A few weeks ago I encountered an ASP.NET error when I tried to access http://myilmserver/identitymanagement/ Eventually I went to my SQL Server and discovered that despite having space on the disk and Autogrow turned on the Transaction Log was full and wouldn’t grow anymore. So if you encounter this error then maybe you too can listen to the force telling you to check the SQL Server Transaction Log for MSILM.
AD RMS on Windows Server 2008 R2 adds a really slick feature blogged about here: Group Expansion for Federated Users Prior to R2 to issue a use license to a federated user they need to specifically be granted permissions. With Windows Server 2008 R2 you can create a contact matching the external federated user and then place the contact in the group and then they have the same RMS permissions as that group.
Once more we invite you to another Ensynch Identity Management webinar. This is part 2 in our series of 4 on Geneva (ADFS, WIF). This one is going to be led by Chris Calderon one of our ADFS Experts, so naturally this will be filled with excellent technical content. As will Part 3 as it focuses on Windows Identity Foundation. Webinar Agenda: - How Geneva provides business value to organizations seeking Single-Sign-On (SSO)?
Both my colleague Brad Turner and I were renewed for ILM MVP. I am glad to receive this honor another year. Congrats to new ILM MVP Marc Mac Donnell You can see a list of all ILM MVP’s that have chosen to make their profiles public (Marc hasn’t setup his yet). I just hope I can win the MVP at home! http://feeds.feedburner.com/IdentityLifecycleManagerilmBestPractices
When: Wednesday, July 29, 2009 10:30 to 11:30 (PST) 12:30 to 1:30 (CST) 1:30 to 2:30 (EST) [Register Now] Presenters: David Lundell, ILM MVP Identity Management Practice Leader, Ensynch Jonathan Sander IAM and Security Analyst Quest Software Webinar: How Microsoft Geneva Streamlines Business - Learn How to Reap the Benefits of True Web Single-Sign-On and Federation Has your organization been forced to deploy one-off solutions to solve login or compliance problems with a newly deployed technology?
233 years ago, 56 men signed a document and began a labor to give birth to a nation. I am very grateful for their service and for their sacrifices and for each and every soldier, and dutiful civil servant since then. They have afforded me and my family a great many blessings. As well some of my family members have been privileged to serve. One of my grandfathers taught ground school during World War II and the other served in the Army and was stationed in Greenland.
Very helpfull!! I was about to block sending email… PaweÅ‚ Jarosz - Sep 1, 2010Very helpfull!! I was about to block sending emails to disabled accounts - not mailbox but accounts - so I can easily and quick retrieve some data from inactive inboxes. The solution is to create an empty group in AD and set the “dLMemSubmitPerms” parameter to accept messages only from that empty group! Amazing and great many thanks!
Do you know what attributes are used to control who can and can’t send to a Distribution List in Exchange 2003 and Exchange 2007? or Does it use a DACL? Knowing such things is key if you are going to automate distribution list management through .NET programs, or MIIS/ILM/FIM, Quest ARS or any other tool that is talking to LDAP attributes. For Powershell you need a separate list since the names are different.
Back in business school I was a connoisseur of fine commercials. Recently I watched a commercial for Lipton Ice Tea (note I am a teetotaler who doesn’t drink tea) and I have to admire their cleverness in coming up with names for competitor products (see the title) in their “Lipton Tea, I think I love you” commercial. (Lyrics here) Really the names are clever although the best is the H30 – I just love it, a chemical compound that as far as I can tell can’t exist, but we all know they are making fun of flavored water.
Thanks for writing this up, David. That’s goo… matthew gibson - Jun 2, 2009Thanks for writing this up, David. That’s good information. Can you explain this point… I have seen one developer use the flow rule names as a language to processor module to handle 90% of his string manipulation. That certainly cut down on the need for re-coding. I’m not sure I follow. Thanks, Again. Matthew One developer wrote a module that could interpret stuff like this
