Public/generated/Get-KritTcmEXOActiveSyncMailboxPolicy.ps1

<#
·· × × × ··· SirJ's Deaddrop ··· × × × ···
      — If you found this, you were meant to —

---------------- A Seriously Kritical™ Production ----------------

                                   [] →
                 (¯`·.¸¸.·´¯)
               .·´ `·. [] →
               `·.______________.·´
              | +------------------+ |
              | | Kritical™ | |
              | | [] [] | |
              | | | |
              | | [] [] [] | |
              | +------------------+ |
                  (._.·´¯`·.¸_)

                     Your last call.
                   And your first move.

                         ★ ☆ ★

                     +61 1300 274 655
                 sales at kritical dot net

-----------------------------------------------------------------


.COPYRIGHT
    (c) 2026 Kritical Pty Ltd. All rights reserved.
.AUTHOR
    Joshua Finley <joshua.finley@kritical.net>
.COMPANY
    Kritical Pty Ltd | ABN 39 687 048 086
    Level 4 / 60 Moorabool St Geelong VIC 3220
    1300 274 655 | sales@kritical.net | https://kritical.net/
.NOTES
    HARD RULE 13 canonical Kritical branding — do not overlay other agent banners.
    Auto-generated by Generate-KritTcmFromM365DscSchema.ps1 (.1507o30+).
    Upstream reference: Microsoft365DSC by Microsoft (MIT). This shim provides
    literal search-replace equivalence — see Krit.TCM/generated/index.md.
#>


function Get-KritTcmEXOActiveSyncMailboxPolicy {
<#
.SYNOPSIS
    Krit.TCM shim for M365DSC resource EXOActiveSyncMailboxPolicy.

.DESCRIPTION
    Auto-generated from M365DSC .schema.mof by
    scripts/m365-setup/Generate-KritTcmFromM365DscSchema.ps1 (.1507o30).

    Search-replace safe: callers that today invoke
        Get-M365DSCEXOActiveSyncMailboxPolicy -Credential $cred -TenantId $tid
    can rename to
        Get-KritTcmEXOActiveSyncMailboxPolicy -Credential $cred -TenantId $tid
    with ZERO other edits. Parameter shape matches the M365DSC .schema.mof
    exactly. Per operator direction, -PreferM365DscBehavior defaults to true.

    Actual Graph dispatch is delegated to Invoke-KritTcmM365DscSchemaBridge.
    Bridge maps resource → Graph endpoint per per-resource wave; where mapping
    is not yet shipped, bridge returns an object with Verdict='UNMAPPED'.

.NOTES
    Workload: Exchange
    Original mof: C:\Users\joshl\OneDrive - Kritical Pty Ltd\Github\KRTPax8ToShopifyConnector\.kritm365-mine\Microsoft365DSC\Modules\Microsoft365DSC\DSCResources\MSFT_EXOActiveSyncMailboxPolicy\MSFT_EXOActiveSyncMailboxPolicy.schema.mof
    Param count: 63
    Generator wave: .1507o30
#>

[CmdletBinding()]
param(
        # Specifies the name of the policy.
[string]$Name,
        # Specifies whether push notifications are allowed for Apple mobile devices.
[bool]$AllowApplePushNotifications,
        # Specifies whether the Bluetooth capabilities of the mobile phone are allowed.
[ValidateSet('Disable','HandsfreeOnly','Allow')] [string]$AllowBluetooth,
        # Specifies whether Microsoft Pocket Internet Explorer is allowed on the mobile phone.
[bool]$AllowBrowser,
        # Specifies whether the mobile phone's camera is allowed.
[bool]$AllowCamera,
        # Specifies whether the mobile phone user can configure a personal email account on the device.
[bool]$AllowConsumerEmail,
        # Specifies whether the mobile phone can synchronize with a desktop computer through a cable.
[bool]$AllowDesktopSync,
        # Specifies whether an external device management program is allowed to manage the device.
[bool]$AllowExternalDeviceManagement,
        # The AllowGooglePushNotifications parameter controls whether the user can receive push notifications from Google for Outlook on the web for devices. Valid input for this parameter is $true or $false. The default value is $true.
[bool]$AllowGooglePushNotifications,
        # Specifies whether HTML email is enabled on the device.
[bool]$AllowHTMLEmail,
        # Specifies whether the mobile phone can be used as a modem to connect a computer to the Internet.
[bool]$AllowInternetSharing,
        # Specifies whether infrared connections are allowed to the mobile phone.
[bool]$AllowIrDA,
        # The AllowMicrosoftPushNotifications parameter specifies whether push notifications are enabled on the mobile device. Valid input for this parameter is $true or $false. The default value is $true.
[bool]$AllowMicrosoftPushNotifications,
        # Specifies whether certain updates are seen by devices that implemented support for this restricting functionality.
[bool]$AllowMobileOTAUpdate,
        # Enables all devices to synchronize with the computer running Exchange, regardless of whether the device can enforce all the specific settings established in the Mobile Device mailbox policy.
[bool]$AllowNonProvisionableDevices,
        # Specifies whether the user can configure a POP3 or IMAP4 email account on the device.
[bool]$AllowPOPIMAPEmail,
        # Specifies whether the mobile phone can initiate a remote desktop connection.
[bool]$AllowRemoteDesktop,
        # Specifies whether a simple device password is allowed.
[bool]$AllowSimplePassword,
        # Specifies whether the messaging application on the device can negotiate the encryption algorithm in case a recipient's certificate doesn't support the specified encryption algorithm.
[string]$AllowSMIMEEncryptionAlgorithmNegotiation,
        # Specifies whether S/MIME software certificates are allowed.
[bool]$AllowSMIMESoftCerts,
        # Specifies whether the device can access information stored on a storage card.
[bool]$AllowStorageCard,
        # Specifies whether text messaging is allowed from the device.
[bool]$AllowTextMessaging,
        # Specifies whether unsigned applications can be installed on the device.
[bool]$AllowUnsignedApplications,
        # Specifies whether unsigned installation packages can be run on the device.
[bool]$AllowUnsignedInstallationPackages,
        # Specifies whether wireless Internet access is allowed on the device.
[bool]$AllowWiFi,
        # Specifies whether the device password must be alphanumeric.
[bool]$AlphanumericPasswordRequired,
        # Specifies whether the user can download attachments.
[bool]$AttachmentsEnabled,
        # Enables device encryption on the mobile phone.
[bool]$DeviceEncryptionEnabled,
        # Specifies that the user set a password for the device.
[bool]$PasswordEnabled,
        # Specifies the length of time, in days, that a password can be used.
[string]$PasswordExpiration,
        # Specifies the number of previously used passwords to store.
[int]$PasswordHistory,
        # Specifies how often the policy is sent from the server to the mobile phone
[string]$DevicePolicyRefreshInterval,
        # Specifies whether Information Rights Management (IRM) is enabled for the mailbox policy.
[bool]$IrmEnabled,
        # Specifies whether this policy is the default Mobile Device mailbox policy.
[bool]$IsDefault,
        # Specifies whether this policy is the default Mobile Device mailbox policy.
[bool]$IsDefaultPolicy,
        # Specifies the maximum size of attachments that can be downloaded to the mobile phone.
[string]$MaxAttachmentSize,
        # Specifies the maximum range of calendar days that can be synchronized to the device.
[ValidateSet('All','TwoWeeks','OneMonth','ThreeMonths','SixMonths')] [string]$MaxCalendarAgeFilter,
        # Specifies the number of attempts a user can make to enter the correct password for the device.
[string]$MaxPasswordFailedAttempts,
        # Specifies the maximum number of days of email items to synchronize to the device.
[ValidateSet('All','OneDay','ThreeDays','OneWeek','TwoWeeks','OneMonth','ThreeMonths','SixMonths')] [string]$MaxEmailAgeFilter,
        # Specifies the maximum size at which email messages are truncated when synchronized to the device.
[string]$MaxEmailBodyTruncationSize,
        # Specifies the maximum size at which HTML-formatted email messages are synchronized to the device.
[string]$MaxEmailHTMLBodyTruncationSize,
        # Specifies the length of time that the device can be inactive before the password is required to reactivate the device.
[string]$MaxInactivityTimeLock,
        # Specifies the minimum number of complex characters required in a device password.
[int]$MinPasswordComplexCharacters,
        # Specifies the minimum number of characters in the device password.
[int]$MinPasswordLength,
        # Specifies whether you can store the recovery password for the device on an Exchange server.
[bool]$PasswordRecoveryEnabled,
        # Specifies whether encryption is required on the device.
[bool]$RequireDeviceEncryption,
        # Specifies whether you must encrypt S/MIME messages.
[bool]$RequireEncryptedSMIMEMessages,
        # Specifies what required algorithm must be used when encrypting a message.
[string]$RequireEncryptionSMIMEAlgorithm,
        # Specifies whether the device must synchronize manually while roaming.
[bool]$RequireManualSyncWhenRoaming,
        # Specifies what required algorithm must be used when signing a message.
[string]$RequireSignedSMIMEAlgorithm,
        # Specifies whether the device must send signed S/MIME messages.
[bool]$RequireSignedSMIMEMessages,
        # Specifies whether encryption of a storage card is required.
[bool]$RequireStorageCardEncryption,
        # Specifies whether access to Microsoft Windows file shares is enabled.
[bool]$UNCAccessEnabled,
        # Specifies whether access to Microsoft Windows SharePoint Services is enabled.
[bool]$WSSAccessEnabled,
        # Specifies the Mobile Device mailbox policy.
[Parameter(Mandatory)] [string]$Identity,
        # Specifies if this AddressList should exist.
[ValidateSet('Present','Absent')] [string]$Ensure,
        # Credentials of the workload's Admin
[string]$Credential,
        # Id of the Azure Active Directory application to authenticate with.
[string]$ApplicationId,
        # Id of the Azure Active Directory tenant used for authentication.
[string]$TenantId,
        # Thumbprint of the Azure Active Directory application's authentication certificate to use for authentication.
[string]$CertificateThumbprint,
        # Username can be made up to anything but password will be used for CertificatePassword
[string]$CertificatePassword,
        # Path to certificate used in service principal usually a PFX file.
[string]$CertificatePath,
        # Managed ID being used for authentication.
[bool]$ManagedIdentity
)
    Invoke-KritTcmM365DscSchemaBridge -ResourceName 'EXOActiveSyncMailboxPolicy' -Workload 'Exchange' -Verb 'Get' -CallerParams $PSBoundParameters
}