Support-Info: (CM): Renew Certificate for the CMAGENT Fails with One or more signatures did not include the required application or issuance policies

PRODUCTS INVOLVED Microsoft Forefront Identity Manager 2010 R2 Service Pack 1 Certificate Management PROBLEM SCENARIO DESCRIPTION Certificate management – renewal of the CLM agent certificate does not work. ERROR MESSAGE Error(s): One or more signatures did not include the required application or issuance policies. The request is missing one or more required valid signatures. 0x8009480b-2146875381… Read more

Support-Info: (CONNECTORS): Full Import on SQL Server MA is showing a large number of deletes

PRODUCTS INVOLVED Microsoft Identity Manager 2016 SP1 Generic SQL Connector / SQL Management Agent PROBLEM SCENARIO DESCRIPTION Full Import (Stage Only) intermittently on a SQL MA showing a large number of deletes, which is unexpected.  This causes deprovisioning to occur in the Identity Management Solution.  Depending on how deprovisioning rules are setup, this can cause… Read more

Support-Info: (INSTALLATION): Exception has been thrown by the target of an invocation. System.UnauthorizedAccessException: Access is denied.

PRODUCTS INVOLVED Microsoft Identity Manager 2016 Service Pack 1 (4.4.1302.0) Service and Portal Installation PROBLEM SCENARIO DESCRIPTION Attempting to install the Service and Portal, it rolls back just after the copying new files process in the installation. Review of the Windows Installer Verbose Log shows the below exception. LOGGING TOOLS Here are the logging tools… Read more

Support-Info: (CONNECTORS): How to work around the “Replicate Directory Changes” to connect to AD for the ADMA or GalSync MA

PRODUCTS INVOLVED Forefront Identity Manager 2010, R2, R2 SP1 Microsoft Identity Manager 2016, SP1 COMPONENTS INVOLVED Active Directory Management Agent GalSync Management Agent PROBLEM SCENARIO DESCRIPTION By default out of the box, the Active Directory Management Agent and/or GalSync Management Agent connect to Active Directory utilizes the DirSync Control. In doing so, it needs/requires the… Read more

Support-Info: (CONNECTORS): Supported Active Directory (AD) Version for Active Directory Management Agent (AD MA)

All, I recently fielded a question concerning the Active Directory Management Agent and the lowest supported Active Directory Version.  I felt that this would be some good information to share here as well. NOTE It is important to note that Windows Server 2008 R2 Sp1 that as of March 2018, it is out of Mainstream… Read more

Support-Release: (CONNECTORS): Release of Generic Connectors v1.1.830.0

Al We are happy to announce the release of the MIM 2016 SP1 generic connectors version 1.1.830. Release Notes:  https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directory-aadconnectsync-connector-version-history  – Bit delayed , Should be updated by this evening.   See release notes below Download :  https://www.microsoft.com/en-us/download/details.aspx?id=51495  1.1.830.0 As a note the download is replicating through the ether and pages could be cached ctrl+f5 may… Read more

Support-Info: (SharePoint UPA) FIM Services don’t start: Error creating com objects. Error code: -2147467259

PRODUCTS INVOLVED Microsoft SharePoint 2013 Microsoft SharePoint 2013 User Profile Synchronization Application (UPA) Microsoft Forefront Identity Manager 4.0.2450.51 Microsoft SQL Server 2012 Service Pack 3 TLS v1.0 is Disabled TLS v1.2 is Enabled   PROBLEM SCENARIO DESCRIPTION In this specific issue, the two Forefront Identity Manager Services associated with the SharePoint UPA would not start…. Read more

Support-Tip (INSTALLATION): Failed to connect to the specified database

PRODUCTS INVOLVED Microsoft Forefront Identity Manager 2010, R2, R2 SP1 Microsoft Identity Manager 2016, SP1 PROBLEM SCENARIO DESCRIPTION During the installation of the Synchronization Service Manager and/or the Service and Portal you receive error messages indicating a problem connecting to the database. CAUSE There are several reasons that this happens during the installation. RESOLUTION ITEMS… Read more

FIM SP1 R2 4.1.3766 Upgrade to MIM SP1 4.4.1302 In-place Direct Upgrade

Greetings As of  November direct upgrade from FIM 2010 R2 SP1 (build 4.1.3766.0) to MIM 2016 SP1 (build 4.4.1302.0) is supported. Important: With various components, there are specific instructions that must be followed to ensure the solution is properly upgraded.  Please make sure to read the information below carefully and test the upgrade in a… Read more

Support-Release: (MIM2016): Microsoft Identity Manager 2016 SP1 hotfix (4.4.1749.0) Released

  Hello folks, David Steadman Here!! We have released our latest hotfix for MIM 2016 SP1.  This is build 4.4.1749.0. This release includes two improvement : Office 365 integration for approvals SSPR Password Reset capabilities without domain trust This completes the end to end for users that were programmatic user registration for untrusted forest/domain Important… Read more