Sets SystoLOCK NFC security policy settings.
Set-SystoLockNfcSecurityPolicy [-AllowPinlessLoginEnablePossessionFactor] [-LogonFailureThreshold <Int32>]
[-LogonSessionTimeToLive <TimeSpan>] [-LogonThrottlingInterval <TimeSpan>] [-MinPinLength <Int32>] [-PassThru]
[-PinlessLoginCutoffTime <TimeSpan>] [-PinlessLoginLifeTime <TimeSpan>] [-PinlessLoginMaxCount <Int32>]
[-AuthType <NtdsAuthType>] [-DomainController <String>] [<CommonParameters>]
The Set-SystoLockNfcSecurityPolicy cmdlet sets or updates NFC security policy configuration.
Set-SystoLockNfcSecurityPolicy -MinPinLenght 6
Sets minimal PIN length to 6.
Set-SystoLockNfcSecurityPolicy -LogonFailureThreshold 10
Sets logon failure threshold to 10.
As a result an NFC tokens would be locked after 10 consequent login failures.
Set-SystoLockNfcSecurityPolicy -PinlessLoginAllowWeakPossessionFactor
Allow PIN-less login with weak possession factor.
Allow using weak possession factors for PIN-less login.
Type: SwitchParameter
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Specifies authentication method to use with domain controller (optional).
The acceptable values for this parameter are: Kerberos and Negotiate.
The default method is Kerberos.
Possible values: Kerberos, Negotiate
Type: NtdsAuthType
Parameter Sets: (All)
Aliases:
Accepted values: Kerberos, Negotiate
Required: False
Position: Named
Default value: Kerberos
Accept pipeline input: False
Accept wildcard characters: False
Specifies domain controller name (optional).
Accepts a domain name, a fully qualified domain name or an IP address of the domain controller.
Type: String
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Specifies the number of failed login attempts that will cause an NFC tokes to be locked.
Type: Int32
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Specifies the NFC card authentication session lifetime interval.
Type: TimeSpan
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: 00:00:00
Accept pipeline input: False
Accept wildcard characters: False
Logon throttling interval. Currently unsupported.
Type: TimeSpan
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Specifies the minimal PIN length the would allow to use.
Type: Int32
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: 0
Accept pipeline input: False
Accept wildcard characters: False
Returns the NFC security policy object.
Type: SwitchParameter
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: False
Accept pipeline input: False
Accept wildcard characters: False
Time of the day after which PIN-less stops working.
Type: TimeSpan
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Amount of time a user is allowed not to use PIN after initially presenting it.
Type: TimeSpan
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
The number of login operations a user is allowed not to use PIN after initially presenting it.
Type: Int32
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.
This cmdlet does not accept any pipeline input.
Represents the NFC security policy settings model.
LogonFailureThreshold: the logon failure threshold. Default is 10.
LogonSessionTimeToLive: the logon session time to live.
LogonThrottlingInterval: the logon throttling interval.
MinPinLength: the minimum PIN length. Default is 5.
PinlessLogin: PIN-less login settings.
Get-SystoLockNfcSecurityPolicy