Examples/Resources/AADAuthenticationMethodPolicyX509/2-Update.ps1
|
<#
This example is used to test new resources and showcase the usage of new resources being worked on. It is not meant to use as a production baseline. #> Configuration Example { param( [Parameter()] [System.String] $ApplicationId, [Parameter()] [System.String] $TenantId, [Parameter()] [System.String] $CertificateThumbprint ) Import-DscResource -ModuleName Microsoft365DSC Node localhost { AADAuthenticationMethodPolicyX509 "AADAuthenticationMethodPolicyX509-X509Certificate" { AuthenticationModeConfiguration = MSFT_MicrosoftGraphx509CertificateAuthenticationModeConfiguration{ X509CertificateAuthenticationDefaultMode = 'x509CertificateSingleFactor' Rules = @() }; CertificateUserBindings = @( MSFT_MicrosoftGraphx509CertificateUserBinding{ Priority = 1 UserProperty = 'userPrincipalName' X509CertificateField = 'PrincipalName' } MSFT_MicrosoftGraphx509CertificateUserBinding{ Priority = 2 UserProperty = 'userPrincipalName' X509CertificateField = 'RFC822Name' } MSFT_MicrosoftGraphx509CertificateUserBinding{ Priority = 3 UserProperty = 'certificateUserIds' X509CertificateField = 'SubjectKeyIdentifier' } ); ApplicationId = $ApplicationId TenantId = $TenantId CertificateThumbprint = $CertificateThumbprint Ensure = "Present"; ExcludeTargets = @( MSFT_AADAuthenticationMethodPolicyX509ExcludeTarget{ Id = 'DSCGroup' TargetType = 'group' } ); Id = "X509Certificate"; IncludeTargets = @( MSFT_AADAuthenticationMethodPolicyX509IncludeTarget{ Id = 'Finance Team' TargetType = 'group' } ); State = "enabled"; } } } |