A few weeks ago I encountered an ASP.NET error when I tried to access http://myilmserver/identitymanagement/
Eventually I went to my SQL Server and discovered that despite having space on the disk and Autogrow turned on the Transaction Log was full and wouldn’t grow anymore.
So if you encounter this error then maybe you too can listen to the force telling you to check the SQL Server Transaction Log for MSILM.
In the event log I saw this:
AD RMS on Windows Server 2008 R2 adds a really slick feature blogged about here: Group Expansion for Federated Users
Prior to R2 to issue a use license to a federated user they need to specifically be granted permissions. With Windows Server 2008 R2 you can create a contact matching the external federated user and then place the contact in the group and then they have the same RMS permissions as that group.
Once more we invite you to another Ensynch Identity Management webinar. This is part 2 in our series of 4 on Geneva (ADFS, WIF). This one is going to be led by Chris Calderon one of our ADFS Experts, so naturally this will be filled with excellent technical content. As will Part 3 as it focuses on Windows Identity Foundation.
Webinar Agenda:
- How Geneva provides business value to organizations seeking Single-Sign-On (SSO)?
Both my colleague Brad Turner and I were renewed for ILM MVP.
I am glad to receive this honor another year.
Congrats to new ILM MVP Marc Mac Donnell
You can see a list of all ILM MVP’s that have chosen to make their profiles public (Marc hasn’t setup his yet).
I just hope I can win the MVP at home!
http://feeds.feedburner.com/IdentityLifecycleManagerilmBestPractices
When:
Wednesday, July 29, 2009
10:30 to 11:30 (PST)
12:30 to 1:30 (CST)
1:30 to 2:30 (EST)
Presenters:
David Lundell, ILM MVP
Identity Management
Practice Leader, Ensynch
Jonathan Sander
IAM and Security Analyst
Quest Software
Webinar: How Microsoft Geneva
Streamlines Business
- Learn How to Reap the Benefits of True Web
Single-Sign-On and Federation
Has your organization been forced to deploy one-off solutions to solve login or compliance problems with a newly deployed technology?
Are your employees tired of using multiple logins for all kinds of access needs?
Having trouble managing shared resources users both inside and outside of your organization?
Using open platform identity management solution Microsoft Geneva, you can save money and make your business more efficient today, and also make it more easily scalable for the future.
I would like to invite you to our latest exclusive “no frills” webinar: “How Microsoft Geneva Streamlines Business,” the 1st in a 4-part Identity Management Webinar Series from Ensynch’s Identity Management Practice Leader and Microsoft Identity Management MVP, David Lundell, and Quest Software IAM and Security Analyst, Jonathan Sander.
This webinar is designed for business leaders, and will present business value propositions for the Microsoft Geneva framework. Whether identity management is a major concern for your organization or if you are simply curious about using Microsoft Geneva as an asset to help your business, this webinar is for you.
Webinar Agenda:
- Yikes! The business pain points of managing lots of identities
233 years ago, 56 men signed a document and began a labor to give birth to a nation. I am very grateful for their service and for their sacrifices and for each and every soldier, and dutiful civil servant since then. They have afforded me and my family a great many blessings. As well some of my family members have been privileged to serve. One of my grandfathers taught ground school during World War II and the other served in the Army and was stationed in Greenland. I honor their service.
Paweł Jarosz - Sep 1, 2010
Very helpfull!! I was about to block sending emails to disabled accounts - not mailbox but accounts - so I can easily and quick retrieve some data from inactive inboxes. The solution is to create an empty group in AD and set the “dLMemSubmitPerms” parameter to accept messages only from that empty group! Amazing and great many thanks! If somebody else has problem here is the link to the forum with whole conversation -> http://wss.pl/frmThread.aspx?tid=98879
Do you know what attributes are used to control who can and can’t send to a Distribution List in Exchange 2003 and Exchange 2007? or Does it use a DACL?
Knowing such things is key if you are going to automate distribution list management through .NET programs, or MIIS/ILM/FIM, Quest ARS or any other tool that is talking to LDAP attributes. For Powershell you need a separate list since the names are different.
Back in business school I was a connoisseur of fine commercials. Recently I watched a commercial for Lipton Ice Tea (note I am a teetotaler who doesn’t drink tea) and I have to admire their cleverness in coming up with names for competitor products (see the title) in their “Lipton Tea, I think I love you” commercial. (Lyrics here)
Really the names are clever although the best is the H30 – I just love it, a chemical compound that as far as I can tell can’t exist, but we all know they are making fun of flavored water. Of course I also love ordering water by requesting Di-Hydrogen-Oxide.
matthew gibson - Jun 2, 2009
Thanks for writing this up, David. That’s good information.
Can you explain this point…
I have seen one developer use the flow rule names as a language to processor module to handle 90% of his string manipulation. That certainly cut down on the need for re-coding.
I’m not sure I follow.
