Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Microsoft Forefront Identity Manager 2010 R2 Handbook
  • Table Of Contents Toc
Microsoft Forefront Identity Manager 2010 R2 Handbook

Microsoft Forefront Identity Manager 2010 R2 Handbook

By : Kent Nordstrom
4.7 (10)
Buy this Book
close
close
Microsoft Forefront Identity Manager 2010 R2 Handbook

Microsoft Forefront Identity Manager 2010 R2 Handbook

4.7 (10)
By: Kent Nordstrom
Buy this Book

Overview of this book

Microsoft's Forefront Identity Manager simplifies enterprise identity management for end users by automating admin tasks and integrating the infrastructure of an enterprise with strong authentication systems. The "Microsoft Forefront Identity Manager 2010 R2 Handbook" is an in-depth guide to Identity Management. You will learn how to manage users and groups and implement self-service parts. This book also covers basic Certificate Management and troubleshooting. Throughout the book we will follow a fictional case study. You will see how to implement IM and also set up Smart Card logon for strong administrative accounts within Active Directory. You will learn to implement all the features of FIM 2010 R2. You will see how to install a complete FIM 2010 R2 infrastructure including both test and production environment. You will be introduced to Self-Service management of both users and groups. FIM Reports to audit the identity management lifecycle are also discussed in detail. With the "Microsoft Forefront Identity Manager 2010 R2 Handbook" you will be able implement and manage FIM 2010 R2 almost effortlessly.
Table of Contents (21 chapters)
close
close
close
Microsoft Forefront Identity Manager 2010 R2 Handbook
Icon
Microsoft Forefront Identity Manager 2010 R2 Handbook
Credits
Icon
Credits
About the Author
Icon
About the Author
About the Reviewers
Icon
About the Reviewers
www.PacktPub.com
Icon
www.PacktPub.com
Preface
Icon
Preface
Lock Free Chapter
1
The Story in this Book
Icon
The Story in this Book
Icon
The Company
Icon
The challenges
Icon
The solutions
Icon
The environment
Icon
Moving forward
Icon
Summary

2
Overview of FIM 2010 R2
Icon
Overview of FIM 2010 R2
Icon
The history of FIM 2010 R2
Icon
FIM Synchronization Service (FIM Sync)
Icon
FIM Service
Icon
FIM Portal
Icon
FIM Reporting
Icon
FIM Certificate Management (FIM CM)
Icon
Licensing
Icon
Summary
3
Installation
Icon
Installation
Icon
Development versus production
Icon
Capacity planning
Icon
Separating roles
Icon
Hardware
Icon
Installation order
Icon
Prerequisites
Icon
Installation
Icon
Post-installation configuration
Icon
Summary
4
Basic Configuration
Icon
Basic Configuration
Icon
Creating Management Agents
Icon
Schema management
Icon
FIM Service MA
Icon
Initial load versus scheduled runs
Icon
Moving configuration from development to production
Icon
Summary
5
User Management
Icon
User Management
Icon
Modifying MPRs for user management
Icon
Configuring sets for user management
Icon
Inbound synchronization rules
Icon
Outbound synchronization rules
Icon
Provisioning
Icon
Managing users in a phone system
Icon
Managing users in Active Directory
Icon
Temporal Sets
Icon
Self-service using the FIM portal
Icon
Managing Exchange
Icon
Summary
6
Group Management
Icon
Group Management
Icon
Group scope and types
Icon
Installing client add-ins
Icon
Modifying MPRs for group management
Icon
Creating and managing distribution groups
Icon
Importing groups from HR
Icon
FIM Service and Metaverse
Icon
Managing groups in AD
Icon
Summary
7
Self-service Password Reset
chevron up
Icon
Self-service Password Reset
Icon
Anonymous request
Icon
Enabling password management in AD
Icon
Allowing FIM Service to set passwords
Icon
Configuring FIM Service
Icon
The user experience
Icon
Summary
8
Using FIM to Manage Office 365 and Other Cloud Identities
Icon
Using FIM to Manage Office 365 and Other Cloud Identities
Icon
Overview of Office 365
Icon
Summary
9
Reporting
Icon
Reporting
Icon
Verifying the SCSM setup
Icon
Default reports
Icon
The SCSM ETL process
Icon
Looking at reports
Icon
Modifying the reports
Icon
Summary
10
FIM Portal Customization
Icon
FIM Portal Customization
Icon
Components of the UI
Icon
Portal Configuration
Icon
Navigation Bar Resource
Icon
Search scopes
Icon
Filter Permissions
Icon
RCDC
Icon
Summary
11
Customizing Data Transformations
Icon
Customizing Data Transformations
Icon
Our options
Icon
Managing Lync
Icon
Selective deprovisioning
Icon
The case with the strange roles
Icon
Summary
12
Issuing Smart Cards
Icon
Issuing Smart Cards
Icon
Our scenario
Icon
Extending the schema
Icon
The configuration wizard
Icon
Configuring the FIM CM Update Service
Icon
Database permissions
Icon
Configuring the CA
Icon
Installing the FIM CM client
Icon
FIM CM permissions
Icon
Allowing managers to issue certificates for consultants
Icon
RDP using Smart Cards
Icon
CM Management Agent
Icon
Summary
13
Troubleshooting
Icon
Troubleshooting
Icon
Reminder
Icon
Troubleshooting
Icon
Backup and restore
Icon
Summary
1
Afterword
Icon
Afterword
2
Index
Icon
Index

Anonymous request

What we need to keep in mind when looking at this feature is that the user, as he has forgotten his password, is unable to authenticate properly to FIM. So, the key problem with SSPR is how to authenticate the user.

Let's take an example.

Kent, our contractor, has forgotten his password. He then makes a request anonymously to FIM to reset the password of the user account Kent. Well, FIM won't just do that! So, we tell FIM to try to figure out who the requestor is. We add an Authentication (AuthN) workflow, which gives Kent a chance to prove his identity. If the AuthN workflow proves to FIM that the requestor is indeed the user Kent, it will allow Kent to reset his password.

In FIM 2010 R2, there are two built-in ways for FIM to find out who the user is—we can use either a Question and Answer (QA) gate or a One Time Password (OTP) gate.

QA versus OTP

There are two different ways of doing SSPR in the R2 release—QA (Question and Answer) and OTP (One Time Password).

QA basically...

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Microsoft Forefront Identity Manager 2010 R2 Handbook
End of Section 7
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon