Imports OATH tokens into the server token store.
Import-SystoLockOathToken [-File] <String> [-Address <ServiceAddress>] [-AuthType <NtdsAuthType>]
[-DomainController <String>] [-Timeout <Int32>] [<CommonParameters>]
Import-SystoLockOathToken [-File] <String> [-Password] <String> [-Address <ServiceAddress>] [-AuthType <NtdsAuthType>]
[-DomainController <String>] [-Timeout <Int32>] [<CommonParameters>]
Import-SystoLockOathToken [-File] <String> [-KeyFile] <String> [-Address <ServiceAddress>] [-AuthType <NtdsAuthType>]
[-DomainController <String>] [-Timeout <Int32>] [<CommonParameters>]
The Import-SystoLockOathToken cmdlet imports OATH token information from an PSKC file into the server token store. PSKC stands for Portable Symmetric Key Container and is described in RFC6030.
All cmdlets interacting with SystoLOCK service have -Address and -Timeout parameters to adjust their behavior.
You can also set $SystoLockAddress and $SystoLockTimeout PowerShell variables or $SystoLockAddress and $SystoLockTimeout environment variables which let you specify these parameters as defaults.
If no parameters or environment variables are specified, the timeout defaults to 3 seconds and the address is obtained from DNS for current domain and site.
Import-SystoLockOathToken -File 'C:\tokens.pskcxml'
Imports OATH tokens from an unencrypted PSKC file.
Import-SystoLockOathToken -File 'C:\tokens.pskcxml' -Password a3TnNc2Y5d
Imports OATH tokens from an encrypted PSKC file using ASCII encoded encryption key.
Import-SystoLockOathToken -File 'C:\tokens.pskcxml' -Password '4815 1623 42B8 E229 F2FD 6137 C811 10C2'
Imports OATH tokens from an encrypted PSKC file using hexadecimal encoded encryption key.
Import-SystoLockOathToken -File 'C:\tokens.pskcxml' -KeyFile 'tokens.bin'
Imports OATH tokens from an encrypted PSKC file using encryption key located in an external file.
Specifies service address (optional).
Accepts an URL, a host name or a Service structure returned by previous Get-SystoLockService call.
Type: ServiceAddress
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Specifies authentication method to use with domain controller (optional).
The acceptable values for this parameter are: Kerberos and Negotiate.
The default method is Kerberos.
Possible values: Kerberos, Negotiate
Type: NtdsAuthType
Parameter Sets: (All)
Aliases:
Accepted values: Kerberos, Negotiate
Required: False
Position: Named
Default value: Kerberos
Accept pipeline input: False
Accept wildcard characters: False
Specifies domain controller name (optional).
Accepts a domain name, a fully qualified domain name or an IP address of the domain controller.
Type: String
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Specifies file containing token information.
Type: String
Parameter Sets: (All)
Aliases:
Required: True
Position: 0
Default value: None
Accept pipeline input: True (ByValue)
Accept wildcard characters: False
Specifies file containing decryption key.
Type: String
Parameter Sets: KeyFile
Aliases:
Required: True
Position: 1
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Specifies password (ASCII, HEX, BASE32 or BASE64 encoded), used with encrypted files.
Type: String
Parameter Sets: Password
Aliases:
Required: True
Position: 1
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Specifies timeout (range: 1 - 30 seconds, default: 3 seconds).
Type: Int32
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.
Specifies file containing token information.
Represents OTP token information.
Algorithm: OTP algorithm identifier.
Class: OATH token class.
Constraints: OTP token constraints if any applied.
NotAfter: usage end date of the token.
NotBefore: usage start date of the token.
NumberOfTransactions: maximum number of times the token can be used.
FriendlyName: token friendly name.
Identifier: token unique identifier.
Interval: time interval value for time-based OTP algorithms in seconds.
Manufacturer: token manufacturer name.
Model: token model name.
ResponseLength: length of a one-time password.
RuntimeContext: OTP token runtime context.
DisableTime: value indicating whether and when the token was disabled.
Drift: value indicating token drift for time-based OTP algorithms.
Failures: time of last failed authentication.
LastTimeUsed: value indicating the token was last time used.
LockTime: value indicating whether and when the token was locked.
PerformedTransactions: value indicating the number of successfully performed transactions.
User: identifier of a user this token is assigned to.
Secret: token secret value.
IssueNumber: token issue number.