New-AmsActiveDirectoryJitGroupCreationRule
Last updated
Was this helpful?
Last updated
Was this helpful?
Was this helpful?
Creates a new just-in-time Active Directory group creation rule
New-AmsActiveDirectoryJitGroupCreationRule [-ComputerOU <String>] [-CreateUnixGid <Boolean>]
[-EnableJitGroupDeletion <Boolean>] [-GroupDescription <String>] [-GroupNameTemplate <String>]
[-GroupOU <String>] [-GroupType <ActiveDirectoryGroupType>] [-Subtree <Boolean>]
[-UnixGidAttributeName <String>] [-UnixGidStartRange <Int32>] [<CommonParameters>]This cmdlet creates a new just-in-time Active Directory group creation rule
PS C:\> New-AmsActiveDirectoryJitGroupCreationRule -ComputerOU "OU=Computers,DC=lithnet,DC=local" -GroupOU "OU=Groups,DC=lithnet,DC=local" -GroupNameTemplate "JIT-%ComputerName%" -GroupDescription "AMS JIT Group" -GroupType DomainLocal -CreateUnixGid $true -UnixGidAttributeName "gidNumber" -UnixGidStartRange 10000 -EnableJitGroupDeletion $trueIn this example, a new JIT group creation rule is created that will create a new domain local group in the 'OU=Groups,DC=lithnet,DC=local' organizational unit. The group name will be 'JIT-', and the group description will be 'AMS JIT Group'. A unique Unix GID will be created for the group, and the group will be deleted when the computer is removed from the directory
The OU that will be used to searched for computer objects
Type: String
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseSpecifies if AMS should create a unique Unix GID for the group
Type: Boolean
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseSpecifies if AMS should delete the group when the computer is removed from the directory
Type: Boolean
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseThe description of the rule
Type: String
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseThe template used to create the group name
Type: String
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseThe OU that the groups will be created in
Type: String
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseThe type of AD group to create
Type: ActiveDirectoryGroupType
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseSpecifies if AMS should search child organizational units of the 'ComputerOU' for computer objects
Type: Boolean
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseThe name of the LDAP attribute to populate with the group's unique unix GID
Type: String
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseThe starting range of Unix GIDs to use
Type: Int32
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseThis cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.