< Back
New-DeviceHealthAttestationStateObject
Post
NAME New-DeviceHealthAttestationStateObject
SYNOPSIS
Creates a new object which represents a "microsoft.graph.deviceHealthAttestationState" (or one of its derived
types).
SYNTAX
New-DeviceHealthAttestationStateObject [-attestationIdentityKey <string>] [-bitLockerStatus <string>]
[-bootAppSecurityVersion <string>] [-bootDebugging <string>] [-bootManagerSecurityVersion <string>]
[-bootManagerVersion <string>] [-bootRevisionListInfo <string>] [-codeIntegrity <string>]
[-codeIntegrityCheckVersion <string>] [-codeIntegrityPolicy <string>] [-contentNamespaceUrl <string>]
[-contentVersion <string>] [-dataExcutionPolicy <string>] [-deviceHealthAttestationStatus <string>]
[-earlyLaunchAntiMalwareDriverProtection <string>] [-healthAttestationSupportedStatus <string>]
[-healthStatusMismatchInfo <string>] [-issuedDateTime <DateTimeOffset>] [-lastUpdateDateTime <string>]
[-operatingSystemKernelDebugging <string>] [-operatingSystemRevListInfo <string>] [-pcr0 <string>]
[-pcrHashAlgorithm <string>] [-resetCount <long>] [-restartCount <long>] [-safeMode <string>] [-secureBoot
<string>] [-secureBootConfigurationPolicyFingerPrint <string>] [-testSigning <string>] [-tpmVersion <string>]
[-virtualSecureMode <string>] [-windowsPE <string>] [<CommonParameters>]
DESCRIPTION
Creates a new object which represents a "microsoft.graph.deviceHealthAttestationState" (or one of its derived
types).
PARAMETERS
-lastUpdateDateTime <string>
The "lastUpdateDateTime" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The Timestamp of the last update.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-contentNamespaceUrl <string>
The "contentNamespaceUrl" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The DHA report version. (Namespace version)
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-deviceHealthAttestationStatus <string>
The "deviceHealthAttestationStatus" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The DHA report version. (Namespace version)
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-contentVersion <string>
The "contentVersion" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The HealthAttestation state schema version
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-issuedDateTime <DateTimeOffset>
The "issuedDateTime" property, of type "Edm.DateTimeOffset".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The DateTime when device was evaluated or issued to MDM
Required? false
Position? named
Default value 1/1/0001 12:00:00 AM +00:00
Accept pipeline input? false
Accept wildcard characters? false
-attestationIdentityKey <string>
The "attestationIdentityKey" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
TWhen an Attestation Identity Key (AIK) is present on a device, it indicates that the device has an
endorsement key (EK) certificate.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-resetCount <long>
The "resetCount" property, of type "Edm.Int64".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The number of times a PC device has hibernated or resumed
Required? false
Position? named
Default value 0
Accept pipeline input? false
Accept wildcard characters? false
-restartCount <long>
The "restartCount" property, of type "Edm.Int64".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The number of times a PC device has rebooted
Required? false
Position? named
Default value 0
Accept pipeline input? false
Accept wildcard characters? false
-dataExcutionPolicy <string>
The "dataExcutionPolicy" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
DEP Policy defines a set of hardware and software technologies that perform additional checks on memory
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-bitLockerStatus <string>
The "bitLockerStatus" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
On or Off of BitLocker Drive Encryption
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-bootManagerVersion <string>
The "bootManagerVersion" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The version of the Boot Manager
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-codeIntegrityCheckVersion <string>
The "codeIntegrityCheckVersion" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The version of the Boot Manager
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-secureBoot <string>
The "secureBoot" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
When Secure Boot is enabled, the core components must have the correct cryptographic signatures
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-bootDebugging <string>
The "bootDebugging" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
When bootDebugging is enabled, the device is used in development and testing
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-operatingSystemKernelDebugging <string>
The "operatingSystemKernelDebugging" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
When operatingSystemKernelDebugging is enabled, the device is used in development and testing
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-codeIntegrity <string>
The "codeIntegrity" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
When code integrity is enabled, code execution is restricted to integrity verified code
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-testSigning <string>
The "testSigning" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
When test signing is allowed, the device does not enforce signature validation during boot
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-safeMode <string>
The "safeMode" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
Safe mode is a troubleshooting option for Windows that starts your computer in a limited state
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-windowsPE <string>
The "windowsPE" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
Operating system running with limited services that is used to prepare a computer for Windows
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-earlyLaunchAntiMalwareDriverProtection <string>
The "earlyLaunchAntiMalwareDriverProtection" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
ELAM provides protection for the computers in your network when they start up
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-virtualSecureMode <string>
The "virtualSecureMode" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
VSM is a container that protects high value assets from a compromised kernel
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-pcrHashAlgorithm <string>
The "pcrHashAlgorithm" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
Informational attribute that identifies the HASH algorithm that was used by TPM
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-bootAppSecurityVersion <string>
The "bootAppSecurityVersion" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The security version number of the Boot Application
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-bootManagerSecurityVersion <string>
The "bootManagerSecurityVersion" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The security version number of the Boot Application
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-tpmVersion <string>
The "tpmVersion" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The security version number of the Boot Application
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-pcr0 <string>
The "pcr0" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The measurement that is captured in PCR[0]
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-secureBootConfigurationPolicyFingerPrint <string>
The "secureBootConfigurationPolicyFingerPrint" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
Fingerprint of the Custom Secure Boot Configuration Policy
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-codeIntegrityPolicy <string>
The "codeIntegrityPolicy" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The Code Integrity policy that is controlling the security of the boot environment
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-bootRevisionListInfo <string>
The "bootRevisionListInfo" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The Boot Revision List that was loaded during initial boot on the attested device
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-operatingSystemRevListInfo <string>
The "operatingSystemRevListInfo" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The Operating System Revision List that was loaded during initial boot on the attested device
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-healthStatusMismatchInfo <string>
The "healthStatusMismatchInfo" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
This attribute appears if DHA-Service detects an integrity issue
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-healthAttestationSupportedStatus <string>
The "healthAttestationSupportedStatus" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
This attribute indicates if DHA is supported for the device
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
OUTPUTS
RELATED LINKS
SYNOPSIS
Creates a new object which represents a "microsoft.graph.deviceHealthAttestationState" (or one of its derived
types).
SYNTAX
New-DeviceHealthAttestationStateObject [-attestationIdentityKey <string>] [-bitLockerStatus <string>]
[-bootAppSecurityVersion <string>] [-bootDebugging <string>] [-bootManagerSecurityVersion <string>]
[-bootManagerVersion <string>] [-bootRevisionListInfo <string>] [-codeIntegrity <string>]
[-codeIntegrityCheckVersion <string>] [-codeIntegrityPolicy <string>] [-contentNamespaceUrl <string>]
[-contentVersion <string>] [-dataExcutionPolicy <string>] [-deviceHealthAttestationStatus <string>]
[-earlyLaunchAntiMalwareDriverProtection <string>] [-healthAttestationSupportedStatus <string>]
[-healthStatusMismatchInfo <string>] [-issuedDateTime <DateTimeOffset>] [-lastUpdateDateTime <string>]
[-operatingSystemKernelDebugging <string>] [-operatingSystemRevListInfo <string>] [-pcr0 <string>]
[-pcrHashAlgorithm <string>] [-resetCount <long>] [-restartCount <long>] [-safeMode <string>] [-secureBoot
<string>] [-secureBootConfigurationPolicyFingerPrint <string>] [-testSigning <string>] [-tpmVersion <string>]
[-virtualSecureMode <string>] [-windowsPE <string>] [<CommonParameters>]
DESCRIPTION
Creates a new object which represents a "microsoft.graph.deviceHealthAttestationState" (or one of its derived
types).
PARAMETERS
-lastUpdateDateTime <string>
The "lastUpdateDateTime" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The Timestamp of the last update.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-contentNamespaceUrl <string>
The "contentNamespaceUrl" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The DHA report version. (Namespace version)
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-deviceHealthAttestationStatus <string>
The "deviceHealthAttestationStatus" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The DHA report version. (Namespace version)
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-contentVersion <string>
The "contentVersion" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The HealthAttestation state schema version
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-issuedDateTime <DateTimeOffset>
The "issuedDateTime" property, of type "Edm.DateTimeOffset".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The DateTime when device was evaluated or issued to MDM
Required? false
Position? named
Default value 1/1/0001 12:00:00 AM +00:00
Accept pipeline input? false
Accept wildcard characters? false
-attestationIdentityKey <string>
The "attestationIdentityKey" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
TWhen an Attestation Identity Key (AIK) is present on a device, it indicates that the device has an
endorsement key (EK) certificate.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-resetCount <long>
The "resetCount" property, of type "Edm.Int64".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The number of times a PC device has hibernated or resumed
Required? false
Position? named
Default value 0
Accept pipeline input? false
Accept wildcard characters? false
-restartCount <long>
The "restartCount" property, of type "Edm.Int64".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The number of times a PC device has rebooted
Required? false
Position? named
Default value 0
Accept pipeline input? false
Accept wildcard characters? false
-dataExcutionPolicy <string>
The "dataExcutionPolicy" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
DEP Policy defines a set of hardware and software technologies that perform additional checks on memory
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-bitLockerStatus <string>
The "bitLockerStatus" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
On or Off of BitLocker Drive Encryption
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-bootManagerVersion <string>
The "bootManagerVersion" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The version of the Boot Manager
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-codeIntegrityCheckVersion <string>
The "codeIntegrityCheckVersion" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The version of the Boot Manager
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-secureBoot <string>
The "secureBoot" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
When Secure Boot is enabled, the core components must have the correct cryptographic signatures
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-bootDebugging <string>
The "bootDebugging" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
When bootDebugging is enabled, the device is used in development and testing
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-operatingSystemKernelDebugging <string>
The "operatingSystemKernelDebugging" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
When operatingSystemKernelDebugging is enabled, the device is used in development and testing
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-codeIntegrity <string>
The "codeIntegrity" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
When code integrity is enabled, code execution is restricted to integrity verified code
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-testSigning <string>
The "testSigning" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
When test signing is allowed, the device does not enforce signature validation during boot
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-safeMode <string>
The "safeMode" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
Safe mode is a troubleshooting option for Windows that starts your computer in a limited state
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-windowsPE <string>
The "windowsPE" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
Operating system running with limited services that is used to prepare a computer for Windows
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-earlyLaunchAntiMalwareDriverProtection <string>
The "earlyLaunchAntiMalwareDriverProtection" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
ELAM provides protection for the computers in your network when they start up
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-virtualSecureMode <string>
The "virtualSecureMode" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
VSM is a container that protects high value assets from a compromised kernel
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-pcrHashAlgorithm <string>
The "pcrHashAlgorithm" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
Informational attribute that identifies the HASH algorithm that was used by TPM
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-bootAppSecurityVersion <string>
The "bootAppSecurityVersion" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The security version number of the Boot Application
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-bootManagerSecurityVersion <string>
The "bootManagerSecurityVersion" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The security version number of the Boot Application
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-tpmVersion <string>
The "tpmVersion" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The security version number of the Boot Application
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-pcr0 <string>
The "pcr0" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The measurement that is captured in PCR[0]
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-secureBootConfigurationPolicyFingerPrint <string>
The "secureBootConfigurationPolicyFingerPrint" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
Fingerprint of the Custom Secure Boot Configuration Policy
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-codeIntegrityPolicy <string>
The "codeIntegrityPolicy" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The Code Integrity policy that is controlling the security of the boot environment
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-bootRevisionListInfo <string>
The "bootRevisionListInfo" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The Boot Revision List that was loaded during initial boot on the attested device
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-operatingSystemRevListInfo <string>
The "operatingSystemRevListInfo" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
The Operating System Revision List that was loaded during initial boot on the attested device
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-healthStatusMismatchInfo <string>
The "healthStatusMismatchInfo" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
This attribute appears if DHA-Service detects an integrity issue
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-healthAttestationSupportedStatus <string>
The "healthAttestationSupportedStatus" property, of type "Edm.String".
This property is on the "microsoft.graph.deviceHealthAttestationState" type.
This attribute indicates if DHA is supported for the device
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
OUTPUTS
RELATED LINKS