Public/generated/Get-KritTcmSCDeviceConfigurationRule.ps1

<#
·· × × × ··· SirJ's Deaddrop ··· × × × ···
      — If you found this, you were meant to —

---------------- A Seriously Kritical™ Production ----------------

                                   [] →
                 (¯`·.¸¸.·´¯)
               .·´ `·. [] →
               `·.______________.·´
              | +------------------+ |
              | | Kritical™ | |
              | | [] [] | |
              | | | |
              | | [] [] [] | |
              | +------------------+ |
                  (._.·´¯`·.¸_)

                     Your last call.
                   And your first move.

                         ★ ☆ ★

                     +61 1300 274 655
                 sales at kritical dot net

-----------------------------------------------------------------


.COPYRIGHT
    (c) 2026 Kritical Pty Ltd. All rights reserved.
.AUTHOR
    Joshua Finley <joshua.finley@kritical.net>
.COMPANY
    Kritical Pty Ltd | ABN 39 687 048 086
    Level 4 / 60 Moorabool St Geelong VIC 3220
    1300 274 655 | sales@kritical.net | https://kritical.net/
.NOTES
    HARD RULE 13 canonical Kritical branding — do not overlay other agent banners.
    Auto-generated by Generate-KritTcmFromM365DscSchema.ps1 (.1507o30+).
    Upstream reference: Microsoft365DSC by Microsoft (MIT). This shim provides
    literal search-replace equivalence — see Krit.TCM/generated/index.md.
#>


function Get-KritTcmSCDeviceConfigurationRule {
<#
.SYNOPSIS
    Krit.TCM shim for M365DSC resource SCDeviceConfigurationRule.

.DESCRIPTION
    Auto-generated from M365DSC .schema.mof by
    scripts/m365-setup/Generate-KritTcmFromM365DscSchema.ps1 (.1507o30).

    Search-replace safe: callers that today invoke
        Get-M365DSCSCDeviceConfigurationRule -Credential $cred -TenantId $tid
    can rename to
        Get-KritTcmSCDeviceConfigurationRule -Credential $cred -TenantId $tid
    with ZERO other edits. Parameter shape matches the M365DSC .schema.mof
    exactly. Per operator direction, -PreferM365DscBehavior defaults to true.

    Actual Graph dispatch is delegated to Invoke-KritTcmM365DscSchemaBridge.
    Bridge maps resource → Graph endpoint per per-resource wave; where mapping
    is not yet shipped, bridge returns an object with Verdict='UNMAPPED'.

.NOTES
    Workload: Purview
    Original mof: C:\Users\joshl\OneDrive - Kritical Pty Ltd\Github\KRTPax8ToShopifyConnector\.kritm365-mine\Microsoft365DSC\Modules\Microsoft365DSC\DSCResources\MSFT_SCDeviceConfigurationRule\MSFT_SCDeviceConfigurationRule.schema.mof
    Param count: 57
    Generator wave: .1507o30
#>

[CmdletBinding()]
param(
        # Name for the rule.
[Parameter(Mandatory)] [string]$Name,
        # Name of the associated policy.
[string]$Policy,
        # The AccountName parameter specifies the account name.
[string]$AccountName,
        # The AccountUserName parameter specifies the account user name.
[string]$AccountUserName,
        # The AllowAppStore parameter specifies whether to allow access to the app store on devices.
[bool]$AllowAppStore,
        # The AllowAssistantWhileLocked parameter specifies whether to allow the use of the voice assistant while devices are locked.
[bool]$AllowAssistantWhileLocked,
        # The AllowConvenienceLogon parameter specifies whether to allow convenience logons on devices.
[bool]$AllowConvenienceLogon,
        # The AllowDiagnosticSubmission parameter specifies whether to allow diagnostic submissions from devices.
[bool]$AllowDiagnosticSubmission,
        # The AllowiCloudBackup parameter specifies whether to allow Apple iCloud Backup from devices.
[bool]$AllowiCloudBackup,
        # The AllowiCloudDocSync parameter specifies whether to allow Apple iCloud Documents & Data sync on devices.
[bool]$AllowiCloudDocSync,
        # The AllowiCloudPhotoSync parameter specifies whether to allow Apple iCloud Photos sync on devices.
[bool]$AllowiCloudPhotoSync,
        # The AllowPassbookWhileLocked parameter specifies whether to allow the use of Apple Passbook while devices are locked.
[bool]$AllowPassbookWhileLocked,
        # The AllowScreenshot parameter specifies whether to allow screenshots on devices.
[bool]$AllowScreenshot,
        # The AllowSimplePassword parameter specifies whether to allow simple or non-complex passwords on devices.
[bool]$AllowSimplePassword,
        # The AllowVideoConferencing parameter specifies whether to allow video conferencing on devices.
[bool]$AllowVideoConferencing,
        # The AllowVoiceAssistant parameter specifies whether to allow using the voice assistant on devices.
[bool]$AllowVoiceAssistant,
        # The AllowVoiceDialing parameter specifies whether to allow voice-activated telephone dialing.
[bool]$AllowVoiceDialing,
        # The AntiVirusSignatureStatus parameter specifies the antivirus signature status.
[int]$AntiVirusSignatureStatus,
        # The AntiVirusStatus parameter specifies the antivirus status.
[int]$AntiVirusStatus,
        # The AppsRating parameter species the maximum or most restrictive rating of apps that are allowed on devices.
[string]$AppsRating,
        # The AutoUpdateStatus parameter specifies the update settings for devices.
[string]$AutoUpdateStatus,
        # The BluetoothEnabled parameter specifies whether to enable or disable Bluetooth on devices.
[bool]$BluetoothEnabled,
        # The BluetoothEnabled parameter specifies whether to enable or disable Bluetooth on devices.
[bool]$CameraEnabled,
        # The EmailAddress parameter specifies the email address.
[string]$EmailAddress,
        # The EnableRemovableStorage parameter specifies whether removable storage can be used by devices.
[bool]$EnableRemovableStorage,
        # The ExchangeActiveSyncHost parameter specifies the Exchange ActiveSync host.
[string]$ExchangeActiveSyncHost,
        # The FirewallStatus parameter specifies the acceptable firewall status values on devices.
[bool]$FirewallStatus,
        # The ForceAppStorePassword parameter specifies whether to require a password to use the app store on devices.
[bool]$ForceAppStorePassword,
        # The ForceEncryptedBackup parameter specifies whether to force encrypted backups for devices.
[bool]$ForceEncryptedBackup,
        # The MaxPasswordAttemptsBeforeWipe parameter specifies the number of incorrect password attempts that cause devices to be automatically wiped.
[int]$MaxPasswordAttemptsBeforeWipe,
        # The MaxPasswordGracePeriod parameter specifies the length of time users are allowed to reset expired passwords on devices.
[int]$MaxPasswordGracePeriod,
        # The MoviesRating parameter species the maximum or most restrictive rating of movies that are allowed on devices. You specify the country/region rating system to use with the RegionRatings parameter.
[string]$MoviesRating,
        # The PasswordComplexity parameter specifies the password complexity.
[int]$PasswordComplexity,
        # The PasswordExpirationDays parameter specifies the number of days that the same password can be used on devices before users are required to change their passwords.
[int]$PasswordExpirationDays,
        # The PasswordHistoryCount parameter specifies the minimum number of unique new passwords that are required on devices before an old password can be reused.
[int]$PasswordHistoryCount,
        # The PasswordMinComplexChars parameter specifies the minimum number of complex characters that are required for device passwords. A complex character isn't a letter.
[int]$PasswordMinComplexChars,
        # The PasswordMinimumLength parameter specifies the minimum number of characters that are required for device passwords.
[int]$PasswordMinimumLength,
        # The PasswordQuality parameter specifies the minimum password quality rating that's required for device passwords. Password quality is a numeric scale that indicates the security and complexity of the password. A higher quality value indicates a more secure password.
[int]$PasswordQuality,
        # The PasswordRequired parameter specifies whether a password is required to access devices.
[bool]$PasswordRequired,
        # The PasswordTimeout parameter specifies the length of time that devices can be inactive before a password is required to reactivate them.
[string]$PasswordTimeout,
        # The PhoneMemoryEncrypted parameter specifies whether to encrypt the memory on devices.
[bool]$PhoneMemoryEncrypted,
        # The RegionRatings parameter specifies the rating system (country/region) to use for movie and television ratings with the MoviesRating and TVShowsRating parameters.
[string]$RegionRatings,
        # The RequireEmailProfile parameter specifies whether an email profile is required on devices.
[bool]$RequireEmailProfile,
        # The SmartScreenEnabled parameter specifies whether to requireWindows SmartScreen on devices.
[bool]$SmartScreenEnabled,
        # The SystemSecurityTLS parameter specifies whether TLS encryption is used on devices.
[bool]$SystemSecurityTLS,
        # The TVShowsRating parameter species the maximum or most restrictive rating of television shows that are allowed on devices. You specify the country/region rating system to use with the RegionRatings parameter.
[string]$TVShowsRating,
        # The UserAccountControlStatus parameter specifies how User Account Control messages are presented on devices.
[string]$UserAccountControlStatus,
        # The WLANEnabled parameter specifies whether Wi-Fi is enabled devices.
[bool]$WLANEnabled,
        # The WorkFoldersSyncUrl parameter specifies the URL that's used to synchronize company data on devices.
[string]$WorkFoldersSyncUrl,
        # Present ensures the instance exists, absent ensures it is removed.
[ValidateSet('Absent','Present')] [string]$Ensure,
        # Credentials of the workload's Admin
[string]$Credential,
        # Id of the Azure Active Directory application to authenticate with.
[string]$ApplicationId,
        # Id of the Azure Active Directory tenant used for authentication.
[string]$TenantId,
        # Thumbprint of the Azure Active Directory application's authentication certificate to use for authentication.
[string]$CertificateThumbprint,
        # Username can be made up to anything but password will be used for CertificatePassword
[string]$CertificatePassword,
        # Path to certificate used in service principal usually a PFX file.
[string]$CertificatePath,
        # Managed ID being used for authentication.
[bool]$ManagedIdentity
)
    Invoke-KritTcmM365DscSchemaBridge -ResourceName 'SCDeviceConfigurationRule' -Workload 'Purview' -Verb 'Get' -CallerParams $PSBoundParameters
}