I am trying to install FIM 2010 R2 Add ins and Extensions on a Windows 8 client machine. I am doing it with local administrator credentials. During installation it sits at : starting services and that give me error :
Service 'Forefront Identity Manager Password Reset Client Service' (FIMPasswordReset) failed to start...
Can anyone please explain as what could be the reason. Is it the permission issue or compatibility issues...
Hi-
I'm trying to follow an article "How do I provision users into AD" and created 'FILEMA,FIMMA & Sync Rule' and during the process to do Inbound sync "Introduction to Inbound Synchronization (http://go.microsoft.com/fwlink/?LinkId=189652)" when I do full sync for the 'FileMA' I'm receiving an error 'Extension atribute not present" from the StackTrace it says "
Microsoft.MetadirectoryServices.AttributeNotPresentException: Attribute "accountName" is not present.
at Microsoft.MetadirectoryServices.Impl.AttributeImpl.get_Value()
at Mms_Metaverse.MVExtensionObject.Provision(MVEntry mventry)" thought there is no accoutname attribute is used in 'FileMA' I just followed the same code where it says to create data text file by using 'EmpID,FN,LN,EmpType'
For FIMMA When I run 'FI & FS' I do see new sync rule but when I run 'Export' I do not see the update of the new syncrule in Stats.
Did anybody tried this article and had similar issues? or am I missing anything here?
Thanks
Hi,
This error pops up regularly when certain changes are made to a user in the AD. I also have had a few posts about this in the past, but were not successful in resolving it. Initially I thought that there is a conflict of rules in the FIM portal, but interestingly when I manually change one of the attributes in the FIM portal, all rules are applied without problems and the next export on the FIM MA succeeds.
This error only happens with a specific type of contractor which is managed by the service desk. Other contractors are managed by the HR system. Sometimes the service desk gets instruction to deprovision a contractor before contract expiry for whatever reason, normal contract expiries are handled by rules in the portal.
When the service desk manually deprovision a user, they do the following:
1. Move the user to a specific Exits OU
2. Disable the account
3. Remove the manager
4. Add description containing the request number
5. Change the email to invalid address to prevent the user from receiving email, they normally use the request number as the mail address, for example123456@company.com
6. Also update the proxy addresses, same as email above
7. Hide the email address from the address book
The FIM portal picks these changes up, because we still need to delet the user object after a certain amount of time. When these changes are exported the FIM MA fails with the error above.
To isolate the problem I have changed all the attributes one at a time and discovered that when the proxy address is changed manually, it causes this error. To work around this I have changed the process on the service desk to not modify the email address and proxy addresses manually but have the FIM portal do this, by prefixing the address with a 0.
I have also done this in my lab and found that when the proxy address in AD is changed manually it also causes this error.
The question I have is the following: Is there some validation done in the FIM portal on the proxy address collection? or is this maybe a bug? And has anyone else come across this?
Thanks
Johan Marais
JkM6228
Hello All,
Iam in the process of migrating the psync from MIIS to FIM , ACF2 to AD, in this situation i created a sync rule which has a filter where psyncoption (attribute ) not equal to MF<->AD , for some reason this attribute is not accepting the special characters , Please suggest how do i make it accept these letters.
regards,
Hi,
I have a requirement to create an OU structure in a currently flat AD. The requirement is to take the current hierarchical OU structure in a HR system and have FIM create all the OU's in AD with the correct hierarchy. Once the structure has been created in AD it will need to be maintained via regular syncs and ensure each user is in the correct OU based on the feed from the HR system.
Any pointers in the right direction would be appreciated
Don
Hi guys,
I'm having a problem with FIM 2010 R2 and the new build of the Windows Azure Active Directory connector. (AAD Multi Forest - July 2013)
I am no FIM expert so please bear with me on this. The only reason I installed this is because DirSync, for a few reasons, was not a viable option for us.
I've installed FIM and the directory connector without a problem. Used visual studio to compile the AADRulesExtensions.dll as instructed in the installation how-to. The problem I am seeing is that FIM is not importing any accounts to my Office365 tenant. I am running a "Delta Import Delta Sync" on the Source AD MA, second I am running a "Delta Import Delta Sync" on the Windows Azure MA, and then finally running an "Export" on the Azure MA.
This all completes successfully. The Source AD sync lists 4 "Adds" in the "Staging" status in FIM, which is the correct amount of test users that I have in my test OU. The two other steps with the Azure MA, however, do not seem to be importing these users to the Office365 tenant. No errors...just nothing getting imported?
Does anyone have any experience with this? If you need more info to lend a hand I'll be happy to provide it.
Thanks for any help! It is certainly appreciated.
Dustin Lavigne
shakti
Hi,
I have 3 FIM MAs which import user accounts from a CSV file, then sync the user accounts with AD.
The MAs and run profiles below are used to sync accounts:
1. File MA - Full import and full sync
2. FIM MA - Export, delta import and delta sync
3. AD MA - Export and delta import
My file MA has a filter which filters out user accounts who's DN does not contain "OU=Win Vista"
I've ran the above profiles dozens of times without issue. I've needed to amend my filter so that users who's DN contains "OU=Win 7" are not filtered out.
I ran an full sync (staging only) and then checked my preview to see filter application - at first the filters didn't apply as I wanted due to me adding a second filter, rather than adding to the existing filter.
As a rollback, I reverted FIM to a VMware snapshot. No errors logged within the event logs, all seems OK with rollback.
I changed my File MA filter so that user's who's DN does not contain "OU=Win 7" or "OU=Win Vista" are excluded (i.e. not included in sync).
I then ran the sync profiles above in order. I have an issue where around 75% of my Windows 7 users ("OU=Win 7") have been imported and there's no clear reason why the others haven't. No errors are logged within FIM Synchronization Service, FIM event logs or AD.
The odd thing is that even though a new Windows 7 user is not exported to AD by the sync process, the account is in the FIM metaverse, so I don't know why the account imported into FIM, but didn't export to AD.
I several thousand records to import, so checking each one isn't feasible. Please can someone advise how I can troubleshoot my initial sync failures?
My first thought is to re-try the sync with the same import file to see if anything changes.
Thanks
IT Support/Everything
Hi,
we have got error events 7000 and 6037 from PCNS. Each time a bundle of 3x event 7000 and one 6037 error. All of them include the message text "Not enough storage is available to process this command".
Log Name: Application
Source: PCNSSVC
Date: 10.09.2013 08:16:23
Event ID: 7000
Task Category: (3)
Level: Error
Description:
An unexpected error occurred. queue.cpp (6578): Not enough storage is available to process this command.
In the other events 7000 the source code file is slightly different, all the other data of the 7000-events are identical:
service.cpp (2291)
queue.cpp (4374)
Log Name: Application
Source: PCNSSVC
Date: 10.09.2013 08:16:23
Event ID: 6037
Task Category: (4)
Level: Error
Description:
An error occurred processing a password change notification received from Active Directory. The notification was discarded by the Password Change Notification Service.
User: <domain>\<samAccountName>
service.cpp (2330): Not enough storage is available to process this command.
Our domain controllers are running Server 2008 R2 SP1. PCNSFilt.dll has version 3.3.118.0
Never saw this before. Should I just restart the server and "forget it" or is it sort of critical? I know that PCNS v4.1 can be downloaded, but as I was told with http://social.technet.microsoft.com/Forums/en-US/4edc1d18-a2aa-4681-ae85-107364598d38/pcns-releases-release-notes-what-has-changed I shouldnt update without a reason.
Any ideas?
Thank you.
Walter
Hello,
We are new to FIM and just getting into it.
Where can I understand what the fields under the Sync Stats in the Sync Server Manager under a Management Agent Operation mean and are explained? For example, what does Filtered Disconnectors, Connectors with Flow Updates, and Export Attribute Flow mean and where is this explained?
Cause we are new, Im just looking for the very basic conceptual explanations here.
Thanks in advance.
Thanks for your help! SdeDot
Any thoughts on what could be causing this error all of a sudden during sync and how to resolve? Thanks!
Ramona Balke
HI-
I'm trying to refresh schema of FIMMA when I update FIMMA Password it is throwing an EventID 6331, Tried adding permissions for FIMMA account to 'BIN" Folder as per one of the article but it didn't fix, I'm referrring another article on EventID 6331 where it says to modify the 'MIIServer.config.extesntion' file before I make changes to this file I would like to know did anyone tried this article or will be there be any additional issues if we modify the file.
Thanks
BHOLD unable to create attestation campaign.
Error message "the was an error while trying to create a campaign"
shakti
I have a second ILM server for development and am having an issue with ILM not responding when running a full sync or preview on an object. I've reinstalled ILM and imported the server config from the main server that is running without issue. Also installed sp1 and I've copied over all of the extension files. If the Metaverse rules extension is enabled without the provisioning rules extension being enabled everything works fine. But once we enabled the provisioning extension we have to kill the miisserver.exe and restart the service. The server builds are pretty much the same the only difference is the remote sql server and instance.
Hello,
Is there a manner to know if a user was sucessfully provisioned in AD or not. I want to to put a flag in FIM portal if the provisioning is ok
Any idea ?
Can i design Active directory OU and hierarchy with this product automatically .
For example: i dont have OU created in Active Directory but i want to export them through FIM from oracle database into active directory.
Is it possible.
i have minimum 100 departments and each department has minimum 120 users.
in my active directory i have around 2500 users with some 50 OU's, but in oracle database i have complete information.
i want to export from oracle db and import it in the active directory
The results for August's TechNet Guru competition have been posted!
http://blogs.technet.com/b/wikininjas/archive/2013/09/11/technet-guru-awards-august-2013.aspx
Congratulations to all our new Gurus for August! We will be interviewing and highlighting their achievements, as the month unfolds.
Post your SEPTEMBER contributions here:
Below is a copy of the August winners. The last column being a few of the comments from the judges.
 | BizTalk Technical Guru - August 2013 |
| Tord Glad Nordahl | BizTalk Server Installation and Configuration Checklist | Tord Glad Nordahl: "My own article, hard to defend why I want this to win (after all I wrote it), even though I think this is great info, and important to share to keep high standards for environments" Mandi Ohlinger: "Holy schmoly do I love this topic! This is great list of what to do before, during, and after a BizTalk installation. " Ed Price: "By far the best topic with the most useful information! This is truly a resource that people can come back to time and time again. And a solid introduction!" |
| Maheshkumar S Tiwari | Grouping and Debatching/Splitting Inbound Messages(TypedPolled) from WCF-SQL Adapter : BizTalk 2010 | Ed Price: "Maheshkumar gave us a record-breaking 16 Guru articles this month, and this one shows great expertise in the code snippets, steps, and diagrams!" Mandi Ohlinger: "Great example of debatching. Love the link to the blog post." Tord Glad Nordahl: "Great article with good explaination" |
| Steef-Jan Wiggers | BizTalk Server: Importing Certificates | Ed Price: "Steef-Jan is a master at writing fantastic articles with an introduction that clearly explain the topic, vivid images, and command snippets. With 7 amazing articles from Steef-Jan this month, this one takes
the cake!" Tord Glad Nordahl: "Great to know when importing certificated." |
| SharePoint 2010 / 2013 Technical Guru - August 2013 |
| Daniel Christian | InfoPath 2010 embedded form on SharePoint 2013 | Margriet Bruggeman: "Nice detailed article!" Peter Laker: "Awesome article. Great subject, lots of detail, with images and videos. " Ed Price: "This article keeps on giving with a video, steps, images, information, and more! It could use a TOC and Headers to break it up more. Fantastic article with a lot of depth!" ML: "It is great to have video presented" |
| Matthew Yarlett | SharePoint: Listing and Deleting SPListItemVersions Using PowerShell | TVG: "Very useful script! Use it to identify the libraries in your site collection where versioning best practices are not enforced." ML: "resolve the requirement which is frequently asked by cunstomers" Ed Price: "Very clear article with a great introduction, code snippets, and images. The headers are in place, so I think I'll add a TOC now. Great article!" Jinchun Chen: "Nice article." |
| Rahul Shinde | SharePoint 2013: How to Integrate Yammer with SharePoint for Social Feature | Ed Price: "Great subject and good interaction in the comments. After Naomi suggested an introduction on what Yammer is, Rahul added it in! That's what the Wiki is all about!!" TVG: "Yammer, the future of Social for SharePoint Online and SharePoint On-Premises. Organizations that have both services supporting their businesses probably cannot wait to discover the potential of both services combined!" Peter Laker: "Brilliant article. Nice topic and plenty of detail." |
| Small Basic Technical Guru - August 2013 |
| Nonki Takahashi | Small Basic: Parser Generator | Peter Laker: "There can only be one...!" Ed Price: "Wow. Those diagrams leave me speechless. One article, and it's amazing! Fantastic job!" RZ: "It's very nicely done. Beautiful diagram. It is really helpful for new comers to programming." |
| SQL Server Reporting Services, Power View & SQL Server Integration Services Technical Guru - August 2013 |
| Rajkumar5055 | SSIS - Flat File Source - Datetime Column Format - Issue & Solution | Ed Price: "Great breakdown of sections. Good explanations and use of images!" |
| SathyanarrayananS | SSRS - How to set Column Visibility property for many columns based on Parameter value | Ed Price: "Very interesting topic! Good explanation and use of code and images! Could benefit from a TOC and Headers to break up the sections. Great article!" |
| SathyanarrayananS | SSRS: Multiple Ways to Split a String into Multiple Lines | Jinchun Chen: "Nice." |
| Transact-SQL Technical Guru - August 2013 |
| Saeid Hasani | Sort Letters in a Phrase using T-SQL | Ed Price: "Fantastic formatting, very clear, and some good comment interactions! Great job!" Richard Mueller: "Very interesting with a good example. Great to list the limitations." Jinchun Chen: "Cool. Years ago, I was asked the same question. This script can apply to many real situation." Samuel Lester: "Sorting is always a great CS topic, thanks for this great content. I would love to see alternate methods for sorting, pros/cons (as you've done), performance discussion, etc. for a great learning opportunity. Nice job!" |
| Naomi N | T-SQL: Applying APPLY Operator | Richard Mueller: "Well organized article with a good example and explanation of the code. And I liked the pun." Samuel Lester: "Outstanding format, explanation, & references (calendar table, forum post, EOMONTH() function, etc). Great job solving the question with OUTER APPLY, then referencing the LAG/LEAD functions for SQL Server 2012. Technical and very well written! Great work Naomi, one the best overall from a technical and visual perspective!" Ed Price: "Naomi nails the formatting and explains every step, taking us on this journey. Great article amongst some fierce competition this month!" |
| Saeid Hasani | Custom Sort in Acyclic Digraph | Samuel Lester: "WOW! Very interesting topic! We don't often see a lot of graph/tree questions in the forums, but this topic brought out a lot of great discussion. Breadth-first vs. depth-first, inorder/preorder/postorder
traversal, etc. Great job adding advanced content and very strong write-up!" Richard Mueller: "Good explanation of terms, but they could be expanded." Ed Price: "A great article from Saeid on an important topic, and with good community interactions!" |
| Visual Basic Technical Guru - August 2013 |
| Reed Kimble | How to Get the Textual Representation of a Number (Convert Number to Words) in VB.Net | Peter Laker: "Superb article. Well presented and detailed." SB: "nice code example of a real world problem" Ed Price: "Great formatting, explanations, and code snippets!" Richard Mueller: "Very good ideas and well explained. This can be useful." Anthony D. Green: "This would make a great programming exercise for students." |
| Paul Ishak | Become More Productive by Making Custom Code Generation Tools (VB & C#) | Anthony D. Green: "Code generators are an essential tool in any programmers arsenal and this article shows why and how powerful they can be. I'd love to see another article using technologies such as T4 templates to generate
code." Ed Price: "Fantastic example and explanations! " Peter Laker: "Very nice copy-in of his popular article, thanks Paul!" Richard Mueller: "Very interesting concept. We could use explanation of the code." |
| .paul. | searchableComboBox Control | SB: "would find useful in many applicables." Ed Price: "Great tie in with the Code Gallery!" Peter Laker: "Great control, very useful, thanks Paul!" |
| Visual C# Technical Guru - August 2013 |
| Isham Mohamed | Avoid “File system redirection” in Visual Studio 2012 | Christian Lukito: "Good article to explain Windows 8.1 behaviour" CW: "This article calls out a problem you may encounter in C# and shell execution of things from the system directories. I thought it is well done and should help to unblock individuals." Ed Price: "Great explanation to a common issue!" |
| Jaliya Udagedara | Progress of a Task in C# | CW: "While not super interesting, this elevates a feature in a clean manner" Ed Price: "Very well formatted. Important information for learners!" |
| Chilberto | Business & Entities to Azure Storage Entities using Automapper | CW: "I have worked with Azure Storage entities before, but haven't ever used this automapper. I am not compelled to use it. I imagine it could be used to help separate my data entity from the object used in the code, but
I can't really gather this from this sample alone." Ed Price: "Good formatting with solid code snippets." |
| Windows Phone Technical Guru - August 2013 |
| Chilberto | Azure Mobile Services Custom API - Exploring Server Side Capability | JS: "only 1" Ed Price: "Really important topic with great code snippets and solid explanations!" |
| Windows Store Apps Technical Guru - August 2013 |
| Sachin S | Custom styling the alternate rows inside ListView/GridView | Ed Price: "Good topic and breakdown. It could benefit from more explanations and a breakdown of sections with a TOC. Thanks for the contribution!" |
| WPF Technical Guru - August 2013 |
| Magnus (MM8) | Validating data in WPF 4.5 using the INotifyErrorDataError interface | Peter Laker: "Excellent overview of validation" Ed Price: "Important topic and great delivery and formatting!" |
| XAML guy | Best ComboBox Tutorial Ever | Ed Price: "Beautiful formatting, images, and code! Great introduction, conclusion, and breakdown of the different steps! Plus I love the topic of making great comboboxes!" Peter Laker: "My own submission for August. A favourite from MSDN" |
| Himanshu12221 | Deploy Silverlight Application to Server/ IIS site | Peter Laker: "Thanks for the contribution" Ed Price: "Great to see this how-to article that covers a simple way to deploy an app. Good topic! It could benefit from more explanations and examples." |
| Forefront Identity Manager Technical Guru - August 2013 |
| Ike Ugochuku | FIM 2010 R2: Creating a Custom Metaverse Object Deletion Rule using C# | Ed Price: "Great article with clear requirements and steps. As Naomi suggests in the comments, it could benefit from code formatting. Good job!" Peter Geelen: "Nice article, practical solution. Well designed." |
| SQL Server Database Engine Technical Guru - August 2013 |
| Uwe Ricken | Dropping a clustered index will not reorganize the HEAP | Peter Laker: "The one and only awesome entry for August!" Ed Price: "Good explanations and formatting with the TOC, code, and images!" Samuel Lester: "Uwe, thank you for the great depth and explanation! Technically and visually OUTSTANDING!" DRC: "The article is very informative, queries used are accurate to match the explanation provided." |
A great big thank you to EVERYONE who contributed an article to last month's competition.
Hopefully we will see you ALL again in this month's listings?
If you have not yet contributed an article for this month, and you think you can produce a more useful, clever and better produced wiki article than the winners above, here's your chance! :D
Best regards,
Pete Laker
More about the TechNet Guru Awards:
#PEJL Got a good solution? If you invest your time in coding an elegant/novel or large answer on these MSDN forums, why not copy it over to our belovedTechNet Wiki, for future generations to benefit from!
#PEJL Got a good solution? If you invest your time in coding an elegant/novel or large answer on these MSDN forums, why not copy it over to our belovedTechNet Wiki, for future generations to benefit from!
Hello Guys,
I have got a problem though I am new and help will be highly appreciated. I have created Inbound and Outbounf Sync rule and able to provision users in FIM and AD. But I am unable to deprovision users !! i mean when i delete user from AD it does not delete from FIM and when I delete user from FIM it recreate user when I run import and Sync profile. Any help will be very much appreciated.
Regards
Sarwar
Sarwar
Hello,
I´m running FIM 2010. I have one root domain and 2 child domains called A.domain.local, B.domain.local.
User "Alf" from domain A was moved via ADMT to the domain B. Now I get errors in FIM. How to solve it? Thank you for advice.
Petr Weiner
Good day all,
I've spent several days on this, and now with an upgrade to 4.1.3661.0 the install account is experiencing the same issue making it difficult to look in the portal for issues.
I just deployed a fully functioning SSPR environment on Windows 2012 and FIM 2010 R2 SP1. Users can use password registration and reset without an issue. I configured workflows, sets, etc with the account used to install FIM and the portal UI was fine. Using any other user to connect to the portal and the UI is not working as expected and overlaps and has validation errors.
(double, non-working toolbar, mangled UI) [[I wiped the domain name myself]
(validation errors, and no submit buttons).
Upon upgrading to 4.1.3661.0 now the install account is experiencing the same issue which makes it difficult to use the portal to look for issues. I've removed the customizations folder, and that wasn't it. I've tried a non-domain connected PC to rule out GPOs. Chrome has the same issue.
I thought it might be style sheets, but it used to work for the install account and not other admins so that seems to rule that out also.
Thanks for any help!
Dan
