This is the built-in help made by Microsoft for the command 'New-ADClaimTransformPolicy', in PowerShell version 5 - as retrieved from
Windows version 'Microsoft Windows Server 2012 R2 Standard' PowerShell help files on 2016-06-23.
For PowerShell version 3 and up, where you have Update-Help, this command was run just before creating the web pages from the help files.
Creates a new claim transformation policy object in Active Directory.
New-ADClaimTransformPolicy [-Name] <String> [-AuthType {Negotiate | Basic}] [-Credential <PSCredential>] [-Description <String>] [-PassThru]
[-ProtectedFromAccidentalDeletion <Boolean>] [-Server <String>] -AllowAll [-Confirm] [-WhatIf] [<CommonParameters>]
New-ADClaimTransformPolicy [-Name] <String> [-AuthType {Negotiate | Basic}] [-Credential <PSCredential>] [-Description <String>] [-PassThru]
[-ProtectedFromAccidentalDeletion <Boolean>] [-Server <String>] -AllowAllExcept <ADClaimType[]> [-Confirm] [-WhatIf] [<CommonParameters>]
New-ADClaimTransformPolicy [-Name] <String> [-AuthType {Negotiate | Basic}] [-Credential <PSCredential>] [-Description <String>] [-PassThru]
[-ProtectedFromAccidentalDeletion <Boolean>] [-Server <String>] -DenyAll [-Confirm] [-WhatIf] [<CommonParameters>]
New-ADClaimTransformPolicy [-Name] <String> [-AuthType {Negotiate | Basic}] [-Credential <PSCredential>] [-Description <String>] [-PassThru]
[-ProtectedFromAccidentalDeletion <Boolean>] [-Server <String>] -DenyAllExcept <ADClaimType[]> [-Confirm] [-WhatIf] [<CommonParameters>]
New-ADClaimTransformPolicy [-Name] <String> [-AuthType {Negotiate | Basic}] [-Credential <PSCredential>] [-Description <String>] [-Instance <ADClaimTransformPolicy>]
[-PassThru] [-ProtectedFromAccidentalDeletion <Boolean>] [-Server <String>] -Rule <String> [-Confirm] [-WhatIf] [<CommonParameters>]
The New-ADClaimTransformPolicy cmdlet creates a new claims transformation policy object in Active Directory. A claims transformation policy object contains a set of rules
authored in the transformation rule language. After creating a policy object, you can link it with a forest trust to apply the claims transformation to the trust.
<
Online Version: http://go.microsoft.com/fwlink/p/?linkid=291062
<
-------------------------- EXAMPLE 1 --------------------------
PS C:\>New-ADClaimTransformPolicy -Name "DenyAllPolicy" -DenyAll
This command creates a new claims transformation policy named DenyAllPolicy that denies all claims, both those that are sent as well as those that are received.
-------------------------- EXAMPLE 2 --------------------------
PS C:\>New-ADClaimTransformPolicy -Name "AllowAllExceptCompanyAndDepartmentPolicy" -AllowAllExcept Company,Department
This command creates a new claims transformation policy named AllowAllExceptCompanyAndDepartmentPolicy that allows all claims to be sent or received except for the claims
Company and Department.
-------------------------- EXAMPLE 3 --------------------------
PS C:\>New-ADClaimTransformPolicy -Name "HumanResourcesToHrPolicy" -Rule 'C1:[Type=="ad://ext/Department:88ceb0fe88a125db", Value=="Human Resources", ValueType=="string"] =>
issue(Type=C1.Type, Value="HR", ValueType=C1.ValueType);'
This command creates a new claims transformation policy named HumanResourcesToHrPolicy that transforms the value Human Resources to HR in the claim Department.
-------------------------- EXAMPLE 4 --------------------------
PS C:\>$rule = Get-Content C:\rule.txt
PS C:\> New-ADClaimTransformPolicy -Name "MyRule" -Rule $rule
This example creates a new claims transformation policy named MyRule with the rule specified in C:\rule.txt.