David Steadman has written 40 articles

Install and Configure a Group Managed Service Account with Microsoft Identity Manager 2016 SP1 with Hotfix 4.5.26.0

Hello All !! Microsoft Identity Manager has had numerous support, enhancements, and bug fixes over the past year such as adding support for SQL AlwaysOn, SQL on IaaS, and System Center 2016, the ability to create new custom objects that act like groups, and operational items like quickly enabling verbose tracing without service restart. Today,…

Example end-to-end B2B identity solution using the new MIM Graph (Public Preview) Management Agent with Synchronization Service Only

  If you missed the live stream of B2B demo !! Not a problem   The initial scenario in the preview for is external user AD account lifecycle management. In this scenario, an organization has invited guests into their Azure AD directory and wishes to give those guests access to on-premises Windows Integrated Authentication or…

What the MIM Hybrid !! Azure AD B2B collaboration with Azure App Proxy and Microsoft Identity Manager

This is pretty Exciting work we have been doing around B2B and Guest Access to on-premises access. Azure AD B2B has made enabling access to documents and applications to business partners extremely easy and secure. This has been great for cloud workloads but left a gap in the hybrid world that we live in. Microsoft’s latest…

Securing Privileged Access with JIT,JEA,PAM,PIM Oh the confusion

From time to time (Every other day) , I get asked why and what does it mean for me , Well below is a high level of the what , how , why. Start with the videos on the topic and then move to the reference links.  Cyber Security Reference Architecture : https://channel9.msdn.com/Blogs/Taste-of-Premier/ToP1808 or https://www.youtube.com/watch?v=AeMalNggPZU…

How do I add a user to a set

  So over the past month, I get the same question How do I add a user to a set / aka admin set? This can be simply done with the FIMAutomation   [code language=”powershell”] Script Below : #——————————————————————————————————————– [CmdletBinding()] Param( [Parameter(Mandatory=$True,Position=1)] [string]$set, [Parameter(Mandatory=$True)] [string]$username, [Parameter(Mandatory=$True)] [string]$url ) $URI = "http://" + $url + ":5725/resourcemanagementservice"…

Adventures of Hosting MIM in Azure and load balancer oh my!!

Scenario: MIM Portal and services completely hosted within Azure with the only access using Azure Panel Application Problem: Issue encountered was customers were reporting connection issues when navigating the portal and submitting request. High level design Contributions : Jose Garza This was a mystery case that peaked my interest , Even testing I could not…

Generic SQL and Clarification of behavior for Export operation for tables containing two or more multi-valued attributes

Hello been a bit , but I wanted to share some information around the MIM Generic SQL connector and Export operations. The Generic SQL Connector technical reference found here Download of the connector can be found here as well  fyi we just released an update today Now the Export changes can have the following operations…

MIM Management Agents OOB / 3rd Party over 70+

Hello Everyone busy with a few things , but I have been on several calls with customers that don’t know how many connectors are available to them. So yesterday I decided to go through all the known sites and document these mysterious connectors so that first I know how many and second I could share…

Microsoft Identity Manager SP1– PAM Rest API requests either fail with HTTP 404 or 500 when calling remotely

What is the Issue :  When upgraded or new install of Privilege Access Management(PAM) some rest API calls only work locally on the PAM server. When calling the REST API you receive the following return With a response body of: {   “odata.error”:{“code”:””,”message”:{ “lang”:”en-US”,”value”:”An operations error occurred.\r\n”}} } API requests that work: /api/pamresources/pamrequeststoapprove /api/pamresources/pamrequests /api/pamresources/pamrequests({requestId)/Close…