Hi guys,
I need to set Relationship Criteria with String field and Int field. FIM portal gives an error about types mismatch.
Any ideas?
Synchronization Rule: Relationship Criteria - different data types
↧
↧
[Reference] Refreshing the Interfaces of an ECMA 2.0-based Version of the Lotus Domino Connector:
[Reference] Refreshing the Interfaces of an ECMA 2.0-based Version of the Lotus Domino Connector:
Tim Macaulay Security Identity Support Team Support Escalation Engineer
↧
How can we restrict the user for not allowing the space and '&' in display name while creating the group in FIM portal
Hello All,
While creating group user are entering space and '&' in display name,How can we restrict the user for not allowing the space and '&' in display name while creating the group in FIM portal. Is something need to be change in RCDC? Kindly help.
Regards,
Anirban Singha(India)
↧
What are the step to follow to create Extensible Connectivity Management Agent for RSA Authentication Manager ?
Hi All,
We need to build ECMA for RSA provisioning , if RSA account creations and deletions are possible via RSA APIs, we can easily do. I appreciate if anyone come and suggest me what all are required or step to follow ?
Thanks in Advance.
Thanks, Snehal
↧
FIMSynchronizationService Database out of control
Hello,
In our FIM implementation I am having a problem with a specific table in the FIMSynchronizationService called fim.ExportLog which has been growing since day one of the install. Is there a job that is supposed to be truncating this table and removing these table entries.
I am keeping 2 days worth of runs and the System Resource Retention Configuration is set to 1 day.
Thanks,
Seth
In our FIM implementation I am having a problem with a specific table in the FIMSynchronizationService called fim.ExportLog which has been growing since day one of the install. Is there a job that is supposed to be truncating this table and removing these table entries.
I am keeping 2 days worth of runs and the System Resource Retention Configuration is set to 1 day.
Thanks,
Seth
↧
↧
FIM 2010 Adding Content to Pages
Hello,
Total newbie here. First time working on aspx pages. Trying to customize the FIM portal with a legal footer and also want to add links from the home page for PW reset to the home page for PW registration and vice versa. How do I edit the content of the Default.aspx pages for the two and add the required additional content? I'm a visual designer with limited skills hacking together mostly static HTML pages so any help would be appreciated.
Thanks.
Gregory
↧
"Unable to process your request" when returning to the General tab on an Approval
Having a very weird issue here on build 4.1.3441.0
A user opens one of the approvals waiting in their "Approve Requests" page. They see the General tab just fine. They click through to the Details tab - no problem. They click through to the Applied Policy tab - still fine. They click the General tab again and they get the nasty "Unable to process your request" error.
This happens to all end users. It does not happen to Administrators. If I put an end user in the Administrators set the problem goes away, and comes back again as soon as I remove them.
So - permissions, right? Wish I could figure out what. The only way I can make it reliably go away is to give All People read rights to all attributes of All Objects.
The following have NOT worked:
- Giving All People read to all attributes of All Requests and All Approval Related Objects
- Giving All People read to ObjectID,ObjectType and DisplayName of All Objects
I'm really stuck now - what on earth does it want? And why can the user see the General tab on opening, but not on navigating back from the Applied policy tab? What is it doing there?
I've also tried turning on the verbose logging but there were no errors relating to this.
http://www.wapshere.com/missmiis
↧
Caching of Initialisation Method Data
I've noticed that when you run preview full syncs from the FIM GUI it doesn't run the initialisation() method every time. I don't know what the exact behaviour is but it definitely does some kind of caching of variables set in the initialisation method.
I guess that wouldn't be a problem if you're not calling to an external system inside the initialisation method (I'd never do that ... ). This can make testing annoying where you have to run a full sync to get it to run the initialisation method again. You
can also restart the service to force it to run the init method again. Has anyone encountered something similiar?
↧
FIM 2010 R2 - Access denied issue
I am trying to install and configure FIM 2012 R2 in a newly created domain. My servers are all Windows 2012 standard.
All portals (i.e. reset password, registration, etc.) have been successfully installed. However, when trying to register or reset my password, I get the following error:
I have followed the steps at
http://technet.microsoft.com/en-us/library/hh332707%28v=ws.10%29
And then installed FIM using http://technet.microsoft.com/en-us/library/hh332711%28v=ws.10%29.aspx
Any ideas why?
↧
↧
Syncing users from Ad to Lotus in FIM 2010
Hello, I am trying to establish sync between ad and lotus notes.
From Lotus to AD syncing works good, i can see users and their e-mails (e-mail is main required field for me) in AD.
From AD sync objects in metaverse had no connectors to Lotus, only AD connector, while objects from lotus had both connectors. I've tried to create connector manually in galsync.dll code and it worked (I used something like: ManagementAgent =mvEntry.ConnectedMAs("Lotus")
; csentryLotus = ManagementAgent.Connectors.StartNewConnector("person"); and filled csentryLotus parameters to create CS entry of type Person) - so i could see while expot that connector space entries for lotus are created. But then for several times
during export there was an error, something like 'unexpected attribute'. (and none entries in Lotus were created during any export) I've decided the reason was that not all Lotus attributes were filled in csentry - for example some attrs starting with "_MMS_".
(i've read http://technet.microsoft.com/en-us/library/hh859750%28v=ws.10%29.aspx%5C and tried to fill all "_MMS" attrs, quote:"When you configure your attributes, you must select all attributes that are prefixed with “_MMS_”.
These attributes are required when you provision new objects to Lotus Domino. The following screenshot shows an example of this:")
I've filled attributes and now I'm always facing error 0x80230709 "unexpected error" ("completed-export-errors" status on operations screen) during running export on Lotus agent. i've tried to return my galsync.dll back to previous step, but error isn't gone!
what can it be? can it be lotus server error? and, to be precise, what attributes do i need to fill to csentryLotus?
i'm using windows server 2008r2 sp1, fim 2010 r2 v4.1.2273.0 and lotus notes server v8.5.something on windows server 2003r2
↧
SAP Web Services Connector specifications
Hi,
First of all, I have to say that I do not know about web services, so I'm sorry if this question is not clear.
I am implementing Web Services connector for SAP.
I ask the Customer to configure SAP endpoint (I give the documents downloaded from Microsoft Web), but they say that this information is not complete.
They ask me for a "functional specification" for the endpoint indicating what FIM connector send and what FIM connector expected.
Is there information about these specification (besides docs with Connector).
Thanks
JuanCC Technology Specialist
↧
Domino Connector 8.x Issue, Secondary Address Book is not showing
We are trying to upgrade Lotus Notes Domino connector to 8.x
Our issue is that we can't see additional address books (other then names.nsf). The old version of the MA allows us to manually enter the path to the nsf file on the server, but the new one does not seem to have this functionality.
Please help.
↧
Powershell Xpath to Query to find the membership of the set.
Hi All,
Can we use Powershell to find the membership of the set ?
I have to get the list of membership to the set All people using powershell.
The below is the powershell I am trying to achieve to get the list of membership, kindly advice.
# Load FIMAutomation module
if(@(Get-PSSnapin | ? { $_.Name -eq "FIMAutomation" } ).Count -eq 0)
{
Add-PSSnapin FIMAutomation;
}
$Set = Export-FIMConfig -customConfig "/Set[DisplayName='All people'/ComputedMember]" -Uri "http://localhost:5725" -OnlyBaseResources
$Set
Regards,
Anirban Singha(India).
↧
↧
OpenLDAP XMA don't understand objects deletion
Hi guys,
I am using the Open LDAP XMA to import user information to an AD.
Everything is going fine, except when a user is deleted on OpenLDAP. The MA appear to don't understand this because its information disappear on the XML file but still on the OpenLDAP XMA connector space.
Thank you
Diego Shimohama
- Diego Shimohama http://www.dshimo.com.br
↧
FIM Password Reset Client Customization
Hi
Does anyoneknow howyou cancustomize the textandimage in thePasswordResetClient?
It does not looklike itcomes from IIS
\Carsten
↧
FIM report invalid-attribute-value during export to Lotus
Hello, I am trying to establish sync between ad and lotus notes.
From Lotus to AD syncing works good, i can see users and their e-mails (e-mail is main required field for me) in AD.From AD sync objects in metaverse had no connectors to Lotus, only AD connector, while objects from lotus had both connectors. I've tried to create connector manually in galsync.dll code and it worked (I used something like: ManagementAgent =mvEntry.ConnectedMAs("Lotus") ; csentryLotus = ManagementAgent.Connectors.StartNewConnector("person"); and filled csentryLotus parameters to create CS entry of type Person) . After I could see while expot that connector space entries for lotus are created and filled. But then always during export there was an error, "invalid-attribute-value". (and none entries in Lotus were created during any export) In Event viewer of fim log there is error with code like this:
<EventData>
<Data Name="HRESULT">0x80230404</Data>
<Data Name="Source">d:\bt\5417\private\source\miis\server\sqlstore\csobj.cpp(8241)</Data>
<Data Name="Thread ID">0x5d4</Data>
<DataName="Additional Info" />
</EventData>
What is causing this error I have no idea totally, so I've provided some screenshots:
https://docs.google.com/file/d/0ByksGTNeAAfKMWR4QXgxRzZNTzA/edit?usp=sharing
https://docs.google.com/file/d/0ByksGTNeAAfKRnVTQUZCWGNIM2s/edit?usp=sharing
https://docs.google.com/file/d/0ByksGTNeAAfKNE91TE1ZaVVYR3c/edit?usp=sharing
https://docs.google.com/file/d/0ByksGTNeAAfKc3N6YVh6QlNhcTQ/edit?usp=sharing
https://docs.google.com/file/d/0ByksGTNeAAfKSnQ4dE5oNFFSWkU/edit?usp=sharing
https://docs.google.com/file/d/0ByksGTNeAAfKWjNWemFTRWVoZzA/edit?usp=sharing
i'm using windows server 2008r2 sp1, fim 2010 r2 v4.1.3451.0 and lotus notes server v8.5.something on windows server 2003r2
↧
Can I install FIM 2010 without Exchange Server
I am planning to install FIM 2010 R2 in my production environment. We dont have Exchange Server as of now. Will it cause any issues.
If not...when the "Configure Mail Server Connection" step will come in the wizard...will I be able to skip it.
Also...Since I am installing on FIM 2010 R2 Password Portal...what all FIM services do I need....FIM Server, FIM Sync Service or both.
↧
↧
Questions on FIM 2010 R2 installation
Hello Guys,
I have few question regarding the installation of FIM 2010 R2. Let me also share my infrastructure details with you -
We have the following -
Seperate instance for FIM Service, FIM Synchronization Service, FIM Portal Servers. All components of FIM will have there own servers. As per the installation guide from MS - I have asked my AD guy to create the service account for FIM Service, Sync Services, Portal and WSS 3.0. I have also asked him to create FIM MA account.
1. Now below are the steps in the installation guide. I am not sure where do I need to run this. On FIM Sync Server ?
To enable the FIM MA to log on locally |
|
2. I am planning to install FIM portal/password registration portal/reset portal on single server. Is it ok ? Let us ssume..it is ok, I have installed the WSS 3.0 on this server. Now when I reach till below steps, I have some confusion -
To run the SharePoint Application Pool using an account that is located in the domain using WSS 3.0 |
Since I am installing the WSS on the same server which will be used as FIM Portal server...so I am wondering which service account will be used as mentioned in the above step - The SA for FIM Portal or WSS 3.0 3. Can I configure this thing w/o SSL atleast to see if it works. 4. During registring the SPN, it says that it is recommended to use alias. Agreed. Later, the installation guide also says this -The <alias> above is the address that is entered during FIM Service setup and used by the clients and the FIM Portal to contact the Web Service. This can be an alias (CNAME) or host (A) resource record in DNS. If you are using Network Load Balancing (NLB), this is the name of the cluster." I checked the screenshots in the installation guide...I dont see any step in the wizard..which ask for this alias. Can anybody help with these. Also please share any best practices ot any detailed step by step guide which can help me with this installation. |
↧
FIM GALSync 2 Forests 5 domains
I have been tasked with implementing a GALSync solution and have gone with FIM
Im wondering if the following is possible
Setup is 2 Forests - 2 Exchange org - Forest 1 has 1 domain and Forest 2 has 5 domains
Currently in Forest 2 they share the same GAL as they are all part of the one exchange org so inter sharing isnt an issue
Am I right in thinking that I need to setup a 2 way sync from Forest 1 to 1 domain in Forest 2 , then 4 1-way syncs from the other domains in Forest 2 to Forest 1
If so how do you set up the 1 way sync ? or any better suggestions
Thanks
↧
Creating a Custom Workflow Activity with no input controls
I want to create a Workflow Activity that has no input controls. I've created a simple activity, deployed and GAC'd the .dll, then created an AIC. The activity appears in the activity picker and can be added to a workflow, but can't be saved. I don't see any errors in the event viewer.
I imagine there is something wrong in my ActivitySettingsPart but before I pick it apart, I just wanted to be sure that this is possible. Has anyone done this before?
Ta,
Dave
Dave Nesbitt | Architect | Oxford Computer Group
↧
More Pages to Explore .....
