Enable method of the PS_DAOtpAuth class

Enables and configures OTP authentication for DirectAccess users.

Syntax

uint32 Enable(
  [in]  string  RadiusServer,
  [in]  string  ComputerName,
  [in]  uint16  RadiusPort,
  [in]  string  CAServer[],
  [in]  string  CertificateTemplateName,
  [in]  string  SharedSecret,
  [in]  string  UserSecurityGroupName,
  [in]  boolean Force,
  [in]  boolean PassThru,
  [out] string  cmdletOutput
);

Parameters

  • RadiusServer [in]
    Specifies the FQDN or IP address (IPv4 or IPv6) of the RADIUS server used for OTP authentication.

  • ComputerName [in]
    Specifies the name or IP address of the server on which the cmdlet should run.

  • RadiusPort [in]
    Specifies the RADIUS server port listening for authentication requests.

  • CAServer [in]
    Specifies CA servers that issue certificates for OTP authentication. Specify a server in the format CAServer_Name\CAService_Name.

  • CertificateTemplateName [in]
    Specifies the name of the certificate template used for OTP certificate enrollment.

  • SharedSecret [in]
    Specifies the shared password used for communications between the Remote Access server and the RADIUS server.

  • UserSecurityGroupName [in]
    Specifies the security group containing users who are exempt from two-factor authentication.

  • Force [in]
    Turns off the option that allows a user to confirm or cancel an action initiated by the cmdlet.

  • PassThru [in]
    Returns the DAOtpAuth object that contains OTP authentication configuration settings for DirectAccess.

  • cmdletOutput [out]
    1. OtpStatus (string) : Specifies whether OTP authentication is enabled or disabled. 2. RadiusServer (string array): Specifies OTP RADIUS server names and addresses. 3. UserSecurityGroupName (string): Specifies security group of users exempt from two-factor authentication. 4. CAServer (string array): Specifies the CA servers used for OTP authentication. 5. CertificateTemplateName(string): Specifies the name of the OTP certificate template.

Requirements

Minimum supported client

None supported

Minimum supported server

Windows Server 2012

Namespace

Root\Microsoft\Windows\RemoteAccess

MOF

RAMgmtPSProvider.mof

DLL

RAMgmtPSProvider.dll

See also

PS_DAOtpAuth