PowerShell Logo Small

New-ADClaimTransformPolicy



This is the built-in help made by Microsoft for the command 'New-ADClaimTransformPolicy', in PowerShell version 5 - as retrieved from Windows version 'Microsoft Windows Server 2012 R2 Standard' PowerShell help files on 2016-06-23.

For PowerShell version 3 and up, where you have Update-Help, this command was run just before creating the web pages from the help files.

SYNOPSIS

Creates a new claim transformation policy object in Active Directory.

SYNTAX


New-ADClaimTransformPolicy [-Name] <String> [-AuthType {Negotiate | Basic}] [-Credential <PSCredential>] [-Description <String>] [-PassThru]
[-ProtectedFromAccidentalDeletion <Boolean>] [-Server <String>] -AllowAll [-Confirm] [-WhatIf] [<CommonParameters>]
New-ADClaimTransformPolicy [-Name] <String> [-AuthType {Negotiate | Basic}] [-Credential <PSCredential>] [-Description <String>] [-PassThru]
[-ProtectedFromAccidentalDeletion <Boolean>] [-Server <String>] -AllowAllExcept <ADClaimType[]> [-Confirm] [-WhatIf] [<CommonParameters>]
New-ADClaimTransformPolicy [-Name] <String> [-AuthType {Negotiate | Basic}] [-Credential <PSCredential>] [-Description <String>] [-PassThru]
[-ProtectedFromAccidentalDeletion <Boolean>] [-Server <String>] -DenyAll [-Confirm] [-WhatIf] [<CommonParameters>]
New-ADClaimTransformPolicy [-Name] <String> [-AuthType {Negotiate | Basic}] [-Credential <PSCredential>] [-Description <String>] [-PassThru]
[-ProtectedFromAccidentalDeletion <Boolean>] [-Server <String>] -DenyAllExcept <ADClaimType[]> [-Confirm] [-WhatIf] [<CommonParameters>]
New-ADClaimTransformPolicy [-Name] <String> [-AuthType {Negotiate | Basic}] [-Credential <PSCredential>] [-Description <String>] [-Instance <ADClaimTransformPolicy>]
[-PassThru] [-ProtectedFromAccidentalDeletion <Boolean>] [-Server <String>] -Rule <String> [-Confirm] [-WhatIf] [<CommonParameters>]



Search powershellhelp.space

DESCRIPTION


The New-ADClaimTransformPolicy cmdlet creates a new claims transformation policy object in Active Directory. A claims transformation policy object contains a set of rules
authored in the transformation rule language. After creating a policy object, you can link it with a forest trust to apply the claims transformation to the trust.



<

RELATED LINKS


Online Version: http://go.microsoft.com/fwlink/p/?linkid=291062

REMARKS

<

Examples


-------------------------- EXAMPLE 1 --------------------------

PS C:\>New-ADClaimTransformPolicy -Name "DenyAllPolicy" -DenyAll



This command creates a new claims transformation policy named DenyAllPolicy that denies all claims, both those that are sent as well as those that are received.




-------------------------- EXAMPLE 2 --------------------------

PS C:\>New-ADClaimTransformPolicy -Name "AllowAllExceptCompanyAndDepartmentPolicy" -AllowAllExcept Company,Department



This command creates a new claims transformation policy named AllowAllExceptCompanyAndDepartmentPolicy that allows all claims to be sent or received except for the claims
Company and Department.




-------------------------- EXAMPLE 3 --------------------------

PS C:\>New-ADClaimTransformPolicy -Name "HumanResourcesToHrPolicy" -Rule 'C1:[Type=="ad://ext/Department:88ceb0fe88a125db", Value=="Human Resources", ValueType=="string"] =>
issue(Type=C1.Type, Value="HR", ValueType=C1.ValueType);'



This command creates a new claims transformation policy named HumanResourcesToHrPolicy that transforms the value Human Resources to HR in the claim Department.




-------------------------- EXAMPLE 4 --------------------------

PS C:\>$rule = Get-Content C:\rule.txt
PS C:\> New-ADClaimTransformPolicy -Name "MyRule" -Rule $rule



This example creates a new claims transformation policy named MyRule with the rule specified in C:\rule.txt.