FIM 2010 R2

DirSync w/ domain if NetBios and FQDN don't match

October 4, 2013

If one of your AD domains has a NetBios domain name that doesn’t match the leftmost part of your FQDN you need to have the Replicating Directory Changes permission given to your AD MA account. This is documented in a few places including my book. However, DirSync misses this step. Normally, Dirsync does a very good job of installing and configuring everything which you need without needing you to be an expert in FIM, but this is one thing it misses.

Continue reading

Declarative or Bust!

October 4, 2013

I see two challenges: 1. There is not feature pari… Craig Martin - Oct 3, 2013I see two challenges: 1. There is not feature parity between the two types of sync rules 2. The imperative support (VBA) in the new sync rules is limited and difficult to debug My wish is that we had better extensibility in the new sync rules (scrap VBA, or figure out how to improve the extensibility and debugging).

Continue reading

Declarative or Bust!

October 4, 2013

Michael Pearn from down under wrote about his experience trying to use just Declarative Sync Rules His experience – especially the religious debates are similar to my own. It made me recall my presentation at TEC 2012 the FIM 2010 R2 Showdown: Classic vs. Declarative The vast majority of old hands at the presentation declared for Classic both before and after the presentation. During the presentation I attempted to view anything you could do without code as declarative whether it came from a sync rule or not, especially if it was a new feature.

Continue reading

How to get from the Sync-Rule-ID to the Sync Rule Resource ID

May 1, 2013

Thanks, David. You had the knowledge, answered my … Unknown - May 3, 2013Thanks, David. You had the knowledge, answered my forum question and blogged about it as well. Nice work. PeteA

Continue reading

How to get from the Sync-Rule-ID to the Sync Rule Resource ID

May 1, 2013

If you are looking at the XML export of the FIM synchronization config and you are trying to track down which sync rule is supplying a particular flow you just need to know which numbers lead you where. For example: The key to finding the Sync rule is of course the Sync rule ID. However, this is not the resource ID that I can search for in the FIM Portal. Rather this is the metaverse ID.

Continue reading

FIM Functions Updated, Bitwise Functions

April 12, 2013

In addition to the official reference for functions I thought I would update my examples from back in the ILM 2 Beta days Function Name BitAnd Parameters mask Type: Integer flag Type: Integer Description BitAnd is a bitwise operation anding mask and flag. So if Flag is the UserAccountControl Attribute in AD and mask is **-3 **(the 64-bit two’s complement of 2) Then the result is that the disable bit (bit 2) is turned off leaving all of the other bits unchanged.

Continue reading

Insight Cloud SSO Solution and FIM Jumpstart offerings

March 22, 2013

I wrote an article for the Insight Newsletter about two of our new offerings. Solving identity and access management for mid-sized business By David Lundell, Sr. Manager, Identity and Security Practice User productivity, IT budgets, and security and compliance all suffer from ineffective identity and access management. Insight has two new packages aimed at helping mid-sized businesses confront these challenges in the age of the cloud. Read more. http://feeds.feedburner.com/IdentityLifecycleManagerilmBestPractices

Continue reading

Secrets of the Metaverse Part 5

March 22, 2013

Parts 1-5: What is the Metaverse? How is the Metaverse data stored? Is there a limit to how many Metaverse attributes I can have? Has access to the metaverse gotten faster with recent releases? How do I safely query the metaverse? Added (Aug 5 2015): How Many Metaverse Attributes can I have? First of all the FIM Product group does not support direct modification of the data in any of the FIM databases.

Continue reading

Secrets of the Metaverse Part 4

March 11, 2013

Parts 1-5: What is the Metaverse? How is the Metaverse data stored? Is there a limit to how many Metaverse attributes I can have? Has access to the metaverse gotten faster with recent releases? How do I safely query the metaverse? Added (Aug 5 2015): How Many Metaverse Attributes can I have? Has access to the metaverse gotten faster with recent releases? Well I won’t cover everything they have done but two really significant things:

Continue reading

Secrets of the Metaverse Part 3

February 18, 2013

Parts 1-5: What is the Metaverse? How is the Metaverse data stored? Is there a limit to how many Metaverse attributes I can have? Has access to the metaverse gotten faster with recent releases? How do I safely query the metaverse? Added (Aug 5 2015): How Many Metaverse Attributes can I have? Many times people wonder how many attributes they can create in the Metaverse Designer tool. The answer is confusing because … it depends.

Continue reading

Search

Categories

Tags