The Add-BlockedDevicecmdlet adds a compromised managed Windows Mobile device to the blocked device list.

A blocked managed device cannot establish a virtual private network (VPN) connection with Mobile Device Manager (MDM) Gateway Server until you remove the managed device from the block list, or you enroll it with a new certificate.


Add-BlockedDevice [-DeviceId] <DeviceIdParameter> [-WhatIf]
[-Confirm] [<CommonParameters>]

Add-BlockedDevice -Owner <OwnerIdParameter> [-WhatIf]
[-Confirm] [<CommonParameters>]


The following describes the Add-BlockedDevicecmdlet parameters.

DeviceId <DeviceIdParameter>

Specifies the identity of the managed device to be blocked. This parameter can be a device common name, the distinguished name, the fully qualified domain name (FQDN), or the security ID (SID).

Owner <OwnerIdParameter>

Identifies the managed device to be blocked based on the device owner. If more than one device is found for this owner, an error is returned. This parameter can be a common name, e-mail address, distinguished name, SID, or Logon ID.


Informs you of what changes would be made if the action were to be performed (the cmdlet is not executed).


Prompts you for confirmation before the cmdlet executes.


This cmdlet supports the common parameters: -Verbose, -Debug, -ErrorAction, -ErrorVariable, and -OutVariable. For more information, at the Mobile Device Manager (MDM) Shell prompt, type get-help about_commonparameters.

Input Type

The Add-BlockedDevicecmdlet accepts a string through the pipeline that identifies a managed device, or an object that has the deviceIdproperty.

Output Type

The Add-BlockedDevicecmdlet returns a collection of BlockedDeviceobjects that represent the currently blocked managed devices. To see all the properties for this object, at the MDM Shell prompt, type Get-BlockedDevice | Get-Member.


This Add-BlockedDevicecommand example blocks the managed device, device1.

Copy Code
C:\PS>Add-BlockedDevice -Identity device1

This Add-BlockedDevicecommand example blocks the enrolled managed device owned by Mikael Sandberg.

Copy Code
C:\PS>Add-BlockedDevice -Owner "Mikael Sandberg"

Cmdlet Help

To view this information online, at the MDM Shell prompt, type:

get-help Add-BlockedDevice -detailed, or get-help Add-BlockedDevice -full

See Also