< Back
New-AADIntBackdoor
Post
NAME New-AADIntBackdoor
SYNOPSIS
Creates a new backdoor to Azure AD tenant.
SYNTAX
New-AADIntBackdoor [[-AccessToken] <String>] [[-DomainName] <String>] [<CommonParameters>]
DESCRIPTION
Creates a new backdoor to Azure tenant by creating a new domain and by altering its authentication settings.
Allows logging in as any user of the tenant.
The certificate will be configured to be any.sts and issuer http://any.sts/<8 byte hex-value>
Utilises a bug in Azure AD, which allows converting unverified domains to federated.
PARAMETERS
-AccessToken <String>
Access Token
Required? false
Position? 1
Default value
Accept pipeline input? false
Accept wildcard characters? false
-DomainName <String>
The domain to be created to be used as a backdoor. If not given, uses default.onmicrosoft.com.
Required? false
Position? 2
Default value microsoft.com
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
OUTPUTS
-------------------------- EXAMPLE 1 --------------------------
PS C:\\>New-AADIntBackdoor -DomainName backdoor.company.com
RELATED LINKS
CommonParameters : True
WorkflowCommonParameters : False
details : @{name=New-AADIntDomain; noun=; verb=}
Syntax : @{syntaxItem=System.Object[]}
parameters : @{parameter=System.Object[]}
inputTypes : @{inputType=}
returnValues : @{returnValue=}
aliases : None
remarks : None
alertSet :
description :
examples :
Synopsis :
New-AADIntDomain [[-AccessToken] <string>] [[-ForceTakeover] <Object>] [[-Domain] <Object>]
[[-Authentication] <Object>] [[-Capabilities] <Object>] [[-IsDefault] <Object>]
[[-IsInitial] <Object>] [[-Name] <Object>] [[-RootDomain] <Object>] [[-Status] <Object>]
[[-VerificationMethod] <Object>] [<CommonParameters>]
ModuleName : AADInternals
nonTerminatingErrors :
xmlns:command : http://schemas.microsoft.com/maml/dev/command/2004/10
xmlns:dev : http://schemas.microsoft.com/maml/dev/2004/10
xmlns:maml : http://schemas.microsoft.com/maml/2004/10
Name : New-AADIntDomain
Category : Function
Component :
Role :
Functionality :
SYNOPSIS
Creates a new backdoor to Azure AD tenant.
SYNTAX
New-AADIntBackdoor [[-AccessToken] <String>] [[-DomainName] <String>] [<CommonParameters>]
DESCRIPTION
Creates a new backdoor to Azure tenant by creating a new domain and by altering its authentication settings.
Allows logging in as any user of the tenant.
The certificate will be configured to be any.sts and issuer http://any.sts/<8 byte hex-value>
Utilises a bug in Azure AD, which allows converting unverified domains to federated.
PARAMETERS
-AccessToken <String>
Access Token
Required? false
Position? 1
Default value
Accept pipeline input? false
Accept wildcard characters? false
-DomainName <String>
The domain to be created to be used as a backdoor. If not given, uses default.onmicrosoft.com.
Required? false
Position? 2
Default value microsoft.com
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
OUTPUTS
-------------------------- EXAMPLE 1 --------------------------
PS C:\\>New-AADIntBackdoor -DomainName backdoor.company.com
RELATED LINKS
CommonParameters : True
WorkflowCommonParameters : False
details : @{name=New-AADIntDomain; noun=; verb=}
Syntax : @{syntaxItem=System.Object[]}
parameters : @{parameter=System.Object[]}
inputTypes : @{inputType=}
returnValues : @{returnValue=}
aliases : None
remarks : None
alertSet :
description :
examples :
Synopsis :
New-AADIntDomain [[-AccessToken] <string>] [[-ForceTakeover] <Object>] [[-Domain] <Object>]
[[-Authentication] <Object>] [[-Capabilities] <Object>] [[-IsDefault] <Object>]
[[-IsInitial] <Object>] [[-Name] <Object>] [[-RootDomain] <Object>] [[-Status] <Object>]
[[-VerificationMethod] <Object>] [<CommonParameters>]
ModuleName : AADInternals
nonTerminatingErrors :
xmlns:command : http://schemas.microsoft.com/maml/dev/command/2004/10
xmlns:dev : http://schemas.microsoft.com/maml/dev/2004/10
xmlns:maml : http://schemas.microsoft.com/maml/2004/10
Name : New-AADIntDomain
Category : Function
Component :
Role :
Functionality :