Active Directory Federation Services v2 Ships! This is awesome stuff – with ADFS v2 we can help you setup SSO with your SaaS vendors. Here is an example that has been rendered generic. ADFS 2.0 supports SAML 2.0 (the idp lite profile and rdp lite profile) which opens up many federation doors and WIF allows us to write custom security token services (sts) just in case the idp lite and rdp lite profile support isn’t up to handling the interaction.
If you attended TEC you can now get the Slide Decks by registering on TheExpertsCommunity.com and accessing the following item: TEC 2010 Conference Materials Have Been Posted! You can find my sessions here: http://theexpertscommunity.com/item/list/type/session/meta_expert_tag/speaker%3Adavidlundell Proper Care and Feeding of Your Databases: FIM, ILM, CLM, RMS, SharePoint and OCS Without proper care and feeding of your databases (FIM Meta Directory Services, FIM Certificate Services, FIM Web Service, RM… continue reading “Proper Care and Feeding of Your Databases: FIM, ILM, CLM, RMS, SharePoint and OCS”
TEC 2010 was a blast. In the Kickoff Gil Kirkpatrick issued several challenges including one to Brad Turner to simulate the workings of the FIM Sync Engine. Eventually we expect to see a video of the final presentation posted to YouTube. In the interim Brad has some nice pictures posted: TEC 2010 – Annual Wook Lee Memorial Challenge for Identity Results I attended Craig Martin’s session “Automate FIM deployment with Powershell” and learned a few things about the FIM Powershell commandlets.
I went to Prague for a project intending to stay one week, but unfortunately I was delayed an additional week (volcanic ash cloud from Iceland – reread the news if you missed it). While Prague is a beautiful city and I met many wonderful people, the uncertainty of when I would be able to get home weighed heavily on me. I was worried about being separated from my family for weeks?
Great job David and crew! Marc Mac Donell, CISSP - Apr 4, 2010Great job David and crew!
Microsoft has published a short version of the FIM Technical Overview whitepaper written by David Lundell (me), Brad Turner, Chris Calderon and Joe Zamora. The longer version will come out a bit later. Short version, long version makes me feel kind of like I am figure skating in the Olympics. Thank you to Brjann Brekkan, Mark Wahl, Joe Schulman, Darryl Russi, Jack Kabat and Andreas Kjellman for their support, editing, eluciations on blogs and encouragement on this paper.
In the days of MIIS 2003 and ILM 2007 we usually wrote our provisioning code to provision a new AD account only when the particular metaverse object didn’t already have any connectors in the AD connector space. With FIM your outbound synchronization rule is quite happy to provision another AD account if the existing one it is joined to doesn’t meet the relationship criteria. So I have usually been in the habit of not worrying about extraneous provisioning if I already had an account connected to that metaverse object.
Register using this code to get a discount: ATESENSYNC http://feeds.feedburner.com/IdentityLifecycleManagerilmBestPractices
I am super excited about speaking at The Experts Conference 2010 (I also spoke at Directory Experts in ‘07, and ‘08 as well as last year’s The Experts Conference). Register using this code to get a discount: ATESENSYNC Once more Ensynch is sponsoring TEC but this year we are a gold sponsor for TEC 2010. Here is the lineup of Ensynch Speakers at The Experts Conference (also see Brad Turner’s take on our new speakers)
The FIM product group has some great webcasts coming up on technet Forefront Identity Manager 2010 has RTM’ed This first webinar is using many of the slides that I created as part of our engagement to write the FIM 2010 Technical Overview Whitepaper (due out soon). Anyhow it makes me feel cool. 3/9/2010 6 PM Pacific time- TechNet Webcast: Forefront Identity Manager 2010: Technical Overview and Deployment (Level 300) http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032444011&Culture=en-US
