Set-AzureADMSApplication

Syntax

Default (Default)

Set-AzureADMSApplication
    -ObjectId <String>
    [-AddIns <System.Collections.Generic.List`1[Microsoft.Open.MSGraph.Model.AddIn]>]
    [-Api <ApiApplication>]
    [-AppRoles <System.Collections.Generic.List`1[Microsoft.Open.MSGraph.Model.AppRole]>]
    [-GroupMembershipClaims <String>]
    [-IsDeviceOnlyAuthSupported <Boolean>]
    [-IsFallbackPublicClient <Boolean>]
    [-IdentifierUris <System.Collections.Generic.List`1[System.String]>]
    [-DisplayName <String>]
    [-InformationalUrl <InformationalUrl>]
    [-KeyCredentials <System.Collections.Generic.List`1[Microsoft.Open.MSGraph.Model.KeyCredential]>]
    [-OptionalClaims <OptionalClaims>]
    [-ParentalControlSettings <ParentalControlSettings>]
    [-PasswordCredentials <System.Collections.Generic.List`1[Microsoft.Open.MSGraph.Model.PasswordCredential]>]
    [-PublicClient <PublicClientApplication>]
    [-RequiredResourceAccess <System.Collections.Generic.List`1[Microsoft.Open.MSGraph.Model.RequiredResourceAccess]>]
    [-SignInAudience <String>]
    [-Tags <System.Collections.Generic.List`1[System.String]>]
    [-TokenEncryptionKeyId <String>]
    [-Web <WebApplication>]
    [<CommonParameters>]

Description

Examples

Example 1: Update an application

PS C:\>Set-AzureADMSApplication -ObjectId aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb `
          -DisplayName "my name" `
          -AddIns @{ Type = "mytype"; Properties = [PSCustomObject]@{ Key = "key"; Value = "value" } } `
          -Api @{ AcceptMappedClaims = $true } `
          -AppRoles @{ Id = "21111111-1111-1111-1111-111111111111"; DisplayName = "role"; AllowedMemberTypes = "User"; Description = "mydescription"; Value = "myvalue" } `
          -InformationalUrl @{ SupportUrl = "https://mynewapp.contoso.com/support.html" } `
          -IsDeviceOnlyAuthSupported $false `
          -IsFallbackPublicClient $false `
          -KeyCredentials @{ KeyId = "aaaaaaaa-0b0b-1c1c-2d2d-333333333333"; Usage = "Encrypt"; Key = [System.IO.File]::ReadAllBytes("file.cer"); Type = "AsymmetricX509Cert" } `
          -OptionalClaims @{ IdToken = [PSCustomObject]@{ Name = "claimName"; Source = "claimSource" } } `
          -ParentalControlSettings @{ LegalAgeGroupRule = "Block" } `
          -PublicClient @{ RedirectUris = "https://mynewapp.contoso.com/" } `
          -RequiredResourceAccess @{ ResourceAppId = "00001111-aaaa-2222-bbbb-3333cccc4444"; ResourceAccess = [PSCustomObject]@{ Type = "Scope" } } `
          -SignInAudience AzureADandPersonalMicrosoftAccount `
          -Tags "mytag" `
          -TokenEncryptionKeyId "aaaaaaaa-0b0b-1c1c-2d2d-333333333333" `
          -Web @{ LogoutUrl = "https://mynewapp.contoso.com/logout.html" } `
          -GroupMembershipClaims "SecurityGroup" `
          -IdentifierUris "https://mynewapp.contoso.com"`
          -PasswordCredentials {passwordcredentials}

Parameters

-AddIns

Defines custom behavior that a consuming service can use to call an app in specific contexts. For example, applications that can render file streams may set the addIns property for its "FileHandler" functionality. This will let services like Office 365 call the application in the context of a document the user is working on.

Parameter properties

Parameter sets

-Api

Specifies settings for an application that implements a web API.

Parameter properties

Parameter sets

-AppRoles

The collection of application roles that an application may declare. These roles can be assigned to users, groups or service principals.

Parameter properties

Parameter sets

-DisplayName

Specifies the display name.

Parameter properties

Parameter sets

-GroupMembershipClaims

Configures the groups claim issued in a user or OAuth 2.0 access token that the application expects.

Parameter properties

Parameter sets

-IdentifierUris

Specifies identifier URIs.

Parameter properties

Parameter sets

-InformationalUrl

Basic profile information of the application such as app's marketing, support, terms of service and privacy statement URLs. The terms of service and privacy statement are surfaced to users through the user consent experience.

Parameter properties

Parameter sets

-IsDeviceOnlyAuthSupported

Specifies if the application supports authentication using a device token.

Parameter properties

Parameter sets

-IsFallbackPublicClient

Specifies the fallback application type as public client, such as an installed application running on a mobile device. The default value is false which means the fallback application type is confidential client such as web app. There are certain scenarios where Azure AD cannot determine the client application type (e.g. ROPC flow where it is configured without specifying a redirect URI). In those cases Azure AD will interpret the application type based on the value of this property.

Parameter properties

Parameter sets

-KeyCredentials

Specifies key credentials.

Parameter properties

Parameter sets

-ObjectId

Specifies the ID of an application in Azure AD.

Parameter properties

Parameter sets

-OptionalClaims

Application developers can configure optional claims in their Azure AD apps to specify which claims they want in tokens sent to their application by the Microsoft security token service.

Parameter properties

Parameter sets

-ParentalControlSettings

Specifies parental control settings for an application.

Parameter properties

Parameter sets

-PasswordCredentials

The collection of password credentials associated with the application

Parameter properties

Parameter sets

-PublicClient

Specifies whether this application is a public client (such as an installed application running on a mobile device). Default is false.

Specifies whether this application is a public client (such as an installed application running on a mobile device). Default is false.

Parameter properties

Parameter sets

-RequiredResourceAccess

@{Text=}

Parameter properties

Parameter sets

-SignInAudience

Specifies what Microsoft accounts are supported for the current application.

Parameter properties

Parameter sets

-Tags

Custom strings that can be used to categorize and identify the application.

Parameter properties

Parameter sets

-TokenEncryptionKeyId

Specifies the keyId of a public key from the keyCredentials collection. When configured, Azure AD encrypts all the tokens it emits by using the key this property points to. The application code that receives the encrypted token must use the matching private key to decrypt the token before it can be used for the signed-in user.

Parameter properties

Parameter sets

-Web

Specifies settings for a web application.

Parameter properties

Parameter sets

CommonParameters

Inputs

Boolean

Microsoft.Open.MSGraph.Model.ApiApplication

Microsoft.Open.MSGraph.Model.InformationalUrl

Microsoft.Open.MSGraph.Model.OptionalClaims

Microsoft.Open.MSGraph.Model.ParentalControlSettings

Microsoft.Open.MSGraph.Model.PublicClientApplication

Microsoft.Open.MSGraph.Model.WebApplication

string

List<T>

List<T>

List<T>

List<T>

List<T>

List<T>

Nullable<T>

Related Links

• Get-AzureADMSApplication
• New-AzureADMSApplication
• Remove-AzureADMSApplication