[Index]

Model: device/activedirectoryhybrid/ADClaimTransformPolicy

Model Details: device/activedirectoryhybrid/ADClaimTransformPolicy

Title Description Details
DisplayName
  • Field Name: DisplayName
  • Type: String
showInAdvancedViewOnly
  • Field Name: showInAdvancedViewOnly
  • Type: Boolean
Instance Specifies an instance of an Active Directory object to use as a template for a new claims transformation policy object. You can use an instance of an existing claims transformation policy object as a template or you can construct a new claims transformation policy object by using the Windows PowerShell command line or by using a script. Method 1: Use an existing claims transformation policy object as a template for a new object. To retrieve an instance of an existing claims transformation policy object, use a cmdlet such as Get-ADClaimTransformPolicy. Then provide this object to the Instance parameter of the New-ADClaimTransformPolicy cmdlet to create a new claims transformation policy object. You can override property values of the new object by setting the appropriate parameters. Method 2: Create a new ADClaimsTransformationPolicy and set the property values by using the Windows PowerShell command line interface. Then pass this object to the Instance parameter of the New-ADClaimTransformPolicy cmdlet to create the new Active Directory object. Note: Specified attributes are not validated, so attempting to set attributes that do not exist or cannot be set will raise an error.
  • Field Name: Instance
  • Type: String
DenyAll * Indicates that the policy sets a claims transformation rule that would deny all claims to be sent or received.
  • Field Name: DenyAll
  • Type: Boolean
instanceType
  • Field Name: instanceType
  • Type: Integer
isDeleted
  • Field Name: isDeleted
  • Type: Boolean
Name * Specifies the name of the object. This parameter sets the Name property of the Active Directory object. The LDAP Display Name (ldapDisplayName) of this property is name.
  • Field Name: Name
  • Type: String
msDS-TransformationRules
  • Field Name: msDS-TransformationRules
  • Type: String
Credential Specifies a user account that has permission to perform this action. The default is the current user. Type a user name, such as User01 or Domain01\User01, or enter a PSCredential object, such as one generated by the Get-Credential cmdlet. If you type a user name, you will be prompted for a password. This parameter is not supported by any providers installed with Windows PowerShell.
  • Field Name: Credential
  • Type: String
ProtectedFromAccidentalDeletion Specifies whether to prevent the object from being deleted. When this property is set to $True, you cannot delete the corresponding object without changing the value of the property. The acceptable values for this parameter are:  -- $False or 0 -- $True or 1
  • Field Name: ProtectedFromAccidentalDeletion
  • Type: Boolean
AllowAllExcept * Specifies an array of claim types. When this parameter is specified, the policy sets a claims transformation rule that would allow all claims to be sent or received except for the specified claim types.
  • Field Name: AllowAllExcept
  • Type: String
IncomingTrust
  • Field Name: IncomingTrust.[n]
  • Type: Array
Deleted
  • Field Name: Deleted
  • Type: Boolean
Created
  • Field Name: Created
  • Type: String
  • Format: date-time
ObjectGUID
  • Field Name: ObjectGUID
  • Type: String
LastKnownParent
  • Field Name: LastKnownParent
  • Type: String
whenCreated
  • Field Name: whenCreated
  • Type: String
  • Format: date-time
uSNCreated
  • Field Name: uSNCreated
  • Type: Integer
OutgoingTrust
  • Field Name: OutgoingTrust.[n]
  • Type: Array
DistinguishedName
  • Field Name: DistinguishedName
  • Type: String
AuthType Specifies the authentication method to use. The acceptable values for this parameter are:  -- Negotiate or 0 -- Basic or 1 The default authentication method is Negotiate. A Secure Sockets Layer (SSL) connection is required for the Basic authentication method.
  • Field Name: AuthType
  • Type: String
CN
  • Field Name: CN
  • Type: String
dSCorePropagationData
  • Field Name: dSCorePropagationData.[n]
  • Type: Array
Modified
  • Field Name: Modified
  • Type: String
  • Format: date-time
Rule * Represents the claims transformation rule. To specify the rule, you can either (1) type the rule in a text file, and then pass the file to the cmdlet (recommended), or (2) type the rule inline. For example, the following commands demonstrate how to create a new claims transformation policy object with the rule specified in a text file named Rule.txt located in a temporary folder C:\temp. $rule = Get-Content C:\temp\rule.txt; New-ADClaimTransformPolicy MyRule -Rule $rule
  • Field Name: Rule
  • Type: String
Server Specifies the Active Directory Domain Services instance to connect to, by providing one of the following values for a corresponding domain name or directory server. The service may be any of the following: Active Directory Lightweight Domain Services, Active Directory Domain Services or Active Directory Snapshot instance. Specify the Active Directory Domain Services instance in one of the following ways: -- Domain name values: ---- Fully qualified domain name ---- NetBIOS name -- Directory server values: ---- Fully qualified directory server name ---- NetBIOS name ---- Fully qualified directory server name and port The default value for this parameter is determined by one of the following methods in the order that they are listed: -- By using the Server value from objects passed through the pipeline -- By using the server information associated with the Active Directory Domain ServicesWindows PowerShell provider drive, when the cmdlet runs in that drive -- By using the domain of the computer running Windows PowerShell
  • Field Name: Server
  • Type: String
createTimeStamp
  • Field Name: createTimeStamp
  • Type: String
  • Format: date-time
DenyAllExcept * Specifies an array of claim types. When this parameter is specified, the policy sets a claims transformation rule that would deny all claims to be sent or received except for the specified claim types.
  • Field Name: DenyAllExcept
  • Type: String
whenChanged
  • Field Name: whenChanged
  • Type: String
  • Format: date-time
Description Specifies a description of the object. This parameter sets the value of the Description property for the object. The LDAP Display Name (ldapDisplayName) for this property is description.
  • Field Name: Description
  • Type: String
ObjectCategory
  • Field Name: ObjectCategory
  • Type: String
AllowAll * Indicates that the policy sets a claims transformation rule that would allow all claims to be sent or received.
  • Field Name: AllowAll
  • Type: Boolean
CanonicalName
  • Field Name: CanonicalName
  • Type: String
ObjectClass
  • Field Name: ObjectClass
  • Type: String
uSNChanged
  • Field Name: uSNChanged
  • Type: Integer
modifyTimeStamp
  • Field Name: modifyTimeStamp
  • Type: String
  • Format: date-time
sDRightsEffective
  • Field Name: sDRightsEffective
  • Type: Integer