none
ADFS 3.0 Removing MFA rules via powershell RRS feed

  • Question

  • Is there a way to delete/remove MFA rules that we set for ADFS RP (Windows Server 2012 R2) via powershell?

    I used both Set-AdfsRelyingPartyTrust –TargetRelyingParty $rp –AdditionalAuthenticationRules

    as well as Set-AdfsAdditionalAuthenticationRule -AdditionalAuthenticationRules

    to set some rules and now I'm finding it hard to delete them.  


    • Edited by Rahulforaim Tuesday, August 25, 2015 9:35 AM changed spelling in title
    Tuesday, August 25, 2015 9:26 AM

Answers

  • Use empty string to remove rules.

    So for example below will remove any rules:

    Set-AdfsRelyingPartyTrust –TargetRelyingParty $rp –AdditionalAuthenticationRules ''

    same goes for commands for Global Rules.


    http://blogs.msdn.com/rahul/

    • Marked as answer by Rahulforaim Tuesday, August 25, 2015 11:08 AM
    Tuesday, August 25, 2015 11:08 AM

All replies

  • Use empty string to remove rules.

    So for example below will remove any rules:

    Set-AdfsRelyingPartyTrust –TargetRelyingParty $rp –AdditionalAuthenticationRules ''

    same goes for commands for Global Rules.


    http://blogs.msdn.com/rahul/

    • Marked as answer by Rahulforaim Tuesday, August 25, 2015 11:08 AM
    Tuesday, August 25, 2015 11:08 AM
  • Big time save here. Turns out if you Set-AdfsRelyingPartyTrust –TargetRelyingParty $rp –AdditionalAuthenticationRules $MfaClaimTriggerRule suddenly the mmc says you can only manage through powershell which is a challenging place to be. Thanks for the tip Rahul - you're a lifesaver!!
    Friday, April 28, 2017 12:01 AM