Examples/Resources/AADAuthenticationMethodPolicyX509/1-AADAuthenticationMethodPolicyX509-Example.ps1
|
<#
This example is used to test new resources and showcase the usage of new resources being worked on. It is not meant to use as a production baseline. #> Configuration Example { Import-DscResource -ModuleName Microsoft365DSC Node localhost { AADAuthenticationMethodPolicyX509 "AADAuthenticationMethodPolicyX509-X509Certificate" { ApplicationId = $ConfigurationData.NonNodeData.ApplicationId; AuthenticationModeConfiguration = MSFT_MicrosoftGraphx509CertificateAuthenticationModeConfiguration{ Rules = @(@() ) X509CertificateAuthenticationDefaultMode = 'x509CertificateMultiFactor' }; CertificateThumbprint = $ConfigurationData.NonNodeData.CertificateThumbprint; CertificateUserBindings = @( MSFT_MicrosoftGraphx509CertificateUserBinding{ Priority = 1 UserProperty = 'onPremisesUserPrincipalName' X509CertificateField = 'PrincipalName' } MSFT_MicrosoftGraphx509CertificateUserBinding{ Priority = 2 UserProperty = 'onPremisesUserPrincipalName' X509CertificateField = 'RFC822Name' } MSFT_MicrosoftGraphx509CertificateUserBinding{ Priority = 3 UserProperty = 'certificateUserIds' X509CertificateField = 'SubjectKeyIdentifier' } ); Ensure = "Present"; ExcludeTargets = @( MSFT_AADAuthenticationMethodPolicyX509ExcludeTarget{ Id = 'fakegroup1' TargetType = 'group' } MSFT_AADAuthenticationMethodPolicyX509ExcludeTarget{ Id = 'fakegroup2' TargetType = 'group' } ); Id = "X509Certificate"; IncludeTargets = @( MSFT_AADAuthenticationMethodPolicyX509IncludeTarget{ Id = 'fakegroup3' TargetType = 'group' } MSFT_AADAuthenticationMethodPolicyX509IncludeTarget{ Id = 'fakegroup4' TargetType = 'group' } ); State = "enabled"; TenantId = $ConfigurationData.NonNodeData.TenantId; } } } |