Hi All
I want to generate account name using MIMWAL in MIM Portal as below
Account name like last name+first name first letter, first name second letter etc till the first name gets end than we have to pick the middle name first letter, middle name last letter like so on
Thanks
Hi All,
I am not sure why MS keep on providing wrong articles!
I am looking for a suggestion from people done the MIM project for SSPR earlier.
I was going through this: https://docs.microsoft.com/en-us/microsoft-identity-manager/install-mim-service-portal
Now, Portal Site + Password Reset Site+ Password Registration Site for Port 80 will make only Portal is working and others are stopped cause (we cannot run more than 1 web site using 80 port). when I came to configure SSRP site with 443 and SSL, I found that Portal Site is aleady based on BP should be working on 443 and SSL!
Let us forget all the shit mentioned in the articles, and please from your experiance, let me know what could be the best ports for:
Appreciated your respond.
Hi All,
I've been working towards adding a field to the Contact Info tab for the 'msidmPhoneGatePhoneNumber' attribute, so that our helpdesk team can quickly see if a user has a number registered for SSPR.
So far, i've done the following:
<my:Control my:Name="msidmPhoneGatePhoneNumber" my:TypeName="UocLabel" my:Caption="{Binding Source=schema, Path=msidmPhoneGatePhoneNumber.DisplayName}" my:Description="{Binding Source=schema, Path=msidmPhoneGatePhoneNumber.Description}"><my:Properties><my:Property my:Name="Required" my:Value="{Binding Source=schema, Path=msidmPhoneGatePhoneNumber.Required}"/><my:Property my:Name="Text" my:Value="{Binding Source=object, Path=msidmPhoneGatePhoneNumber, Mode=TwoWay}"/></my:Properties></my:Control>3. Uploaded the new RCDC into the portal.
When using the portal to view a user (ticking the box and clicking details), the page just pops up with the 'unable to process your request' error.
If i click on the users name in the list, the edit window opens fine.
I've had a look at capturing the logs, but they don't seem to indicate an obvious cause.
Has anyone else come across this before
Thanks
Anthony
Sample Portal (8090) and download of thepamroles.json file not working from remote machines. They are working from PAM server browser (locally). Can anyone advise, how to fix this issue?
In PAM Sample Portal, User has to provide password 3 times. Is there any way that we can limit it to 1 time?
Hello,
I am following this guide to create a new REST connector for my MIM 2016: https://docs.microsoft.com/en-us/microsoft-identity-manager/reference/microsoft-identity-manager-2016-ma-ws-restgeneric#next-steps
this is my sample response:
{"EmployeeList": [
{"Id": <TZ-id-number>,"EmployeeId": <worker-id>,"Name": {"first": <first-name>, "sir": <sir-name>},"Contract":{"code": <code number>,"desc": <description>},"Classification": {"code": <code number>,"desc": <description>},"Status": {"code": <code number>,"desc": <description>},"Company": {"code": <code number>,"desc": <description>},"Job": {"code": <code number>,"desc": <description>},"Position": {"code": <code number>,"desc": <description>},"Department": {"code": <code number>,"desc": <description>},"SecondaryDepartments": [
{"code": <code number>,"desc": <description>},
{"code": <code number>,"desc": <description>},
{"code": <code number>,"desc": <description>}
],"Office": <office phone>,"Mobile": <mobile phone number>,"Home": <home phone number>,"HireDate": <date>,"RetireDate": <date>,"UpdateDate": <timestamp>
}
]
}the guide doesn't specify how to select advanced objects - and I am unsuccessful in figuring it out by myself.
for example how would I configure first name in the web service configuration tool?
Hi Team,
I have a request to Exclude users from SSPR.
All users are Sync from AD to MIM.
I am new to this, I wish if you can guide me to location where I can exclude.
Hi Sir,
Sorry for many questions, i am new here, and I have no good background, and I am not able to find a quick response over internet.
My customer is looking if they can avoid Password Registration step, and let all users jump automatically to SSPR.
IF this is not possible then please help me with proof like from MS about this.
If this is possible, then please share with me the required steps
Hi Dears,
I have MIM Sync, synced all my on-premises AD users.
How can I exuded users from ability to use SSPR?
Hi All,
Just need some help/thoughts
My scenario is described as follows
1. Importing Records from HR (Authoritative SOR)
2. MPR/WFs process new records from HR before creation in MIM Portal/AD and other connected Data sources.The processing includes generating and deriving, accountName, dn, Display Name based on naming convention, initial AD password. mailbox location for Exchange
Server etc.
What I want to achieve
1. I want to import the Initial Load of existing Users/Groups in AD to be created in the MIM Portal but want to exempt the existing records coming from AD, from being processed by the MPR/WFs in #2 above that processes every record that gets created in the
MIM Portal.
In summary attributes from existing records in AD should remain unchanged, after initial load into the MIM Portal. Subsequent changes can be initiated from the HR SOR, via Join and sync actions.
How can I achieve this ?
Thoughts/Feedback appreciated
Akinzo
Hi all,
I'm not sure if this is a bug or a feature. I am faced with the problem that an Authorization Workflow is triggered by multiple MPR's, as the user has multiple roles e.g. support and HR. Both MPRs trigger the same Authorization Workflow when an attribute
is changed.
I now see in the search requests that two approvals are created, so the approvers also see two pending approvals in the portal.
If the approver processes only one of the two requests, the other is automatically set to the status that the approver has selected.
I wonder whether this is correct, whether two approvals are created, or whether this is an error. If it is correct, has anyone ever built a solution that starts only one Approval?
KR Mario
Hi,
We have FIM 2010 R2 running on a Windows 2012 server.
The FIM solution consists of several MV and MA Rules Extensions, PowerShell scripts, and some "Code Run" activities from https://github.com/sorengranfeldt/fimactivitylibrary.
Since Windows 2012 is supported by MIM 2016 SP1, can we simply do an in-place upgrade from FIM to MIM?
Will the MV and MA extension need a recompile?
I assume PowerShell will continue to work.
Will have to check with Soren Granfeldt on his FIM Portal activity.
Thank you,
SK
Hi Guys,
My current MIM version is 4.3.1935.0 and I am trying to upgrade to 4.5.286.0. Windows version is "Windows Server 2012 R2"
I downloaded the updates and when I tried to run through cmd prompt as Administrator I am getting below error. Please let me know how do I resolve this.
Regards, Chandan
I have a radiobuttonList, when I select any of the option like if i sleect Consultant, then the ProposedEndDate Textbox should be Enabled same way for other values. here the values are considered as strings.
I have a radiobuttonList, when I select any of the option like if i sleect Consultant, then the ProposedEndDate Textbox should be Enabled same way for other values. here the values are considered as strings.
DEars,
I am using this: https://docs.microsoft.com/en-us/previous-versions/mim/jj134294(v=ws.10)
I am getting below error:
What could be the solution?
When our help desk staff submits a request on a behalf of another user the default email sent to the approver is misleading in that it looks like it's the help desk person that is requesting the access instead of the true beneficiary. I believe this is because of the parameter: //Requestor/DisplayName in the "Default pending approval email template" which resolves to the person submitting the request instead of the beneficiary. How can I modify the email template so that it reflects the actual beneficiary's name instead of the person requesting the access?
Also, are the email templates and object model documented anywhere? There might be additional details I'd like to include to include in the approval, rejection and completion e-mails.
Any guidance is appreciated!
Christian
Hi everyone,
We have a MIM 2016 implementation and are possibly moving to MIM SSPR from a 3rd Party Tool. One of the things our Security team is wondering is if our Help Desk is able to see/administer user's Security Questions so they can authenticate them if they call into the Help Desk with an account issue. I heard off-handed that MIM 2016 did not support this and you could not see what users put for their Security Questions. I tried doing numerous searches on the topic but did not find any clear answers on this.
If users enroll/answer Security Questions, is there anyway for Administrators or Users with Elevated Rights in the Portal to see what they have put as their answer to accomplish this?
Thank you in advance for any helpful information/insight you may have on this!