Hello all,
I was doing some reading but I wanted to double check on something. I'm looking at an implementation that has a bunch of logic in the C# extension DLL for import/export flow rules but also has numerical precedence defined in the VM designer for Person > {field name}. In that UI manual precedence is NEVER checked, for any of these attributes.
Will this mean then that numerical precedence always wins regardless of what the code chose?
Hi,
I am configuring MIM password registration and reset portal. I have done the configuration as per the guidelines mentioned on link given below. But when I hit the URL, it shows me the welcome page but then when I click on the next button, it gives the communication error on next page. Below is the error details and screen shots.
Can any one of you help me to get out of this situation.
Link:
https://docs.microsoft.com/en-us/previous-versions/mim/ee534892(v=ws.10)#reset_pswd_us_pswd_reset_portal
Screen Shots:
F.
Dear All,
I am using windows server 2016 & SharePoint server 2016.
when I trying to install MIM service and portal getting following error.
Hello Everyone,
i was wondering if anyone had any idea on a way to synchronize passwords with PCNS for 2 AD Forests both ways (from forest 1 to forest 2 and from forest 2 to Forest 1)
thanks !
Hitch Bardawil
I was installing MIM 2016 on SharePoint 2016 farm
CAQuietExec: Error – SharePoint did not confirm the deployment of the FIM solution pack microsoftilmportalcommondlls.wsp within the expected time. This operation may take long time on SharePoint farm. Specify the bigger value for “SHAREPOINTTIMEOUT” parameter. (The default value is 180 seconds)
Rolled back Installation.
Please help
Hi all,
I have a requirement to Create a Custom Page in MIM Portal with On Behalf Of ____.
for example, if i want to raise a request / create a new User / any other activity On behalf of some body lets consider On Behalf Of "My Manager" , How we will do this please.
Thanks - Srinivas
Hi,
Want to know if we can do FIM 2010 R2 sync,and FIM service side by side upgrade to MIM 2016 SP1 environment. If yes, then please share the steps or any valuable document, which I can follow.
Thanks
We are upgrading Active Directory from 2008 R2 to 2016 Active Directory, checking whether FIM 2010 R2 it is support Window 2016 Active Directory Platform?
i able to search Supported Platforms fro MIM 2016 Article, unable search FIM 2010 R2.
https://docs.microsoft.com/en-us/microsoft-identity-manager/microsoft-identity-manager-2016-supported-platforms
I cannot find a definitive answer in the docs. In my SQL MA, I have this option available in the Connector Filters. Old information says that this feature is only for the AD MA. Is this still true?
Thanks!
Mike Leach | http://blogs.catapultsystems.com/mleach/default.aspx
Hi,
I have a weird case and I'm not sure why it's happening.
To keep it simple, let's say I have 2 Active Directory MA.
AD MA 1 imports "EmployeeID" in Metaverse-EmployeeID
Join rule of AD MA 2 is EmployeeID = EmployeeID.
User in AD MA 2 has the correct EmployeeID, it joins with the user from AD MA 1.
Now I change the EmployeeID in MA #2 and even after a new sync it's still joined? I can manually disconnect and it won't come back because the join rule doesn't fit anymore.
So my question is why do I have to manually disconnect AD MA 2 user ? Shouldn't FIM automatically disconnect when the join rules isn't respected anymore?
I can provide mode details if needed.
Thanks.
Hello there Fim lovers,
i'm having few issues with PCNS hope you can help out,
so my Active directory Infrastrucutre is made out of a Root Domain "company.net" and lots of subdomains"sub1.company.net", "sub2.company.net" ....
the FIM Server and service accounts are all in the Root domain and my users are in the subdomains as is the case usually...
i ran the setspn on the service account in the root domain then ran the pcnscfg on the subdomain DC where my users are stored...
i get the following warning :
The Service Principal Name you specified could not be found on any accounts in this domain. (which is normal since the service account is in the root domain)
did i do smthn wrong ? or can i ignore this warning ?
thanks for any help !!!
Hitch Bardawil
Hello Gurus,
I would like to know about how can we provide SSO for a MIM portal exposed to external users via Internet. An admin will be creating the users in MIM portal and will be synced to AD. The users will be using there AD credentials for login to MIM portal. The AD domain is having ADFS. Can somebody guide on this or provide which link/blog can point to the right direction.
Hi!
I am trying to provision a cloud-only user in my Azure AD through the Graph MA.
I have populated the following attributes;
[dn], accountEnabled, displayName, givenName, password, surname, usageLocation, userPrincipalName and userType.
But I am getting the following error when trying to export the user:
'system.InvalidOperationException: Sequence contains no elements.'
Anyone tried to provision through the Graph?
Cheers,
Søren
Hey all, how do I query the MIM portal for groups with no owner using Export-FIMConfig? The guidance provided in this thread is not working for me:
Specifically, the recommended filter (Filter = /Group[Owner !=/Person])is not working for me and results in an error:
Export-FIMConfig : Failure on making enumeration web service call.Did something change in the filtering syntax?
Any guidance is appreciated. Thanks!
Hey all,
When a non-admin user clicks on "My SGs" or "My Security Group Memberships" in our MIM Portal they are not able to see groups they own or groups they belong to, respectively. However, if an admin does the same the data is populated. Is this by design or a bug?
More importantly, what are the steps required in order to enable this functionality for non-admin/standard users? I don't see it as much of a security risk to allow users to see the groups they own nor the groups they belong to considering they can get the same information from AD if they wanted to.
Appreciate the help on this one.
-Christian
Hello,
I've setup PCNS in a new environment. Passwords are syncing properly from some DC's to MIM, however some DC's are getting failures (6025).
Given that it works for some DCs, but not all, I'm pretty sure this points directly at some network connectivity issue. Since it works for some DC's, I'm thinking everything must be correct as it relates to SPNs, PCNS config/target, etc.
Agreed? Is this likely a network issue? Or could something be mis-configured from the MIM/PCNS perspective? O should something else be checked?
Thanks!
Hi,
When installing MIM 2016, we'd like to use the latest SPS 2016 product.
MIM Sync will be installed on one server.
MIM Service & Portal will be installed on another server - do we also need to install SPS 2016 on this same server?
Or can we deploy SPS 2016 on another server from the MIM Service & Portal server?
Thank you,
SK
Hello All
i have an ECMA connector developed for a CDS that does not have the capability for Full Import in the real sense. Every Import is actually Delta Import. I will like to know What are the practical implications of this limitation ? Not being able to execute a Full Import against a connected data source.
Thanks
Akinzo
Hi Everyone,
Need your help!!!
In my case,
A connector with export type -attribute update been used to get the modification type for multi-valued attributes.
Is there a way to get unchanged attribute value of object with above definition or else with out losing modification type values for multi valued attribute
We have issues upgrading from 4.4.1642.0 to the latest Build 4.5.286.0
From the logfile we can see that while running the installer on the Service/Portal server it expects version 4.4.1302.0 and ends the installation/upgrade.
Is it not possible to upgrade from 4.4.1642 to 4.5.286.0?
Thank you!