Note
Access to this page requires authorization. You can try signing in or .
Access to this page requires authorization. You can try .
New-AzADApplication
- Module:
- Az.Resources Module
Adds new entity to applications
Syntax
ApplicationWithoutCredentialParameterSet (Default)
New-AzADApplication
-DisplayName <String>
[-AvailableToOtherTenants <Boolean>]
[-HomePage <String>]
[-ReplyUrls <String[]>]
[-IdentifierUri <String[]>]
[-Web <IMicrosoftGraphWebApplication>]
[-AddIn <IMicrosoftGraphAddIn[]>]
[-Api <IMicrosoftGraphApiApplication>]
[-AppRole <IMicrosoftGraphAppRole[]>]
[-ApplicationTemplateId <String>]
[-CreatedOnBehalfOfDeletedDateTime <DateTime>]
[-DeletedDateTime <DateTime>]
[-Description <String>]
[-DisabledByMicrosoftStatus <String>]
[-GroupMembershipClaim <String>]
[-HomeRealmDiscoveryPolicy <IMicrosoftGraphHomeRealmDiscoveryPolicy[]>]
[-Info <IMicrosoftGraphInformationalUrl>]
[-IsDeviceOnlyAuthSupported]
[-IsFallbackPublicClient]
[-LogoInputFile <String>]
[-Note <String>]
[-Oauth2RequirePostResponse]
[-OptionalClaim <IMicrosoftGraphOptionalClaims>]
[-ParentalControlSetting <IMicrosoftGraphParentalControlSettings>]
[-PublicClientRedirectUri <String[]>]
[-RequestedAccessTokenVersion <Int32>]
[-RequiredResourceAccess <IMicrosoftGraphRequiredResourceAccess[]>]
[-ServiceManagementReference <String>]
[-SignInAudience <String>]
[-SPARedirectUri <String[]>]
[-Tag <String[]>]
[-TokenEncryptionKeyId <String>]
[-TokenIssuancePolicy <IMicrosoftGraphTokenIssuancePolicy[]>]
[-TokenLifetimePolicy <IMicrosoftGraphTokenLifetimePolicy[]>]
[-DefaultProfile <PSObject>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
ApplicationWithKeyCredentialParameterSet
New-AzADApplication
-DisplayName <String>
-KeyCredentials <IMicrosoftGraphKeyCredential[]>
[-AvailableToOtherTenants <Boolean>]
[-HomePage <String>]
[-ReplyUrls <String[]>]
[-IdentifierUri <String[]>]
[-Web <IMicrosoftGraphWebApplication>]
[-AddIn <IMicrosoftGraphAddIn[]>]
[-Api <IMicrosoftGraphApiApplication>]
[-AppRole <IMicrosoftGraphAppRole[]>]
[-ApplicationTemplateId <String>]
[-CreatedOnBehalfOfDeletedDateTime <DateTime>]
[-DeletedDateTime <DateTime>]
[-Description <String>]
[-DisabledByMicrosoftStatus <String>]
[-GroupMembershipClaim <String>]
[-HomeRealmDiscoveryPolicy <IMicrosoftGraphHomeRealmDiscoveryPolicy[]>]
[-Info <IMicrosoftGraphInformationalUrl>]
[-IsDeviceOnlyAuthSupported]
[-IsFallbackPublicClient]
[-LogoInputFile <String>]
[-Note <String>]
[-Oauth2RequirePostResponse]
[-OptionalClaim <IMicrosoftGraphOptionalClaims>]
[-ParentalControlSetting <IMicrosoftGraphParentalControlSettings>]
[-PublicClientRedirectUri <String[]>]
[-RequestedAccessTokenVersion <Int32>]
[-RequiredResourceAccess <IMicrosoftGraphRequiredResourceAccess[]>]
[-ServiceManagementReference <String>]
[-SignInAudience <String>]
[-SPARedirectUri <String[]>]
[-Tag <String[]>]
[-TokenEncryptionKeyId <String>]
[-TokenIssuancePolicy <IMicrosoftGraphTokenIssuancePolicy[]>]
[-TokenLifetimePolicy <IMicrosoftGraphTokenLifetimePolicy[]>]
[-DefaultProfile <PSObject>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
ApplicationWithPasswordCredentialParameterSet
New-AzADApplication
-DisplayName <String>
-PasswordCredentials <IMicrosoftGraphPasswordCredential[]>
[-AvailableToOtherTenants <Boolean>]
[-HomePage <String>]
[-ReplyUrls <String[]>]
[-IdentifierUri <String[]>]
[-Web <IMicrosoftGraphWebApplication>]
[-AddIn <IMicrosoftGraphAddIn[]>]
[-Api <IMicrosoftGraphApiApplication>]
[-AppRole <IMicrosoftGraphAppRole[]>]
[-ApplicationTemplateId <String>]
[-CreatedOnBehalfOfDeletedDateTime <DateTime>]
[-DeletedDateTime <DateTime>]
[-Description <String>]
[-DisabledByMicrosoftStatus <String>]
[-GroupMembershipClaim <String>]
[-HomeRealmDiscoveryPolicy <IMicrosoftGraphHomeRealmDiscoveryPolicy[]>]
[-Info <IMicrosoftGraphInformationalUrl>]
[-IsDeviceOnlyAuthSupported]
[-IsFallbackPublicClient]
[-LogoInputFile <String>]
[-Note <String>]
[-Oauth2RequirePostResponse]
[-OptionalClaim <IMicrosoftGraphOptionalClaims>]
[-ParentalControlSetting <IMicrosoftGraphParentalControlSettings>]
[-PublicClientRedirectUri <String[]>]
[-RequestedAccessTokenVersion <Int32>]
[-RequiredResourceAccess <IMicrosoftGraphRequiredResourceAccess[]>]
[-ServiceManagementReference <String>]
[-SignInAudience <String>]
[-SPARedirectUri <String[]>]
[-Tag <String[]>]
[-TokenEncryptionKeyId <String>]
[-TokenIssuancePolicy <IMicrosoftGraphTokenIssuancePolicy[]>]
[-TokenLifetimePolicy <IMicrosoftGraphTokenLifetimePolicy[]>]
[-DefaultProfile <PSObject>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
ApplicationWithKeyPlainParameterSet
New-AzADApplication
-DisplayName <String>
-CertValue <String>
[-AvailableToOtherTenants <Boolean>]
[-HomePage <String>]
[-ReplyUrls <String[]>]
[-IdentifierUri <String[]>]
[-Web <IMicrosoftGraphWebApplication>]
[-AddIn <IMicrosoftGraphAddIn[]>]
[-Api <IMicrosoftGraphApiApplication>]
[-AppRole <IMicrosoftGraphAppRole[]>]
[-ApplicationTemplateId <String>]
[-CreatedOnBehalfOfDeletedDateTime <DateTime>]
[-DeletedDateTime <DateTime>]
[-Description <String>]
[-DisabledByMicrosoftStatus <String>]
[-GroupMembershipClaim <String>]
[-HomeRealmDiscoveryPolicy <IMicrosoftGraphHomeRealmDiscoveryPolicy[]>]
[-Info <IMicrosoftGraphInformationalUrl>]
[-IsDeviceOnlyAuthSupported]
[-IsFallbackPublicClient]
[-LogoInputFile <String>]
[-Note <String>]
[-Oauth2RequirePostResponse]
[-OptionalClaim <IMicrosoftGraphOptionalClaims>]
[-ParentalControlSetting <IMicrosoftGraphParentalControlSettings>]
[-PublicClientRedirectUri <String[]>]
[-RequestedAccessTokenVersion <Int32>]
[-RequiredResourceAccess <IMicrosoftGraphRequiredResourceAccess[]>]
[-ServiceManagementReference <String>]
[-SignInAudience <String>]
[-SPARedirectUri <String[]>]
[-Tag <String[]>]
[-TokenEncryptionKeyId <String>]
[-TokenIssuancePolicy <IMicrosoftGraphTokenIssuancePolicy[]>]
[-TokenLifetimePolicy <IMicrosoftGraphTokenLifetimePolicy[]>]
[-StartDate <DateTime>]
[-EndDate <DateTime>]
[-DefaultProfile <PSObject>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
ApplicationWithPasswordPlainParameterSet
New-AzADApplication
-DisplayName <String>
[-AvailableToOtherTenants <Boolean>]
[-HomePage <String>]
[-ReplyUrls <String[]>]
[-IdentifierUri <String[]>]
[-Web <IMicrosoftGraphWebApplication>]
[-AddIn <IMicrosoftGraphAddIn[]>]
[-Api <IMicrosoftGraphApiApplication>]
[-AppRole <IMicrosoftGraphAppRole[]>]
[-ApplicationTemplateId <String>]
[-CreatedOnBehalfOfDeletedDateTime <DateTime>]
[-DeletedDateTime <DateTime>]
[-Description <String>]
[-DisabledByMicrosoftStatus <String>]
[-GroupMembershipClaim <String>]
[-HomeRealmDiscoveryPolicy <IMicrosoftGraphHomeRealmDiscoveryPolicy[]>]
[-Info <IMicrosoftGraphInformationalUrl>]
[-IsDeviceOnlyAuthSupported]
[-IsFallbackPublicClient]
[-LogoInputFile <String>]
[-Note <String>]
[-Oauth2RequirePostResponse]
[-OptionalClaim <IMicrosoftGraphOptionalClaims>]
[-ParentalControlSetting <IMicrosoftGraphParentalControlSettings>]
[-PublicClientRedirectUri <String[]>]
[-RequestedAccessTokenVersion <Int32>]
[-RequiredResourceAccess <IMicrosoftGraphRequiredResourceAccess[]>]
[-ServiceManagementReference <String>]
[-SignInAudience <String>]
[-SPARedirectUri <String[]>]
[-Tag <String[]>]
[-TokenEncryptionKeyId <String>]
[-TokenIssuancePolicy <IMicrosoftGraphTokenIssuancePolicy[]>]
[-TokenLifetimePolicy <IMicrosoftGraphTokenLifetimePolicy[]>]
[-StartDate <DateTime>]
[-EndDate <DateTime>]
[-DefaultProfile <PSObject>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
Description
Adds new entity to applications
Examples
Example 1: Create application
New-AzADApplication -SigninAudience AzureADandPersonalMicrosoftAccount
Create application with signin audience 'AzureADandPersonalMicrosoftAccount', other available options are: 'AzureADMyOrg', 'AzureADMultipleOrgs', 'PersonalMicrosoftAccount'
Parameters
-AddIn
Defines custom behavior that a consuming service can use to call an app in specific contexts. For example, applications that can render file streams may set the addIns property for its 'FileHandler' functionality. This will let services like Office 365 call the application in the context of a document the user is working on. To construct, see NOTES section for ADDIN properties and create a hash table.
Parameter properties
| Type: | |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-Api
apiApplication To construct, see NOTES section for API properties and create a hash table.
Parameter properties
| Type: | IMicrosoftGraphApiApplication |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-ApplicationTemplateId
Unique identifier of the applicationTemplate.
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-AppRole
The collection of roles assigned to the application. With app role assignments, these roles can be assigned to users, groups, or service principals associated with other applications. Not nullable. To construct, see NOTES section for APPROLE properties and create a hash table.
Parameter properties
| Type: | |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-AvailableToOtherTenants
The value specifying whether the application is a single tenant or a multi-tenant. Is equivalent to '-SignInAudience AzureADMultipleOrgs' when switch is on
Parameter properties
| Type: | Boolean |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-CertValue
The value of the 'asymmetric' credential type. It represents the base 64 encoded certificate.
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-Confirm
Prompts you for confirmation before running the cmdlet.
Parameter properties
| Type: | SwitchParameter |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
| Aliases: | cf |
Parameter sets
-CreatedOnBehalfOfDeletedDateTime
.
Parameter properties
| Type: | DateTime |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-DefaultProfile
The credentials, account, tenant, and subscription used for communication with Azure.
Parameter properties
| Type: | PSObject |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
| Aliases: | AzContext, AzureRmContext, AzureCredential |
Parameter sets
-DeletedDateTime
.
Parameter properties
| Type: | DateTime |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-Description
An optional description of the application. Returned by default. Supports $filter (eq, ne, NOT, ge, le, startsWith) and $search.
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-DisabledByMicrosoftStatus
Specifies whether Microsoft has disabled the registered application. Possible values are: null (default value), NotDisabled, and DisabledDueToViolationOfServicesAgreement (reasons may include suspicious, abusive, or malicious activity, or a violation of the Microsoft Services Agreement). Supports $filter (eq, ne, NOT).
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-DisplayName
The display name for the application. Supports $filter (eq, ne, NOT, ge, le, in, startsWith), $search, and $orderBy.
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-EndDate
The effective end date of the credential usage. The default end date value is one year from today. For an 'asymmetric' type credential, this must be set to on or before the date that the X509 certificate is valid.
Parameter properties
| Type: | DateTime |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-GroupMembershipClaim
Configures the groups claim issued in a user or OAuth 2.0 access token that the application expects. To set this attribute, use one of the following string values: None, SecurityGroup (for security groups and Azure AD roles), All (this gets all security groups, distribution groups, and Azure AD directory roles that the signed-in user is a member of).
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-HomePage
The URL to the application homepage.
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
| Aliases: | WebHomePageUrl |
Parameter sets
-HomeRealmDiscoveryPolicy
. To construct, see NOTES section for HOMEREALMDISCOVERYPOLICY properties and create a hash table.
Parameter properties
| Type: | |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-IdentifierUri
The URIs that identify the application.
Parameter properties
| Type: | String[] |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
| Aliases: | IdentifierUris |
Parameter sets
-Info
informationalUrl To construct, see NOTES section for INFO properties and create a hash table.
Parameter properties
| Type: | IMicrosoftGraphInformationalUrl |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-IsDeviceOnlyAuthSupported
Specifies whether this application supports device authentication without a user. The default is false.
Parameter properties
| Type: | SwitchParameter |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-IsFallbackPublicClient
Specifies the fallback application type as public client, such as an installed application running on a mobile device. The default value is false which means the fallback application type is confidential client such as a web app. There are certain scenarios where Azure AD cannot determine the client application type. For example, the ROPC flow where the application is configured without specifying a redirect URI. In those cases Azure AD interprets the application type based on the value of this property.
Parameter properties
| Type: | SwitchParameter |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-KeyCredentials
key credentials associated with the application.
Parameter properties
| Type: | |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-LogoInputFile
Input File for Logo (The main logo for the application. Not nullable.)
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-Note
Notes relevant for the management of the application.
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-Oauth2RequirePostResponse
.
Parameter properties
| Type: | SwitchParameter |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-OptionalClaim
optionalClaims To construct, see NOTES section for OPTIONALCLAIM properties and create a hash table.
Parameter properties
| Type: | IMicrosoftGraphOptionalClaims |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-ParentalControlSetting
parentalControlSettings To construct, see NOTES section for PARENTALCONTROLSETTING properties and create a hash table.
Parameter properties
| Type: | IMicrosoftGraphParentalControlSettings |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-PasswordCredentials
Password credentials associated with the application.
Parameter properties
| Type: | |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-PublicClientRedirectUri
Adds new entity to applications
Parameter properties
| Type: | String[] |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-ReplyUrls
The application reply Urls.
Parameter properties
| Type: | String[] |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
| Aliases: | WebRedirectUri |
Parameter sets
-RequestedAccessTokenVersion
Adds new entity to applications
Parameter properties
| Type: | Int32 |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-RequiredResourceAccess
Specifies the resources that the application needs to access. This property also specifies the set of OAuth permission scopes and application roles that it needs for each of those resources. This configuration of access to the required resources drives the consent experience. Not nullable. Supports $filter (eq, NOT, ge, le). To construct, see NOTES section for REQUIREDRESOURCEACCESS properties and create a hash table.
Parameter properties
| Type: | |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-ServiceManagementReference
References application or service contact information from a Service or Asset Management database. Nullable.
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-SignInAudience
Specifies the Microsoft accounts that are supported for the current application. Supported values are: AzureADMyOrg, AzureADMultipleOrgs, AzureADandPersonalMicrosoftAccount, PersonalMicrosoftAccount. See more in the table below. Supports $filter (eq, ne, NOT).
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-SPARedirectUri
Adds new entity to applications
Parameter properties
| Type: | String[] |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-StartDate
The effective start date of the credential usage. The default start date value is today. For an 'asymmetric' type credential, this must be set to on or after the date that the X509 certificate is valid from.
Parameter properties
| Type: | DateTime |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-Tag
Custom strings that can be used to categorize and identify the application. Not nullable.Supports $filter (eq, NOT, ge, le, startsWith).
Parameter properties
| Type: | String[] |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-TokenEncryptionKeyId
Specifies the keyId of a public key from the keyCredentials collection. When configured, Azure AD encrypts all the tokens it emits by using the key this property points to. The application code that receives the encrypted token must use the matching private key to decrypt the token before it can be used for the signed-in user.
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-TokenIssuancePolicy
. To construct, see NOTES section for TOKENISSUANCEPOLICY properties and create a hash table.
Parameter properties
| Type: | |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-TokenLifetimePolicy
The tokenLifetimePolicies assigned to this application. Supports $expand. To construct, see NOTES section for TOKENLIFETIMEPOLICY properties and create a hash table.
Parameter properties
| Type: | |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-Web
webApplication To construct, see NOTES section for WEB properties and create a hash table.
Parameter properties
| Type: | IMicrosoftGraphWebApplication |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
-WhatIf
Shows what would happen if the cmdlet runs. The cmdlet is not run.
Parameter properties
| Type: | SwitchParameter |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
| Aliases: | wi |
Parameter sets
CommonParameters
This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutBuffer, -OutVariable, -PipelineVariable, -ProgressAction, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.
Outputs
IMicrosoftGraphApplication
Azure PowerShell
Feedback
Was this page helpful?