Add-VPN Cmdlet

Parameters Output Objects Config Settings

The Add-VPN component can be used to create a new VPN connection on the system.

Syntax

Add-VPN [parameters]

Remarks

The user can specify a series of properties for adding the VPN, such as Name, Server, DNSServer, etc. The cmdlets support pipeline input for some of their parameters. Prebuilding an object and piping it to the cmdlet is very useful, but should be used with caution to prevent security conflicts. Steps have been taken to decrease the risk of a possibly accidental pipe to the cmdlet, for instance, the Credential parameter cannot be piped to the cmdlet and must be specified manually.

# create a new VPN connection add-vpn -name "NewEntry" -server "vpn.contoso.com" -user "contoso\user"

Parameter List

The following is the full list of the parameters of the cmdlet with short descriptions. Click on the links for further details.


LogFile	The location of a file to which debug information is written.
Config	Specifies one or more configuration settings.
DNSServer	The DNS server to use.
IPAddress	The IP Address to assign.
LogFile	The location of a file to which debug information is written.
Name	The name of the VPN connection.
Password	The password to use for authentication.
Protocol	The protocol to use for the VPN connection.
Server	The address of the Server.
User	The username to use for authentication.
WINSServer	The WINS server to use.

Output Objects

The following is the full list of the output objects returned by the cmdlet with short descriptions. Click on the links for further details.


VPNCreatedEntry	Represents a created VPN entry.

Config Settings

The following is a list of config settings for the cmdlet with short descriptions. Click on the links for further details.


IgnoreModemSpeaker	Whether the component will ignore the default modem speaker settings.
IgnoreSoftwareCompression	Whether the component will ignore the default software compression settings.
OverrideEntrySetting	Whether or not to use the component settings when dialing a phone book entry.
PausedStates	Whether the component will accept paused states.
PauseOnScript	Tells the component to display a logon terminal.
SetModemSpeaker	Whether the component will use the modem speaker.
SetSoftwareCompression	Whether the component will use software compression.
UseCustomScripting	Tells the component to use custom script DLLs.
UsePrefixSuffix	Whether or not to use the dialing prefix and suffix in the phone book.
UseRemoteDefaultGateway	Whether or not the entry should use the default gateway on the remote network.
VPNType	Sets the VPN Type when creating entries with NetDial.
BuildInfo	Information about the product's build.
CodePage	The system code page used for Unicode to Multibyte translations.
LicenseInfo	Information about the current license.
MaskSensitive	Whether sensitive data is masked in log messages.
UseInternalSecurityAPI	Tells the component whether or not to use the system security libraries or an internal implementation.

LogFile Parameter (Add-VPN Cmdlet)

The location of a file to which debug information is written.

Syntax

Add-VPN -LogFile string

Remarks

When specified, the cmdlet will log debug information to the file. If the file exists, the information will be appended.

Default Value

null

Config Property (Add-VPN Cmdlet)

Specifies one or more configuration settings.

Syntax

Add-VPN -Config string[]

Remarks

The Config parameter takes one or more name-value pairs that represent the name of the configuration setting and value, i.e.: -config "Name=Value"

Default Value

null

DNSServer Property (Add-VPN Cmdlet)

The DNS server to use.

Syntax

Add-VPN -DNSServer string

Remarks

Specifies the DNS server to use when connected to the VPN.

Default Value

IPAddress Property (Add-VPN Cmdlet)

The IP Address to assign.

Syntax

Add-VPN -IPAddress string

Remarks

Specifies the IP Address to assign to the local machine when connected to the VPN.

Default Value

LogFile Property (Add-VPN Cmdlet)

The location of a file to which debug information is written.

Syntax

Add-VPN -LogFile string

Remarks

When specified, the cmdlet will log debug information to the file. If the file exists, the information will be appended.

Default Value

Name Property (Add-VPN Cmdlet)

The name of the VPN connection.

Syntax

Add-VPN -Name string

Remarks

The friendly name of the VPN connection.

Default Value

Parameter Position

This is a required parameter.

Password Property (Add-VPN Cmdlet)

The password to use for authentication.

Syntax

Add-VPN -Password string

Remarks

Every time User, or Password are set, the cmdlet will authenticate with the server. It is recommended that the Credential parameter is set instead of User/Password because of security reasons. If both Credential and this parameter is set, the Credential value is used.

Default Value

Protocol Property (Add-VPN Cmdlet)

The protocol to use for the VPN connection.

Syntax

Add-VPN -Protocol string

Remarks

Specifies what protocol the VPN connection will use. Possible values are Default (Use default windows options), PPTP, L2TP and SSTP.

Default Value

Server Property (Add-VPN Cmdlet)

The address of the Server.

Syntax

Add-VPN -Server string

Remarks

The cmdlet requires a server address to be provided. Either an IP address or the server host name can be provided.

Default Value

Parameter Position

This is a required parameter.

User Property (Add-VPN Cmdlet)

The username to use for authentication.

Syntax

Add-VPN -User string

Remarks

Every time User and Password are set, the cmdlet will authenticate with the server. It is recommended that the Credential parameter is set instead of User/Password because of security reasons. If both Credential and this parameter is set, the Credential value is used.

Default Value

WINSServer Property (Add-VPN Cmdlet)

The WINS server to use.

Syntax

Add-VPN -WINSServer string

Remarks

Specifies the WINS server to use when connected to the VPN.

Default Value

VPNCreatedEntry Output Object (Add-VPN Cmdlet)

Represents a created VPN entry.

Syntax

Object VPNCreatedEntry {
   string Entry;
   string Server;
   string DNSServer;
   string WINSServer;
   string IPAddress;
   string Protocol;
}

Remarks

Fields contain information about the VPN created.

Config Settings (Add-VPN Cmdlet)

The cmdlet accepts one or more of the following configuration settings. Configuration settings are similar in functionality to properties, but they are rarely used. In order to avoid "polluting" the property namespace of the cmdlet, access to these internal properties is provided through the Config method.

NetDial Config Settings

IgnoreModemSpeaker: Whether the cmdlet will ignore the default modem speaker settings.

Setting this value to True will cause the cmdlet to ignore the modem speaker settings in the Remote Access System (RAS) phonebook, and it will use the setting specified by SetModemSpeaker. If it is False, the cmdlet uses the modem speaker setting that is in the RAS phonebook, and it then ignores the setting specified by the SetModemSpeaker.

IgnoreSoftwareCompression: Whether the cmdlet will ignore the default software compression settings.

If this is value is set to True, the cmdlet ignores the software compression setting that is in the RAS phonebook, and it uses the setting specified by SetSoftwareCompression. If it is set to False, the cmdlet uses the software compression setting that is in the RAS phonebook, and it then ignores the setting specified by SetSoftwareCompression.

OverrideEntrySetting: Whether or not to use the cmdlet settings when dialing a phone book entry.

If this is value is set to True, the cmdlet will use PhoneNumber, CallBackNumber, User, Password, and Domain as specified in the cmdlet, instead of the value specified in the preexisting phonebook entry.

PausedStates: Whether the cmdlet will accept paused states.

If this is value is set to True, the cmdlet will accept paused states. Paused states include terminal mode, retry logon, change password, set callback number, and EAP authentication. If it is set to False, the cmdlet will report a fatal error if it enters a paused state.

PauseOnScript: Tells the cmdlet to display a logon terminal.

This value is used internally by the system for Windows-95-style logon script execution. If this is value is set to True, a logon script will be displayed in a terminal window visible to the user. Applications should not set this value.

SetModemSpeaker: Whether the cmdlet will use the modem speaker.

This configuration value determines whether or not the modem speaker will sound during a connection. If IgnoreModemSpeaker is False, the cmdlet ignores the value of SetModemSpeaker, and it sets the modem speaker based on the RAS phonebook setting or the default setting.

SetSoftwareCompression: Whether the cmdlet will use software compression.

This configuration value determines whether or not the cmdlet uses software compression for the modem connection. If IgnoreSoftwareCompression is False, the cmdlet ignores the value of SetSoftwareCompression, and it sets the software compression state based on the RAS phonebook setting or the default setting.

UseCustomScripting: Tells the cmdlet to use custom script DLLs.

This configuration setting specifies that the cmdlet should invoke a custom-scripting DLL (dynamic link library) after establishing the connection to the server. The cmdlet can invoke the DLL only if all of the following conditions are met: UseCustomScripting is specifically set to True. A custom-scripting DLL is correctly registered with the system. The CustomScript option is specified in the phonebook entry. Note: This option is not supported in Windows 2000 and NT.

UsePrefixSuffix: Whether or not to use the dialing prefix and suffix in the phone book.

If this is value is set to True, the cmdlet will use the prefix and suffix that are stored in the RAS phonebook. If it is False, the cmdlet will ignore the prefix and suffix.

UseRemoteDefaultGateway: Whether or not the entry should use the default gateway on the remote network.

UseRemoteDefaultGateway is used when creating a new entry. By default, this value is True, and it tells the entry created that it should forward data that cannot be sent on the local network to the dial-up connection.

Note: This option is valid only when a local area network connection and dial-up connection both exist simultaneously.

VPNType: Sets the VPN Type when creating entries with NetDial.

The supported values include the following:


0	VPN_DEFAULT
1	VPN_PPTP
2	VPN_L2TP
3	VPN_SSTP

Note: This configuration setting is available only in .NET.

Base Config Settings

BuildInfo: Information about the product's build.

When queried, this setting will return a string containing information about the product's build.

CodePage: The system code page used for Unicode to Multibyte translations.

The default code page is Unicode UTF-8 (65001).

The following is a list of valid code page identifiers:


Identifier	Name
037	IBM EBCDIC - U.S./Canada
437	OEM - United States
500	IBM EBCDIC - International
708	Arabic - ASMO 708
709	Arabic - ASMO 449+, BCON V4
710	Arabic - Transparent Arabic
720	Arabic - Transparent ASMO
737	OEM - Greek (formerly 437G)
775	OEM - Baltic
850	OEM - Multilingual Latin I
852	OEM - Latin II
855	OEM - Cyrillic (primarily Russian)
857	OEM - Turkish
858	OEM - Multilingual Latin I + Euro symbol
860	OEM - Portuguese
861	OEM - Icelandic
862	OEM - Hebrew
863	OEM - Canadian-French
864	OEM - Arabic
865	OEM - Nordic
866	OEM - Russian
869	OEM - Modern Greek
870	IBM EBCDIC - Multilingual/ROECE (Latin-2)
874	ANSI/OEM - Thai (same as 28605, ISO 8859-15)
875	IBM EBCDIC - Modern Greek
932	ANSI/OEM - Japanese, Shift-JIS
936	ANSI/OEM - Simplified Chinese (PRC, Singapore)
949	ANSI/OEM - Korean (Unified Hangul Code)
950	ANSI/OEM - Traditional Chinese (Taiwan; Hong Kong SAR, PRC)
1026	IBM EBCDIC - Turkish (Latin-5)
1047	IBM EBCDIC - Latin 1/Open System
1140	IBM EBCDIC - U.S./Canada (037 + Euro symbol)
1141	IBM EBCDIC - Germany (20273 + Euro symbol)
1142	IBM EBCDIC - Denmark/Norway (20277 + Euro symbol)
1143	IBM EBCDIC - Finland/Sweden (20278 + Euro symbol)
1144	IBM EBCDIC - Italy (20280 + Euro symbol)
1145	IBM EBCDIC - Latin America/Spain (20284 + Euro symbol)
1146	IBM EBCDIC - United Kingdom (20285 + Euro symbol)
1147	IBM EBCDIC - France (20297 + Euro symbol)
1148	IBM EBCDIC - International (500 + Euro symbol)
1149	IBM EBCDIC - Icelandic (20871 + Euro symbol)
1200	Unicode UCS-2 Little-Endian (BMP of ISO 10646)
1201	Unicode UCS-2 Big-Endian
1250	ANSI - Central European
1251	ANSI - Cyrillic
1252	ANSI - Latin I
1253	ANSI - Greek
1254	ANSI - Turkish
1255	ANSI - Hebrew
1256	ANSI - Arabic
1257	ANSI - Baltic
1258	ANSI/OEM - Vietnamese
1361	Korean (Johab)
10000	MAC - Roman
10001	MAC - Japanese
10002	MAC - Traditional Chinese (Big5)
10003	MAC - Korean
10004	MAC - Arabic
10005	MAC - Hebrew
10006	MAC - Greek I
10007	MAC - Cyrillic
10008	MAC - Simplified Chinese (GB 2312)
10010	MAC - Romania
10017	MAC - Ukraine
10021	MAC - Thai
10029	MAC - Latin II
10079	MAC - Icelandic
10081	MAC - Turkish
10082	MAC - Croatia
12000	Unicode UCS-4 Little-Endian
12001	Unicode UCS-4 Big-Endian
20000	CNS - Taiwan
20001	TCA - Taiwan
20002	Eten - Taiwan
20003	IBM5550 - Taiwan
20004	TeleText - Taiwan
20005	Wang - Taiwan
20105	IA5 IRV International Alphabet No. 5 (7-bit)
20106	IA5 German (7-bit)
20107	IA5 Swedish (7-bit)
20108	IA5 Norwegian (7-bit)
20127	US-ASCII (7-bit)
20261	T.61
20269	ISO 6937 Non-Spacing Accent
20273	IBM EBCDIC - Germany
20277	IBM EBCDIC - Denmark/Norway
20278	IBM EBCDIC - Finland/Sweden
20280	IBM EBCDIC - Italy
20284	IBM EBCDIC - Latin America/Spain
20285	IBM EBCDIC - United Kingdom
20290	IBM EBCDIC - Japanese Katakana Extended
20297	IBM EBCDIC - France
20420	IBM EBCDIC - Arabic
20423	IBM EBCDIC - Greek
20424	IBM EBCDIC - Hebrew
20833	IBM EBCDIC - Korean Extended
20838	IBM EBCDIC - Thai
20866	Russian - KOI8-R
20871	IBM EBCDIC - Icelandic
20880	IBM EBCDIC - Cyrillic (Russian)
20905	IBM EBCDIC - Turkish
20924	IBM EBCDIC - Latin-1/Open System (1047 + Euro symbol)
20932	JIS X 0208-1990 & 0121-1990
20936	Simplified Chinese (GB2312)
21025	IBM EBCDIC - Cyrillic (Serbian, Bulgarian)
21027	Extended Alpha Lowercase
21866	Ukrainian (KOI8-U)
28591	ISO 8859-1 Latin I
28592	ISO 8859-2 Central Europe
28593	ISO 8859-3 Latin 3
28594	ISO 8859-4 Baltic
28595	ISO 8859-5 Cyrillic
28596	ISO 8859-6 Arabic
28597	ISO 8859-7 Greek
28598	ISO 8859-8 Hebrew
28599	ISO 8859-9 Latin 5
28605	ISO 8859-15 Latin 9
29001	Europa 3
38598	ISO 8859-8 Hebrew
50220	ISO 2022 Japanese with no halfwidth Katakana
50221	ISO 2022 Japanese with halfwidth Katakana
50222	ISO 2022 Japanese JIS X 0201-1989
50225	ISO 2022 Korean
50227	ISO 2022 Simplified Chinese
50229	ISO 2022 Traditional Chinese
50930	Japanese (Katakana) Extended
50931	US/Canada and Japanese
50933	Korean Extended and Korean
50935	Simplified Chinese Extended and Simplified Chinese
50936	Simplified Chinese
50937	US/Canada and Traditional Chinese
50939	Japanese (Latin) Extended and Japanese
51932	EUC - Japanese
51936	EUC - Simplified Chinese
51949	EUC - Korean
51950	EUC - Traditional Chinese
52936	HZ-GB2312 Simplified Chinese
54936	Windows XP: GB18030 Simplified Chinese (4 Byte)
57002	ISCII Devanagari
57003	ISCII Bengali
57004	ISCII Tamil
57005	ISCII Telugu
57006	ISCII Assamese
57007	ISCII Oriya
57008	ISCII Kannada
57009	ISCII Malayalam
57010	ISCII Gujarati
57011	ISCII Punjabi
65000	Unicode UTF-7
65001	Unicode UTF-8

The following is a list of valid code page identifiers for Mac OS only:


Identifier	Name
1	ASCII
2	NEXTSTEP
3	JapaneseEUC
4	UTF8
5	ISOLatin1
6	Symbol
7	NonLossyASCII
8	ShiftJIS
9	ISOLatin2
10	Unicode
11	WindowsCP1251
12	WindowsCP1252
13	WindowsCP1253
14	WindowsCP1254
15	WindowsCP1250
21	ISO2022JP
30	MacOSRoman
10	UTF16String
0x90000100	UTF16BigEndian
0x94000100	UTF16LittleEndian
0x8c000100	UTF32String
0x98000100	UTF32BigEndian
0x9c000100	UTF32LittleEndian
65536	Proprietary

LicenseInfo: Information about the current license.

When queried, this setting will return a string containing information about the license this instance of a cmdlet is using. It will return the following information:

Product: The product the license is for.
Product Key: The key the license was generated from.
License Source: Where the license was found (e.g., RuntimeLicense, License File).
License Type: The type of license installed (e.g., Royalty Free, Single Server).
Last Valid Build: The last valid build number for which the license will work.

MaskSensitive: Whether sensitive data is masked in log messages.

In certain circumstances it may be beneficial to mask sensitive data, like passwords, in log messages. Set this to true to mask sensitive data. The default is true.

This setting only works on these cmdlets: AS3Receiver, AS3Sender, Atom, Client(3DS), FTP, FTPServer, IMAP, OFTPClient, SSHClient, SCP, Server(3DS), Sexec, SFTP, SFTPServer, SSHServer, TCPClient, TCPServer.

UseInternalSecurityAPI: Whether or not to use the system security libraries or an internal implementation.

When set to false, the cmdlet will use the system security libraries by default to perform cryptographic functions where applicable. In this case, calls to unmanaged code will be made. In certain environments, this is not desirable. To use a completely managed security implementation, set this setting to true.

Setting this configuration setting to true tells the cmdlet to use the internal implementation instead of using the system security libraries.

On Windows, this setting is set to false by default. On Linux/macOS, this setting is set to true by default.

If using the .NET Standard Library, this setting will be true on all platforms. The .NET Standard library does not support using the system security libraries.

Note: This setting is static. The value set is applicable to all cmdlets used in the application.

When this value is set, the product's system dynamic link library (DLL) is no longer required as a reference, as all unmanaged code is stored in that file.