Hi,
New hybrid reporting feature at the first step writes data into event log. Can I use just this part (without installing agent which pulls data into azure)?
Is the reporting feature which should write requests data into event log enabled by default? How to enable this (if not enabled)? How often data are written to event log (are they written online or in some schedule)?
Borys Majewski, Identity Management Solutions Architect (Blog: IDArchitect.NET)
Hi!
Im using the lcs sync tool from Microsoft.
It is basicly some predefined xml files for AD MA's, a metaverse extension dll and a rules Extension dll.
The thing is, that it is complied against FIM2010 Microsoft.MetadirectoryServices.dll and Microsoft.MetadirectoryServicesEX.dll so it will not run on a MIM2016 Sync Engine.
anyone has an idea, where to request an updated version?
Regards,
Søren
Howdy all,
I have an existing file ma connector with an attribute "manager" as type string. I would like to change the attribute to a Reference(DN). When I follow the instructions and try to import per the TN article: http://social.technet.microsoft.com/wiki/contents/articles/16056.troubleshooting-fim-sync-rule-invalid-xml-attribute-flow.aspx
I get "sync-rule-invalid-xml-attribute-flow". I feel this is because the data currently contained in the CS is still of type string and I am getting a mismatch. How do I clear this out of the File and the FIMDB CS so that it can be replaced with the new data type?
Thanks!
Hello Everyone,
Need your help/guidance in one of the issues I had encountered recently. I have to test few things on an assigned development server having FIM 2010 installed. This server is not in regular use.
Almost all of the MA sync runs are failing with "stopped-extension-dll-exception" error. Below are more details:
Event Log for one of the failed MA sync run is :
General Tab
"
The management agent "NED Emp MA" failed on run profile "delta sync" because of a problem with the initialize method on the extension object. The extension dll is "MVExtension.dll" and the stack trace is:"
Details Tab
"
"
From the imported user records, I had tried to project one of the user record into Metaverse using Joiner, and the projection is of type "Declared" for the MA i tried with, but still getting same error in the joiner as well, below is the screen shot:
Any help in this regards is highly appreciated.
Regards,
RS
I'm using Craig Martin's PowerShell Workflow activity and I want to enable some active directory accounts with a script running as an activity in a workflow. My problem is that when I do an Import-Module ActiveDirectory I get an error in event viewer like "module cannot be imported because its manifest contains one or more members that are not valid" and if I don't include it the script fails on the Enable-ADAccount commands saying it's "not recognised as the name of a cmdlet, function... etc"
So what am I doing wrong here? Is it possible to do what I'm trying to do with Craig's workflow activity?
I am trying to install BHOLD Core. The wizard ended prematurely because of an error.
Verbose logging is saying this:
he property 'SqlStatements' was found with value 'AddLoginB1User1,AddLoginB1User2,AddLoginB1User3,AddRoleB1User,StartInternalProcess,SetAdministrator1,SetAdministrator2,SetDomain' The property 'AddLoginB1User1' was found with value 'EXEC sp_grantlogin ' Executing SQL command in property 'AddLoginB1User1' Error: System.Data.SqlClient.SqlException: Windows NT user or group 'fim.com\BHOLDApplicationGroup' not found. Check the name again. at System.Data.SqlClient.SqlConnection.OnError(SqlException exception, Boolean breakConnection) at System.Data.SqlClient.SqlInternalConnection.OnError(SqlException exception, Boolean breakConnection) at System.Data.SqlClient.TdsParser.ThrowExceptionAndWarning(TdsParserStateObject stateObj) at System.Data.SqlClient.TdsParser.Run(RunBehavior runBehavior, SqlCommand cmdHandler, SqlDataReader dataStream, BulkCopySimpleResultSet bulkCopyHandler, TdsParserStateObject stateObj) at System.Data.SqlClient.SqlCommand.RunExecuteNonQueryTds(String methodName, Boolean async) at System.Data.SqlClient.SqlCommand.InternalExecuteNonQuery(DbAsyncResult result, String methodName, Boolean sendToPipe) at System.Data.SqlClient.SqlCommand.ExecuteNonQuery() at DBUpgraderCA.CustomActions.UpgradeDB(Session session) on query: EXEC sp_grantlogin Error executing custom sql-statementsSystem.Data.SqlClient.SqlException: Windows NT user or group 'fim.com\BHOLDApplicationGroup' not found. Check the name again. at System.Data.SqlClient.SqlConnection.OnError(SqlException exception, Boolean breakConnection) at System.Data.SqlClient.SqlInternalConnection.OnError(SqlException exception, Boolean breakConnection) at System.Data.SqlClient.TdsParser.ThrowExceptionAndWarning(TdsParserStateObject stateObj) at System.Data.SqlClient.TdsParser.Run(RunBehavior runBehavior, SqlCommand cmdHandler, SqlDataReader dataStream, BulkCopySimpleResultSet bulkCopyHandler, TdsParserStateObject stateObj) at System.Data.SqlClient.SqlCommand.RunExecuteNonQueryTds(String methodName, Boolean async) at System.Data.SqlClient.SqlCommand.InternalExecuteNonQuery(DbAsyncResult result, String methodName, Boolean sendToPipe) at System.Data.SqlClient.SqlCommand.ExecuteNonQuery() at DBUpgraderCA.CustomActions.UpgradeDB(Session session) CustomAction CoreDBUpgradeCA returned actual error code 1603 (note this may not be 100% accurate if translation happened inside sandbox)
Which is weird because the group name is definately correct. Also when I am trying to access the BHOLD portal, I am getting this:
Access to BHOLD is refused for the following reason(s): Username unknown
Hi
We are trying to use FIM to provision users in Lotus Domino 9, and can create users in the names and addressbook including ID file, but when the mailfile is created, 3 seconds later the mailfile gets deleted again.
The errorcode is: 0x80230709 (unexpected-error)
Anyone else seeing this error and knows how to solve it?
I am trying to edit Outbound Attribute Flows in an existing & working rule. I currently have 12 Attribute Flows defined which the UI forces viewing into 2 pages. The page currently has Navigation Bar limits of a page to 10 rules displayed. The bar does not work as expected and I can only view page 2 by going forward to next page , then going backwards. Unfortunately I can then view the 2 additional rules but the hyperlink to edit the attribute rule does not trigger and I cannot edit it!
Is there a workaround?
Can I change the default page size for the attribute UI? Maybe to 15 rows?
Thanks Stu
Hi All,
I am stuck up in something where I need your help. We have emails getting triggered via FIM Workflow whenever a group is about to expire 7 days prior to the expiration date. So suppose a user has 7 groups that are going to expire prior to 7 days from today he would recieve 7 email notifications(1 for each group). Now the organization wants to avoid multiple emails triggered to the end user and wants to trigger only 1 email notification consisiting about the information of all the 7 groups thats gonna expire.
Any suggestions on how this can be achieved?
Please let me know if you have any suggestions/solution.
Regards,
Veena
I've been reading the TechNet docs and my book "Microsoft Forefront Identity Manager 2010 R2 Handbook" but I have not figured out yet how to create a SET based upon the Source ADMA user object OU attribute? Is this possible?
Thanks, Stu
Hello everyone,
I am using FIM Management Agent for sync user from AD to ADLDS
In codding provising, i didn't add sync password,
So AD enable users when have synced to ADLDS,
They are disable.
That's is correctly thing?
And limitation?
Anyone has some idea, can share with me?
Thanks in advance,
QP
QP
Hello,
Can anyone please let me know which is the current certification exams available for FIM Identity and Access management.
Regards,
Jyothishree SP
Hi,
I am having some difficulty setting up the PCNS. I noticed every time I configure or add the PCNS target, the PCNS service (pcnssvc.exe) is crashing. If I remove the target, PCNS service will run just fine. Any one has experience this?
Looking at the event viewer this is what I can see. Not much of information telling what is the reason for service to crash.
Faulting application name: pcnssvc.exe, version: 4.1.3114.0, time stamp: 0x50ad5a0dAppreciate any help here.
Thanks!
Gerard
# Granfeldt PowerShell MA - how to delta import
Hi,
How can I do delta import for e.g. Lync MA? The import is using
get-aduser or get-csaduser as base for the objects population.
GH
Hi,
Is there any way we can bulk recertify groups. Currently users have to manually go to each group that is going to expire and renew them.
Is there any way where we can create a button on "My Distribution/Security Group" page like "Renew Groups" and then users can select the checkboxes next to the display names of the groups and click on this button. When they click on this button, internally this should set the "Renew Expiration" attribute to true and a MPR should be called to extend the date by an year or so based on the boolean value of this attribute.
Is this possible? If yes, is there any blog on how to create a custom button on the page.
Thanks in advance!!
Veena
Any ideas what I may have missed during configuration?
MIM2016- Portal user search only shows one attribute on a user object - Domain. MV has displayName, givenName, sn, etc for all the SourceADMA users.
See images below:
I'm still in the Dev lab and have had a SET with all users for my initial Outbound Sync rules. I need to start filering the Sync rules and will be replacing the ALL Users set. I changed my existing MPRs for Add user \ Remove users. But, I did not see any difference in the accounts that were created in the target.
Is the any dependency I missed when change the SET?
Thanks, Stu
What's the difference of Group Owner and Group Delegates?
Can a group delegate modify/add/delete a DG/members of DG? (in my case, group delegate cannot modify the members)
Thanks
