This cmdlet allows you to modify the properties of an authorization rule, such as updating the target of the rule, adding and removing authorized users, and configuring LAPS and JIT settings.
Targets the rule to the AccountingServers AD group
PARAMETERS
-AadComputerId
The object ID of an Azure AD computer
Type:StringParameter Sets:Set the rule target to an Azure AD computerAliases:Required:TruePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AadGroupId
The object ID of an Azure AD group
Type:StringParameter Sets:Set the rule target to an Azure AD groupAliases:Required:TruePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AadTenantId
The tenant ID of a registered Azure AD tenant
Type:StringParameter Sets:Set the rule target to an Azure AD tenant, Set the rule target to an Azure AD group, Set the rule target to an Azure AD computerAliases:Required:TruePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AdComputer
The fully qualified name or SID of an Active Directory computer
Type:StringParameter Sets:Set the rule target to an AD computerAliases:Required:TruePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AdContainer
The DN of an Active Directory container object such as an organizational unit
Type:StringParameter Sets:Set the rule target to an AD containerAliases:Required:TruePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AdGroup
The fully qualified name or SID of an Active Directory group
Type:StringParameter Sets:Set the rule target to an AD groupAliases:Required:TruePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AddPrincipalsAllowedBitLocker
Principals to add to the allow BitLocker access list
Type:Object[]Parameter Sets:Modify the rule ACLAliases:Required:FalsePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AddPrincipalsAllowedJit
Principals to add to the allow JIT access list
Type:Object[]Parameter Sets:Modify the rule ACLAliases:Required:FalsePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AddPrincipalsAllowedLaps
Principals to add to the allow LAPS access list
Type:Object[]Parameter Sets:Modify the rule ACLAliases:Required:FalsePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AddPrincipalsAllowedLapsHistory
Principals to add to the allow LAPS history access list
Type:Object[]Parameter Sets:Modify the rule ACLAliases:Required:FalsePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AddPrincipalsDeniedBitLocker
Principals to add to the deny BitLocker access list
Type:Object[]Parameter Sets:Modify the rule ACLAliases:Required:FalsePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AddPrincipalsDeniedJit
Principals to add to the deny JIT access list
Type:Object[]Parameter Sets:Modify the rule ACLAliases:Required:FalsePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AddPrincipalsDeniedLaps
Principals to add to the deny LAPS access list
Type:Object[]Parameter Sets:Modify the rule ACLAliases:Required:FalsePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AddPrincipalsDeniedLapsHistory
Principals to add to the deny LAPS history access list
Type:Object[]Parameter Sets:Modify the rule ACLAliases:Required:FalsePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AmsComputerId
The object ID of an AMS-registered computer
Type:StringParameter Sets:Set the rule target to an AMS computerAliases:Required:TruePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
-AmsGroupId
The SID of an AMS group
Type:StringParameter Sets:Set the rule target to an AMS groupAliases:Required:TruePosition:NamedDefault value:NoneAccept pipeline input:FalseAccept wildcard characters:False
This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.