Quantcast
Channel: Forum Microsoft Identity Manager
Viewing all 6657 articles
Browse latest View live

Microsoft Identity Manager 2016 is now on MSDN/VL available for download

August 3, 2015, 10:06 pm
$
0
0

Microsoft Identity Manager 2016, successor of FIM 2010 is now available on MSDN / Volume Licensing sites. It is the "GA" version.
There is also a new site about MIM:
Microsoft Identity Manager at microsoft.com sites.

On-premises identity and access management:

  • Synchronize identities between directories, databases and applications
  • Self-service password, group and certificate management
  • Increase admin security with policies, privileged access and roles
  • Thwart identity theft with Microsoft Identity Manager (MIM)

Note that there is "Try now" button on the site, but it is currently redirected to /evalcenter/evaluate-microsoft-advanced-threat-analytics

If you found my post helpful, please give it a Helpful vote. If it answered your question, remember to mark it as an Answer.


Search

FIM 2010 (NOT R2) to MIM 2016 upgrade

August 5, 2015, 12:26 am
$
0
0

The documentation at https://technet.microsoft.com/en-us/library/mt219041.aspx speaks of a FIM 2010 R2 upgrade to MIM 2016. But I've got a customer who still has a FIM 2010 who is now looking to upgrade to MIM 2016.

The target situation is to have all MIM 2016 software on new servers installed.Will the MIM 2016 installer be able to update the FIM 2010 databases? Or do we need to to a FIM 2010 -> FIM 2010 R2 -> MIM 2016 upgrade?

Could this be a possible strategy:

  • Stop FIM 2010 services
  • Backup database (duh :) )
  • Move database to newer SQL version
  • Start setup of MIM Sync/MIM Service
  • Point to relocated database and upgrade database
  • Have an upgraded environment

http://setspn.blogspot.com

FIM to MIM upgrade

August 4, 2015, 11:27 pm
$
0
0

Hi,

With MIM now available, I'd like to test an upgrade scenario.

First question though - what are the requirements for MIM? OS? SQL? etc

FIM Sync:

I assume this is a simple in place upgrade of the binaries?

FIM Portal:

I assume we need to remove FIM Portal and Sharepoint 2010 first (as in our case)?

Then deploy Sharepoint 2013 and MIM portal again?

Thanks,

Sk

Microsoft Identity Manager 2016 is now GA!

August 6, 2015, 12:53 pm

SQL server 2012 AlwaysOn Availability Groups support with MIM 2016

August 5, 2015, 8:52 pm
$
0
0
As MIM 2016 is released could you please advise if SQL server 2012 AlwaysOn Availability Groups support with MIM 2016

Methodology: Generate a new attribute but only for new accounts

August 12, 2015, 1:27 pm
$
0
0

Hi there.
I hope this is just a simply question that I've simply not thought about correctly.

I'm planning to setup a PS MA that will create homedirs and update AD accounts with the correct path.
The homedir is new and nothing will be moved into it, only new users will use it. What sort of methods are best to have the new MA only work for new accounts?

Before with other attributes they have been simply imported first and then a exported or generated if not present, I'm just a little unsure how to go about this with something as active and static as homedirs.
:) Jon.

Does not work kerberos from other server.

August 13, 2015, 2:03 am
$
0
0

Hello!

I have FIM 2010 R2.

When I connect to FIM Portal from server FIM - all ok.

When I connect to FIM Portal from other server - I can't sign in to the FIM Portal.

Basic auth work correct from the other server.

Help!

Alex

How to do Exchange Server 2007/2010 provisioning in FIM 2010 R2

April 9, 2013, 5:40 am
$
0
0

Hi,

I am new with Exchange server 2007/2010 provisioning in FIM 2010 R2. so please advise what steps we should fallow.

and how many attributes required for exchange server 2007/2010 provisioing.please provide steps by steps process.

Regards

Anil Kumar

Search

Using nothing but Scoped Sync Rules

August 13, 2015, 5:39 am

WHICH PQX-36589 CONSOLE GAME IS ADDED IN NEXA 99 PRO LUGAZ KATIMBA ?

August 13, 2015, 5:53 am
$
0
0
Which PQX-36589 Console Game is added in Nexa 99 Pro lugaz katimba ? This could be the most hilarious one but the question is still lacking the current id sollutions Postimees kirjutas täna, kuidas Tartumaa väikelinna Kallaste meer Australian streaming service Stan is set to air the highly-anticipated TV series "Ash vs. Evil Dead" hours before the rest of the world this Viktor Nukka, pearaamatupidaja Aive Laumets ja vanemraamatupidaja Kiira such as nuckka purrila acchalla dhirra  Bethesda's Fallout 4 Pip Boy Edition has proven to be a hot commodity in the weeks Jones was found dead July 26 in her cell in Cleveland Heights. A cause of death hasn't been determined, but an autopsy didn't find suspicious since pre-orders went live and it's now extremely difficult to

Don't see Exchange 2013 Provision on FIM 2010 R2 SP1

July 3, 2013, 11:17 pm
$
0
0

Hi FIM Engineer,

Now, I install FIM2010 R2 SP1 (build 4.1.3114.0) on Exchange 2010 forest and I will go to Exchange 2013 in the future. But why I don't see Exchange 2013 provision for select in Configure Extension Menu? (I can see only "No provision", "Exchange 2007" and "Exchange 2010")

I download SP1 to install from http://support.microsoft.com/kb/2772429

Regards,

Thanachart R.

Dynamic Multivalue User Attribute -> Security Groups

August 1, 2015, 9:12 pm
$
0
0

Hi All and thanks for any advice

We are migrating from Novell IDM and have struck a issue with MS FIM 2010

we have Teachers and Students with Classes stored in multi-valued attributes,

The list changes as subjects and classes get added, changed and deleted, we would like FIM to create the classes as security groups in Active Directory and assign members,

NOTE: the key point is we are trying to avoid creating a rule for every security group, the goal would be to have FIM create the groups that are in the users attribute and assigning/removing members with changes,

example data in FIM

user1 - classcosed = 11MTA01, 11ENG03, 11DES02

user2 - classcosed = 11MTA02, 11ENG03, 11DES02

user3 - classcosed = 9MTA01, 9ENG03, 9DES02

user4 - classcosed = 9MTA02, 9ENG03, 9DES02


Desired Security Groups Result in Active Directory

11MTA01 = user1

11MTA02 = user2

11ENG03 = user1,user2

11DES02 = user1,user2

9MTA01 = user3

9MTA02 = user4

9ENG03 = user3, user4

9DES02 = user3, user4

again thank-you in advance for any ideas

Steve

PowerShell workflow triggering event log error and request failure

July 2, 2015, 12:14 pm
$
0
0

I have a PowerShell workflow (using the activity library from codeplex) that removes home directories at the appropriate time (triggered by MPR).  The script performs its function and the try block that the remove-item cmdlet is called in doesn't trigger its catch statements (an e-mail to me and more event log entries), but it throws an error in the event log and a failure back to the FIM portal.  In the event log, I get:

Access to the path 'C:\Windows\system32\LogFiles\WMI\RtBackup' is denied.

This doesn't occur if I run the Remove-Item command in a PowerShell session as the FIM app user, but it's definitely the remove-item cmdlet in the script which triggers the event.  UAC is disabled on the server.  I'm not sure what else to check for.  I'd really prefer to have successful executions listed as successes in the portal, but if I have to live with a mismatch, so be it.

Thoughts?

-Robert

FIM Delta Import/Delta Sync not syncing attribute to Metaverse

August 7, 2013, 9:33 am
$
0
0

Feel free to offer better ways to accomplish this task.

Single metaverse; mv_person

3 MAs:

- DIDS from SQL

imports cs:userPrincipalName -> mv:userPrincipalName

- Export & DIDS to o365,

exports mv:userPrincipalName -> cs:userPrincipalName

imports cs:userPrincipalName -> mv:audit_userPrincipalName

- Export to SQL audit

exports mv:audit_userPrincipalName -> cs:audit_userPrincipalName

Data flows from SQL source to o365 perfectly. o365 delta import sees the data change but does not sync the data to the metaverse. Generating a full preview works as expected. From everything I've read, I would expect a DI DS to change the data in the metaverse? 

Running a full sync catches the change and things flow as expected.

Hide Advanced Search link in FIM Portal for a particular Search Scope

July 7, 2015, 3:44 am
Search

Objects are not provisiong between two Active Directory Forest

August 3, 2015, 6:54 am
$
0
0

Dear All,

I have created FIM 2010 environment for synchronizatoin between two different AD forest and i have done all the configuration which is necessary for it but still users are not provisioning in external AD.

If anyone have got step by step document then please share with me and please help me to check all the steps to do this.

Please see the below mentioned steps in which i have done all the steps and if i skipped anything so please let me know.

1- FIM Active Directory Service Agent.

2- FIM MA agent.

3- Synchronization Rules.

4- Management Policy Rules

5 - Work FLows

- FIM ADMA Full Import and Full Sync is working fine

- FIMMA Full Import is working fine

- FIMMA Export is not sending the data to the external AD metaverse.

Regards,

Shakeel Shahid

FIM Sync Engine service issue

August 16, 2015, 6:58 am
$
0
0
My Sync Engine services ran properly until I have implemented a code to update the oracle DB through SQL package.

FIM 2010 R2 - It is not possible to delete a user (Error: permission-issue, Error code: 5, Access denied)

May 7, 2015, 7:31 am
$
0
0

We have several domains  to manage for our customers, so we have installed "FIM 2010 R2" to manage our admin-accounts. But if I now try to delete a user, by deletion from the "User Set", I get this error (please note the screenshot) after synchronization.

Error

Running management agent:

AD MA xyz

Error:

Permission-issue

Latest occurrence:

07.05.2015 15:30:06

Initial occurrence:

07.05.2015 11:07:22

Retry count:

15

Connected data source error code:

5

Connected data source error :

Access is denied.


I don't get more information about this error, not in the eventvwr and also not in the FIM-Panel even. 

Maybe someone knows more about this issue I would be very thankful for helping to solve this problem.

If more information is needed let me know what kind of.

Thank you

MIM2016 - List of new features and requirements

August 17, 2015, 4:20 am
$
0
0

I am looking for a straigth list about the new features of MIM2016 but have not found yet.

Is there anywhere a clear list where are new features, requirements and so on? I heard from somewhere that MIM contains for example multitasking for sync process, but now I can't find anything about it. Also any info about MIM performance would be nice, how much memory and processor speed it requires and so on.

Issue update object to AD

August 16, 2015, 2:51 am
$
0
0

Hi there,

I am facing with a trouble .. seem so strange.

I'm trying to sync user from CSV file to AD so I create 02 MA

1. MA connect to CSV (MA-CSV)

2. MA connect to AD (MA-AD)

After running "delta import and delta sync" on MA-CSV, it's trigged to Outbound sync and can Export MA-AD to create user on AD.

I change one attribute on CSV  file and run "delta import and delta sync" again. It is also trigged Outbound Sync and after that, run Export of MA-AD and I can see the update on Connector space of MA-AD without any problems. However, it is so strange that AD user is not updated !

But since the second update, it works perfectly. So I always miss the first one.

I did try to change "delta import and delta sync" ==> "delta import and Full sync" and it is okay with update for the first time.

But I cannot find the root cause here.. anyone can explain for me please?

I believe that AD is working okay (nothing related to replication issue on AD because I just have one AD)

Thanks a lot.

Viewing all 6657 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>