Hi All,
We have FIM 2010 R2 SP1 [Version 4.1.3451.0]. We want to know if FIM Portal support IE 11, as Our organisation is planning to migrate to IE 11.
Thanks in advance!
Aswathy Raj
Does FIM Portal support IE 11? ( FIM 2010 R2 SP1 [Version 4.1.3451.0] )
↧
↧
Populate Uocdropdownlist dynamically
Hello experts,
I have a requirement to build a custom RCDC UI.
It should contain two dropdownlists
1. Regions
2. Organizations
We have fixed number of regions for which I have used XMLDatasource.
<my:XmlDataSource my:Name="regions"><Regions><CountryRegion Code="" Name="" /><CountryRegion Code="Reg1" Name="Region1" /><CountryRegion Code="Reg2" Name="Region2" /></Regions></my:XmlDataSource>
But We need to populate the organizations based on the selected region.
I have tried using one more xml reference as shown below:
<my:XmlDataSource my:Name="Organizations"><Organizations><Reg1><Organization Code="" Name="" /><Organization Code="Org1" Name="Org1" /><Organization Code="Org2" Name="Org2" /></Reg1><Reg2><Organization Code="" Name="" /><Organization Code="Org3" Name="Org3" /><Organization Code="Org4" Name="Org4" /></Reg2></Organizations></my:XmlDataSource>
And my UocDropdownList controls are shown below:
<my:Control my:Name="Region" my:TypeName="UocDropDownList" my:Caption="Region" my:Description="" my:RightsLevel="{Binding Source=rights, Path=Region}" ><my:Properties><my:Property my:Name="Required" my:Value="false" /><my:Property my:Name="ValuePath" my:Value="@Code" /><my:Property my:Name="CaptionPath" my:Value="@Name" /><my:Property my:Name="HintPath" my:Value="@Name" /><my:Property my:Name="ItemSource" my:Value="{Binding Source=regions, Path=/Regions/*}" /><my:Property my:Name="SelectedValue" my:Value="{Binding Source=object, Path=Region, Mode=TwoWay}" /></my:Properties></my:Control><my:Control my:Name="Organization" my:TypeName="UocDropDownList" my:Caption="Organization" my:Description="" my:RightsLevel="{Binding Source=rights, Path=Organization}" ><my:Properties><my:Property my:Name="Required" my:Value="false" /><my:Property my:Name="ValuePath" my:Value="@Code" /><my:Property my:Name="CaptionPath" my:Value="@Name" /><my:Property my:Name="HintPath" my:Value="@Name" /><my:Property my:Name="ItemSource" my:Value="{Binding Source=Organizations, Path=/Organizations/%Attribute_Region%/*}" /><my:Property my:Name="SelectedValue" my:Value="{Binding Source=object, Path=Organization, Mode=TwoWay}" /></my:Properties></my:Control>Unfortunately, this approach din't work for me as %Attribute_Region% is not available for the object as this RCDC is used for creation.
Is there any better approach for achieving this?
Please advice.
Thanks and Regards, Siva Kumar Balaguru
↧
FIMMA FS getting stuck
Can someone please help me in understanding the following error. After this warning occurs in event viewer, FIMMA fs is getting stuck.
The description for Event ID 0 from source FIMSynchronizationService cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local
computer.
If the event originated on another computer, the display information had to be saved with the event.
The following information was included with the event:
accountName named Microsoft.MetadirectoryServices.Impl.AttributeImpl will be deleted on the next AD MA Export Run Profile
the message resource is present but the message is not found in the string/message table
↧
FIM String manipulation with declartive rules
I thought this would be easy, but apparently it isn't. I have an attribute called HR_DISPLAYNAME fed from a database. I need to split the sting into first name last name. However, sometimes there is a middle initial, and sometimes a full
middle name. I tried this, but it fails:
IIF(IsPresent(Word(HR_DISPLAYNAME,3," ")),Word(HR_DISPLAYNAME , 3, " "),Word(HR_DISPLAYNAME , 2, " "))
Attribute HR_DISPLAYNAME
FirstName LastName
FirstNam MiddleName LastName
FirstNam MI LastName
↧
Azure MA.
Hi folks,
I've just been looking at this MSDN article in relation to the AAD MA and was surprised to read that it does not support password notification - or at least that's how I've interpreted the note in the Operations section.
Can someone confirm my understanding of this article that we can no longer use PCNS to target the AAD MA? (I say "no longer" in the context that I was able to do this with OLMA under Live@EDU)
Cheers,
Lain
↧
↧
What is the build number of the FIM 2010 R2 Sp1 available (release date 2/28/2013) on MSDN subscriber downloads?
We want to upgrade our FIM 2010 R2 hosted on Windows 2008 R2 servers using Sharepoint 2010 for Portal access.
Reading the forum I get the feeling that the correct upgrade (Sp1) media is important, as is the build number.
The MSDN subscriber download just lets me download
<label class="description" id="description0">Forefront Identity Manager 2010 R2 with SP1 (x86 and x64) - DVD (Multiple Languages) </label>
ISO Multiple Languages Release Date: 2/28/2013
<label class="detailtitle">File Name: </label>
<label id="filenameLabel">mu_forefront_identity_manager_2010_r2_with_sp1_x86_x64_dvd_1738648.iso</label>
it doesnt tell me the build number.
What I hope someone can let me know that this .iso file can be used to upgrade our System (ok we need expand it like a boot disk first)
↧
Reporting on basis of request attributes
We have one specific requirement , As in our FIM env. there's more than 18 lakh requests so we want that only some specific types of request should be synced with FIM Reporting (SCSM) as we want that built-in-sync account request shouldn't
come in reporting . Is it possibe to control the request movement from FIM server to SCSM server for reporting on basis of request's attributes.
↧
Attribute is Not present
Hello All,
There is a need to update the status of the record in MV when there change in value for location in SQL table, The code is working for the existing user, it fails for the New user with the Error message. Kindly advice.
Microsoft.MetadirectoryServices.AttributeNotPresentException: Attribute "location" is not present.
at Microsoft.MetadirectoryServices.Impl.AttributeImpl.get_Value()
at Mms_ManagementAgent_SQLMAExtension1.MAExtensionObject.Microsoft.MetadirectoryServices.IMASynchronization.MapAttributesForImport(String FlowRuleName, CSEntry csentry, MVEntry mventry)
The below is scenario
NEW - Update mventry["status"].value = "NEW"
Update - Update mventry["status"].value = "Update"
No Update - Update mventry["status"].value = "No update receive"
Advance attribute flow is mapped location(Datasource)->location(MV)
The Code is below
case "Status":
if ( string.IsNullOrEmpty(mventry["location"].Value)== true)
{
// New creation
mventry["status"].Value = "NEW";
}
else
{
if (csentry["location"].Value == mventry["location"].Value)
{
// NO Update
mventry["status"].Value = "No update receive";
}
else
{
//Update
mventry["status"].Value = "Update";
}
}
break;
Thanks and Regards,
Anirban Singha
↧
Cannot see a "Create Person" requests on IDs created on FIM MA Export
Hello,
I'm encountering an issue, not sure if it's an issue at all, but I thought that every action in portal should have it's request, especially an object creation, and altought objects are created (on FIMMA Export) - have the "Creator" set to Built-in Synchronization account and a Creation Time I cannot see the creation requests in Portal. What I can see are only "System Event Requests" by FIM Service account which basically are a triggers from some additional custom MPR on those creations I cannot see. Could anyone advise if it's normal and why the "Create Person" requests cannot be seen after FIM MA Export which actually created those objects ? (I can only see some "Create msidmCompositeType:''" Requests)
Thanks for any suggestions
Regards
Bart
↧
↧
Provisioning multiple accounts for same user in AD
Hi,
I have a scenario where multiple accounts needs to be provisioned in AD for a user. Eg. one is a normal account and other is a privileged account. While normal account provisioning is in place, I am in search of resources to enable provisioning the 2nd account for the same user. Has anyone done this previously? Can someone point me to a resource or let me know if this is feasible in FIM 2010?
Thanks in Advance.
Kris
↧
FIM and RDS Remote Desktop Service
Hi,
We need to provide the FIM sync console to more than 2 users. As FIM sync console can not be installed on another server that hosts FIM synchronization service, we plan to install RDS (Remote Desktop Services) on the Windows Server 2012 that hosts FIM Synchronization and FIM Service.
Is it possible / supported? If not , Why? same port?
Regards,
SG
↧
Password change in Oracle Internet Directory.
Hi,
One of customers has OID (Oracle Internet Directory) 11.1.1.2.0 in his environment. Does Generic LDAP connector (http://msdn.microsoft.com/en-us/library/dn510997(v=ws.10).aspx ) has a feature to change password for users in OID?
There is a bit about Oracle LDAP, but it is about Oracle (previously Sun) Directory Server Enterprise Edition
- Supports all operations for delta import
- Supports Set Password and Change Password
Do you know if it supports OID 11.1.1.2 or should I create my own agent to be able to change password there?
I've seen old topics about OID, but they are pretty old (ILM related or so).
If you found my post helpful, please give it a Helpful vote. If it answered your question, remember to mark it as an Answer.
↧
Add a hyperlink to SSPR success page
Is it possible to add a hyperlink to the FIM 2010 R2 sspr success page after a password reset?
I know you can customize text by modifying the strings.resource file, but I can't seem to add a hyperlink.
If I type out the HTML tag it doesn't work.
Cheers
IT Support/Everything
↧
↧
Calling all FIM fans! Your chance to win love and glory! Be our November TechNet Guru!
November has been designated National Novel Writing Month and National Blog Posting Month.
But we don't want that! We want a professional wiki article!
TechNet Wiki provides anyone the chance to contribute Microsoft technology related content to the community!
And we'll love it, and tweak it, and show the world!
Everyone has an equal chance of becoming our TechNet technology Guru, every month.
Separate teams of judges (6-8 per category) read every article submitted.
Some of the most influential members of Microsoft in your favourite technologies contribute their judging time to this competition.
TechNet Guru awards also help to promote your progress within the community... and its inner circles.
These competitions also help towards real awards, even MVP recognition!
All you have to do is add an article to TechNet Wiki from your own specialist field. Something that fits into one of the categories listed on the submissions page. Copy in your own blog posts, a forum solution, a white paper, or just something you had to solve for your own day's work today.
Drop us some nifty knowledge, or superb snippets, and become MICROSOFT TECHNOLOGY GURU OF THE MONTH!
This is an official Microsoft TechNet recognition, where people such as yourselves can truly get noticed!
HOW TO WIN
1) Please copy over your Microsoft technical solutions and revelations toTechNet Wiki.
2) Add a link to it on THIS WIKI COMPETITION PAGE (so we know you've contributed)
3) Every month, we will highlight your contributions, and select a "Guru of the Month" in each technology.
If you win, we will sing your praises in blogs and forums, similar to the weekly contributor awards. Once "on our radar" and making your mark, you will probably be interviewed for your greatness, and maybe eventually even invited into other inner TechNet/MSDN circles!
Winning this award in your favoured technology will help us learn the active members in each community.
Feel free to ask any questions below.
More about TechNet Guru Awards
#PEJL
Got any nice code? If you invest time in coding an elegant, novel or impressive answer on MSDN forums, why not copy it over toTechNet Wiki, for future generations to benefit from! You'll never get archived again, and
you could win weekly awards!
Have you got what it takes o become this month's
TechNet Technical Guru? Join a long list of well known community big hitters, show your knowledge and prowess in your favoured technologies!
↧
GAL Synchronization Error Export
Hola que tal?
I have the followingscenario:
FirstForest:
a server withExchange 2013
a Server2012R2Active Directory
a ServerwithFIM 2010 Synchronization
secondForest
a server withExchange 2013
a Server2012R2Active Directory
thirdForest
a ServerwithExchange 2010
a Server2008Active Directory
TheFIMservercommunicates tothe controllersof thesecond and thirdforest, open ports:
LDAP
DNS
Kerberos
TheFIMservercuentra with hostrecords
10.x.x.xforest2.local
10.2.X.Xforest3.local
There arenoconditionalforwarderin theforestonecan not createaconditionalforwarderas thename of thelocaldomainare equal to thepublicdomainand generatea conflicttoresolve names.
when I doan exportGALagentsgenerates the followingerror:
ExportForesttwo
Stoppedextension-dll-exception
ExportForestthree
Stoppedextension-dll-exception
I have the followingscenario:
FirstForest:
a server withExchange 2013
a Server2012R2Active Directory
a ServerwithFIM 2010 Synchronization
secondForest
a server withExchange 2013
a Server2012R2Active Directory
thirdForest
a ServerwithExchange 2010
a Server2008Active Directory
TheFIMservercommunicates tothe controllersof thesecond and thirdforest, open ports:
LDAP
DNS
Kerberos
TheFIMservercuentra with hostrecords
10.x.x.xforest2.local
10.2.X.Xforest3.local
There arenoconditionalforwarderin theforestonecan not createaconditionalforwarderas thename of thelocaldomainare equal to thepublicdomainand generatea conflicttoresolve names.
when I doan exportGALagentsgenerates the followingerror:
ExportForesttwo
Stoppedextension-dll-exception
ExportForestthree
Stoppedextension-dll-exception
↧
Cross Forest configuration
I have two domains: Domain A and Domain B. Domain A has an Exchange Server. Using Cross-Forest setup, I should be able to enable users in both domains to access the FIM portal. If I want to give users in domain B a mailbox in the Exchange server (which is located in Domain A), do I need to create AD accounts for those users in Domain A as well? Will FIM require one-way trust between the domains, or two-way trust?
Thanks in advance!
John
↧
How to reflect the use of a custom cert in an unattended setup of FIM R2 SP1 Portal & Service?
Hi,
When doing an unattended installation of FIM Portal & Service there is a parameter that indicates the certificate subject name to generate: 'CERTIFICATE_NAME'.
But, the GUI-based setup shows a choice:
- Select a certificate located in the local certificate store
- Generate a new self-issued certificate
How do I accomplish a selection from the local certificate store through an unattended install?
It seems that for instance using 'CERTIFICATE_NAME=MyCustomFIMCert' does not search the store first but creates an additional self-issued certificate with exactly the same name; in the msi installer log it then complaints that the installer found certificates with the same name.
Anyone any tips how to deal with this behavior?
THANKS :-)
Danny Alvares, Senior Technology Consultant
↧
↧
FIM WebService Connector
Hi
I'm struggling with the FIM Web service connector in different areas that i need some help with.
For starters i just want to let you know that i've worked a great deal with the connector, and learned how to cope with most of the shortcomings and quirks. My work has mostly been for on-premise tasks, i.e. connecting to other on-premise systems.
Now I am trying to connect to a Web service over the Internet, hence the security setup is significantly different from what I am used to in conjunction with the Web Service Connector.
I this case the web services is https based and also requires a client certificate for authentication.
The client certificate part is actually not a problem as the connector supports authenticating using client certificates natively and it works like a charm.
My problems seems to be around using a https based web service, also that the web service presents itself as supporting both soap and soap12 requests. When I add the web service to the Web Service Configuration Tool, I receive a warning telling that one of my endpoints has a unsupported (custom) binding, that is not a basic http binding. I actually discover two endpoints that seem alike but the failing one is based on soap12. I am not able to remove the failing endpoint within the Web Service Configuration Tool and successive attempts to configure a Management Agent in FIM Sync Manager using this Web Service Project fails as unsupported bindings are used.
According to the hotfix update 1.0.419.911 for the FIM WebService Connector - this update should address certain limitations towards custom bindings, so I tried to implement this update.
But this gave another headache - after updating the Web Service Connector (actually uninstalling the old one, and installing the new one - as there seems to be some versioning mishaps) I am not able to start the Web Service Configuration Console as i am presented with the following error:
---
Error occurred while running the tool
Could not load flie or assemply 'Microsoft.MetaDirectorySericesEx,Version=4.1.2.0...etc...
---
The error is: Strong name validation failed.
I've tried several things to address the issue, i.e.:
- Copying the Microsoft.MetaDirectorySericesEx.dll file from other folder to the UIShell\Web Service Configuration folder as the versions was not alike - resultet in manifest problems.
- Turning off Strong Name Checking for the library in question - the Web Config tools has able to start but crashed when used.
- Upgraded to newest build of FIM Sync (4.1.3559) - still not working.
So - my actual questions are:
- Does the FIM Web Service Connector support accessing web services that are https based in either the old (5.3.407.0) version or the new one (hotfix update 1.0.419.911) ?
- What about soap12?
- Did anyone succeed in implementing the new Web Service Connector update?
- Any hints on solving the problem I encountered with the Web Service Connector ?
Any input highly appreciated.
Best regards
Søren
↧
Same Sync Engine Encryption keys when upgrading FIM R2 to FIM R2 Sp1. why?
Hellos,
Just a quick clarification to help me write up the upgrade report.
I managed to upgrade FIM 2010 R2 to FIM 2010 R2 Sp1 without any issues. It was quite straightforward. However, my brief was to create a report for others describing not just the WHAT but the WHY.
The first step before uninstalling the FIM 2010 R2 software was to backup database and to save the encryption keys (generated by the FIM 2010 R2 installation)
These keys were then used by the FIM 2010 R2 Sp1 installation. WHY? Does this mean that the underlying encrypting mechanism has not changed and will unlikely ever change?
↧
FIM Service seems to be in a loop
I put in a workflow and it seems the FIM service is in aloop. The workflow keeps running and running. I have disabled the MPR but it seems the request is stuck. Any way to kill all these requests or has anyone been in a loop from a workflow?Thanks
↧
More Pages to Explore .....
