New-AzADApplication
Adds new entity to applications
New-AzADApplication
-DisplayName <String>
[-AvailableToOtherTenants <Boolean>]
[-HomePage <String>]
[-ReplyUrls <String[]>]
[-IdentifierUri <String[]>]
[-Web <IMicrosoftGraphWebApplication>]
[-AddIn <IMicrosoftGraphAddIn[]>]
[-Api <IMicrosoftGraphApiApplication>]
[-AppRole <IMicrosoftGraphAppRole[]>]
[-ApplicationTemplateId <String>]
[-CreatedOnBehalfOfDeletedDateTime <DateTime>]
[-DeletedDateTime <DateTime>]
[-Description <String>]
[-DisabledByMicrosoftStatus <String>]
[-GroupMembershipClaim <String>]
[-HomeRealmDiscoveryPolicy <IMicrosoftGraphHomeRealmDiscoveryPolicy[]>]
[-Info <IMicrosoftGraphInformationalUrl>]
[-IsDeviceOnlyAuthSupported]
[-IsFallbackPublicClient]
[-LogoInputFile <String>]
[-Note <String>]
[-Oauth2RequirePostResponse]
[-OptionalClaim <IMicrosoftGraphOptionalClaims>]
[-ParentalControlSetting <IMicrosoftGraphParentalControlSettings>]
[-PublicClientRedirectUri <String[]>]
[-RequestedAccessTokenVersion <Int32>]
[-RequiredResourceAccess <IMicrosoftGraphRequiredResourceAccess[]>]
[-ServiceManagementReference <String>]
[-SignInAudience <String>]
[-SPARedirectUri <String[]>]
[-Tag <String[]>]
[-TokenEncryptionKeyId <String>]
[-TokenIssuancePolicy <IMicrosoftGraphTokenIssuancePolicy[]>]
[-TokenLifetimePolicy <IMicrosoftGraphTokenLifetimePolicy[]>]
[-DefaultProfile <PSObject>]
[-WhatIf]
[-Confirm]
[<CommonParameters>] New-AzADApplication
-DisplayName <String>
[-AvailableToOtherTenants <Boolean>]
[-HomePage <String>]
[-ReplyUrls <String[]>]
[-IdentifierUri <String[]>]
[-Web <IMicrosoftGraphWebApplication>]
[-AddIn <IMicrosoftGraphAddIn[]>]
[-Api <IMicrosoftGraphApiApplication>]
[-AppRole <IMicrosoftGraphAppRole[]>]
[-ApplicationTemplateId <String>]
[-CreatedOnBehalfOfDeletedDateTime <DateTime>]
[-DeletedDateTime <DateTime>]
[-Description <String>]
[-DisabledByMicrosoftStatus <String>]
[-GroupMembershipClaim <String>]
[-HomeRealmDiscoveryPolicy <IMicrosoftGraphHomeRealmDiscoveryPolicy[]>]
[-Info <IMicrosoftGraphInformationalUrl>]
[-IsDeviceOnlyAuthSupported]
[-IsFallbackPublicClient]
[-LogoInputFile <String>]
[-Note <String>]
[-Oauth2RequirePostResponse]
[-OptionalClaim <IMicrosoftGraphOptionalClaims>]
[-ParentalControlSetting <IMicrosoftGraphParentalControlSettings>]
[-PublicClientRedirectUri <String[]>]
[-RequestedAccessTokenVersion <Int32>]
[-RequiredResourceAccess <IMicrosoftGraphRequiredResourceAccess[]>]
[-ServiceManagementReference <String>]
[-SignInAudience <String>]
[-SPARedirectUri <String[]>]
[-Tag <String[]>]
[-TokenEncryptionKeyId <String>]
[-TokenIssuancePolicy <IMicrosoftGraphTokenIssuancePolicy[]>]
[-TokenLifetimePolicy <IMicrosoftGraphTokenLifetimePolicy[]>]
-KeyCredentials <IMicrosoftGraphKeyCredential[]>
[-DefaultProfile <PSObject>]
[-WhatIf]
[-Confirm]
[<CommonParameters>] New-AzADApplication
-DisplayName <String>
[-AvailableToOtherTenants <Boolean>]
[-HomePage <String>]
[-ReplyUrls <String[]>]
[-IdentifierUri <String[]>]
[-Web <IMicrosoftGraphWebApplication>]
[-AddIn <IMicrosoftGraphAddIn[]>]
[-Api <IMicrosoftGraphApiApplication>]
[-AppRole <IMicrosoftGraphAppRole[]>]
[-ApplicationTemplateId <String>]
[-CreatedOnBehalfOfDeletedDateTime <DateTime>]
[-DeletedDateTime <DateTime>]
[-Description <String>]
[-DisabledByMicrosoftStatus <String>]
[-GroupMembershipClaim <String>]
[-HomeRealmDiscoveryPolicy <IMicrosoftGraphHomeRealmDiscoveryPolicy[]>]
[-Info <IMicrosoftGraphInformationalUrl>]
[-IsDeviceOnlyAuthSupported]
[-IsFallbackPublicClient]
[-LogoInputFile <String>]
[-Note <String>]
[-Oauth2RequirePostResponse]
[-OptionalClaim <IMicrosoftGraphOptionalClaims>]
[-ParentalControlSetting <IMicrosoftGraphParentalControlSettings>]
[-PublicClientRedirectUri <String[]>]
[-RequestedAccessTokenVersion <Int32>]
[-RequiredResourceAccess <IMicrosoftGraphRequiredResourceAccess[]>]
[-ServiceManagementReference <String>]
[-SignInAudience <String>]
[-SPARedirectUri <String[]>]
[-Tag <String[]>]
[-TokenEncryptionKeyId <String>]
[-TokenIssuancePolicy <IMicrosoftGraphTokenIssuancePolicy[]>]
[-TokenLifetimePolicy <IMicrosoftGraphTokenLifetimePolicy[]>]
-PasswordCredentials <IMicrosoftGraphPasswordCredential[]>
[-DefaultProfile <PSObject>]
[-WhatIf]
[-Confirm]
[<CommonParameters>] New-AzADApplication
-DisplayName <String>
[-AvailableToOtherTenants <Boolean>]
[-HomePage <String>]
[-ReplyUrls <String[]>]
[-IdentifierUri <String[]>]
[-Web <IMicrosoftGraphWebApplication>]
[-AddIn <IMicrosoftGraphAddIn[]>]
[-Api <IMicrosoftGraphApiApplication>]
[-AppRole <IMicrosoftGraphAppRole[]>]
[-ApplicationTemplateId <String>]
[-CreatedOnBehalfOfDeletedDateTime <DateTime>]
[-DeletedDateTime <DateTime>]
[-Description <String>]
[-DisabledByMicrosoftStatus <String>]
[-GroupMembershipClaim <String>]
[-HomeRealmDiscoveryPolicy <IMicrosoftGraphHomeRealmDiscoveryPolicy[]>]
[-Info <IMicrosoftGraphInformationalUrl>]
[-IsDeviceOnlyAuthSupported]
[-IsFallbackPublicClient]
[-LogoInputFile <String>]
[-Note <String>]
[-Oauth2RequirePostResponse]
[-OptionalClaim <IMicrosoftGraphOptionalClaims>]
[-ParentalControlSetting <IMicrosoftGraphParentalControlSettings>]
[-PublicClientRedirectUri <String[]>]
[-RequestedAccessTokenVersion <Int32>]
[-RequiredResourceAccess <IMicrosoftGraphRequiredResourceAccess[]>]
[-ServiceManagementReference <String>]
[-SignInAudience <String>]
[-SPARedirectUri <String[]>]
[-Tag <String[]>]
[-TokenEncryptionKeyId <String>]
[-TokenIssuancePolicy <IMicrosoftGraphTokenIssuancePolicy[]>]
[-TokenLifetimePolicy <IMicrosoftGraphTokenLifetimePolicy[]>]
-CertValue <String>
[-StartDate <DateTime>]
[-EndDate <DateTime>]
[-DefaultProfile <PSObject>]
[-WhatIf]
[-Confirm]
[<CommonParameters>] New-AzADApplication
-DisplayName <String>
[-AvailableToOtherTenants <Boolean>]
[-HomePage <String>]
[-ReplyUrls <String[]>]
[-IdentifierUri <String[]>]
[-Web <IMicrosoftGraphWebApplication>]
[-AddIn <IMicrosoftGraphAddIn[]>]
[-Api <IMicrosoftGraphApiApplication>]
[-AppRole <IMicrosoftGraphAppRole[]>]
[-ApplicationTemplateId <String>]
[-CreatedOnBehalfOfDeletedDateTime <DateTime>]
[-DeletedDateTime <DateTime>]
[-Description <String>]
[-DisabledByMicrosoftStatus <String>]
[-GroupMembershipClaim <String>]
[-HomeRealmDiscoveryPolicy <IMicrosoftGraphHomeRealmDiscoveryPolicy[]>]
[-Info <IMicrosoftGraphInformationalUrl>]
[-IsDeviceOnlyAuthSupported]
[-IsFallbackPublicClient]
[-LogoInputFile <String>]
[-Note <String>]
[-Oauth2RequirePostResponse]
[-OptionalClaim <IMicrosoftGraphOptionalClaims>]
[-ParentalControlSetting <IMicrosoftGraphParentalControlSettings>]
[-PublicClientRedirectUri <String[]>]
[-RequestedAccessTokenVersion <Int32>]
[-RequiredResourceAccess <IMicrosoftGraphRequiredResourceAccess[]>]
[-ServiceManagementReference <String>]
[-SignInAudience <String>]
[-SPARedirectUri <String[]>]
[-Tag <String[]>]
[-TokenEncryptionKeyId <String>]
[-TokenIssuancePolicy <IMicrosoftGraphTokenIssuancePolicy[]>]
[-TokenLifetimePolicy <IMicrosoftGraphTokenLifetimePolicy[]>]
[-StartDate <DateTime>]
[-EndDate <DateTime>]
[-DefaultProfile <PSObject>]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Adds new entity to applications
New-AzADApplication -SigninAudience AzureADandPersonalMicrosoftAccountCreate application with signin audience 'AzureADandPersonalMicrosoftAccount', other available options are: 'AzureADMyOrg', 'AzureADMultipleOrgs', 'PersonalMicrosoftAccount'
Defines custom behavior that a consuming service can use to call an app in specific contexts. For example, applications that can render file streams may set the addIns property for its 'FileHandler' functionality. This will let services like Office 365 call the application in the context of a document the user is working on. To construct, see NOTES section for ADDIN properties and create a hash table.
| Type: | IMicrosoftGraphAddIn[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
apiApplication To construct, see NOTES section for API properties and create a hash table.
| Type: | IMicrosoftGraphApiApplication |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Unique identifier of the applicationTemplate.
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
The collection of roles assigned to the application. With app role assignments, these roles can be assigned to users, groups, or service principals associated with other applications. Not nullable. To construct, see NOTES section for APPROLE properties and create a hash table.
| Type: | IMicrosoftGraphAppRole[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
The value specifying whether the application is a single tenant or a multi-tenant. Is equivalent to '-SignInAudience AzureADMultipleOrgs' when switch is on
| Type: | Boolean |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
The value of the 'asymmetric' credential type. It represents the base 64 encoded certificate.
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Prompts you for confirmation before running the cmdlet.
| Type: | SwitchParameter |
| Aliases: | cf |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
.
| Type: | DateTime |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
The credentials, account, tenant, and subscription used for communication with Azure.
| Type: | PSObject |
| Aliases: | AzContext, AzureRmContext, AzureCredential |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
.
| Type: | DateTime |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
An optional description of the application. Returned by default. Supports $filter (eq, ne, NOT, ge, le, startsWith) and $search.
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Specifies whether Microsoft has disabled the registered application. Possible values are: null (default value), NotDisabled, and DisabledDueToViolationOfServicesAgreement (reasons may include suspicious, abusive, or malicious activity, or a violation of the Microsoft Services Agreement). Supports $filter (eq, ne, NOT).
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
The display name for the application. Supports $filter (eq, ne, NOT, ge, le, in, startsWith), $search, and $orderBy.
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
The effective end date of the credential usage. The default end date value is one year from today. For an 'asymmetric' type credential, this must be set to on or before the date that the X509 certificate is valid.
| Type: | DateTime |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Configures the groups claim issued in a user or OAuth 2.0 access token that the application expects. To set this attribute, use one of the following string values: None, SecurityGroup (for security groups and Azure AD roles), All (this gets all security groups, distribution groups, and Azure AD directory roles that the signed-in user is a member of).
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
The URL to the application homepage.
| Type: | String |
| Aliases: | WebHomePageUrl |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
. To construct, see NOTES section for HOMEREALMDISCOVERYPOLICY properties and create a hash table.
| Type: | IMicrosoftGraphHomeRealmDiscoveryPolicy[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
The URIs that identify the application.
| Type: | String[] |
| Aliases: | IdentifierUris |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
informationalUrl To construct, see NOTES section for INFO properties and create a hash table.
| Type: | IMicrosoftGraphInformationalUrl |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Specifies whether this application supports device authentication without a user. The default is false.
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Specifies the fallback application type as public client, such as an installed application running on a mobile device. The default value is false which means the fallback application type is confidential client such as a web app. There are certain scenarios where Azure AD cannot determine the client application type. For example, the ROPC flow where the application is configured without specifying a redirect URI. In those cases Azure AD interprets the application type based on the value of this property.
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
key credentials associated with the application.
| Type: | IMicrosoftGraphKeyCredential[] |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Input File for Logo (The main logo for the application. Not nullable.)
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Notes relevant for the management of the application.
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
.
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
optionalClaims To construct, see NOTES section for OPTIONALCLAIM properties and create a hash table.
| Type: | IMicrosoftGraphOptionalClaims |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
parentalControlSettings To construct, see NOTES section for PARENTALCONTROLSETTING properties and create a hash table.
| Type: | IMicrosoftGraphParentalControlSettings |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Password credentials associated with the application.
| Type: | IMicrosoftGraphPasswordCredential[] |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
| Type: | String[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
The application reply Urls.
| Type: | String[] |
| Aliases: | WebRedirectUri |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
| Type: | Int32 |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Specifies the resources that the application needs to access. This property also specifies the set of OAuth permission scopes and application roles that it needs for each of those resources. This configuration of access to the required resources drives the consent experience. Not nullable. Supports $filter (eq, NOT, ge, le). To construct, see NOTES section for REQUIREDRESOURCEACCESS properties and create a hash table.
| Type: | IMicrosoftGraphRequiredResourceAccess[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
References application or service contact information from a Service or Asset Management database. Nullable.
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Specifies the Microsoft accounts that are supported for the current application. Supported values are: AzureADMyOrg, AzureADMultipleOrgs, AzureADandPersonalMicrosoftAccount, PersonalMicrosoftAccount. See more in the table below. Supports $filter (eq, ne, NOT).
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
| Type: | String[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
The effective start date of the credential usage. The default start date value is today. For an 'asymmetric' type credential, this must be set to on or after the date that the X509 certificate is valid from.
| Type: | DateTime |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Custom strings that can be used to categorize and identify the application. Not nullable.Supports $filter (eq, NOT, ge, le, startsWith).
| Type: | String[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Specifies the keyId of a public key from the keyCredentials collection. When configured, Azure AD encrypts all the tokens it emits by using the key this property points to. The application code that receives the encrypted token must use the matching private key to decrypt the token before it can be used for the signed-in user.
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
. To construct, see NOTES section for TOKENISSUANCEPOLICY properties and create a hash table.
| Type: | IMicrosoftGraphTokenIssuancePolicy[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
The tokenLifetimePolicies assigned to this application. Supports $expand. To construct, see NOTES section for TOKENLIFETIMEPOLICY properties and create a hash table.
| Type: | IMicrosoftGraphTokenLifetimePolicy[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
webApplication To construct, see NOTES section for WEB properties and create a hash table.
| Type: | IMicrosoftGraphWebApplication |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Shows what would happen if the cmdlet runs. The cmdlet is not run.
| Type: | SwitchParameter |
| Aliases: | wi |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Azure PowerShell feedback
Azure PowerShell is an open source project. Select a link to provide feedback: