Public/generated/Get-KritTcmAADDomainFederation.ps1
|
<# ·· × × × ··· SirJ's Deaddrop ··· × × × ··· — If you found this, you were meant to — ---------------- A Seriously Kritical™ Production ---------------- [] → (¯`·.¸¸.·´¯) .·´ `·. [] → `·.______________.·´ | +------------------+ | | | Kritical™ | | | | [] [] | | | | | | | | [] [] [] | | | +------------------+ | (._.·´¯`·.¸_) Your last call. And your first move. ★ ☆ ★ +61 1300 274 655 sales at kritical dot net ----------------------------------------------------------------- .COPYRIGHT (c) 2026 Kritical Pty Ltd. All rights reserved. .AUTHOR Joshua Finley <joshua.finley@kritical.net> .COMPANY Kritical Pty Ltd | ABN 39 687 048 086 Level 4 / 60 Moorabool St Geelong VIC 3220 1300 274 655 | sales@kritical.net | https://kritical.net/ .NOTES HARD RULE 13 canonical Kritical branding — do not overlay other agent banners. Auto-generated by Generate-KritTcmFromM365DscSchema.ps1 (.1507o30+). Upstream reference: Microsoft365DSC by Microsoft (MIT). This shim provides literal search-replace equivalence — see Krit.TCM/generated/index.md. #> function Get-KritTcmAADDomainFederation { <# .SYNOPSIS Krit.TCM shim for M365DSC resource AADDomainFederation. .DESCRIPTION Auto-generated from M365DSC .schema.mof by scripts/m365-setup/Generate-KritTcmFromM365DscSchema.ps1 (.1507o30). Search-replace safe: callers that today invoke Get-M365DSCAADDomainFederation -Credential $cred -TenantId $tid can rename to Get-KritTcmAADDomainFederation -Credential $cred -TenantId $tid with ZERO other edits. Parameter shape matches the M365DSC .schema.mof exactly. Per operator direction, -PreferM365DscBehavior defaults to true. Actual Graph dispatch is delegated to Invoke-KritTcmM365DscSchemaBridge. Bridge maps resource → Graph endpoint per per-resource wave; where mapping is not yet shipped, bridge returns an object with Verdict='UNMAPPED'. .NOTES Workload: Entra Original mof: C:\Users\joshl\OneDrive - Kritical Pty Ltd\Github\KRTPax8ToShopifyConnector\.kritm365-mine\Microsoft365DSC\Modules\Microsoft365DSC\DSCResources\MSFT_AADDomainFederation\MSFT_AADDomainFederation.schema.mof Param count: 24 Generator wave: .1507o30 #> [CmdletBinding()] param( # The domain ID for which the federation configuration is being managed. [Parameter(Mandatory)] [string]$DomainId, # The unique identifier of the federation configuration. [string]$Id, # The display name of the federation configuration. [string]$DisplayName, # Issuer URI of the federation server. [string]$IssuerUri, # URI of the metadata exchange endpoint used for authentication. [string]$MetadataExchangeUri, # Current certificate used to sign tokens passed to the Microsoft identity platform. The certificate is formatted as a Base64 encoded string of the public portion of the federated IdP's token signing certificate. [string]$SigningCertificate, # Next signing certificate that can be used to sign tokens passed to the Microsoft identity platform. The certificate is formatted as a Base64 encoded string of the public portion of the federated IdP's token signing certificate. [string]$NextSigningCertificate, # URI that web-based clients are directed to when signing in to Microsoft Entra services. [string]$PassiveSignInUri, # URI that active clients are directed to when signing in to Microsoft Entra services. [string]$ActiveSignInUri, # URI to which clients are redirected when signing out of Microsoft Entra services. [string]$SignOutUri, # Preferred authentication protocol. Supported values are wsFed and saml. [string]$PreferredAuthenticationProtocol, # Prompt login behavior of the federated IdP. [string]$PromptLoginBehavior, # Determines whether Microsoft Entra ID accepts the MFA performed by the federated IdP. Supported values are acceptIfMfaDoneByFederatedIdp, enforceMfaByFederatedIdp, rejectMfaByFederatedIdp. [string]$FederatedIdpMfaBehavior, # URI that clients are redirected to for resetting their password. [string]$PasswordResetUri, # Specifies whether the federation requires signed authentication requests. [bool]$IsSignedAuthenticationRequestRequired, # Present ensures the instance exists, absent ensures it is removed. [ValidateSet('Absent','Present')] [string]$Ensure, # Credentials of the workload's Admin [string]$Credential, # Id of the Azure Active Directory application to authenticate with. [string]$ApplicationId, # Id of the Azure Active Directory tenant used for authentication. [string]$TenantId, # Secret of the Azure Active Directory application to authenticate with. [string]$ApplicationSecret, # Thumbprint of the Azure Active Directory application's authentication certificate to use for authentication. [string]$CertificateThumbprint, # Username can be made up to anything but password will be used for CertificatePassword [string]$CertificatePassword, # Path to certificate used in service principal usually a PFX file. [string]$CertificatePath, # Managed ID being used for authentication. [bool]$ManagedIdentity ) Invoke-KritTcmM365DscSchemaBridge -ResourceName 'AADDomainFederation' -Workload 'Entra' -Verb 'Get' -CallerParams $PSBoundParameters } |