Hello It’s been some time since writing a blog busy times over 4-year span. I was fortunate enough to lead a fantastic team focused on people and processes and come to know many great people. Over the years as a team, we were able to take a top law firm in the world to the…
Hello All !! Microsoft Identity Manager has had numerous support, enhancements, and bug fixes over the past year such as adding support for SQL AlwaysOn, SQL on IaaS, and System Center 2016, the ability to create new custom objects that act like groups, and operational items like quickly enabling verbose tracing without service restart. Today,…
This is pretty Exciting work we have been doing around B2B and Guest Access to on-premises access. Azure AD B2B has made enabling access to documents and applications to business partners extremely easy and secure. This has been great for cloud workloads but left a gap in the hybrid world that we live in. Microsoft’s latest…
Hello all been a busy season for FIM/MIM today I wanted to walk through the steps of installing MIM SP1 on SharePoint 2016. Below are the steps I took to get everything working from service and portal standpoint. As a reminder all accounts were pre-created and service principal names(SPN) were already set. For more information,…
Issue: When trying to create NEW-PAMGROUP : Failed with Operation requires that destination domain auditing to be enabled “System.Exception: Failed PAM group 'TFCAdmins' SID migration; Exception: System.ComponentModel.Win32Exception(0x80004005): The operation requires that destination domain auditing be enabled at Microsoft.IdentityManagement.WinTools.SidCloner.CloneSid(String sourceIdentity, String sourceDomain, StringsourceDC, String sourceUserName, SecureString sourcePassword, String targetIdentity, String targetDomain)” ——————————————— When looking at…
SharePoint used to have a menu option called “Sign in as Different User” in the top-right corner of every page. It is very useful but form admins sometimes it can be a bit of a pain. So simple solution is to build it right into the Home Page Resources like you see below. In…
Scenario: In this scenario there was a request to have a distribution list for all CIO > Manager + Direct Reports > Manager + Direct Reports. The end result will be everyone who reports to the CIO both directly and indirectly. Sample Data: CIO Direct and Indirect Reports Distribution List Directors DL Manager DL Supervisors…
Wonder why you get this error as we have seen this is a know issue in many of the MIIS/FIM products installations. Below is the error and the suggested fix: Log Name: ApplicationSource: ADSyncDate: 1/12/2015 12:47:11 PMEvent ID: 6313Task Category: ServerLevel: ErrorKeywords: ClassicUser: N/AComputer: AADSync.contoso.comDescription:The server encountered an unexpected error creating performance counters for…
Continuing from our previous post AADSync – Configure filtering Part 1 we will now look at using expressions on target attributes to decide who should get provisioned to the cloud. Will still use lessons learned from part one to make sure that our expression is properly being evaluated. A list of functions that can…
I have had several cases with questions on AADSync Filtering. As a general rule I never use Outbound filtering as these are not saved during upgrade. In this posting we will discuss one of the options used to filter objects as it is described in the msdn article : http://msdn.microsoft.com/en-us/library/azure/dn801051.aspx by using the cloudFiltered(negative filtering…