Sets an OATH token assignment PIN.
Set-SystoLockOathTokenAssignmentPin [-Address <ServiceAddress>] [-AuthType <NtdsAuthType>] [-DomainController <String>]
[-Timeout <Int32>] [<CommonParameters>]
Set-SystoLockOathTokenAssignmentPin [-Assignment] <OathTokenAssignment> [-Pin] <String> [-Address <ServiceAddress>]
[-AuthType <NtdsAuthType>] [-DomainController <String>] [-Timeout <Int32>] [<CommonParameters>]
Set-SystoLockOathTokenAssignmentPin [-Assignment] <OathTokenAssignment> [-Reset] [-Address <ServiceAddress>]
[-AuthType <NtdsAuthType>] [-DomainController <String>] [-Timeout <Int32>] [<CommonParameters>]
Set-SystoLockOathTokenAssignmentPin [-Identifier] <String> [-Pin] <String> [-Address <ServiceAddress>]
[-AuthType <NtdsAuthType>] [-DomainController <String>] [-Timeout <Int32>] [<CommonParameters>]
Set-SystoLockOathTokenAssignmentPin [-Identifier] <String> [-Reset] [-Address <ServiceAddress>]
[-AuthType <NtdsAuthType>] [-DomainController <String>] [-Timeout <Int32>] [<CommonParameters>]
Set-SystoLockOathTokenAssignmentPin [-Pin] <String> [-Token] <OathToken> [-Address <ServiceAddress>]
[-AuthType <NtdsAuthType>] [-DomainController <String>] [-Timeout <Int32>] [<CommonParameters>]
Set-SystoLockOathTokenAssignmentPin [-Reset] [-Token] <OathToken> [-Address <ServiceAddress>] [-AuthType <NtdsAuthType>]
[-DomainController <String>] [-Timeout <Int32>] [<CommonParameters>]
The Set-SystoLockOathTokenAssignmentPin cmdlet sets an OATH token assignment PIN.
Set-SystoLockOathTokenAssignmentPin -Identifier GAKT000168DE -Pin 123456
Sets PIN to the token assignment by the token identifier.
Set-SystoLockOathTokenAssignmentPin -Identifier GAKT000168DE -Reset
Resets (removes) PIN from the token assignment by the token identifier.
Set-SystoLockOathTokenAssignmentPin -Assignment (Get-SystoLockOathTokenAssignment -User (Get-ADUser Alice)) -Pin 123456
Sets token assignment PIN using assignment as parameter.
Set-SystoLockOathTokenAssignmentPin -Assignment (Get-SystoLockOathTokenAssignment -User (Get-ADUser Alice)) -Reset
Resets token assignment PIN using assignment as parameter.
Set-SystoLockOathTokenAssignmentPin -Token (Get-SystoLockOathTokenAssignment -Identifier GAKT000168DE).Token -Pin 123456
Sets token assignment PIN using token as parameter.
Set-SystoLockOathTokenAssignmentPin -Token (Get-SystoLockOathTokenAssignment -User (Get-ADUser Alice)).Token -Reset
Resets token assignment PIN using token as parameter.
Get-SystoLockOathTokenAssignment -User (Get-ADUser Alice) | Set-SystoLockOathTokenAssignmentPin -Pin 123456
Sets token assignment PIN using assignment as pipeline input object.
(Get-SystoLockOathTokenAssignment -User (Get-ADUser Alice)).Token | Set-SystoLockOathTokenAssignmentPin -Reset
Resets token assignment PIN using assignment as pipeline input object.
Specifies service address (optional).
Accepts an URL, a host name or a Service structure returned by previous Get-SystoLockService call.
Type: ServiceAddress
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Specifies assignment structure.
Type: OathTokenAssignment
Parameter Sets: AssignmentSet, AssignmentReset
Aliases:
Required: True
Position: 0
Default value: None
Accept pipeline input: True (ByValue)
Accept wildcard characters: False
Specifies authentication method to use with domain controller (optional).
The acceptable values for this parameter are: Kerberos and Negotiate.
The default method is Kerberos.
Possible values: Kerberos, Negotiate
Type: NtdsAuthType
Parameter Sets: (All)
Aliases:
Accepted values: Kerberos, Negotiate
Required: False
Position: Named
Default value: Kerberos
Accept pipeline input: False
Accept wildcard characters: False
Specifies domain controller name (optional).
Accepts a domain name, a fully qualified domain name or an IP address of the domain controller.
Type: String
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Token ID or URL.
Type: String
Parameter Sets: TokenIdSet, TokenIdReset
Aliases:
Required: True
Position: 0
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Specifies user PIN code.
Type: String
Parameter Sets: AssignmentSet, TokenIdSet, TokenSet
Aliases:
Required: True
Position: 1
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Resets (removes) PIN.
Type: SwitchParameter
Parameter Sets: AssignmentReset, TokenIdReset, TokenReset
Aliases:
Required: True
Position: Named
Default value: False
Accept pipeline input: False
Accept wildcard characters: False
Specifies timeout (range: 1 - 30 seconds, default: 3 seconds).
Type: Int32
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Specifies OathToken structure.
Type: OathToken
Parameter Sets: TokenSet, TokenReset
Aliases:
Required: True
Position: 0
Default value: None
Accept pipeline input: True (ByValue)
Accept wildcard characters: False
This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.
Contains user-token assignment information.
String Tokens: Array of user's token identifiers
String User: Active Directory user identifier
UserDN: user distinguished name.
Identifier: OATH token uniq identifier.
Class: token class.
Algorithm: OATH token algorithm.
IsActive: If value set to true indicating whether the token is active; otherwise $false.
LastUsed: the date in local time when token has last used.
Drift: numbers of token drift.
HasConstraints: If value set to true indicating whether the token has constrains; otherwise $false.
HasPin: If value set to true indicating whether the token has PIN; otherwise $false.
Token: OATH token object.
User: Active Directory user object.
Represents OTP token information.
Algorithm: OTP algorithm identifier.
Class: OATH token class.
Constraints: OTP token constraints if any applied.
NotAfter: usage end date of the token.
NotBefore: usage start date of the token.
NumberOfTransactions: maximum number of times the token can be used.
FriendlyName: token friendly name.
Identifier: token unique identifier.
Interval: time interval value for time-based OTP algorithms in seconds.
Manufacturer: token manufacturer name.
Model: token model name.
ResponseLength: length of a one-time password.
RuntimeContext: OTP token runtime context.
DisableTime: value indicating whether and when the token was disabled.
Drift: value indicating token drift for time-based OTP algorithms.
Failures: time of last failed authentication.
LastTimeUsed: value indicating the token was last time used.
LockTime: value indicating whether and when the token was locked.
PerformedTransactions: value indicating the number of successfully performed transactions.
User: identifier of a user this token is assigned to.
Secret: token secret value.
IssueNumber: token issue number.
This cmdlet does not generate any output.