Blog

Troubleshooting SQL Attribute Stores with ADFS

September 1, 2011

Several others have showed how to define SQL attribute stores with ADFS. Note that when entering the connection string there is no validation or feedback to the administrator. If there is a problem you usually won’t see it until you setup a claims rule that uses it and you get an error. So make certain to carefully build and test your connection string. Remember that if you use integrated authentication to connect to the SQL Server that it will run under the context of your ADFS Service account so you will need to grant your ADFS service account permissions to the SQL Server and Database.

Continue reading

Using FIM Best Practices Volume 1 to study for the FIM exam

July 28, 2011

Took the exam last week, the book was a very helpf… Anonymous - Aug 3, 2011Took the exam last week, the book was a very helpful study tool. Phil

Continue reading

Using FIM Best Practices Volume 1 to study for the FIM exam

July 28, 2011

Ok so info on the exam and its list of items covered is provided here For fun I thought I would map out the domain objectives to items in the FIM Best Practices Volume 1 The book helps with items in area 1 Planning a FIM Implementation and Installing FIM. Objective Chapter 1. Planning a FIM Implementation and Installing FIM  1.1 Plan and design FIM topology 4 and 5

Continue reading

Beta Exam for FIM available until Aug 4th

July 28, 2011

http://borntolearn.mslearn.net/btl/b/weblog/archive/2011/07/18/forefront-identity-manager-fim-beta-exam-now-available.aspx Beta exam 71-158_, TS: Forefront Identity Manager 2010, Configuring_ So in a short while we should see some folks who are actually Microsoft Certified Technical Specialists(MCTS) for FIM! http://feeds.feedburner.com/IdentityLifecycleManagerilmBestPractices

Continue reading

FIM Bug for multi-valued strings that need approval

June 28, 2011

I think I found a bug in FIM Version 4.0.3576.2 take a look: It appears that when you have a multi-valued string attribute when you add more than 1 value at a time and you need approval to create the object or to update the attribute, the request will fail. In the event log you will see an error (UnwillingToPerformException … CREATE UNIQUE INDEX statement terminated because a duplicate key was found for the object).

Continue reading

SQL Extensible Management Agents That Scale (Rebecca Croft)

June 23, 2011

Rebecca, a fellow Ensynchian, presented at TEC 2011 on the limitations of the standard out of the box SQL Management and how she overcame them by writing a very fast eXtensible Management Agent (XMA). First attempt use ado.net sql reader to read data (really fast) and write one row at a time to the AVP file (but that gets slow when dealing with large data sets). Second attempt use the T-SQL “FOR XML” clause to transform the data to XML and then use an XSLT to transform to LDIF.

Continue reading

RCDC Editor

June 17, 2011

As previously discussed the RCDC is a very powerful tool for customizing FIM without writing your own front-end and web client. There are several drawbacks to the RCDC. The worst is that you have to export the RCDC to an xml file, open it up in your favorite XML editor, modify it by hand, load it back into the FIM Portal and then run iisreset. All of which means that mistakes are quite painful, as it can take you several minutes to discover your mistake.

Continue reading

RCDC Requiring another field

June 14, 2011

Ok I just had to blog this. I created a custom resource type in FIM for resource mailboxes (Room and Equipment) with accompanying RCDC’s. Based on a Boolean attribute I hide or make visible a tab of info about Room resources on the edit and view RCDC’s. (You can’t do that to the create RCDC because the object doesn’t yet exist) But, I would like to make room number on the Hidden tab to be required when the tab is visible, and not when the tab isn’t.

Continue reading

FIM 2010 R2 News

May 23, 2011

At Tech Ed Atlanta Brjann Brekkan and Mark Wahl discussed FIM 2010 R2 in a public forum – so here is a lot of info that is now in the public forum. Mark covered the new items that will come out in R2: Web Based Password reset (no need for a domain joined computer, no need to install Password Client no need for Active X, support for Firefox)

Continue reading

Behind the scenes of RoomResources–Custom Properties

May 16, 2011

While using FIM and PowerShell to manage Exchange 2010 I was following along a wonderful article on resource mailboxes that left me wondering a few things. Exactly how is the data stored in the msExchResourceDisplay and msExchResourceSearchProperties attributes? How is it stored with multiple custom properties? Is manipulating those AD attributes sufficient or is PowerShell storing something in the Exchange Data store? Here are the answers:

Continue reading

Search

Categories

Tags