[INFO] Provisioning a Mail Enabled User

I’d like to cover something that I get asked about a lot: provisioning mail enabled users with FIM. In this example, I’m going to focus more on the FIM pieces and much less on the Exchange piece as I am in no way an Exchange guy. (Heck, I’m…(read more)… Read more

[INFO] Service account is not secure in its current configuration

Used to secure the following MIM PAM Service Accounts Application Pool ( For Rest API ) PAM Component Service Privileged Access Management Monitoring Service Issue: When installing the “PAM” Privileged Access Management Features you…(read more)   MIMPAM Module: https://docs.microsoft.com/en-us/powershell/identitymanager/mimpam/vlatest/mimpam PAM RESET API Service Details: https://docs.microsoft.com/en-us/microsoft-identity-manager/reference/privileged-access-management-rest-api-service-details Privileged Access Management Rest API Reference: https://docs.microsoft.com/en-us/microsoft-identity-manager/reference/privileged-access-management-rest-api-reference Privileged Access Management… Read more

[INFO] Configuration of the Privileged Access Management (PAM) feature

Consideration before you install this feature Have you Already Installed MIM 2016 ? Was it a Clean Install or an Upgrade ? Have you verified that you have all PAM Prerequisites completed ? Prerequisites ( Will Be posted shortly…(read more)   MIMPAM Module: https://docs.microsoft.com/en-us/powershell/identitymanager/mimpam/vlatest/mimpam PAM RESET API Service Details: https://docs.microsoft.com/en-us/microsoft-identity-manager/reference/privileged-access-management-rest-api-service-details Privileged Access Management Rest API… Read more

[INFO]: MIISACTIVATE – Logon failure: the user has not been granted the requested logon type at this computer

Problem Statement You attempt to run the MIISACTIVATE.EXE command-line to activate a new FIM Synchronization Service Server. In doing so, you receive the below error message. Error Message The operation encountered am error and cannot be completed…(read more)… Read more

[INFO] Updating the FIMMA to include Custom Attributes in the FIM Portal.

You may find yourself creating new Custom Attributes or even a custom Resource in the FIM Portal. If you only plan on managing these Custom Resources and or Attributes in the FIM Portal than you would not need to add them to the Synchronization Service…(read more)… Read more

Backing up the Synchronization Service Encryption Key

After you install FIM (Forefront Identity Manager) or MIM (Microsoft Identity Manager) one of the first things you need to do after you ensure that the correct people that will be administrating or supporting the the Synchronization Service are include…(read more)… Read more

MIM 2016 Upgrade : Database upgrade tool has encountered at least one error when upgrading FIM configuration objects

  During the upgrade of FIM to MIM you might see this error during install. This sends chills down the back of any Identity engineer. After further investigation of this error it is errors out on a MPR when we look at a this in SQL profiler we see the following exceptions : Violation of… Read more

MIM 2016 Upgrade issues on builds 4.1.3646.0 or 4.1.3634.0 or 4.1.3627.0

While exploring to upgrade from FIM to MIM you may encounter the following error when upgrading from latest FIM 2010 R2 SP1 hotfixes (4.1.3646.0 or 4.1.3634.0 or 4.1.3627.0) to Microsoft Identity Manager. We are aware of this issue and have a solution We have a workaround for this issue. We simply replace the file <iso_drive>\Service… Read more

Performing an In-Place Upgrade of FIM 2010 R2 to Microsoft Identity Manager 2016 – Service and Portal

Due to this being the First release of Microsoft Identity Manager i specifically wrote this with the current version highlighted. Before you Begin Be sure to have Fresh backups of the FIMService Database ( See your SQL Administrator for assistance…(read more)… Read more