This cmdlet is available in on-premises Exchange and in the cloud-based service. Some parameters and settings may be exclusive to one environment or the other.

Use the Get-AuthenticationPolicy cmdlet to view authentication policies in your organization. For information about the parameter sets in the Syntax section below, see Exchange cmdlet syntax.


   [[-Identity] <AuthPolicyIdParameter>]


You need to be assigned permissions before you can run this cmdlet. Although this topic lists all parameters for the cmdlet, you may not have access to some parameters if they're not included in the permissions assigned to you. To find the permissions required to run any cmdlet or parameter in your organization, see Find the permissions required to run any Exchange cmdlet.


Example 1

Get-AuthenticationPolicy | Format-Table -Auto Name

This example returns a summary list of all authentication policies.

Example 2

Get-AuthenticationPolicy -Identity "Engineering Group"

This example returns detailed information for the authentication policy named Engineering Group.



The Identity parameter specifies the authentication policy you want to view. You can use any value that uniquely identifies the policy. For example:

  • Name
  • Distinguished name (DN)
  • GUID
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
Applies to:Exchange Server 2019, Exchange Online, Exchange Online Protection