Public/generated/Get-KritTcmIntuneMobileThreatDefenseConnector.ps1

<#
·· × × × ··· SirJ's Deaddrop ··· × × × ···
      — If you found this, you were meant to —

---------------- A Seriously Kritical™ Production ----------------

                                   [] →
                 (¯`·.¸¸.·´¯)
               .·´ `·. [] →
               `·.______________.·´
              | +------------------+ |
              | | Kritical™ | |
              | | [] [] | |
              | | | |
              | | [] [] [] | |
              | +------------------+ |
                  (._.·´¯`·.¸_)

                     Your last call.
                   And your first move.

                         ★ ☆ ★

                     +61 1300 274 655
                 sales at kritical dot net

-----------------------------------------------------------------


.COPYRIGHT
    (c) 2026 Kritical Pty Ltd. All rights reserved.
.AUTHOR
    Joshua Finley <joshua.finley@kritical.net>
.COMPANY
    Kritical Pty Ltd | ABN 39 687 048 086
    Level 4 / 60 Moorabool St Geelong VIC 3220
    1300 274 655 | sales@kritical.net | https://kritical.net/
.NOTES
    HARD RULE 13 canonical Kritical branding — do not overlay other agent banners.
    Auto-generated by Generate-KritTcmFromM365DscSchema.ps1 (.1507o30+).
    Upstream reference: Microsoft365DSC by Microsoft (MIT). This shim provides
    literal search-replace equivalence — see Krit.TCM/generated/index.md.
#>


function Get-KritTcmIntuneMobileThreatDefenseConnector {
<#
.SYNOPSIS
    Krit.TCM shim for M365DSC resource IntuneMobileThreatDefenseConnector.

.DESCRIPTION
    Auto-generated from M365DSC .schema.mof by
    scripts/m365-setup/Generate-KritTcmFromM365DscSchema.ps1 (.1507o30).

    Search-replace safe: callers that today invoke
        Get-M365DSCIntuneMobileThreatDefenseConnector -Credential $cred -TenantId $tid
    can rename to
        Get-KritTcmIntuneMobileThreatDefenseConnector -Credential $cred -TenantId $tid
    with ZERO other edits. Parameter shape matches the M365DSC .schema.mof
    exactly. Per operator direction, -PreferM365DscBehavior defaults to true.

    Actual Graph dispatch is delegated to Invoke-KritTcmM365DscSchemaBridge.
    Bridge maps resource → Graph endpoint per per-resource wave; where mapping
    is not yet shipped, bridge returns an object with Verdict='UNMAPPED'.

.NOTES
    Workload: Intune
    Original mof: C:\Users\joshl\OneDrive - Kritical Pty Ltd\Github\KRTPax8ToShopifyConnector\.kritm365-mine\Microsoft365DSC\Modules\Microsoft365DSC\DSCResources\MSFT_IntuneMobileThreatDefenseConnector\MSFT_IntuneMobileThreatDefenseConnector.schema.mof
    Param count: 26
    Generator wave: .1507o30
#>

[CmdletBinding()]
param(
        # The unique identifier for an entity. Read-only.
[Parameter(Mandatory)] [string]$Id,
        # The DisplayName of the Mobile Threat Defense Connector partner. NOTE: Hard coded for convenience, not returned by the Graph API.
[string]$DisplayName,
        # When TRUE, indicates the Mobile Threat Defense partner may collect metadata about installed applications from Intune for IOS devices. When FALSE, indicates the Mobile Threat Defense partner may not collect metadata about installed applications from Intune for IOS devices. Default value is FALSE.
[bool]$AllowPartnerToCollectIosApplicationMetadata,
        # When TRUE, indicates the Mobile Threat Defense partner may collect metadata about personally installed applications from Intune for IOS devices. When FALSE, indicates the Mobile Threat Defense partner may not collect metadata about personally installed applications from Intune for IOS devices. Default value is FALSE.
[bool]$AllowPartnerToCollectIOSPersonalApplicationMetadata,
        # For Android, set whether Intune must receive data from the Mobile Threat Defense partner prior to marking a device compliant.
[bool]$AndroidDeviceBlockedOnMissingPartnerData,
        # For Android, set whether data from the Mobile Threat Defense partner should be used during compliance evaluations.
[bool]$AndroidEnabled,
        # When TRUE, indicates that data from the Mobile Threat Defense partner can be used during Mobile Application Management (MAM) evaluations for Android devices. When FALSE, indicates that data from the Mobile Threat Defense partner should not be used during Mobile Application Management (MAM) evaluations for Android devices. Only one partner per platform may be enabled for Mobile Application Management (MAM) evaluation. Default value is FALSE.
[bool]$AndroidMobileApplicationManagementEnabled,
        # For IOS, set whether Intune must receive data from the Mobile Threat Defense partner prior to marking a device compliant.
[bool]$IosDeviceBlockedOnMissingPartnerData,
        # For IOS, get or set whether data from the Mobile Threat Defense partner should be used during compliance evaluations.
[bool]$IosEnabled,
        # When TRUE, indicates that data from the Mobile Threat Defense partner can be used during Mobile Application Management (MAM) evaluations for IOS devices. When FALSE, indicates that data from the Mobile Threat Defense partner should not be used during Mobile Application Management (MAM) evaluations for IOS devices. Only one partner per platform may be enabled for Mobile Application Management (MAM) evaluation. Default value is FALSE.
[bool]$IosMobileApplicationManagementEnabled,
        # DateTime of last Heartbeat received from the Mobile Threat Defense partner.
[datetime]$LastHeartbeatDateTime,
        # When TRUE, indicates that configuration profile management via Microsoft Defender for Endpoint is enabled. When FALSE, inidicates that configuration profile management via Microsoft Defender for Endpoint is disabled. Default value is FALSE.
[bool]$MicrosoftDefenderForEndpointAttachEnabled,
        # Partner state of this tenant.
[string]$PartnerState,
        # Get or Set days the per tenant tolerance to unresponsiveness for this partner integration.
[int]$PartnerUnresponsivenessThresholdInDays,
        # Get or set whether to block devices on the enabled platforms that do not meet the minimum version requirements of the Mobile Threat Defense partner.
[bool]$PartnerUnsupportedOSVersionBlocked,
        # When TRUE, indicates that Intune must receive data from the Mobile Threat Defense partner prior to marking a device compliant for Windows. When FALSE, indicates that Intune may make a device compliant without receiving data from the Mobile Threat Defense partner for Windows. Default value is FALSE.
[bool]$WindowsDeviceBlockedOnMissingPartnerData,
        # When TRUE, indicates that data from the Mobile Threat Defense partner can be used during compliance evaluations for Windows. When FALSE, it indicates that data from the Mobile Threat Defense partner should not be used during compliance evaluations for Windows. Default value is FALSE.
[bool]$WindowsEnabled,
        # Present ensures the instance exists, absent ensures it is removed.
[ValidateSet('Present','Absent')] [string]$Ensure,
        # Credentials of the workload's Admin
[string]$Credential,
        # Id of the Azure Active Directory application to authenticate with.
[string]$ApplicationId,
        # Id of the Azure Active Directory tenant used for authentication.
[string]$TenantId,
        # Secret of the Azure Active Directory tenant used for authentication.
[string]$ApplicationSecret,
        # Thumbprint of the Azure Active Directory application's authentication certificate to use for authentication.
[string]$CertificateThumbprint,
        # Username can be made up to anything but password will be used for CertificatePassword
[string]$CertificatePassword,
        # Path to certificate used in service principal usually a PFX file.
[string]$CertificatePath,
        # Managed ID being used for authentication.
[bool]$ManagedIdentity
)
    Invoke-KritTcmM365DscSchemaBridge -ResourceName 'IntuneMobileThreatDefenseConnector' -Workload 'Intune' -Verb 'Get' -CallerParams $PSBoundParameters
}