Search Results for

    Show / Hide Table of Contents

    Set-AdmPwdPdsManagedAccountsContainer

    SYNOPSIS

    Updates configuration of AD container with accounts with automatically managed passwords in configuration of PDS.

    SYNTAX

    Pds

    Set-AdmPwdPdsManagedAccountsContainer [-Pds] <PdsEndpoint> [-DistinguishedName] <String> [[-PasswordAge] <UInt32>] [[-PasswordLength] <UInt32>] [[-PasswordHistoryLength] <UInt32>] [[-PasswordComplexity] <PasswordComplexity>] [[-KeyId] <UInt32>] [<CommonParameters>]
    

    PdsName

    Set-AdmPwdPdsManagedAccountsContainer [-PdsName] <String> [-DistinguishedName] <String> [[-PasswordAge] <UInt32>] [[-PasswordLength] <UInt32>] [[-PasswordHistoryLength] <UInt32>] [[-PasswordComplexity] <PasswordComplexity>] [[-KeyId] <UInt32>] [<CommonParameters>]
    

    DESCRIPTION

    PDS manages managed domain accounts in specified AD containers (typically OUs). Each container has specific configuration for passwords (complexity, age, encryption key, etc.).
    All user accounts in container are subject of automatic password configuration.
    Configuration of managed accounts containers is stored in PDS configuration file.

    EXAMPLES

    Example 1

    Get-AdmPwdPds | Set-AdmPwdPdsManagedAccountsContainer -DistinguishedName:"ou=AdmPwdManagedAccounts,dc=mydomain,dc=com" -PasswordAge:14400
    

    Gets list of all PDS instances discovered and updates definition of container for managed accounts. Password will be changed every 10 days.

    Example 2

    Get-AdmPwdPds | ForEach-Object{Set-AdmPwdPdsManagedAccountsContainer PdsName $_.Host -DistinguishedName "ou=AdmPwdManagedAccounts,dc=mydomain,dc=com" -PasswordComplexity LargeSmallNum}
    

    Gets list of all PDS instances discovered and updates definition of container for managed accounts. New passwords will be generated so as they contain Large letters, Small letters and Numbers

    PARAMETERS

    -Pds

    Instance of PDS as returned by Get-AdmPwdPds command

    Type: PdsEndpoint
    Parameter Sets: Pds
    Aliases:
    
    Required: True
    Position: 0
    Default value: None
    Accept pipeline input: True (ByValue)
    Accept wildcard characters: False
    

    -PdsName

    Name of instance of PDS - DNS name of machine hosting PDS service

    Type: String
    Parameter Sets: PdsName
    Aliases:
    
    Required: True
    Position: 0
    Default value: None
    Accept pipeline input: True (ByValue)
    Accept wildcard characters: False
    

    -DistinguishedName

    DN of AD container that contains user accounts to be subject of password management by PDS.

    Type: String
    Parameter Sets: (All)
    Aliases:
    
    Required: True
    Position: 1
    Default value: None
    Accept pipeline input: False
    Accept wildcard characters: False
    

    -PasswordAge

    Maximum allowed time (in minutes) for password being valid on managed accounts in this AD container. After this time expires, PDS automatically changes the password.

    Default: 43200 (30 days)

    Type: UInt32
    Parameter Sets: (All)
    Aliases:
    
    Required: False
    Position: 2
    Default value: 43200
    Accept pipeline input: False
    Accept wildcard characters: False
    

    -PasswordLength

    Length of passwords assigned by PDS service, in chars.

    Default: 12 chars

    Type: UInt32
    Parameter Sets: (All)
    Aliases:
    
    Required: False
    Position: 3
    Default value: 12
    Accept pipeline input: False
    Accept wildcard characters: False
    

    -PasswordHistoryLength

    How many passwords to keep in history. Only applies when Password History is enabled for container.

    Default: 1

    Type: UInt32
    Parameter Sets: (All)
    Aliases:
    
    Required: False
    Position: 4
    Default value: 1
    Accept pipeline input: False
    Accept wildcard characters: False
    

    -PasswordComplexity

    How many passwords to keep in history. Only applies when Password History is enabled for container.

    Default: PasswordComplexity.LargeSmallNumSpec

    Type: PasswordComplexity
    Parameter Sets: (All)
    Aliases:
    
    Required: False
    Position: 5
    Default value: PasswordComplexity.LargeSmallNumSpec
    Accept pipeline input: False
    Accept wildcard characters: False
    

    -KeyId

    ID of key that will be used to protect the passwords of managed accounts.

    Default: null (which means that PDS will automatically use latest encryption key)

    Type: UInt32
    Parameter Sets: (All)
    Aliases:
    
    Required: False
    Position: 6
    Default value: $null
    Accept pipeline input: False
    Accept wildcard characters: False
    

    CommonParameters

    This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

    INPUTS

    System.String

    AdmPwd.Types.PdsEndpoint

    System.UInt32

    OUTPUTS

    NOTES

    Caller has to be member of PDS administrators role. If not member, Access Denied error is returned.

    RELATED LINKS

    • Improve this Doc
    ☀
    ☾
    Back to top Generated by DocFX