Configures an administrator authentication site or a tenant authentication site to use AD FS.
Syntax
Parameter Set: ConnectionParameters
Set-MgmtSvcIdentityProviderSettings [-Target] <String[]>
[-MetadataEndpoint] <Uri> [-ConfigureSecondary]
[-DisableCertificateValidation] [-ManagementConnectionString
<String> ] [-Password <String> ]
[-PortalConnectionString <String> ] [-Server <String> ]
[-UserName <String> ] [-Confirm] [-WhatIf] [
<CommonParameters>]
Parameter Set: ConnectionString
Set-MgmtSvcIdentityProviderSettings [-Target] <String[]>
[-MetadataEndpoint] <Uri> [-ConfigureSecondary]
[-ConnectionString <String> ] [-DisableCertificateValidation]
[-ManagementConnectionString <String> ]
[-PortalConnectionString <String> ] [-Confirm] [-WhatIf] [
<CommonParameters>]
The Set-MgmtSvcIdentityProviderSettings cmdlet configures an administrator authentication site or a tenant authentication site to use Active Directory Federation Services (AD FS). Specify one or more namespaces and an endpoint for metadata.
You can run this cmdlet from any computer in the deployment. However, this cmdlet assumes that the database is on the local computer. If the database is on another computer, you must use the Server, UserName, Password, and Database parameters, or a SQL connection string. If you specify a connection string by using the ConnectionString parameter, that value takes precedence over the Server, UserName, Password, and Database parameters.
Indicates that secondary identity provider settings are set.
|
Aliases |
none |
|
Required? |
false |
|
Position? |
named |
|
Default Value |
none |
|
Accept Pipeline Input? |
false |
|
Accept Wildcard Characters? |
false |
Specifies an SQL connection string.
|
Aliases |
none |
|
Required? |
false |
|
Position? |
named |
|
Default Value |
none |
|
Accept Pipeline Input? |
false |
|
Accept Wildcard Characters? |
false |
Indicates that the cmdlet disables certificate validation.
|
Aliases |
none |
|
Required? |
false |
|
Position? |
named |
|
Default Value |
none |
|
Accept Pipeline Input? |
false |
|
Accept Wildcard Characters? |
false |
Specifies a connection string for the Admin Auth Site.
|
Aliases |
none |
|
Required? |
false |
|
Position? |
named |
|
Default Value |
none |
|
Accept Pipeline Input? |
false |
|
Accept Wildcard Characters? |
false |
Specifies an endpoint for identity provider metadata.
|
Aliases |
none |
|
Required? |
true |
|
Position? |
2 |
|
Default Value |
none |
|
Accept Pipeline Input? |
false |
|
Accept Wildcard Characters? |
false |
Specifies a password.
|
Aliases |
none |
|
Required? |
false |
|
Position? |
named |
|
Default Value |
none |
|
Accept Pipeline Input? |
false |
|
Accept Wildcard Characters? |
false |
Specifies a connection string for the Tenant Auth Site.
|
Aliases |
none |
|
Required? |
false |
|
Position? |
named |
|
Default Value |
none |
|
Accept Pipeline Input? |
false |
|
Accept Wildcard Characters? |
false |
Specifies the name of the computer on which the SQL database resides.
|
Aliases |
none |
|
Required? |
false |
|
Position? |
named |
|
Default Value |
none |
|
Accept Pipeline Input? |
false |
|
Accept Wildcard Characters? |
false |
Specifies the target site. Valid values are:
-- Membership. This value indicates that the target is the Tenant Auth Site.
-- Windows. This value indicates that the target is the Admin Auth Site.
|
Aliases |
none |
|
Required? |
true |
|
Position? |
1 |
|
Default Value |
none |
|
Accept Pipeline Input? |
True (ByPropertyName) |
|
Accept Wildcard Characters? |
false |
Specifies the name of a user account.
|
Aliases |
none |
|
Required? |
false |
|
Position? |
named |
|
Default Value |
none |
|
Accept Pipeline Input? |
false |
|
Accept Wildcard Characters? |
false |
Prompts you for confirmation before executing the command.
|
Required? |
false |
|
Position? |
named |
|
Default Value |
none |
|
Accept Pipeline Input? |
false |
|
Accept Wildcard Characters? |
false |
Describes what would happen if you executed the command without actually executing the command.
|
Required? |
false |
|
Position? |
named |
|
Default Value |
none |
|
Accept Pipeline Input? |
false |
|
Accept Wildcard Characters? |
false |
This cmdlet supports the common parameters: -Verbose, -Debug, -ErrorAction, -ErrorVariable, -OutBuffer, and -OutVariable. For more information, see about_CommonParameters.
The first command stores a connection string in the $ConnectionString variable.
The second command configures a tenant authentication The command uses the connection string stored in the $ConnectionString variable. The command also specifies an endpoint for the metadata and disables certificate validation.
PS C:\> $ConnectionString = 'Data
Source=rd-sdfre4;Initial Catalog=Microsoft.MgmtSvc.Config;User
ID=SysAdmin;Password=PassWord'
PS C:\> Set-MgmtSvcIdentityProviderSettings -Target
Management -MetadataEndpoint
"https://Server07.Contoso.com/FederationMetadata/2007-06/FederationMetadata.xml"
-PortalConnectionString $ConnectionString
-DisableCertificateValidation