Creates an SMBSecGroup object.

New-SMBSecurityGroup [-Account] <Object> [-ForceDomain] [<CommonParameters>]

Creates an SMBSecGroup object. The group can be added to the SMBSecurityDescriptor via Set-SMBSecurityGroup. The command will fail if the account's SID cannot be resolved by the system.

PS C:\> $account = "NT AUTHORITY\SYSTEM"
PS C:\> $Group = New-SMBSecurityGroup -Account $account

Creates an SMBSecurity Group using the SYSTEM account. This is the recommended group account.

The group name. String SID or account/group name, [System.Security.Principal.NTAccount], [System.Security.Principal.SecurityIdentifier] (SID), [SMBSecAccount], and ,[SMBSecGroup] objects are accepted. Strings accept input in '[username|group]', 'domain\[username|group]', and '[username|group]@domain' format.

Type: Object
Parameter Sets: (All)
Aliases:

Required: True
Position: 0
Default value: None
Accept pipeline input: True (ByValue)
Accept wildcard characters: False

[Experimental] Certain domain configurations, namely Azure AD joined, may cause the Account lookup to fail. This parameter adds extra domain lookup logic that should be AAD compatible. Hybrid joined and traditional AD joined systems should not need this parameter.

Type: SwitchParameter
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

New-SMBSecurityGroup