Add changes from PlayPS.

Author: TimShererWithAquent

docset/winserver2022-ps/configci/Add-SignerRule.md

@@ -15,8 +15,15 @@ Creates a signer rule and adds it to a policy.
 
 ## SYNTAX
 
+### Certificate
 ```
-Add-SignerRule -FilePath <String> -CertificatePath <String> [-Kernel] [-User] [-Update] [-Deny]
+Add-SignerRule -FilePath <String> -CertificatePath <String> [-Kernel] [-User] [-Update] [-Supplemental] [-Deny]
+ [<CommonParameters>]
+```
+
+### CertStore
+```
+Add-SignerRule -FilePath <String> -CertStorePath <String> [-Kernel] [-User] [-Update] [-Supplemental] [-Deny]
  [<CommonParameters>]
 ```
 
@@ -46,7 +53,7 @@ Specifies the path of a certificate (.cer) file that this cmdlet uses for the ru
 
 ```yaml
 Type: String
-Parameter Sets: (All)
+Parameter Sets: Certificate
 Aliases: c
 
 Required: True
@@ -56,6 +63,21 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
+### -CertStorePath
+{{ Fill CertStorePath Description }}
+
+```yaml
+Type: String
+Parameter Sets: CertStore
+Aliases:
+
+Required: True
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
 ### -Deny
 Indicates that this cmdlet creates a deny rule instead of the default allow rule.
 
@@ -102,6 +124,21 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
+### -Supplemental
+{{ Fill Supplemental Description }}
+
+```yaml
+Type: SwitchParameter
+Parameter Sets: (All)
+Aliases:
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
 ### -Update
 Indicates that this cmdlet adds the rule as an Update policy signers rule.
 You can add a rule as more than one scenario.

docset/winserver2022-ps/configci/ConfigCI.md

@@ -42,16 +42,19 @@ Combines the rules in several Code Integrity policy files.
 ### [New-CIPolicy](./New-CIPolicy.md)
 Creates a Code Integrity policy as an .xml file.
 
-### [New-CIPolicyRule](./New-CIPolicyRule.md)
-Generates Code Integrity policy rules for drivers.
+### [New-CIPolicyRule](New-CIPolicyRule.md)
+Generates Code Integrity policy rules for user mode code and drivers.
 
 ### [Remove-CIPolicyRule](./Remove-CIPolicyRule.md)
 This cmdlet is not supported.
 
 ### [Set-CIPolicyIdInfo](./Set-CIPolicyIdInfo.md)
 Modifies the name and ID of a Code Integrity policy.
 
-### [Set-CIPolicyVersion](./Set-CIPolicyVersion.md)
+### [Set-CIPolicySetting](Set-CIPolicySetting.md)
+{{ Fill in the Synopsis }}
+
+### [Set-CIPolicyVersion](Set-CIPolicyVersion.md)
 Updates the version number of the policy.
 
 ### [Set-HVCIOptions](./Set-HVCIOptions.md)

docset/winserver2022-ps/configci/Edit-CIPolicyRule.md

@@ -185,12 +185,12 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
-### -RType
+### -RemoveEkus
+
 ```yaml
-Type: String
-Parameter Sets: (All)
-Aliases: t
-Accepted values: Allow, Deny, a, d
+Type: String[]
+Parameter Sets: SignerRule
+Aliases:
 
 Required: False
 Position: Named
@@ -199,13 +199,12 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
-### -RemoveEkus
-
+### -RemoveExceptions
 
 ```yaml
 Type: String[]
 Parameter Sets: SignerRule
-Aliases: 
+Aliases:
 
 Required: False
 Position: Named
@@ -214,13 +213,12 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
-### -RemoveExceptions
-
+### -Root
 
 ```yaml
-Type: String[]
+Type: String
 Parameter Sets: SignerRule
-Aliases: 
+Aliases:
 
 Required: False
 Position: Named
@@ -229,13 +227,12 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
-### -Root
-
-
+### -RType
 ```yaml
 Type: String
-Parameter Sets: SignerRule
-Aliases: 
+Parameter Sets: (All)
+Aliases: t
+Accepted values: Allow, Deny, a, d
 
 Required: False
 Position: Named

docset/winserver2022-ps/configci/Merge-CIPolicy.md

@@ -16,7 +16,8 @@ Combines the rules in several Code Integrity policy files.
 ## SYNTAX
 
 ```
-Merge-CIPolicy [-OutputFilePath] <String> [-PolicyPaths] <String[]> [-Rules <Rule[]>] [<CommonParameters>]
+Merge-CIPolicy [-OutputFilePath] <String> [-PolicyPaths] <String[]> [-Rules <Rule[]>] [-AppIdTaggingPolicy]
+ [<CommonParameters>]
 ```
 
 ## DESCRIPTION
@@ -89,6 +90,21 @@ For this example, we present only the first few rules.
 
 ## PARAMETERS
 
+### -AppIdTaggingPolicy
+{{ Fill AppIdTaggingPolicy Description }}
+
+```yaml
+Type: SwitchParameter
+Parameter Sets: (All)
+Aliases:
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
 ### -OutputFilePath
 Specifies the path of the merged .xml policy file.
 

docset/winserver2022-ps/configci/New-CIPolicy.md

@@ -18,14 +18,18 @@ Creates a Code Integrity policy as an .xml file.
 ### Drivers
 ```
 New-CIPolicy [-FilePath] <String> [-DriverFiles <DriverFile[]>] -Level <RuleLevel> [-Fallback <RuleLevel[]>]
- [-Audit] [-ScanPath <String>] [-ScriptFileNames] [-UserPEs] [-NoScript] [-Deny] [-NoShadowCopy]
- [-OmitPaths <String[]>] [-PathToCatroot <String>] [-MultiplePolicyFormat] [<CommonParameters>]
+ [-Audit] [-ScanPath <String>] [-ScriptFileNames] [-AllowFileNameFallbacks]
+ [-SpecificFileNameLevel <FileNameLevel>] [-UserWriteablePaths] [-UserPEs] [-NoScript] [-Deny] [-NoShadowCopy]
+ [-MultiplePolicyFormat] [-OmitPaths <String[]>] [-PathToCatroot <String>] [-AppIdTaggingPolicy]
+ [-AppIdTaggingKey <String[]>] [-AppIdTaggingValue <String[]>] [<CommonParameters>]
 ```
 
 ### Rules
 ```
-New-CIPolicy [-FilePath] <String> -Rules <Rule[]> [-Audit] [-ScanPath <String>] [-ScriptFileNames] [-UserPEs]
- [-NoScript] [-Deny] [-NoShadowCopy] [-OmitPaths <String[]>] [-PathToCatroot <String>] [-MultiplePolicyFormat] [<CommonParameters>]
+New-CIPolicy [-FilePath] <String> -Rules <Rule[]> [-Audit] [-ScanPath <String>] [-ScriptFileNames]
+ [-AllowFileNameFallbacks] [-SpecificFileNameLevel <FileNameLevel>] [-UserWriteablePaths] [-UserPEs]
+ [-NoScript] [-Deny] [-NoShadowCopy] [-MultiplePolicyFormat] [-OmitPaths <String[]>] [-PathToCatroot <String>]
+ [-AppIdTaggingPolicy] [-AppIdTaggingKey <String[]>] [-AppIdTaggingValue <String[]>] [<CommonParameters>]
 ```
 
 ## DESCRIPTION
@@ -309,6 +313,66 @@ File rule exceptions cannot use the PCA Certificate, Publisher, Signed Version,
 
 ## PARAMETERS
 
+### -AllowFileNameFallbacks
+{{ Fill AllowFileNameFallbacks Description }}
+
+```yaml
+Type: SwitchParameter
+Parameter Sets: (All)
+Aliases:
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
+### -AppIdTaggingKey
+{{ Fill AppIdTaggingKey Description }}
+
+```yaml
+Type: String[]
+Parameter Sets: (All)
+Aliases:
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
+### -AppIdTaggingPolicy
+{{ Fill AppIdTaggingPolicy Description }}
+
+```yaml
+Type: SwitchParameter
+Parameter Sets: (All)
+Aliases:
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
+### -AppIdTaggingValue
+{{ Fill AppIdTaggingValue Description }}
+
+```yaml
+Type: String[]
+Parameter Sets: (All)
+Aliases:
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
 ### -Audit
 Indicates that this cmdlet searches the Code Integrity Audit log for drivers.
 It does not perform a full system scan.
@@ -407,6 +471,22 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
+### -MultiplePolicyFormat
+Indicates that this cmdlet should create a policy in multiple policy format as opposed to a single policy format. 
+Refer to [Create WDAC policies in Multiple Policy Format](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies#creating-wdac-policies-in-multiple-policy-format) for the difference between the policy formats. 
+
+```yaml
+Type: SwitchParameter
+Parameter Sets: (All)
+Aliases:
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
 ### -NoScript
 Indicates that this cmdlet does not search script files.
 It searches portable executable files (PE files) only.
@@ -525,6 +605,21 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
+### -SpecificFileNameLevel
+{{ Fill SpecificFileNameLevel Description }}
+
+```yaml
+Type: FileNameLevel
+Parameter Sets: (All)
+Aliases:
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
 ### -UserPEs
 Indicates that this cmdlet includes user-mode files in the scan.
 Specify this parameter only if you do not provide driver files or rules.
@@ -541,14 +636,13 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
-### -MultiplePolicyFormat
-Indicates that this cmdlet should create a policy in multiple policy format as opposed to a single policy format. 
-Refer to [Create WDAC policies in Multiple Policy Format](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies#creating-wdac-policies-in-multiple-policy-format) for the difference between the policy formats. 
+### -UserWriteablePaths
+{{ Fill UserWriteablePaths Description }}
 
 ```yaml
 Type: SwitchParameter
 Parameter Sets: (All)
-Aliases: None
+Aliases:
 
 Required: False
 Position: Named