SIM 423 FIM Best Practices Technical DeepDive Carol

SIM 423 FIM Best Practices – Technical Deep-Dive Carol Wapshere, MVP Identity Management Specialist Unify Solutions

Server Architecture

NLB, Service Partitioning Clustering, stand-by DB FIMSync DB FIMService DB Stand-by Server FIM Sync Service FIM Service And Portal NLB Password Reset Portal SCDW DBs Report Server DBs SCSM Server SCDW Server R 2 Reporting

SQL http: //ola. hallengren. com/sql-server-index-and-statisticsmaintenance. html

Sync Service Data Source SQL SSIS FIM Sync

Portal

Sync Service Configuration

Metaverse Design

Classic vs Declarative Sync Rules PROS CONS Classic Declarative • MIIS/ILM extension code still works, • Able to implement complex rules and precedence, • Support any target system, • Custom logging. • Graphic configuration UI, • State-based application of rule sets, • Scoped Outbound rules: • Custom code to maintain, • Restrictions when handling reference attributes • Requires Portal CALs, • Not extensible, restricted to OOB rules, • Won’t work with every target system. • Set/WF/MPR not needed – just applies based on Metaverse attributes, • No EREs, • Can’t use for deletion.

Classic or Declarative?

Automating Deprovisioning

Demo MA Best Practises

Portal – Policy Configuration

Schema

Demo Policy Best Practises

http: //technet. microsoft. com/enus/library/ff 720152(v=ws. 10). aspx http: //social. technet. microsoft. com/wiki/contents/articles/tags/FIM+Script. Bo x+Item/default. aspx https: //unifysolutions. jira. com/wiki/display/FIMTEAMCOM/Scripts http: //www. wapshere. com/missmiis/category/scripting/powershell

http: //fimpowershellwf. codeplex. com/ http: //fimpowershellmodule. codeplex. com/

Portal – UI Configuration

Field in error just doesn’t appear

Editing http: //www. wapshere. com/missmiis/using-powershell-to -update-an-rcdc-configuration

Schema and Rights

String Resources

Selecting Text

Reference Attributes

RCDC Demo Reference Attribute Controls

Self-Service Password Reset

Architecture

Features

Best Practises http: //www. goodsecurityquestions. com

SIM 423 FIM Best Practices – Technical Deep Dive Exam 70 -158 Forefront Identity Manager 2010, Configuring Contact Me Later By… Email: carol. wapshere@unifysolutions. net Blog: http: //www. wapshere. com/missmiis Twitter: @miss_miis