Cross Forest Management – (Create groups with FSP’s as Members) Part 2

In continuation of Cross Forest Management – (Create groups with FSP’s as Members) Part 1  At this point you should have Groups from the Source Forest being created in the Destination Forest with the “FSP” of the user instead of the member of the group in the Source Forest. If for some reason the FSP’s…


Cross Forest Management – (Create groups with FSP’s as Members) Part 1

Scenario: 2 Forest Contoso Fabrikam Each Forest has Exchange installed Fabrikam needs to allow members of members of groups to access SharePoint Resources Contoso will be the source for all Groups Groups need to be created in the Fabrikam Forest with an updated Display Name and samAccountName to include “SP_” Contoso TestGroup Fabrikam SP_TestGroup Members…


Understanding Group Management – Outbound Group Synchronization

This is the next post in a series of postings for Group Management. it may be helpful to read the following post: Understanding the FIM Service Management Agent (FIM MA) Configuring the FIM MA Introducing Synchronization Rules – Part 1 Introducing Synchronization Rules – Part 2 Understanding Group Management – Inbound Group Synchronization Much like…


Understanding Group Management – Inbound Group Synchronization

Please be sure to read the first part of the series Understanding Group Management – Intro to Group Synchronization and attribute Management prior to configuring your Inbound Group Synchronization Sync Rule. I would also recommend reading Introducing Synchronization Rules – Part 1 and Part 2 to assist in the understanding of how data is synchronized with the…


Managing Send-To Permissions With FIM

So we all know FIM is great at managing the lifecycle of a user, handling their group membership and even allowing for password self-service. However, FIM’s capabilities (especially with regards to self-service) don’t end there. One of the great things about this technology is the ability to customize and build on what you get out…

1

Criteria-Based Bulk Portal Object Deletion

Today I’d like to discuss a topic that comes up from time to time: how to (intelligently) bulk delete a group of objects from the FIM portal based on a set of criteria. There are several ways of handling this, but most rely on the use of an additional custom activity workflow (generally PowerShell based)….

1

Group Synchronization and Group Management

There are a lot of guides out there that walk you through the steps of setting up Inbound Group Synchronization from Active Directory, on the surface these guides are correct except for 1 major flaw, most of the guides if not all of them show constant values for membershipLocked and the membershipAddWorkflow¬† attributes. This would…


View what groups a user is a member of on a separate tab of the User Interface (Member Of Tab)

The following piece of XML Code can be used to add a Tab to the User Edit RCDC which allows users to quickly view which group a user is a member of. <my:Grouping my:Name=”MemberOfGroup” my:Caption=”Member Of” my:Enabled=”true” my:Visible=”true”>   <my:Control my:Name=”MemberOfDistributionGroups” my:TypeName=”UocListView” my:ExpandArea=”true” my:Caption=”Distribution Groups”>        <my:Properties>          <my:Property my:Name=”ColumnsToDisplay” my:Value=”DisplayName,Email,Domain,DisplayedOwner” />          <my:Property my:Name=”EmptyResultText” my:Value=”There are no groups…