Index
A
- ACCOUNTDISABLE flag / userAccountControl
- Action workflow
- about / Request pipeline
- action workflow
- about / Outbound synchronization policy
- Active Directory
- about / Active Directory
- least privileged approach / Least privileged
- directory replication / Directory replication
- Self-service Password Reset feature / Password reset
- users, managing in / Managing users in Active Directory
- users, provisioning to / Provision users to Active Directory
- inbound synchronization / Inbound synchronization from AD
- password management, enabling in / Enabling password management in AD
- schema, extending / Extending the schema
- Active Directory (AD)
- Active Directory Federation Services (AD FS)
- about / Implement federation
- URL, for overview / Implement federation
- Active Directory Federation Services (ADFS)
- about / Federation
- Active Directory Lightweight Directory Services (AD LDS)
- Active Directory schema
- extending / Extending the schema
- AD MA
- about / Creating AD MA
- creating / Creating AD MA
- pre-import filtering feature / Creating AD MA
- Alacris
- about / The history of FIM 2010 R2
- AllDGs keyword / Usage Keyword
- AllSecurityGroups keyword / Usage Keyword
- Alternate Access Mapping
- about / FIM Portal
- anonymous request
- about / Anonymous request
- AttributePicker keyword / Usage Keyword
- Authenticate workflow
- about / Request pipeline
- Authentication workflow (AuthN)
- about / Request pipeline
- AuthN workflow
- about / Anonymous request
- Authorization workflow (AuthZ)
- about / Request pipeline
- Authorize workflow
- about / Request pipeline
B
- backup certificates
- about / Backup certificates
- BeginExportScriptname
- about / PowerShell or Custom MA
- BitAnd function / userAccountControl
- BitOr function / userAccountControl
C
- Capacity Planning
- about / Capacity planning
- URL, for guide / Capacity planning
- CAS (Client Access Server)
- about / Exchange 2010
- case study, SSIS / The case with the strange roles
- CDS
- CDS (Connected Data Source)
- about / Inbound synchronization rules
- Certificate Lifecycle Management (CLM)
- Certificate Lifecycle Manager (CLM)
- about / The history of FIM 2010 R2
- Certificate Management (CM)
- about / Start using smart cards
- Certificate Management portal
- about / Certificate Management portal
- Certificate Template
- managing / Certificate Template
- certificate templates
- creating, for FIM CM service accounts / Create certificate templates for FIM CM service accounts
- Certification Authority (CA)
- challenges, Identity Management
- provisioning, of users / Provisioning of users
- lifecycle procedures, identifying / Identity lifecycle procedures
- Highly Privileged Accounts (HPA) / Highly Privileged Accounts (HPA)
- password management / Password management
- traceability / Traceability
- classic rules extensions
- about / Classic rules extensions
- Client Access Licenses (CALs)
- about / Licensing
- cloud computing
- about / The Company
- CodePlex
- about / CM Management Agent
- Collation settings
- about / Collation and languages
- configuration
- moving, from dev to production / Moving configuration from development to production
- configuration options, Results tab
- configuration triple
- about / Outbound synchronization policy
- configuration wizard, FIM CM
- about / The configuration wizard
- service accounts, creating / Create service accounts
- certificate templates, creating for FIM CM service accounts / Create certificate templates for FIM CM service accounts
- Kerberos / Kerberos again!
- running / Run the wizard
- backup certificates / Backup certificates
- rerunning / Rerunning the wizard
- configuring
- FIM Service / Configuring FIM Service
- Question and Answer (QA) gate / Configuring the QA gate
- One Time Password (OTP) gate / The OTP gate
- FIM Portal / Portal Configuration
- FIM CM Update Service / Configuring the FIM CM Update Service
- FIM CM CA / Configuring the CA
- FIM CM Policy Module / Configuring Policy Module
- Connected Data Source (CDS)
- Connectors
- Connector Space (CS)
- consultant Smart Cards
- Profile Template, creating for / Creating a Profile Template for consultant Smart Cards
- permissions, configuring for / Configuring permissions for consultant Smart Cards
- Cryptography Next Generation (CNG)
- custom code
- importing / Importing custom code
- customizations
- in DirSync / DirSync
- Customized keyword / Usage Keyword
D
- database permissions, FIM CM
- about / Database permissions
- databases
- about / Databases, Databases
- collation and languages / Collation and languages
- SQL aliases / SQL aliases
- FIM-Dev / FIM-Dev
- SQL / SQL
- SCSM / SCSM
- data synchronization
- from FIM to SCSM / Synchronizing data from FIM to SCSM
- data transformation
- options / Our options
- data transformation, options
- about / Our options
- PowerShell / PowerShell
- classic rules extensions / Classic rules extensions
- SQL Server Integration Services (SSIS) / SSIS
- workflow activities / Workflow activities
- Extensible Connectivity MA 2.0 (ECMA 2.0) / Extensible Connectivity Management Agent
- Data Warehouse
- SCSM Manager, registering in / Registering SCSM Manager in Data Warehouse
- FIM Post Install Scripts / FIM post-install scripts for Data Warehouse
- DateTimeFormat function / Temporal Sets
- db_datareader permissions
- about / HR (SQL Server)
- declarative synchronization
- verus non-declarative synchronization / Non-declarative vs. declarative synchronization
- default reports
- about / Default reports
- Group Membership Change / Default reports
- Set Membership Change / Default reports
- Group History / Default reports
- Management Policy Rule History / Default reports
- Request History / Default reports
- Set History / Default reports
- User History / Default reports
- delegation
- about / Delegation
- delta
- about / Directory replication
- DeniedEmailTemplate keyword / Usage Keyword
- deprovisioning
- about / Creating AD MA, Creating the FIM Service MA, Selective deprovisioning
- URL, for info / Creating AD MA
- Detected Rule Entry (DRE)
- about / Detected rule entry
- Dev-FIMMA account
- about / Service accounts, Least privileged
- Dev-FIMService account
- about / Service accounts, Delegation
- Dev-FIMSPPool account
- about / Service accounts
- Dev-FIMSync account
- about / Service accounts
- development environment
- versus production environment / Development versus production
- dev to production
- configuration, moving from / Moving configuration from development to production
- difference files, generating / Generating the difference files
- schema difference, generating / Generating the schema difference
- policy difference, generating / Generating the policy difference
- directory replication
- about / Directory replication
- directory synchronization product
- about / The history of FIM 2010 R2
- DirSync
- disabling
- maintenance mode / Disabling maintenance mode
- discovery import
- about / MPR
- Discovery import
- about / First import
- Distinguished Name (DN)
- about / Least privileged, Synchronization rule
- Distribution keyword / Usage Keyword
- DONT_EXPIRE_PASSWORD flag / userAccountControl
- DONT_REQ_PREAUTH flag / userAccountControl
E
- Enable-CsUser command
- about / Provision Lync Users
- ENCRYPTED_TEXT_PWD_ALLOWED flag / userAccountControl
- EndExportScriptname
- about / PowerShell or Custom MA
- Enrollment Agent certificate template, FIM CM
- ERL (Expected Rules List)
- about / MPR
- Exchange
- managing / Managing Exchange
- Exchange, synchronization rules
- about / Synchronization rule for Exchange
- mailbox users rules / Mailbox users
- mail-enabled users rules / Mail-enabled users
- Exchange 2007
- about / Exchange 2007
- managing / Exchange 2007
- Exchange 2010
- about / Exchange 2010
- managing / Exchange 2010
- Exchange Recipient Management group
- about / Managing Exchange
- Expected Rule Entries (EREs)
- about / Outbound synchronization policy
- ExportScriptname
- about / PowerShell or Custom MA
- Extensible Connectivity 2.0 (ECMA 2.0)
- about / Management Agents
- Extensible Connectivity MA 2.0 (ECMA 2.0)
- Extract, Transform and Load (ETL) process
- about / The SCSM ETL process
F
- features, Self-service Password Reset (SSPR) / Password Reset AuthN workflow
- Federation
- about / Federation
- federation
- implementing / Implement federation
- Filter Accounts, in FIM Service MA / Filtering accounts
- filter permissions
- about / Filter Permissions
- FIM
- features / FIM features
- used, for obtaining OTP for Office 365 / Using UAG and FIM to get OTP for Office 365
- FIM, to SCSM
- data, synchronizing from / Synchronizing data from FIM to SCSM
- FIM-Dev
- about / Databases
- FIM-Dev server
- about / FIM-Dev
- FIM 2010 R2 Synchronization Service
- about / The history of FIM 2010 R2
- FIM Certificate Management
- about / FIM Certificate Management, FIM Certificate Management
- installing / FIM Certificate Management
- FIM Certificate Management (FIM CM)
- FIM CM
- scenario / Our scenario
- assurance level / Assurance level
- Active Directory schema, extending / Extending the schema
- configuration wizard / The configuration wizard
- User Agent certificate template / FIM CM User Agent certificate template
- Enrollment Agent certificate template / FIM CM Enrollment Agent certificate template
- Key Recovery Agent certificate template / FIM CM Key Recovery Agent certificate template
- Update Service, configuring / Configuring the FIM CM Update Service
- database permissions / Database permissions
- CA, configuring / Configuring the CA
- CA files, installing / Installing FIM CM CA files
- Policy Module, configuring / Configuring Policy Module
- client, installing / Installing the FIM CM client
- permissions / FIM CM permissions
- Management Agent / CM Management Agent
- FIM CM, permissions
- about / FIM CM permissions
- Service Connection Point (SCP) / Service Connection Point
- FIM CM Audit / Service Connection Point
- FIM CM Enrollment Agent / Service Connection Point
- FIM CM Request Enroll / Service Connection Point
- FIM CM Request Recover / Service Connection Point
- FIM CM Request Renew / Service Connection Point
- FIM CM Request Revoke / Service Connection Point
- FIM CM Request Unblock Smart Card / Service Connection Point
- groups / Users and groups
- users / Users and groups
- Certificate Template, managing / Certificate Template
- profile template object / Profile Template object
- profile template settings / Profile Template settings
- FIM CM accounts
- about / The accounts
- FIM CM Audit
- about / Service Connection Point
- FIM CM CA
- configuring / Configuring the CA
- FIM CM CA files
- installing / Installing FIM CM CA files
- FIM CM client
- installing / Installing the FIM CM client
- FIM CM components
- installation order / Installation order
- installation prerequisites / Prerequisites
- FIM CM configuration wizard
- about / The configuration wizard
- service accounts, creating / Create service accounts
- SSL requisites, on CM portal / Require SSL on the CM portal
- Kerberos / Kerberos again!
- running / Run the wizard
- rerunning / Rerunning the wizard
- FIM CM configuration wizard, rerunning
- accounts / The accounts
- database / The database
- FIM CM databases
- about / The database
- FIM CM Enrollment Agent
- about / Service Connection Point
- FIM CM Enrollment Agent certificate template
- about / FIM CM Enrollment Agent certificate template
- enabling / Enable the templates
- FIM CM Key Recovery Agent certificate template
- about / FIM CM Key Recovery Agent certificate template
- enabling / Enable the templates
- FIM CM Request Enroll
- about / Service Connection Point
- FIM CM Request Recover
- about / Service Connection Point
- FIM CM Request Renew
- about / Service Connection Point
- FIM CM Request Revoke
- about / Service Connection Point
- FIM CM Request Unblock Smart Card
- about / Service Connection Point
- FIM CM service accounts
- certificate templates, creating for / Create certificate templates for FIM CM service accounts
- FIM CM Update Service
- configuring / Configuring the FIM CM Update Service
- FIM CM User Agent certificate template
- about / FIM CM User Agent certificate template
- enabling / Enable the templates
- FIM Licensing
- URL / Licensing
- FIM Password Reset
- about / FIM Password Reset
- FIM Password Reset portal
- installing / FIM Password Reset portal
- FIM Password sites
- edit binding, in IIS / Editing binding in IIS for FIM Password sites
- FIM Post Install Scripts, for Data Warehouse / FIM post-install scripts for Data Warehouse
- FIM portal
- logging in / Self-service using the FIM portal
- FIM Portal
- about / FIM Portal, FIM Portal
- Self Service Password Reset (SSPR) / Self Service Password Reset (SSPR)
- installing / FIM Service and FIM Portal
- UI, modifying / Components of the UI
- configuring / Portal Configuration
- FIM portal, self service
- about / Self-service using the FIM portal
- direct reports, sending / Managers can see direct reports
- attributes, managing / Users can manage their own attributes
- FIM Portal UI
- modifying / Components of the UI
- navigation bar resources / Navigation Bar Resource
- search scopes, customizing / Search scopes
- search scopes, creating / Creating your own search scope
- filter permissions / Filter Permissions
- RCDC / RCDC
- FIM Portal URL
- redirecting, to IdentityManagement / Redirecting to IdentityManagement
- FIM Post Install Scripts
- for Data Warehouse / FIM post-install scripts for Data Warehouse
- FIM Reporting
- about / FIM Reporting
- FIM reports
- viewing / Looking at reports
- FIM Service
- about / FIM Service
- request pipeline / Request pipeline
- management agent / FIM Service Management Agent
- Management Policy Rules (MPRs) / Management Policy Rules (MPRs)
- installing / FIM Service and FIM Portal
- access, granting to FIM Sync / Granting FIM Service access to FIM Sync
- placing, into maintenance mode / Maintenance mode for production
- settings, exporting / Exporting FIM Service settings
- schema, exporting / Exporting the FIM Service schema
- permissions, for setting password / Allowing FIM Service to set passwords
- configuring / Configuring FIM Service
- security context / Security context
- Password Reset Users Set / Password Reset Users Set
- multivalued attributes, managing / Managing multivalued attributes
- FIM Service Database
- FIM Service MA
- about / FIM Service MA
- creating / Creating the FIM Service MA
- run profiles, creating / Creating run profiles
- accounts, filtering / Filtering accounts
- FIM Service mailbox
- securing / Securing the FIM Service mailbox
- FIM Service Management Agent
- FIM Service policy
- exporting / Exporting the FIM Service policy
- importing / Importing the FIM Service policy
- FIM Service schema
- versus FIM Sync / FIM Sync versus FIM Service schema
- modifying / Modifying FIM Service schema
- URL / Modifying FIM Service schema
- exporting / Exporting the FIM Service schema
- FIM Service settings
- exporting / Exporting FIM Service settings
- FIM Sync
- FIM Service access, granting to / Granting FIM Service access to FIM Sync
- versus FIM Service schema / FIM Sync versus FIM Service schema
- FIMSyncAdmins group
- FIM Synchronization Service
- about / FIM Synchronization Service
- installing / FIM Synchronization Service
- placing, into maintenance mode / Maintenance mode for production
- settings, exporting / Exporting FIM Synchronization Service settings
- FIM Synchronization Service (FIM Sync)
- about / FIM Synchronization Service (FIM Sync)
- Management Agents (MA) / Management Agents
- non-declarative vs. declarative synchronization / Non-declarative vs. declarative synchronization
- password synchronization / Password synchronization
- FIM Service Management Agent / FIM Service Management Agent
- FIM Synchronization Service settings
- exporting / Exporting FIM Synchronization Service settings
- First import profile
- about / First import
- FlowRuleName parameter / Managing multivalued attributes
- Forefront Identity Manager
- about / Capacity planning
- Forefront Identity Manager 2010 (FIM 2010)
- about / The history of FIM 2010 R2
- Forest keyword / Usage Keyword
- Full Import profile
- about / First import
G
- Global keyword / Usage Keyword
- GlobalSearchResult keyword / Usage Keyword
- Group History report
- about / Default reports
- Group Membership Change report
- about / Default reports
- groups
H
- Hardware Security Module (HSM)
- about / Highly Privileged Accounts (HPA)
- Highly Privileged Accounts (HPA)
- about / Highly Privileged Accounts (HPA)
- holograms
- HOMEDIR_REQUIRED flag / userAccountControl
- HR (SQL Server)
- about / HR (SQL Server)
- SQL MA, creating / Creating SQL MA
- HSMs (Hardware Security Modules)
- about / Assurance level
- Human Resource (HR) system
- about / FIM Synchronization Service (FIM Sync)
- scenario / FIM Synchronization Service (FIM Sync)
I
- IBM Lotus Notes
- about / Managing Exchange
- Identity Lifecycle Manager 2007 (ILM 2007)
- about / The history of FIM 2010 R2
- Identity Management
- challenges / The challenges
- lifecycle procedures / Identity lifecycle procedures
- IdentityManagement
- FIM Portal URL, redirecting to / Redirecting to IdentityManagement
- IdNexus
- about / The history of FIM 2010 R2
- IISRESET
- ImportScriptname
- about / PowerShell or Custom MA
- inbound synchronization
- from Active Directory / Inbound synchronization from AD
- inbound synchronization rules
- about / Inbound synchronization rules
- indexing
- disabling, in SharePoint / Disabling indexing in SharePoint
- initial load
- versus scheduled runs / Initial load versus scheduled runs
- installation order, FIM CM components / Installation order
- installation prerequisites, FIM CM components
- about / Prerequisites
- databases / Databases
- web servers / Web servers
- service accounts / Service accounts
- Kerberos configuration / Kerberos configuration
- installing
- SCSM console / System Center Service Manager Console
- FIM Synchronization Service / FIM Synchronization Service
- FIM Portal / FIM Service and FIM Portal
- FIM Service / FIM Service and FIM Portal
- FIM Password Reset portal / FIM Password Reset portal
- FIM Certificate Management / FIM Certificate Management
- SQL Client Tools Connectivity / Install SQL Client Tools Connectivity
- FIM CM CA files / Installing FIM CM CA files
- FIM CM client / Installing the FIM CM client
- INTERDOMAIN_TRUST_ACCOUNT flag / userAccountControl
J
- Join and Projection rules
- about / Creating AD MA
- Joining
K
- Kerberos
- enforcing / Enforcing Kerberos
- Kerberos configuration
- about / Kerberos configuration
- SETSPN utility / SETSPN
- delegation / Delegation
- Kerberos Constrained Delegation (KCD)
- about / Kerberos configuration, Kerberos again!
- Key Recovery Agent certificate template, FIM CM
L
- least privileged approach
- about / Least privileged
- lifecycle procedures
- identifying / Identity lifecycle procedures
- LOCKOUT flag / userAccountControl
- Lockout Gate activity
- about / Password Reset AuthN workflow
- Lync
- about / Managing Lync
- managing / Managing Lync
- LyncEnabled attribute / Provision Lync Users
- Lync Users
- provisioning / Provision Lync Users
M
- MailEnabledSecurity keyword / Usage Keyword
- maintenance mode
- for production / Maintenance mode for production
- FIM Synchronization Service, placing into / Maintenance mode for production
- FIM Service, placing into / Maintenance mode for production
- disabling / Disabling maintenance mode
- Management Agent, FIM CM / CM Management Agent
- Management Agents
- about / Creating Management Agents
- creating / Creating Management Agents
- Active Directory / Active Directory
- HR (SQL Server) / HR (SQL Server)
- run profiles, creating for / Run profiles
- Management Agents (MA)
- Management Agents (MAs)
- about / SQL aliases
- Management Policy Rule History report
- about / Default reports
- Management Policy Rules (MPRs)
- MCS (Microsoft Consulting Services / Workflow activities
- Metaverse (MV)
- Microsoft Consulting Services solution
- about / The history of FIM 2010 R2
- Microsoft Forefront Identity Manager 2010 R2 (FIM 2010 R2)
- implementing / Implement FIM 2010 R2
- history / The history of FIM 2010 R2
- licensing / Licensing
- development versus production / Development versus production
- capacity planning / Capacity planning
- hardware / Hardware
- reports, modifying / Modifying the reports
- Microsoft Identity Integration Server (MIIS)
- about / The history of FIM 2010 R2
- Microsoft Lync
- about / PowerShell or Custom MA
- Microsoft Metadirectory Services (MMS)
- about / The history of FIM 2010 R2
- Microsoft System Center Service Manager (SCSM)
- about / FIM Reporting
- MNS_LOGON_ACCOUNT flag / userAccountControl
- MPRs
- about / Modifying MPRs for user management, Outbound synchronization policy
- modifying, for user management / Modifying MPRs for user management
- creating / MPR
- enabling / SSPR MPRs
- multi-step option, Run Profiles / Single or Multi step
- multivalued attributes
- managing, in FIM / Managing multivalued attributes
- MV schema
- obejct, deleting / Object deletion in MV
- MyApprovals keyword / Usage Keyword
- MyDGMemberships keyword / Usage Keyword
- MyDGs keyword / Usage Keyword
- MyRequests keyword / Usage Keyword
- MySecurityGroupMemberships keyword / Usage Keyword
- MySecurityGroups keyword / Usage Keyword
N
- navigation bar resources
- about / Navigation Bar Resource
- New-MsolFederatedDomain cmdlet
- about / Overview of Office 365
- non-declarative provisioning
- about / Non-declarative provisioning
- non-declarative synchronization
- verus declarative synchronization / Non-declarative vs. declarative synchronization
- NORMAL_ACCOUNT flag / userAccountControl
- NotifictionEmailTemplate keyword / Usage Keyword
- NOT_DELEGATED flag / userAccountControl
O
- object deletion
- in MV / Object deletion in MV
- Object Deletion Rules
- about / Object deletion in MV
- Office 365
- URL, for info / Implement federation
- about / Overview of Office 365
- overview / Overview of Office 365
- services / Overview of Office 365
- FIM used, for obtaining OTP / Using UAG and FIM to get OTP for Office 365
- UAG used, for obtaining OTP / Using UAG and FIM to get OTP for Office 365
- One Time Password (OTP)
- One Time Password (OTP) gate
- about / Anonymous request
- versus Question and Answer (QA) gate / QA versus OTP
- configuring / The OTP gate
- OTP
- FIM, used for obtaining / Using UAG and FIM to get OTP for Office 365
- UAG, used for obtaining / Using UAG and FIM to get OTP for Office 365
- Outbound Attribute Flow option / Mail-enabled users
- outbound synchronization policy
- about / Outbound synchronization policy
- outbound synchronization rule
- creating / Synchronization rule
- outbound synchronization rules
- about / Outbound synchronization rules
- outbound system scoping filter
- about / Outbound system scoping filter
P
- PARTIAL_SECRETS_ACCOUNT flag / userAccountControl
- PASSWD_CANT_CHANGE flag / userAccountControl
- PASSWD_NOTREQD flag / userAccountControl
- password
- setting, FIM Service used / Allowing FIM Service to set passwords
- Password Authentication Challenge activity
- about / Password Reset AuthN workflow
- Password Change Notification Service (PCNS)
- about / Password synchronization
- password management
- about / Password management
- enabling, in Active Directory / Enabling password management in AD
- Password Reset AuthN workflow
- about / Password Reset AuthN workflow
- Question and Answer (QA) gate, configuring / Configuring the QA gate
- One Time Password (OTP) gate, configuring / The OTP gate
- Password Reset Users Set
- about / Password Reset Users Set
- password synchronization
- about / Password synchronization
- PASSWORD_EXPIRED flag / userAccountControl
- permissions
- configuring, for consultant Smart Cards / Configuring permissions for consultant Smart Cards
- Personal Identification Number (PIN)
- about / Service Connection Point
- Person keyword / Usage Keyword
- phone system
- about / Managing users in a phone system
- users, managing in / Managing users in a phone system
- PKI (Public Key Infrastructure)
- about / Assurance level
- post-installation configuration
- FIM Service access, granting to FIM Sync / Granting FIM Service access to FIM Sync
- FIM Service mailbox, securing / Securing the FIM Service mailbox
- indexing, disabling in SharePoint / Disabling indexing in SharePoint
- FIM Portal URL, redirecting to IdentityManagement / Redirecting to IdentityManagement
- Kerberos, enforcing / Enforcing Kerberos
- edit binding, in IIS for FIM Password sites / Editing binding in IIS for FIM Password sites
- PowerShell
- PowerShell scripts
- about / PowerShell scripts
- pre-import filtering feature, AD MA
- about / Creating AD MA
- URL, for info / Creating AD MA
- production environment
- versus development environment / Development versus production
- changes, importing to / Importing to production
- custom code, importing / Importing custom code
- Profile Template
- creating, for consultant Smart Cards / Creating a Profile Template for consultant Smart Cards
- profile template object
- about / Profile Template object
- profile template settings
- about / Profile Template settings
- Projection
- property flags
- SCRIPT / userAccountControl
- ACCOUNTDISABLE / userAccountControl
- HOMEDIR_REQUIRED / userAccountControl
- LOCKOUT / userAccountControl
- PASSWD_NOTREQD / userAccountControl
- PASSWD_CANT_CHANGE / userAccountControl
- ENCRYPTED_TEXT_PWD_ALLOWED / userAccountControl
- TEMP_DUPLICATE_ACCOUNT / userAccountControl
- NORMAL_ACCOUNT / userAccountControl
- INTERDOMAIN_TRUST_ACCOUNT / userAccountControl
- WORKSTATION_TRUST_ACCOUNT / userAccountControl
- SERVER_TRUST_ACCOUNT / userAccountControl
- DONT_EXPIRE_PASSWORD / userAccountControl
- MNS_LOGON_ACCOUNT / userAccountControl
- SMARTCARD_REQUIRED / userAccountControl
- TRUSTED_FOR_DELEGATION / userAccountControl
- NOT_DELEGATED / userAccountControl
- USE_DES_KEY_ONLY / userAccountControl
- DONT_REQ_PREAUTH / userAccountControl
- PASSWORD_EXPIRED / userAccountControl
- TRUSTED_TO_AUTH_FOR_DELEGATION / userAccountControl
- PARTIAL_SECRETS_ACCOUNT / userAccountControl
- provisioning
- about / Provisioning
- non-declarative provisioning / Non-declarative provisioning
- Provisioning
- proxyAddresses attribute / Managing Lync, Managing multivalued attributes
- Public Key Infrastructure (PKI)
- about / Highly Privileged Accounts (HPA)
Q
- Question and Answer (QA) gate
- about / Anonymous request
- versus One Time Password (OTP) gate / QA versus OTP
- configuring / Configuring the QA gate
R
- RCDC
- about / RCDC
- RDP
- using Smart Card / RDP using Smart Cards
- about / RDP using Smart Cards
- re-registration, Self-service Password Reset (SSPR) / Require re-registration
- Replicating Directory Changes permission
- about / Directory replication
- Report Definition Language (RDL) file
- about / Modifying the reports
- report reading
- access, providing to users / Allowing users to read reports
- reports
- viewing / Looking at reports
- modifying / Modifying the reports
- Request History report
- about / Default reports
- Request MPR
- about / Management Policy Rules (MPRs)
- request pipeline, FIM service / Request pipeline
- Request Processor workflow
- about / Request pipeline
- Resource keyword / Usage Keyword
- Results tab
- roles
- separating / Separating roles
- roles, separating
- about / Separating roles
- databases / Databases
- FIM features / FIM features
- RSAT
- about / Certificate Template
- Run Profiles
- creating, for Management Agents / Run profiles
- single-step option / Single or Multi step
- multi-step profiles option / Single or Multi step
- creating, for FIM Service MA / Creating run profiles
- first import / First import
- RUS (Recipient Update Service)
- about / Exchange 2007
S
- scheduled runs
- vesus initial loads / Initial load versus scheduled runs
- schema management
- about / Schema management
- FIM Sync versus FIM Service schema / FIM Sync versus FIM Service schema
- object deletion, in MV / Object deletion in MV
- FIM Service schema, modifying / Modifying FIM Service schema
- SchemaObject keyword / Usage Keyword
- SCRIPT flag / userAccountControl
- SCSM
- about / SCSM
- requisites / SCSM
- setup, verifying / Verifying the SCSM setup
- SCSM-DW
- about / Databases
- SCSM-MGMT
- about / Databases
- SCSM console
- installing / System Center Service Manager Console
- SCSM Data Warehouse
- about / SCSM Data Warehouse
- setting up / SCSM Data Warehouse
- SCSM ETL process
- about / The SCSM ETL process
- SCSM management
- about / SCSM management
- setting up / SCSM management
- SCSM Manager
- registering, in Data Warehouse / Registering SCSM Manager in Data Warehouse
- SCSM setup
- verifying / Verifying the SCSM setup
- Search Definition tab
- about / Search Definition
- SearchRequests keyword / Usage Keyword
- search scopes
- about / Search scopes
- usage keyword / Usage Keyword
- keywords / Usage Keyword
- Search Definition tab / Search Definition
- Results tab / Results
- creating / Creating your own search scope
- security context, FIM Service / Security context
- Security keyword / Usage Keyword
- selective deprovisioning
- about / Selective deprovisioning
- Self-service Password Reset (SSPR)
- features / Password Reset AuthN workflow
- re-registration / Require re-registration
- MPRs, enabling / SSPR MPRs
- user experience / The user experience
- Self-service Password Reset feature
- about / Password reset
- Self Service Password Reset (SSPR)
- SERVER_TRUST_ACCOUNT flag / userAccountControl
- service accounts
- about / Service accounts
- Dev-FIMMA / Service accounts
- Dev-FIMService / Service accounts
- Dev-FIMSync / Service accounts
- Dev-FIMSPPool / Service accounts
- svcFIMMA / Service accounts
- svcFIMService / Service accounts
- svcFIMSync / Service accounts
- svcFIMSPPool / Service accounts
- svcFIMPWService / Service accounts
- svcFIMCMPool / Service accounts
- svcSCSMAdmin / Service accounts
- svcSCSMService / Service accounts
- svcSCSMWF / Service accounts
- svcSCSMReport / Service accounts
- creating / Create service accounts
- Service Connection Point (SCP)
- about / Service Connection Point
- Service Level Agreement (SLA)
- about / Web servers
- Service Manager
- about / Allowing users to read reports
- Service Principal Name (SPN)
- about / Kerberos configuration
- Service Principle Name (SPN)
- about / FIM Portal
- Service schema difference
- importing / Importing the Service schema difference
- Set History report
- about / Default reports
- Set Membership Change report
- about / Default reports
- sets
- configuring, for user management / Configuring sets for user management
- about / Configuring sets for user management, Outbound synchronization policy
- creating / Set
- SETSPN -L
- about / SETSPN
- SETSPN -Q
- about / SETSPN
- SETSPN -S
- about / SETSPN
- SETSPN utility
- SETSPN utility, switches
- Set Transition MPR
- about / Management Policy Rules (MPRs)
- SharePoint
- indexing, disabling in / Disabling indexing in SharePoint
- single-step option, Run Profiles / Single or Multi step
- Single Sign-On (SSO)
- about / Federation
- Single Sign On (SSO)
- about / Password synchronization
- Smart Card enrollment
- about / John enrolls a Smart Card
- Smart Cards
- about / Assurance level
- smart cards
- using / Start using smart cards
- about / The history of FIM 2010 R2
- SMARTCARD_REQUIRED flag / userAccountControl
- SQL
- SQL aliases
- about / SQL aliases
- SQL Client Tools Connectivity
- installing / Install SQL Client Tools Connectivity
- SQL feature requirements
- SQL MA
- creating / Creating SQL MA
- SQL Server Integration Services (SSIS)
- about / Databases, HR (SQL Server), SSIS
- SSIS
- case study / The case with the strange roles
- SSL requisites
- on CM portal / Require SSL on the CM portal
- Subject Alternative Name (SAN)
- about / FIM Portal
- svcFIMCMAgent account
- svcFIMCMAuthZAgent account
- about / Create service accounts
- svcFIMCMCAMngr account
- about / Create service accounts
- svcFIMCMEnrollAgent account
- svcFIMCMKRAgent account
- svcFIMCMPool account
- svcFIMCMService account
- about / Create service accounts
- svcFIMMA account
- about / Service accounts, Least privileged
- svcFIMPWService account
- about / Service accounts, Delegation
- svcFIMService account
- about / Service accounts, Delegation
- svcFIMSPPool account
- about / Service accounts, Delegation
- svcFIMSync account
- about / Service accounts
- svcSCSMAdmin account
- about / Service accounts
- svcSCSMReport account
- about / Service accounts
- svcSCSMService account
- about / Service accounts
- svcSCSMWF account
- about / Service accounts
- switch statement / Managing multivalued attributes
- synchronization rule
- creating / Inbound synchronization rules, Synchronization rule
- about / Synchronization rule
- Synchronization Rule object
- about / Inbound synchronization rules
- synchronization rules, for Exchange
- about / Synchronization rule for Exchange
- mailbox users rules / Mailbox users
- mail-enabled users / Mail-enabled users
- Synchronization Service settings
- importing / Importing the Synchronization Service settings
- systems
- DC / The environment
- CA / The environment
- SQL / The environment
- MAIL / The environment
- RD / The environment
- TMG / The environment
- UAG / The environment
- FIM-Dev / The environment
- FIM-Sync / The environment
- FIM-Service / The environment
- FIM-CM / The environment
- FIM-PW / The environment
- SCSM-MGMT / The environment
- SCSM-DW / The environment
T
- temporal set
- about / Temporal Sets
- TEMP_DUPLICATE_ACCOUNT flag / userAccountControl
- TimeoutEmailTemplate keyword / Usage Keyword
- TRUSTED_FOR_DELEGATION flag / userAccountControl
- TRUSTED_TO_AUTH_FOR_DELEGATION flag / userAccountControl
U
- UAG
- used, for obtaining OTP for Office 365 / Using UAG and FIM to get OTP for Office 365
- usage keyword
- about / Navigation Bar Resource, Usage Keyword
- userAccountControl attribute
- User Agent certificate template, FIM CM
- user experience, Self-service Password Reset (SSPR) / The user experience
- User History report
- about / Default reports
- user management
- MPRs, modifying for / Modifying MPRs for user management
- sets, configuring for / Configuring sets for user management
- User Rights Assignment
- users
- provisioning / Provisioning of users
- managing, in phone system / Managing users in a phone system
- managing, in Active Directory / Managing users in Active Directory
- provisioning, to Active Directory / Provision users to Active Directory
- access providing, for report reading / Allowing users to read reports
- users, provisioning to Active Directory
- about / Provision users to Active Directory
- synchronization rule / Synchronization rule
- sets / Set
- workflow / Workflow
- MPRs / MPR
- USE_DES_KEY_ONLY flag / userAccountControl
V
- VIA
- about / The history of FIM 2010 R2
W
- web servers
- about / Web servers
- FIM Portal / FIM Portal
- FIM Password Reset / FIM Password Reset
- FIM Certificate Management / FIM Certificate Management
- Windows Management Instrumentation (WMI)
- workflow
- for synchronization rule / Workflow
- workflow activities
- about / Workflow activities
- WORKSTATION_TRUST_ACCOUNT flag / userAccountControl
X
- XPath expression
- about / Search Definition
Z
- Zoomit
- about / The history of FIM 2010 R2