Hi Team,
As I am working one of FIM Project and customer wants to Pull the data from XML file.
If any one have some information on this or any link please provide me.
Any Help would be really appriciated.
Thanks,
User's Provisioning through XML File using Extensible Connectivy.
↧
↧
Cannot get two items to become a single one
Hi there,
I have two DataSources (AD and HR DB). I've imported data from both of them and have duplictaed items for each employee. Now I add a field to MV "person" object so these duplicated items could merge. But that doesn't happen!
What do I do:
1. Add field to "person" object, fill it from HRdb
2. Change Relationship Criteria for AD SyncRule so it uses this new field
3. Run FIM MA imort, then sync
4. Run both datasources MA import and sync (HR first, then AD)
...
still have two "persom" item for each employee
What do I do wrong?
↧
Installation of hotfix rollup package (build 4.0.3644.2) fails
I'm trying to upgrade the FIM Synchronization Service from 4.0.3606.2 to 4.0.3644.2 but the installation fails. The msiexec log contains the following error message:
MSI (s) (88:04) [19:04:27:421]: Executing op: ActionStart(Name=ProcessMachineDcomPermission,,)
Action 19:04:27: ProcessMachineDcomPermission.
MSI (s) (88:04) [19:04:27:423]: Executing op: CustomActionSchedule(Action=ProcessMachineDcomPermission,ActionType=1025,Source=BinaryData,Target=ProcessMachineDcomPermission,CustomActionData=ADMINS=ROOTFIM01\FIMSyncAdmins OPERATORS=ROOTFIM01\FIMSyncOperators
BROWSE=ROOTFIM01\FIMSyncBrowse PASSWORDSET=ROOTFIM01\FIMSyncPasswordSet)
MSI (s) (88:5C) [19:04:27:484]: Invoking remote custom action. DLL: C:\Windows\Installer\MSIAE24.tmp, Entrypoint: ProcessMachineDcomPermission
CustomAction ProcessMachineDcomPermission returned actual error code 1603 (note this may not be 100% accurate if translation happened inside sandbox)
Action ended 19:04:27: InstallFinalize. Return value 3.
It seems like something is wrong with the Dcom Permissions. Has anybody seen this before?
Regards,
Steve
↧
Using Object SID / Resource SID in a FIM Portal Set / Filter
Hello,
I am trying to configure a Set that shows which users have been provisioned to Active Directory but are missing another attribute. I was intending to confirm they are in AD by filtering objects based on their Resource ID (ObjectSID)....
Unfortunately Resource ID(ObjectSID) does not appear in the list of filters?
I have checked the 'filter permissions' and it is in the approved list for Administrators
I have checked the attribute and binding details but couldn't see anything I know of that would omit it from the filters.
Thanks
mtwelve
↧
What's the correct process for adding a file based fitler rule?
Hi,
I have a fim sync process which works as follows:
1. File MA - imports CSV information from a file
2. FIM MA - imports CS information from File MA into MV
3. AD MA - then exports the FIM MV info into AD
My file MA, has the following filter rule:
If CSV field "DN" contains "OU=WinVista" then import row
The above works great and I'm only importing the WinVista users. What I want to do now is import Windows 7 and I was thinking of changing my File MA filter rule to the following:
If CSV field "DN" contains "OU=WinVista" then import row
OR
If CSV field "DN" contains "OU=Win7" then import row
Can I simply amend the filter rule on my File based MA and then run the import run profile?
Do I need to run the FIM MA run profiles to update the sync rules (for example, I know I have to run the FIM sync profiles if I update sync rules in the FIMportal)
I'm looking at doing this in the least intrusive manner as I already have accounts in production and would hate, for example if my Windows Vista users were wiped out, but I gained Windows 7 users.
Thanks
↧
↧
FIM Rule Extension debug - breakpoint will not currently be hit
Hi there,
trying to debug RE and getting following error: The breakpoint will not currently be hit. No symbols have been loaded for this document.
Any ideas?
↧
Uploading photos to AD and Allowing Users to Change Their Photo
Hello,
I have a requirement to load photos from FIM into AD and have a couple of questions:
If I can get Soren's MA working, then the following blog post should work nicely for a file based upload.
http://www.iamblogg.com/2013/04/14/import-pictures-into-fim-portal/
However, once in FIM, can I sync photos to AD using declarative/codeless sync rules?
Secondly, within the FIM portal, is it straight forward to give users the ability to upload\edit their own pictures (and subsequently sync these with AD)?
Cheers
IT Support/Everything
↧
BHOLD Saving Campaign error
Trying to create an attestation campaign in BHOLD.
Using a single occurrence campaign with Model generator as "define stewards".
Followed the instructions in technet.But on saving the campaign, i am getting an error "the was an error while saving the campaign"
shakti
↧
Approval workflow error when creating a new custom entity in FIM 2010 R2
Hello,
i'm hoping somebody here can help, me i've been struggling with this for some time now. On a fresh FIM installation i create a custom entity named "Role" and add a few custom attributes.
I then create an approval workflow and MPR for normal users to create entities of type Role, but another user must approve this request. The other user has a working mailbox - i've tried firing an action workflow that sends a mail notification when someone creates a new role and it is working fine. But, when i enable my approval workflow (the only field i changed from default is the approver) on the MPR, the workflow always failes with the message:
Error processing your request: The operation was rejected because of access control policies.
Reason: The server workflow rejected the operation.
Attributes:
Correlation Id: 750a558a-d3e4-4216-b16a-e76d79f011ec
Request Id: feaabbc9-dea4-49a3-8b29-65b77de6f8fd
Details: The Workflow Instance '04202cc0-14a3-410c-a3fc-2d6e5d25ebe6' encountered an internal error during processing. Contact your system administrator for more information.
I enabled tracing and this is what i found:
Microsoft.ResourceManagement Verbose: 0 : Creating WorkflowServiceHost for XOML Definition:\n<ns0:SequentialWorkflow ActorId="00000000-0000-0000-0000-000000000000" RequestId="00000000-0000-0000-0000-000000000000" x:Name="SequentialWorkflow"
TargetId="00000000-0000-0000-0000-000000000000" WorkflowDefinitionId="00000000-0000-0000-0000-000000000000" xmlns="http://schemas.microsoft.com/winfx/2006/xaml/workflow"
xmlns:ns1="clr-namespace:System.Workflow.Activities;Assembly=System.WorkflowServices, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856
ThreadId=8
DateTime=2013-09-04T15:17:10.0496188Z
Microsoft.ResourceManagement Information: 1 : 1 : : Invalid Element 'ReceiveActivity.WorkflowServiceAttributes' found while deserializing an object of type 'Microsoft.ResourceManagement.Workflow.Activities.ApprovalActivity'.
ThreadId=8
DateTime=2013-09-04T15:17:10.1277486Z
Microsoft.ResourceManagement Information: 1 : 1 : : Invalid data found while deserializing an object of type 'Microsoft.ResourceManagement.Workflow.Activities.ApprovalActivity'.
ThreadId=8
DateTime=2013-09-04T15:17:10.1277486Z
Microsoft.ResourceManagement Verbose: 0 : A WorkflowRuntime is not available for this WorkflowDefinitionVersionKey '20'.
ThreadId=8
DateTime=2013-09-04T15:17:10.1277486Z
Microsoft.ResourceManagement Error: 3 : Workflow host activation failed for workflow definition id : 231457c6-d044-4cc7-839f-98e5cf88f514, version key: 20. Exception: Object reference not set to an instance of an object. at Microsoft.ResourceManagement.Workflow.Hosting.HostActivator.ActivateHost(ResourceManagementWorkflowDefinition
workflowDefinition, Boolean suspendWorkflowStartupAndTimerOperations)
at Microsoft.ResourceManagement.Workflow.Hosting.HostActivator.RetrieveWorkflowDataForHostActivator()
ThreadId=8
DateTime=2013-09-04T15:17:10.1277486Z
Microsoft.ResourceManagement Information: 1 : The service has updated the list of active hosted workflow definitions to sequence number '1'.
This happened on two separate FIM deployments, but both of them were set up in the same way. What am i missing here?
Thank you,
Martin
↧
↧
Attributes to Search and Resolving
Hi,
I have an attribute that is an Integer. When I add it to the AttributesToSearch in the RCDC for a uocIdentityPicker, the search does not find and resolve the user with that attribute value.
I've tested with a string attribute and it resolves just fine. (I've also triple checked the attribute spelling.)
Is there something different with an Integer attribute when trying to resolve a reference?
Thanks,
Sami
↧
FIM Database Size Too Big?
A colleague set up Forefront Identity Management 2010 recently, and the FIMService database has grown exponentially - it is currently sitting at 179 GB. This is the .mdf file itself, the log file does grow too, but shrinks with each day due to our
backup maintenance .
Can people who have FIM installed comment on the database size, whether or not this is "standard", and perhaps share what database sizes they typically experience?
Thanks for any and all feedback.
↧
UsersSynchronization Export Error cd-error.
Hi,
I am doing provisioning form HRMS source SQL table to FIM Portal and other target application and also i have do provisioning in FIM Portal,AD and two other SQL application Successfully but i am facing in one SQL Application we have 700 hundred recoreds in source HRMS application and all users provisioned in FIM portal,AD and two other SQL applications with successfully synchronized but in my one SQL application only 575 users provisioned and remaining users showing fallowing Error when we run Export of SQL MA
Multiple-step OLE DB operation generated errors. Check each OLE DB status value, if available. No work was done.The statement has been terminated.Subquery returned more than 1 value. This is not permitted when the subquery follows =, !=, <, <= , >, >= or when the subquery is used as an expression.
Regards
Anil Kumar
↧
ScheduleReportingIncrementalSynchronizationJob is missing
Hello, everyone!
I have accidentally delete ScheduleReportingIncrementalSynchronizationJob. How can i restore it? Or maybe someone can share it's script?
Many thanks in advance.
↧
↧
FIM CM 2010 technical solution
Within our financial institution, we are exploring the gaps between our functional requirements and the standard functionality of FIM CM (Certificate Management ) 2010. We need a card management solution to administer, issue, reissue and block certificates on Gemalto .net smartcards.
We are looking for technical solution/direction for the following required functional behavior:
- Reissue a smartcard for another user without entering any pin code (e.g. old pin code is forgotten)
- Can we force user pin change directly after card issuing?
Help is much appreciated.
↧
expression mapping is execuate
Hi
I'm trying to project a disconnected user into metaverse 'Person objectype' and receiving an error "The expression mapping is execuated but if fails because of a missing source attribute"
Following the article to provisions users to AD :http://technet.microsoft.com/en-us/library/ff686263(WS.10).aspx
Any ideas what this error means?
Thanks
↧
how do I Create AD and GPO map or documantation?
Boss needs forest/AD/GPO documentation for the next admin that comes to see how everything is laid out..
Any idea how to do it?
↧
how to troubleshoot BHOLD sp1 attestation campaign errors
Getting an error in saving a campaign in BHOLD sp1 attestation portal.How to troubleshoot it.
shakti
↧
↧
Can we build a FIM MA which reads data from a webservice?
Hellos,
We get a subset of HR data from the HR system (not SAP!) "indirectly". Their native HR system exposes its data relevant to FIM as an SQL Table. The customer has complained that the lag between native HR changes and the SQL Table change (and hence into FIM and other connected sources.. AD Exchange Lync etc.) is becoming too great.
It has been discovered that the HR system has a web service "interface".
My question is what is best FIM practice in this case.
Is it best to use Powershell or something to poll the HR webservice and feed a file/sqltable into FIM as a standard MA?
Can we easily write a custom MA which communicates with the webservice directly?
↧
FIM Client UPGRADE to R2
I have upgraded the FIM Portal and Sync Service server from FIM 2010 to FIM 2010 R2 SP1. Everything looks good. I am now ready to upgrade the client 'Add-ins and extensions' using SCCM, so I need to use an unattended installation.
Everything I have found online is only useful for a new installation of the client. In my case, the workstations have the FIM 2010 client installed. When I attempt to perform a basic unattended installation, the install fails.
Is it possible to upgrade the client 'Add-ins and extensions' to FIM 2010 R2 without uninstalling the old client first? If so, what would be the syntax?
A sample syntax of a new install is as follows:
msiexec /I "Add-ins and extensions.msi" /quiet ADDLOCAL=PasswordClient RMS_LOCATION=server1.domain.com SITELOCK_DOMAIN=fimportal.domain.com;fimportal;server1;server1.domain.com REGISTRATION_PORTAL_URL=https://passwordregistration.domain.com /norestart
/l*v c:\fimpwext.log
↧
Web Service Configuration Tool for SAP
Hi All,
I am trying to configure SAP Web Service connector. When I configure Full Import workflow, I call to BAPI_USER_GETLIST but I when i tried to do an ForEach statement of Table_BAPI_USE_NAME (foreach ítem in If(UsrDataTable.item, Enumerable.Empty(Of BAPIUSNAME)()).ToArray()) im getting this error message:
Compiler error(s) encountered proccess expression If(UsrDataTable.item, Enumerable.Empty(Of BAPIUSNAME)()).ToArray()).
Option Strict On dissalows implicit conversión from '1-dimensional array of <servicename>.BAPIUSNAME' to 'System.Collections.Generic.IEnumerable(Of <servicename>.TABLE_OF_BAPIUSNAME)'
How can I set Option Strict off or how can I perform this conversión ?
There is another way to load the table into the array ?
Thank you in advance.
JuanCC Technology Specialist
↧
More Pages to Explore .....
