New-AdfsAzureMfaTenantCertificate

by Posted on

New-AdfsAzureMfaTenantCertificate is accessible with the help of adfs module. To install adfs on your system please refer to this adfs.

Synopsis

Creates a certificate for the AD FS farm to use to connect to Azure MFA, or returns the currently configured certificate.

Description

The New-AdfsAzureMfaTenantCertificate cmdlet creates a certificate for an Active Directory Federation Services (AD FS) farm to use to connect to Azure Multi-Factor Authentication (MFA), or returns the currently configured certificate.

The cmdlet looks in the local machine My store for a certificate with Issuer and Subject equal to:
CN =
OU = Microsoft AD FS Azure MFA
If it does not find one, it generates it.

Parameters

 
 -Renew
 
    Required?                    false
    Position?                    named
    Default value                none
    Accept pipeline input?       false
    Accept wildcard characters?  false

-TenantId <String>
    Specifies the GUID representation of the Azure AD tenant ID. This can be found in the URL bar of the Azure AD portal, as in this example: https://manage.windowsazure.com/contoso.onmicrosoft.com#Workspaces/ActiveDirectoryExtension/Directory/<tenantID_GUID>/directoryQuickStart


    Required?                    true
    Position?                    named
    Default value                none
    Accept pipeline input?       false
    Accept wildcard characters?  false

-Confirm <SwitchParameter>
    Prompts you for confirmation before running the cmdlet.Prompts you for confirmation before running the cmdlet.

    Required?                    false
    Position?                    named
    Default value                false
    Accept pipeline input?       false
    Accept wildcard characters?  false

-WhatIf <SwitchParameter>
    Shows what would happen if the cmdlet runs. The cmdlet is not run.Shows what would happen if the cmdlet runs. The cmdlet is not run.

    Required?                    false
    Position?                    named
    Default value                false
    Accept pipeline input?       false
    Accept wildcard characters?  false

Syntax

New-AdfsAzureMfaTenantCertificate -TenantId <String> [-Renew <Boolean>] [-WhatIf] [-Confirm] [<CommonParameters>]

————–Example 1————–
Create a certificate and enable Azure MFA on an AD FS farm
PS C:>$certbase64 = New-AdfsAzureMfaTenantCertificate -TenantID
PS C:>New-MsolServicePrincipalCredential -AppPrincipalId 27fg893b-09b8-8cd7-g893-8bea438nb921-Type asymmetric -Usage verify -Value $certBase64
PS C:>Set-AdfsAzureMfaTenant -TenantId -ClientId 27fg893b-09b8-8cd7-g893-8bea438nb921
These commands create a certificate for Azure MFA, register the certificate in a tenant, and enable Azure MFA on an AD FS farm.

————–Example 2————–
Determine which certificate Azure MFA is using
PS C:>New-AdfsAzureMfaTenantCertificate -TenantID -out-file azuremfacert.cer
After AD FS has been configured for Azure MFA, this command determines which certificate Azure MFA is using.

You can check the Version, CommandType and Source of this cmdlet by giving below command.

Get-Command New-AdfsAzureMfaTenantCertificate
Get-Command New-AdfsAzureMfaTenantCertificate powershell script command cmdlet adfs

You can also read about
  • Set-AdfsAzureMfaTenant

To know more PowerShell cmdlets(Commands) on Active Directory Federation Services(ADFS) click here

Click on this Link for an Single place where you get all the PowerShell cmdlet sorted based on the modules.

You can also refer other blogs on PowerShell at link

You can also refer other blogs on Microsoft at link

And also if you required any technology you want to learn, let us know below we will publish them in our site http://tossolution.com/

Like our page in Facebook and follow us for New technical information.

References are taken from Microsoft

Published by Karthik S

Lead DevOps | Windows | AWS | Azure | Docker | Kubernetes | Jenkins

Leave a Reply

Your email address will not be published. Required fields are marked *