuthenticationPolicySilo <ADAuthenticationPolicySilo>
    Specifies an Active Directory Domain Services authentication policy silo object. Specify the authentication policy silo object in one of the following formats: 

    --Distinguished Name
    --GUID
    --Name

    Required?                    false
    Position?                    named
    Default value                
    Accept pipeline input?       false
    Accept wildcard characters?  false

-AuthType <ADAuthType>
    Specifies the authentication method to use. The acceptable values for this parameter are:&nbsp;

    --Negotiate or 0
    --Basic or 1

    Required?                    false
    Position?                    named
    Default value                Microsoft.ActiveDirectory.Management.AuthType.Negotiate
    Accept pipeline input?       false
    Accept wildcard characters?  false

-Credential <PSCredential>
    Specifies a user account that has permission to perform the task. The default is the current user. Type a user name, such as "User01" or "Domain01\User01", or enter a PSCredential object, such as one generated by the Get-Credential cmdlet.

    Required?                    false
    Position?                    named
    Default value                
    Accept pipeline input?       false
    Accept wildcard characters?  false

-Identity <ADAccount>
    Specifies an Active Directory Domain Services object. Specify the Active Directory Domain Services object in one of the following formats: 

    --Distinguished Name
    --GUID
    --Name

    Required?                    true
    Position?                    0
    Default value                
    Accept pipeline input?       True (ByValue)
    Accept wildcard characters?  false

-PassThru <SwitchParameter>
    Returns an object representing the item with which you are working. By default, this cmdlet does not generate any output.

    Required?                    false
    Position?                    named
    Default value                
    Accept pipeline input?       false
    Accept wildcard characters?  false

-Server <String>
    Specifies the Active Directory Domain Services instance to which to connect, by providing one of the following values for a corresponding domain name or directory server. The service may be any of the following:  Active Directory Lightweight Domain Services, Active Directory Domain Services or Active Directory Snapshot instance.

    Required?                    false
    Position?                    named
    Default value                
    Accept pipeline input?       false
    Accept wildcard characters?  false

-Confirm <SwitchParameter>
    Prompts you for confirmation before running the cmdlet.

    Required?                    false
    Position?                    named
    Default value                false
    Accept pipeline input?       false
    Accept wildcard characters?  false

-WhatIf <SwitchParameter>
    Shows what would happen if the cmdlet runs. The cmdlet is not run.

    Required?                    false
    Position?                    named
    Default value                false
    Accept pipeline input?       false
    Accept wildcard characters?  false

Syntax

Set-ADAccountAuthenticationPolicySilo [-WhatIf] [-Confirm] [-AuthenticationPolicy <ADAuthenticationPolicy>] [-AuthenticationPolicySilo <ADAuthenticationPolicySilo>] [-AuthType <ADAuthType>] [-Credential <PSCredential>] [-Identity] <ADAccount> [-PassThru] [-Server <String>] [<CommonParameters>]

————————– EXAMPLE 1 ————————–
Assign an authentication policy silo and authentication policy
PS C:>Set-ADAccountAuthenticationPolicySilo -Identity Usr01 -AuthenticationPolicySilo AuthPolicySilo01 –AuthenticationPolicy AuthPolicy01
This example assigns the authentication policy silo named AuthPolicySilo01 and the authentication policy named AuthPolicy01 to the user account named Usr01.

————————– EXAMPLE 1 ————————–
Assign an authentication policy silo and authentication policy by using a filter
PS C:>Get-ADComputer –Filter ‘Name –like “newComp*”‘ | Set-ADAccountAuthenticationPolicySilo –AuthenticationPolicySilo AuthPolicySilo02 –AuthenticationPolicy AuthPolicy02
This example first uses the Get-ADComputer cmdlet to get all computer accounts that match the filter specified by the Filter parameter. The output of this command is passed to Set-ADAccountAuthenticatinPolicySilo to assign the authentication policy silo named AuthPolicySilo02 and the authentication policy named AuthPolicy02 to them.

You can check the Version, CommandType and Source of this cmdlet by giving below command.

Get-Command Set-ADAccountAuthenticationPolicySilo

You can also read about
. Grant-ADAuthenticationPolicySiloAccess

To know more PowerShell cmdlets(Commands) on addsadministration (Active Directory) click here

Click on this Link for an Single place where you get all the PowerShell cmdlet sorted based on the modules.

You can also refer other blogs on PowerShell at link

You can also refer other blogs on Microsoft at link

And also if you required any technology you want to learn, let us know below we will publish them in our site http://tossolution.com/

Like our page in Facebook and follow us for New technical information.

References are taken from Microsoft

Exit mobile version