Jorge's Quest For Knowledge!

All About Identity And Security On-Premises And In The Cloud – It's Just Like An Addiction, The More You Have, The More You Want To Have!

Archive for the ‘Connector/MA’ Category

(2015-11-12) Third-Party Generic SQL Management Agent (Connector) Released For FIM/MIM

Posted by Jorge on 2015-11-12


Søren Granfeldt has released a generic SQL MA/Connector that can be used with both FIM and MIM, instead of the default available SQL MA/Connector.

Main features are:

  • Synchronize almost any type of information with SQL Server tables
  • Flexible schema
  • Run stored procedures against the tables as part of the sync import and export schedules
  • Full and delta imports
  • Delta and full exports
  • Can keep and revive deleted information / rows

More information: Generic SQL Management agent released

Download this SQL MA/Connector from Codeplex: SQL Management Agent

Cheers,
Jorge
———————————————————————————————
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always evaluate/test yourself before using/implementing this!
* DISCLAIMER:
https://jorgequestforknowledge.wordpress.com/disclaimer/
———————————————————————————————
############### Jorge’s Quest For Knowledge #############
#########
http://JorgeQuestForKnowledge.wordpress.com/ ########
———————————————————————————————

Advertisements

Posted in Connector/MA, Forefront Identity Manager (FIM) Sync | Leave a Comment »

(2015-10-20) FIM 2010 R2 And MIM 2016: Sharepoint Services Connector (Updated)

Posted by Jorge on 2015-10-20


This new Sharepoint Services connector (v4.3.1935.0) was released by Microsoft on 20-10-2015 (dd-MM-yyyy)

The SharePoint User Profile Store helps you synchronize identity information to the User Profile Store in SharePoint. You can download it from here. More detailed information can be found through the SharePoint Services Connector for FIM 2010 R2 Technical Reference and through MS-KBQ3100358

From a high level perspective, the following features are supported by the current release of the connector:

Requirement Support
Operating System Support Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2
Other Required Software Microsoft .NET 4.5 Framework
FIM/MIM Version FIM 2010 R2 SP1 (build 4.1.3114.0 and higher) ((2013-01-12) Service Pack 1 For Forefront Identity Manager 2010 R2 And BHold Has Been Released)
MIM 2016
Data Source

SharePoint Server 2013 with User Profile service application (UPA)

Supported Scenarios Object Lifecycle Management
User Management
Supported Operations Against Data Source Full Import
Delta Import
Export
Schema

User
Group
Contact

Table 1: Requirements And Supports Features

Cheers,
Jorge
———————————————————————————————
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always evaluate/test yourself before using/implementing this!
* DISCLAIMER:
https://jorgequestforknowledge.wordpress.com/disclaimer/
———————————————————————————————
############### Jorge’s Quest For Knowledge #############
#########
http://JorgeQuestForKnowledge.wordpress.com/ ########
———————————————————————————————

Posted in Connector/MA, Forefront Identity Manager (FIM) Sync | Leave a Comment »

(2014-11-17) FIM 2010 R2: Hotfix Rollup Build 1.0.419.911 For The PowerShell Connector

Posted by Jorge on 2014-11-17


Microsoft released a new hotfix for the PowerShell Connector with build 1.0.419.911. What it fixes can be found in this blog post. For additional or detailed info see MS-KBQ3008179

Download link

PowerShell Connector for FIM 2010 R2 Technical Reference

Issues that are fixed

This hotfix rollup fixes the following issues that were not previously documented in the Microsoft Knowledge Base.

Issue 1

Creating a PowerShell connector without using an LDAP DN style fails because of an issue in the default template.

Features that are added

Features that are added

Feature 1

This update adds support for Windows PowerShell 4.0.

Cheers,
Jorge
———————————————————————————————
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always evaluate/test yourself before using/implementing this!
* DISCLAIMER:
https://jorgequestforknowledge.wordpress.com/disclaimer/
———————————————————————————————
############### Jorge’s Quest For Knowledge #############
#########
http://JorgeQuestForKnowledge.wordpress.com/ ########
———————————————————————————————

Posted in Connector/MA, Forefront Identity Manager (FIM) Sync, Updates | Leave a Comment »

(2014-11-13) FIM 2010 R2: Hotfix Rollup Build 1.0.419.911 For The Web Services Connector

Posted by Jorge on 2014-11-13


Microsoft released a new hotfix for the Web Services Connector with build 1.0.419.911. What it fixes can be found in this blog post. For additional or detailed info see MS-KBQ3008178

Download link

Issues that are fixed

This hotfix rollup fixes the following issues that were not previously documented in the Microsoft Knowledge Base.

Issue 1

The WebServices connector uses 100 percent CPU during password synchronization if many of the password operations fail with a password violation error.

Features that are added

Feature 1

This update adds support for REST-based web services. This includes support for XML and JSON data formats and for parsing these formats.

Feature 2

This update adds support for additional bindings for Transport and Message Level security. The new options are as follows:

  • BasicHTTPBinding
  • WSHttpBinding
  • NetTCPBinding

These bindings also support the following authentication methods:

  • Basic
  • Certificate
  • Digest
  • Windows

Feature 3

In new WebServices connectors, the capabilities page is visible. This makes it possible to configure the connectors’ behavior.

Feature 4

This update adds event tracing for Windows (ETW) logging to the WebServices connector and the configuration tool.

Feature 5

This update adds new templates for SAP to support the following object types:

  • User
  • Role
  • Group

Cheers,
Jorge
———————————————————————————————
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always evaluate/test yourself before using/implementing this!
* DISCLAIMER:
https://jorgequestforknowledge.wordpress.com/disclaimer/
———————————————————————————————
############### Jorge’s Quest For Knowledge #############
#########
http://JorgeQuestForKnowledge.wordpress.com/ ########
———————————————————————————————

Posted in Connector/MA, Forefront Identity Manager (FIM) Sync, Updates | Leave a Comment »

(2014-11-09) FIM 2010 R2: Hotfix Rollup Build 1.0.419.911 For The Generic LDAP Connector

Posted by Jorge on 2014-11-09


Microsoft released a new hotfix for the Generic LDAP Connector with build 1.0.419.911. What it fixes can be found in this blog post. For additional or detailed info see MS-KBQ3008177

Download link

Generic LDAP Connector for FIM 2010 R2 Technical Reference

Issues that are fixed

This hotfix rollup fixes the following issues that were not previously documented in the Microsoft Knowledge Base.

Issue 1

An attribute in the Lightweight Directory Access Protocol (LDAP) schema that is defined as ‘NumericString’ – 1.3.6.1.4.1.1466.115.121.1.36 is defined incorrectly as an integer in the connector. These attributes are now defined as strings instead.

Issue 2

Delta import on Open LDAP is not processing object moves between organizational units (OUs) and containers correctly.

Features that are added

Feature 1

You can now authenticate on an LDAP server by using only a certificate. A username and password are not required.

Feature 2

If the Generic LDAP connector cannot automatically detect the correct way to do a delta import, a drop-down menu is now available that includes the supported options, and the administrator can select the correct option.

Feature 3

This hotfix adds support for the RadiantOne Virtual Directory Server (VDS) version 7.1.1. This version or a later version must be used for the connector to function correctly.

Cheers,
Jorge
———————————————————————————————
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always evaluate/test yourself before using/implementing this!
* DISCLAIMER:
https://jorgequestforknowledge.wordpress.com/disclaimer/
———————————————————————————————
############### Jorge’s Quest For Knowledge #############
#########
http://JorgeQuestForKnowledge.wordpress.com/ ########
———————————————————————————————

Posted in Connector/MA, Forefront Identity Manager (FIM) Sync, Updates | Leave a Comment »

(2013-12-02) FIM 2010 R2: Sharepoint Services Connector

Posted by Jorge on 2013-12-02


This new Sharepoint Services connector (v4.3.836.0) was released by Microsoft on 20-11-2013 (dd-MM-yyyy)

The SharePoint User Profile Store helps you synchronize identity information to the User Profile Store in SharePoint. You can download it from here. More detailed information can be found through the SharePoint Services Connector for FIM 2010 R2 Technical Reference.

From a high level perspective, the following features are supported by the current release of the connector:

Requirement Support
Operating System Support Windows Server 2008, Windows Server 2008 R2, Windows Server 2012
Other Required Software Microsoft .NET 4.5 Framework
FIM Version FIM 2010 R2 SP1 (build 4.1.3114.0 and higher) ((2013-01-12) Service Pack 1 For Forefront Identity Manager 2010 R2 And BHold Has Been Released)
Data Source

SharePoint Server 2013 with User Profile service application (UPA)

Supported Scenarios Object Lifecycle Management
User Management
Supported Operations Against Data Source Full Import
Delta Import
Export
Schema

User
Group
Contact

Table 1: Requirements And Supports Features

Cheers,
Jorge
———————————————————————————————
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always evaluate/test yourself before using/implementing this!
* DISCLAIMER:
https://jorgequestforknowledge.wordpress.com/disclaimer/
———————————————————————————————
############### Jorge’s Quest For Knowledge #############
#########
http://JorgeQuestForKnowledge.wordpress.com/ ########
———————————————————————————————

Posted in Connector/MA, Forefront Identity Manager (FIM) Sync | Leave a Comment »

(2013-12-01) FIM 2010 R2: Generic LDAP Connector

Posted by Jorge on 2013-12-01


This new Generic LDAP connector (v4.3.836.0) was released by Microsoft on 20-11-2013 (dd-MM-yyyy)

The Generic LDAP Connector helps you to connect to LDAP systems (supporting LDAP v3 server (RFC 4510 compliant))  and support provisioning of identities, deprovisioning of identities, management of identity related information and password management capabilities.  You can download it from here. More detailed information can be found through the Generic LDAP Connector for FIM 2010 R2 Technical Reference.

From a high level perspective, the following features are supported by the current release of the connector:

Requirement Support
Operating System Support Windows Server 2008, Windows Server 2008 R2, Windows Server 2012
Other Required Software Microsoft .NET 4.0 Framework
FIM Version FIM 2010 R2 (build 4.1.3461.0 and higher) (A Hotfix Rollup Package (Build 4.1.3461.0) Is Available for Forefront Identity Manager 2010 R2)
Data Source LDAP v3 server (RFC 4510 compliant)
Supported Scenarios Object Lifecycle Management
Group Management
Password Management
Supported Operations Against Data Source

Supported By ALL LDAP Directories:

  • Full Import
  • Export

Supported By SPECIFIED LDAP Directories:

  • Delta import
  • Set and change password

Supported Directories for Delta import and Password management:

  • IBM Tivoli DS
    • Supports all operations for delta import
    • Supports Set Password and Change Password
  • Novell eDirectory
    • Supports Add, Update, and Rename operations for delta import
    • Does not support Delete operations for delta import
    • Supports Set Password and Change Password
  • Open LDAP (openldap.org)
    • Supports all operations for delta import
    • Supports Set Password
      Does not support change password
  • Oracle (previously Sun) Directory Server Enterprise Edition
    • Supports all operations for delta import
    • Supports Set Password and Change Password

Schema

Schema is detected from the LDAP schema (RFC3673 and RFC4512/4.2)

Supports structural classes, aux classes, and extensibleObject object class (RFC4512/4.3)

Table 1: Requirements And Supports Features

Cheers,
Jorge
———————————————————————————————
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always evaluate/test yourself before using/implementing this!
* DISCLAIMER:
https://jorgequestforknowledge.wordpress.com/disclaimer/
———————————————————————————————
############### Jorge’s Quest For Knowledge #############
#########
http://JorgeQuestForKnowledge.wordpress.com/ ########
———————————————————————————————

Posted in Connector/MA, Forefront Identity Manager (FIM) Sync | 1 Comment »

(2013-11-28) FIM 2010 R2: Windows Azure Active Directory Connector

Posted by Jorge on 2013-11-28


This new Windows Azure Active Directory connector (v1.0.6567.0002) was released by Microsoft on 21-11-2013 (dd-MM-yyyy)

When having just one Active Directory Forest on-premises, it is preferred/recommended to use the out-of-the-box Directory Synchronization too, which can be downloaded from the Office 365 Admin Portal by following this link (you must have an Office 365 subscription). More detailed information can be found through the DirSync/WAAD Sync Tool Wiki. Detailed release history can be found through this link.

When having multiple Active Directory Forests on-premises it is preferred/recommended to use the new version of the Windows Azure Active Directory Connector. You can download it from here. More detailed information can be found through the Windows Azure Active Directory Connector for FIM 2010 R2 Technical Reference. To understand how to configure the connector see the Windows Azure Active Directory Connector for FIM 2010 R2 Quick Start Guide.

Other means of connecting to Azure Active Directory or Office 365 is by using the PowerShell Connector which is made available by Soren Granfeldt. You can find more info and download it from here.

From a high level perspective, the following features are supported by the current release of the connector:

Requirement Support
Operating System Support Windows Server 2008, Windows Server 2008 R2, Windows Server 2012
Other Required Software Microsoft .NET 4.0 Framework
Microsoft Online Services Sign-In Assistant
FIM Version FIM 2010 R2 (build 4.1.3496.0 and higher) ((2013-11-23) A Hotfix Rollup Package (Build 4.1.3496.0) Is Available for Forefront Identity Manager 2010 R2)
Data Source Windows Azure Active Directory
Supported Scenarios Object Lifecycle Management
Group Management

PS: Password Hash Sync NOT SUPPORTED

Supported Operations Against Data Source Full Import
Delta Import
Export

PS: Any form of password management NOT SUPPORTED

Schema Fixed, not possible to add additional objects/attributes

Table 1: Requirements And Supports Features

And if you get this….

image

Figure 1: Possible Error When Configuring The Azure AD Connector And Still Using An Old Version Of The Sign-In Assistant

then, see: Troubleshooting Azure AD DirSync Tool Configuration Wizard: Failed to get address for method: CreateIdentityHandle2

Cheers,
Jorge
———————————————————————————————
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always evaluate/test yourself before using/implementing this!
* DISCLAIMER:
https://jorgequestforknowledge.wordpress.com/disclaimer/
———————————————————————————————
############### Jorge’s Quest For Knowledge #############
#########
http://JorgeQuestForKnowledge.wordpress.com/ ########
———————————————————————————————

Posted in Connector/MA, Forefront Identity Manager (FIM) Sync | Leave a Comment »

 
%d bloggers like this: