Quantcast
Channel: Forum Microsoft Identity Manager
Viewing all 4767 articles
Browse latest View live

Certificate Manager Config Wizard: Installation error

0
0

Hi,

i am installing Certificate Manager Config Wizard (Microsoft Identity Manager 2016) and after clicking Configure at the end of the wizard i get the following error message:

************** Exception Text **************
System.NullReferenceException: Object reference not set to an instance of an object.
   at Microsoft.Clm.Config.Core.ConfigHelper.RequireSSL(String applicationName)
   at Microsoft.Clm.Config.Steps.Summary.NeedConfigureWebSite()
   at Microsoft.Clm.Config.Steps.Summary.btnConfigure_Click(Object sender, EventArgs e)
   at System.Windows.Forms.Control.OnClick(EventArgs e)
   at System.Windows.Forms.Button.OnClick(EventArgs e)
   at System.Windows.Forms.Button.OnMouseUp(MouseEventArgs mevent)
   at System.Windows.Forms.Control.WmMouseUp(Message& m, MouseButtons button, Int32 clicks)
   at System.Windows.Forms.Control.WndProc(Message& m)
   at System.Windows.Forms.ButtonBase.WndProc(Message& m)
   at System.Windows.Forms.Button.WndProc(Message& m)
   at System.Windows.Forms.NativeWindow.Callback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)

I have implemented SSL for the Web Portal in IIS (no error message there, but a certificate security warning when i try to open the default website).

Thanks.


FIM language packs

0
0

Hell there,

Need advice.

We have FIM language packs for portal and SSPR Install din our environment.

AS we are upgrading from FIM v-4.1.3613 to MIM 2016, Do we need to upgrade the language packs as well or existng will work with MIM.??

Regards,

SUman

MIM SSPR Azure PhoneFactor settings

0
0

Hi,

We are planning to use the MIM SSPR with Azure PhoneFactor MFA option.

Are there any settings in Azure for this PhoneFactor, for example: 

- does Azure dial me again if I press a wrong button on my Phone? how many times does it dial me back?

- how many tries do I get before I may need to call the help desk?

- Will Azure keep dialing me until I answer? are there any timeouts?

- Any other configurable options?

Thanks,

SK


MIM SSPR Azure PhoneFactor Certificate

0
0

Hi,

This walk through talks about copying a .p12 digital certificate to a folder on the MIM server (https://docs.microsoft.com/en-us/microsoft-identity-manager/deploy-use/working-with-self-service-password-reset)

I'm assuming this certificate has an expiry date, and there will need to be maintenance done (copy the certificate again, update the license key, group key and cert password), once this certificate expires?

Thanks,

SK

MIM SSPR Azure PhoneFactor mobile format

0
0

Hi,

What is the mobile phone format that is required for Azure PhoneFactor to work?

We will store the mobile phone details in the 'mobile' attribute, just need to know what Azure expects?

Thanks,

SK

Reporting using powershell scripts for FIM

0
0

How would I find examples of using PowerShell scripts of using FIM\MIM to display basic reports such as disabled or enabled users in an excel\word form?  Any help would be greatly appreciated.  My PowerShell knowledge is basic and I am having trouble finding anything that is easy enough for me to understand.  Thanks for any assistance :)

What does the Status Detail mean? "invalid_message_destination"

0
0
<samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Requester"></samlp:StatusCode><samlp:StatusDetail><fim:FIMStatusDetail MessageID="invalid_message_destination"><fim:SubstitutionString>https://[idp]/login</fim:SubstitutionString><fim:SubstitutionString>https://[idp]/login</fim:SubstitutionString></fim:FIMStatusDetail></samlp:StatusDetail></samlp:Status>

What does the Status Detail mean?

"invalid_message_destination"

FIM to MIM inplace upgrade Server 2008 R2

0
0

Hi All,

FIM to MIM inplace upgrade in server 2008 r2, I was thinking of install MIM reusing the FIM Database.

The below is the error encounter while doing the inplace upgrade, Could you please show me the way how to do inplace upgrade.

Regards,
Anirban Singha



Calling all FIM Gurus. October readers need feeding!

0
0

Hey you!

Want to be a real-life virtual guru? (pun intended)

Do you want to win the love and admiration of the community you work in?

You can win REAL virtual medals and prove your skills, in a competition that is judged by real Microsoft judges!

Gurus who continue to shine soon get noticed!

Oh yes! We're talking inner circles! Nominations! New horizons!

Step up and stand out!

All you have to do is add an article to TechNet Wiki from your own specialist field. Something that fits into one of the categories listed on the submissions page. Copy in your own blog posts, a forum solution, a white paper, or just something you had to solve for your own day's work today.

Drop us some nifty knowledge, or superb snippets, and become MICROSOFT TECHNOLOGY GURU OF THE MONTH!

This is an official Microsoft TechNet recognition, where people such as yourselves can truly get noticed!

HOW TO WIN

1) Please copy over your Microsoft technical solutions and revelations toTechNet Wiki.

2) Add a link to it on THIS WIKI COMPETITION PAGE (so we know you've contributed)

3) Every month, we will highlight your contributions, and select a "Guru of the Month" in each technology.

If you win, we will sing your praises in blogs and forums, similar to the weekly contributor awards. Once "on our radar" and making your mark, you will probably be interviewed for your greatness, and maybe eventually even invited into other inner TechNet/MSDN circles!

Winning this award in your favoured technology will help us learn the active members in each community.

More about TechNet Guru Awards

Thanks in advance!
Pete Laker

TechNet Wiki Community Council Member, Azure MVP, Wiki Ninja & TechNet Guru!


#PEJL
Got any nice code? If you invest time in coding an elegant, novel or impressive answer on MSDN forums, why not copy it over toTechNet Wiki, for future generations to benefit from! You'll never get archived again, and you could win weekly awards!

Have you got what it takes o become this month's TechNet Technical Guru? Join a long list of well known community big hitters, show your knowledge and prowess in your favoured technologies!

MIM SP1 - direct approval link

0
0

Hi,

Using FIM 2010 I have extended approval notification template with link like this:

Request can be seen and approved as well <a href="http://servername/identitymanagement/aspx/Requests/RequestProperties.aspx?id=[//Request/ObjectID]&type=Approval" target="_blank">here</a>

After upgrading to MIM it is still opening approval however when you click approve it doesn't do anything. Is there any new trick to do this with MIM SP1 new UI?

Best regards

Borys


Borys Majewski, Identity Management Solutions Architect (Blog: IDArchitect.NET)

Groups with multiple domains members

0
0

Hi,

We have a particular configuration that we want to work.

Our FIM engine hosts a user population split in two parts, each part is represented by a fix value in an attribut. There is a sync rule for each population, which make FIM populate 2 AD domains (in the same forest), one for each population.

This configuration works fine. The problem is in group management. Groups are managed in FIM and injected in the first domain, with member sync of the first domain. There are defined as universal groups, because we need to have domain 2 users in domain 1 groups. Users from the 2 populations are correctly seen as members in FIM, but during export, membership is only propagated for domain 1 users. Looks like fim cannot sync groups in an AD domain with members of another AD domain (same forest), whereas users membership is correct in FIM.

Does anyone already configured something like this ?

BR,


Emmanuel IT

MIM SSPR and Azure MFA On-Premise

0
0

Hi,

This article talks about configuring MIM SSPR to use Azure MFA (in the cloud) 

https://docs.microsoft.com/en-us/microsoft-identity-manager/deploy-use/working-with-self-service-password-reset

However, is there a way to configure MIM SSPR with an on-premise Azure MFA server (that we already have deployed)?

Thanks,

SK

MIM AD outbound syncronization error

0
0

Hi All,

Requesting assistance.

I am facing a issue during provisioning of user in Active directory from MIM portal, MIM service sync shows following error

Microsoft.MetadirectoryServices.FunctionEvaluationException: Error encountered during evaluation of Sync Rule: 'AD outbound user'. Details: Object reference not set to an instance of an object.
   at Microsoft.MetadirectoryServices.FunctionLibrary.AttributeFlowMappingHandler.ExecuteOutboundTransformation(CSEntry csentry, MVEntry mventry, String strSyncRuleGuid, String xmlExpression, String workflowParameterTypes, String workflowParameterValues)

I checked that OU information is in "Normal Disconnected state"

 

would this be causing the sycn to error out ?

Awaiting help

Best regards

Sri

MIMCM Modern App supported workflows

0
0

Hi,

recently I tried to test the MIMCM Modern App for managing smart cards, but I fail to see which workflows are supported. It seems to me only self-service workflows are supported, is this correct?

Is it possible to use MIMCM Modern App for certificate renewal in a manager initiated workflow? Is the one time password distribution supported?

Thanks

Martin

attribute precedence

0
0

Hello!
I have a question about attribute precedence.
I have a Manager attribute in HR system which need to be authoritative source for MIM.
So, I have a such precedence:

When I try to run export from MIM to AD I get such message:

Can somebody explain what is wrong?

Thanks!


1


MIM 2016 Users from AD to AD

0
0

Hi,

i'm testing MIM2016 to synchronize user from Domain A to Domain B. Now i have configured two Active Directory agents. The MA of Domain A Import the selected attributes and MA of Domain B exports them. The whole Agent configuration is the same except attribute flow.

I also created run profiles. For Domain A Full Import, Full Sync, Delta Import and Delta Sync. For Domain B i created the run profile to Export the Metaverse Data.

My Problem is that the data from Domain A are imported, but the Metaverse data would not be exported to Domain B.

I'm only using MIM synchronization Service. I don't want to use the Service Portal. Could anyone help me?

Creating users in Azure AD using MIM

0
0

Hi,

I am trying to create linked users(user exiting in other Azure AD) into a new Azure AD under a separate subscription. Can I use MIM for that?

-AK

MIM Vs FIM Add-ins and extensions

0
0

Hello There,

Can someone please suggest whether FIM add-ins and extensions will be supported with MIM? 

Thanks and Regards,

Suman

FIM/MIM CM - Private Keys + storage question.

0
0

Hi I'm hoping that someone can help.

I'd like to understand what data the certificate management module actually stores in its database and whether any of this is private key material.

I keep failing to install the systems (although I'm back trying as we speak) and can find nothing in any of the documentation, other than references to interfacing with CA and PKI systems to get key material in certain situations.

What about the keys needed as part of the CM management agent identification or any other certificate creation.

Thanks in advance.

Regards

Andrew

Sending user's details in mail

0
0

Hello!

I have a problem with configuring initial password sending to user's manager by this article: http://social.technet.microsoft.com/wiki/contents/articles/2121.fim-how-to-use-workflows-to-automate-the-calculation-and-notification-of-initial-passwords.aspx

Additionally I have configured MPR to run this workflow, but without success.

After I run Export to AD I get a created account (in disabled state). I can make a reset for this account and enable it, but this is not what I want.

My Sync cycle is:

MIM MA Delta-Import

Delta-Sync

Export

Delta-Import

AD MAExport

Delta Import

After second run situation is same.

Does somebody have any ideas where is a problem?


1


Viewing all 4767 articles
Browse latest View live


Latest Images