你当前正在访问 Microsoft Azure Global Edition 技术文档网站。 如果需要访问由世纪互联运营的 Microsoft Azure 中国技术文档网站,请访问 https://docs.azure.cn。
New-AzNetAppFilesActiveDirectory
创建新的 Azure NetApp 文档 (ANF) Active Directory 配置。
语法
New-AzNetAppFilesActiveDirectory
-ResourceGroupName <String>
-AccountName <String>
[-Dns <String[]>]
-Domain <String>
[-Site <String>]
-SmbServerName <String>
[-Username <String>]
[-Password <SecureString>]
[-OrganizationalUnit <String>]
[-KdcIP <String>]
[-BackupOperator <String[]>]
[-ServerRootCACertificate <String>]
[-AdName <String>]
[-SecurityOperator <String[]>]
[-AesEncryption]
[-LdapSigning]
[-LdapOverTLS]
[-AllowLocalNfsUsersWithLdap]
[-Administrator <String[]>]
[-EncryptDCConnection]
[-LdapSearchScope <PSNetAppFilesLdapSearchScopeOpt>]
[-PreferredServersForLdapClient <String[]>]
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>] New-AzNetAppFilesActiveDirectory
[-Dns <String[]>]
-Domain <String>
[-Site <String>]
-SmbServerName <String>
[-Username <String>]
[-Password <SecureString>]
[-OrganizationalUnit <String>]
[-KdcIP <String>]
[-BackupOperator <String[]>]
[-ServerRootCACertificate <String>]
[-AdName <String>]
[-SecurityOperator <String[]>]
[-AesEncryption]
[-LdapSigning]
[-LdapOverTLS]
[-AllowLocalNfsUsersWithLdap]
[-Administrator <String[]>]
[-EncryptDCConnection]
[-LdapSearchScope <PSNetAppFilesLdapSearchScopeOpt>]
[-PreferredServersForLdapClient <String[]>]
-AccountObject <PSNetAppFilesAccount>
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>] 说明
New-AzNetAppFilesActiveDirectory cmdlet 为 ANF 帐户创建新的 Active Directory 配置。
示例
示例 1
$pwd_secure_string = Read-Host "Enter a Password" -AsSecureString
New-AzNetAppFilesActiveDirectory -ResourceGroupName "MyRG" -AccountName "MyAccount" -AdName "MyADName" -Username "AdUserName" -Password $pwd_secure_string -Domain "AdDomain" -Dns "192.0.2.2" -SmbServerName "AdSmbServerName"此命令从 promt 获取 AD 密码,以保密 ANF 帐户“MyAnfAccount”的新 Active Directory 配置。
参数
-AccountName
ANF 帐户的名称
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-AccountObject
新备份策略对象的帐户
| Type: | PSNetAppFilesAccount |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-Administrator
要添加到内置 管理员istrators Active Directory 组的域用户。 没有域说明符的唯一用户名的列表。
| Type: | String[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-AdName
Active Directory 计算机的名称。 此可选参数仅在创建 kerberos 卷时使用
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-AesEncryption
启用 AES 后,设置是否为 SMB 通信启用 AES 加密。
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-AllowLocalNfsUsersWithLdap
如果启用,NFS 客户端本地用户还可以(除了 LDAP 用户)访问 NFS 卷。
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-BackupOperator
要添加到内置备份操作员 Active Directory 组的用户。 没有域说明符的唯一用户名列表
| Type: | String[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Confirm
提示你在运行 cmdlet 之前进行确认。
| Type: | SwitchParameter |
| Aliases: | cf |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-DefaultProfile
用于与 Azure 通信的凭据、帐户、租户和订阅。
| Type: | IAzureContextContainer |
| Aliases: | AzContext, AzureRmContext, AzureCredential |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Dns
Active Directory 域的 DNS 服务器 IP 地址(仅限 IPv4)的逗号分隔列表
| Type: | String[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Domain
Active Directory 域名
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-EncryptDCConnection
如果启用,SMB 服务器到域控制器(DC)之间的流量将加密。
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-KdcIP
Active Directory 计算机的 kdc 服务器 IP 地址。 此可选参数仅在创建 kerberos 卷时使用。
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-LdapOverTLS
启用基于 SSL/TLS 的 LDAP 时,指定是否需要通过 TLS 保护 LDAP 流量。
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-LdapSearchScope
LDAP 搜索范围选项。
| Type: | PSNetAppFilesLdapSearchScopeOpt |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-LdapSigning
启用基于 SSL/TLS 的 LDAP 时,指定是否需要对 LDAP 流量进行签名。
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-OrganizationalUnit
Windows Active Directory 中的组织单位(OU)
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Password
Active Directory 域管理员的纯文本密码,响应中会屏蔽值
| Type: | SecureString |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-PreferredServersForLdapClient
LDAP 客户端首选服务器的 IPv4 地址的逗号分隔列表。 最多可以传递两个逗号分隔的 IPv4 地址。
| Type: | String[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-ResourceGroupName
ANF 帐户的资源组
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-SecurityOperator
要为 Active Directory 中的域用户提供安全特权(SMB 持续可用的 SQL 共享需要)。 没有域说明符的唯一用户名列表
| Type: | String[] |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-ServerRootCACertificate
启用基于 SSL/TLS 的 LDAP 时,LDAP 客户端需要使用 base64 编码的 Active Directory 证书服务的自签名根 CA 证书,此可选参数仅用于具有 LDAP 用户映射卷的双重协议。
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Site
服务将域控制器发现限制为的 Active Directory 站点
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-SmbServerName
SMB 服务器的 NetBIOS 名称。 此名称将注册为 AD 中的计算机帐户,并用于装载卷
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Username
有权创建计算机帐户的域用户帐户
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-WhatIf
显示运行该 cmdlet 时会发生什么情况。 cmdlet 未运行。
| Type: | SwitchParameter |
| Aliases: | wi |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
输入
输出
相关链接
反馈
即将发布:在整个 2024 年,我们将逐步淘汰作为内容反馈机制的“GitHub 问题”,并将其取代为新的反馈系统。 有关详细信息,请参阅:https://aka.ms/ContentUserFeedback。
提交和查看相关反馈