Quantcast
Channel: Forum Microsoft Identity Manager
Viewing all 4767 articles
Browse latest View live

FIM 2010 GALSync - attribute mapping for proxyAddress

March 11, 2016, 11:33 pm
$
0
0

Hi,

 I have GALSync setup where I'm syncing the GAL from one Exchange 2010 organisation to another (2 separate AD forests) so that users in one AD are projected as contacts in another. At the moment the provisioned contact has the source users primary smtp and their proxyAddresses as a normal contact. Is it possible to map the GAL Sync attribute mapping so that the source user's primary smtp address is moved to the contact's proxyAddress and a proxyAddress from the source user is moved to the contact's primary smtp address?

I know FIM has limited capabilities for handling multi valued attribute mappings. Can this be achieved natively within FIM or will I need a custom C# DLL? 

Thanks

Search

SSPR OTP Gate - retry

March 14, 2016, 12:22 am
$
0
0

Hi,

I'm using SMS OTP Gate in SSPR. Mu customer asked to change gate behavior. In case user put wrong code they want to give user one more chance to put the code (instead of returning to beginning of the password reset process). Is it possible with current gate? Did anyone made such modification?

Borys Majewski, Identity Management Solutions Architect (Blog: IDArchitect.NET)

help in licensing scenario

March 14, 2016, 4:47 am
$
0
0

hello

i am a bit confused about the licensing ways. at one point it says 16$ or 18$. what are the differences?

consider this environment. 10000 users which we need to manage them. how they are calculated? 16$ or 18$?

also something just came to my mind, if we manage a user a cal is connected with that user, when we delete the user, it means the cal is gone? i mean suppose we have 100 users deleted, then 100*16$ is lost?

does MIM goes through the same way of licensing? i did not find how much does it cost per cal.

MIM 2016 SharePoint2013 SP1 foundation themes

March 14, 2016, 6:14 pm
$
0
0

Hello -

I've been following the MS directions on installing MIM 2016.  I would like to change the Site theme.  when I go to Site Actions --> Site Settings, I get an error stating Unable to process your request.  I don't typically change themes, but now that I want to I can't seem to do it.  Can anyone offer some advice?

One Note: If I go just to the default SharePoint site, then I can change the site theme for the default site.

Thanks- Peter

UocListView - ColumnstoDisplay - customized names

March 15, 2016, 2:40 am
$
0
0

Hi,

Is there any possibilities that the attributes in the ColumnstoDisplay get a customized name?

for example -- ColumnstoDisplay is displaying  "Members     Description"

Instead i want the caption as "Members in Group                Detail Description"

Is it possible?

Thanks!

Building a dependable DropDownList in Create User RCDC. where is the depends-on value stored?

March 15, 2016, 4:51 am
$
0
0

Trying out the XmlDataSource block with 2 dependable DropDownLists.

I have 2 Divisions: Div1 and Div2. I want to populate my Countries DropDownList depending on my choice of Division.

The countries XmlDataSource is easy.

<my:XmlDataSource my:Name="countries">
  <Countries>
    <Div1>
      <CountryName Code="Finland" Name="Finland"/>

      <CountryName Code="Sweden" Name="Sweden"/>

    </Div1>

    <Div2>
      <CountryName Code="Greece" Name="Greece"/>
      <CountryName Code="Ireland" Name="Ireland"/>
    </Div2>
  </Countries>
</my:XmlDataSource>

However using it is not so easy.

My CountryName control is

<my:Control my:Name="CountryName" my:TypeName="UocDropDownList" my:Caption="{Binding Source=schema, Path=CountryName.DisplayName}" my:Description="{Binding Source=schema, Path=CountryName.Description}">
        <my:Properties>
          <my:Property my:Name="Required" my:Value="{Binding Source=schema, Path=CountryName.Required}"/>
          <my:Property my:Name="Columns" my:Value="40"/>
          <my:Property my:Name="ValuePath" my:Value="@Code"/>
          <my:Property my:Name="CaptionPath" my:Value="@Name"/>
          <my:Property my:Name="HintPath" my:Value="Hint"/>
          <my:Property my:Name="ItemSource" my:Value="{Binding Source=countries, Path=/Countries/<what goes here??>/*, Mode=OneWay}"/>
          <my:Property my:Name="SelectedValue" my:Value="{Binding Source=object, Path=CountryName, Mode=TwoWay}"/>
        </my:Properties>
      </my:Control>

If I plug the fixed text Div1 into my Path e.g. Path=/Countries/Div1/* I see (even before I enter my choice of Division) the available countries as Finland and Sweden. But I want to push the dynamically selected value of Division into my path. %Attribute_Division% doesnt seem to help me. Hopefully this value is available in some meta-data in the RCDC form..

What is the trick to push that value just picked off the list into a dependent DropDownLists source path??

MIM 2016 Claims aware?

March 15, 2016, 6:27 am
$
0
0

At one point prior to the release of MIM 2016, I had heard that MIM was going to be claims aware. Does anyone know if the current release of MIM 2016 is claims aware? I've been digging around a little and have not found any information on it.  I would really like to hook it up to my ADFS installation for SSO.

Thanks,

Mark

Duplicate Key on MIMMA Export

March 15, 2016, 12:12 pm
$
0
0

I am receiving these errors when running an Export on the MIMMA after removing and then re-adding an OU to my AD Management Agent.  I noticed that the users in the removed OU were not removed from the MIM Portal interface during the test.  Is this normal behavior?  Should the uses have been removed once the OU was removed and a sync routine performed?  This is a test/eval system and I'm not 100% up to speed on this application so please forgive my ignorance if this is a DUH-question.

Fault Reason: The request message contains errors that prevent processing the request.\r\n\r\nFault Details: &lt;RepresentationFailures xmlns="http://schemas.microsoft.com/2006/11/ResourceManagement" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema"&gt;&lt;AttributeRepresentationFailure&gt;&lt;AttributeType&gt;AccountName&lt;/AttributeType&gt;&lt;AttributeValue&gt;&lt;/AttributeValue&gt;&lt;FailureMessage&gt;Exception: ValueViolatesUniqueness Target(s): User, Jones M
Stack Trace: Microsoft.ResourceManagement.WebServices.Exceptions.InvalidRepresentationException: ValueViolatesUniqueness
   at Microsoft.ResourceManagement.Utilities.ExceptionManager.ThrowException(Exception exception)
   at Microsoft.ResourceManagement.Data.DataAccess.ProcessRequest(RequestType request)
   at Microsoft.ResourceManagement.ActionProcessor.ActionDispatcher.ProcessInputRequest(RequestType request)
   at Microsoft.ResourceManagement.WebServices.RequestDispatcher.ExecuteAction(RequestType request)
   at Microsoft.ResourceManagement.WebServices.RequestDispatcher.ExecuteAction[ResponseBodyType](RequestType request)
   at Microsoft.ResourceManagement.WebServices.RequestDispatcher.DispatchRequest[ResponseBodyType](RequestType request, Guid requestIdentifier, Object redispatchSingleInstanceKey, Boolean isRedispatch)
   at Microsoft.ResourceManagement.WebServices.RequestDispatcher.DispatchRequest[ResponseBodyType](RequestType request)
   at Microsoft.ResourceManagement.WebServices.ResourceManagementService.Create(Message request)&lt;/FailureMessage&gt;&lt;AttributeFailureCode&gt;ValueViolatesUniqueness&lt;/AttributeFailureCode&gt;&lt;AdditionalTextDetails&gt;The specified attribute value must be unique for this Resource Type.&lt;/AdditionalTextDetails&gt;&lt;/AttributeRepresentationFailure&gt;&lt;CorrelationId&gt;b7da5d45-ea41-4db3-b2dd-7326fce335b9&lt;/CorrelationId&gt;&lt;/RepresentationFailures&gt;

Search

the basic gaps in SAP/non-SAP environment for ID Provisioning and Deprovisioning

March 15, 2016, 12:55 pm
$
0
0

in my project  SAP/non-SAP environment ID provisioning and deprovisioning process doing manualy  what is

the basic gaps(secrity risk) in SAP/non-SAP environment for ID Provisioning and Deprovisioning and recertification process 

Please provide  what are gaps .


who to evaluate the basic gaps in SAP/non-SAP environment for ID Provisioning and Non-Provisioning and recertification

March 15, 2016, 1:03 pm
$
0
0
evaluate the basic gaps in SAP/non-SAP environment for ID Provisioning and Non-Provisioning and recertification and also who prepare how to prepare the scope of work document on this . please share any document available.

FIM/MIM CM - Smart Card Private Key Generation Question

March 15, 2016, 6:53 pm
$
0
0

When creating new smart cards using FIM/MIM CM, it's not clear where the private key is actually generated.  Ideally it should be generated on the card's hardware and only the public key shipped to the server to create the certificate.  I can find little documentation on this subject.

Moreover, if the keys are generated on the card, does the option to 'Generate encryption keys on server' change that behavior?

Bryan Berns

FIM/MIM CM - Microsoft Base CSP Secure Key Injection

March 15, 2016, 6:56 pm
$
0
0

It appears that the setting to use 'Use secure key injection' is not available when selecting the base CSP.  For other CSPs, the option becomes available.  Does anyone know why this is? 

Bryan Berns

MIM CM 2016 - Issue Applying Update

March 15, 2016, 8:26 pm
$
0
0

I've noticed an issue with the last two cumulative updates for MIM CM that I've tried, including the recently released KB3134725.  It appears that updated version of "Microsoft.Clm.PerfCounters.exe" is not signed with a strong name which ends up causing the installation to rollback (at least on Windows Server 2012 R2).  If I disable strong name validation for the assembly via the registry, the installation completes successfully but I can hardly imagine that this was the desired configuration.

Here is the output of the 'sn.exe' command from the Windows SDK on the extracted file in the updated MSP and the file from the original MIM installation disk, respectively:

C:\>sn -vf  "<path to extracted MSP files>\VL\Microsoft.Clm.PerfCounters.exe"

Microsoft (R) .NET Framework Strong Name Utility  Version 3.5.30729.1
Copyright (c) Microsoft Corporation.  All rights reserved.

<path to extracted MSP files>\VL\Microsoft.Clm.PerfCounters.exe is a delay-signed or test-signed assembly

C:\>sn.exe -vf "C:\Program Files\Microsoft Forefront Identity Manager\2010\Certificate Management\Bin\Microsoft.Clm.PerfCounters.exe"

Microsoft (R) .NET Framework Strong Name Utility  Version 3.5.30729.1
Copyright (c) Microsoft Corporation.  All rights reserved.

Assembly 'C:\Program Files\Microsoft Forefront Identity Manager\2010\Certificate Management\Bin\Microsoft.Clm.PerfCounters.exe'is valid

Does anyone know if Microsoft is aware of this issue and working on a patch?


Bryan Berns

FIM/MIM Email sending process - Differences between "normal email sending" and One-time Password email

March 15, 2016, 11:45 pm
$
0
0

Can someone explain me what are the differences between normal for example notification email sending process and One-time Password email sending process.

I am using an SMTP email gateway and normal notification emails are sent correctly. When we try to reset a password with One-time Password, the One-time Password will not leave. SMTP email gateway says that at that time FIM/MIM are trying to authenticate which fails.

Any suggestions what could cause this?

SQL to FIM to AD

March 16, 2016, 4:10 am
$
0
0

hello,

i have a database, it consist of firstname,lastname,mail,phone.

since they do not have displayname, how should i generate display name in metaverse? i was thinking about concating firstname and last name and then flow it to the metaverse, but there is no custom thing like that in attribute flow of sql MA.

i want to achive the same thing for accountname which is for example 'john smith' should be flowed j.smith as accountname and then for samaccountname in AD.

do i have to use inbound sync tule? please guide

Search

basic gaps in ID provisioning and deprovisioning

March 16, 2016, 10:15 am
$
0
0

1. i am preparing scope document please help me what are basic gaps in ID'S  Provisioning and deprovisioningand and recertification .

Error 1722. There is a problem with this Windows Installer package ( (build 4.1.3671.0) for Forefront Identity Manager 2010 R2 )

March 16, 2016, 6:04 pm
$
0
0

Updating  (build 4.1.3671.0) for Forefront Identity Manager 2010 R2 )

errors below

Please help!!

Error 1722. There is a problem with this Windows Installer package. A program run as part of the setup did not finish as expected. Contact your support personnel or package vendor. Action UpgradeDatabase, location: C:\Program Files\Microsoft Forefront Identity Manager\2010\Service\Microsoft.IdentityManagement.DatabaseUpgrade.exe, command: /ConnectionString:"Data Source=FIM;Initial Catalog=DB1;Integrated Security=SSPI;Pooling=true;Connection Timeout=225" /FimServiceAccountName:"dev\DEV_svc" /FimServiceDatabaseName:"DB1"
MSI (s) (14:38) [11:53:04:083]: Product: Forefront Identity Manager Service and Portal -- Error 1722. There is a problem with this Windows Installer package. A program run as part of the setup did not finish as expected. Contact your support personnel or package vendor. Action UpgradeDatabase, location: C:\Program Files\Microsoft Forefront Identity Manager\2010\Service\Microsoft.IdentityManagement.DatabaseUpgrade.exe, command: /ConnectionString:"Data Source=FIM;Initial Catalog=DB1;Integrated Security=SSPI;Pooling=true;Connection Timeout=225" /FimServiceAccountName:"dev\DEV_svc" /FimServiceDatabaseName:"FIM"

How to make a One Time Registration in Forefront Identity Manager 2010.

March 17, 2016, 2:19 am
$
0
0
How Can I setup My Forefront Identity Manager 2010 User's to register only ones

The version of OLE on the client and server machines does not match. (Exception from HRESULT: 0x80010110)

March 17, 2016, 9:29 am
$
0
0

Hi,

we have an installation of FIM CM 2010 R2 SP1 running under Windows Server 2008 R2 Enterprise edition.
It is integrated into an Active Directory with an Enterprise CA running under Windows Server 2008 R2 Enterprise and an separate SQL Server 2012 for FIM CM Database. The installed Version on the FIM CM Server, the CA Exit Module and the FIM CM Client based on Windows 7 Enterprise is: 4.1.3613.0

The installation is completely new and based on the following article:
https://technet.microsoft.com/en-us/library/ee534914%28v=ws.10%29.aspx

Everytime we request a certificate via web or for a smartcard through the FIM CM web portal we get the error:
The version of OLE on the client and server machines does not match. (Exception from HRESULT: 0x80010110)

The only help for this error is to install Windows Server 2008 and reinstall FIM CM. We only want to run Windows Server 2008 R2 and not the older version.

Is there any fix / hotfix / workaround or whatever to get FIM running under the supported version Windows Server 2008 R2 Enterprise???

Pls help!
Thorben

FIM R2 Pssword Registration Portal Prompts for Login

March 18, 2016, 8:32 am
$
0
0

All, I have probably been looking at this too long and I am sure that I am missing something simple. I have a dev password registration portal that constantly prompts for credentials even though windows auth is turned on for the site in IIS and it is in the local intranet zone in IE.   It ultimately fails with a 401 error. This dev password portal is on one box with the standard portal and registration and no separate DNS entry has been setup.

  1. I can logged into both the registration and password reset portals from all machines.  This works fine so I **believe** that I have app.config, service accounts, and spns set correctly
  2. I can only log in to the password registration portal if I RDC into the local portal box and access it from there.  The registration portal does not work if I try to access it from any other machines except the local box, it constantly prompts for credentials and even though they are correct it ultimately fails with a 401 error.

Any thoughts would be appreciated.

Viewing all 4767 articles
Browse latest View live
More Pages to Explore .....
Search

Latest Images

‘Pay day every day’ may become Shangri-La Group, BPOs’ secret to happy employees

‘Pay day every day’ may become Shangri-La Group, BPOs’ secret to happy employees

April 25, 2024, 5:51 am
Nonprofit donates custom home in this East Bay city for Marine injured in...

Nonprofit donates custom home in this East Bay city for Marine injured in...

April 23, 2024, 7:00 am
New private rooms on Tokaido Shinkansen change the way we travel from Tokyo...

New private rooms on Tokaido Shinkansen change the way we travel from Tokyo...

April 22, 2024, 6:00 am
Ukraine bans military from online gambling amid addiction concerns

Ukraine bans military from online gambling amid addiction concerns

April 22, 2024, 5:17 am
ಮಂಡ್ಯದಿಂದ ಸುಮಲತಾ ದೂರ; ಹೆಚ್‌ಡಿಕೆ ಪರ ಪ್ರಚಾರಕ್ಕಿಳಿಯದ ಸಂಸದೆ –ಬರ್ತಾರೆ ನೋಡೋಣ ಎಂದ...

ಮಂಡ್ಯದಿಂದ ಸುಮಲತಾ ದೂರ; ಹೆಚ್‌ಡಿಕೆ ಪರ ಪ್ರಚಾರಕ್ಕಿಳಿಯದ ಸಂಸದೆ –ಬರ್ತಾರೆ ನೋಡೋಣ ಎಂದ...

April 20, 2024, 8:08 pm
OCBC Bank Singapore Offers Up to 2.8% p.a. Fixed Deposit Promotion from 21...

OCBC Bank Singapore Offers Up to 2.8% p.a. Fixed Deposit Promotion from 21...

April 20, 2024, 12:38 pm
National Poetry Month 2024: Maxine Starr

National Poetry Month 2024: Maxine Starr

April 19, 2024, 9:56 am
Vegan Chicken Pot Pie

Vegan Chicken Pot Pie

April 19, 2024, 9:18 am
Firefox UX: On Purpose: Collectively Defining Our Team’s Mission Statement

Firefox UX: On Purpose: Collectively Defining Our Team’s Mission Statement

April 19, 2024, 7:03 am
New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

April 18, 2024, 11:05 am