PKI Blog

Two-factor Authentication via SMS Messaging for FIM 2010 R2 SSPR

Posted by CSS Technical Team on Sep 17, 2014 11:11:00 AM

Recently I worked on a customized self-service password reset (SSPR) solution leveraging FIM 2010 R2. The SSPR functionality provided out of the box by FIM 2010 R2 is quite comprehensive. In the design sessions with the customer, they decided that they wanted to use a higher level of security for users on the Internet to be able to reset their passwords. This certainly makes sense—exposing an interface where corporate users can reset their passwords is a boon to the service desk, but introduces a significant threat surface and associated security risk.

Read More

Topics: Infrastructure Management, Industry Trends, SMS, strong authentication, Identity Management, SSPR, OTP, Blog, Self-Service Password Reset, one-time password, FIM 2010 R2, two factor authentication

FIM 2010 R2 Unattended Install Where You Want It

Posted by Laurin Kline on May 5, 2014 6:47:15 AM

Recently we started using a custom script to install and configure FIM in a consistent manner. During more than a few manual installs, I’ve been asked to install FIM into a drive or directory other than “C:\Program Files\Microsoft Forefront Identity Manager\2010," so I knew the script would need to have this capability. After finding and reading the “Unattended Installation of FIM 2010 R2” post, I spent a great deal of time searching the internet which led me to the not well documented option, INSTALLDIR=”” that allows the unattended install of FIM components to drives or directories other than the default.

Maybe, this something you already knew, but I thought I’d share it, as it wasn’t an obvious choice.

Read More

Topics: installation path, Forefront Identity Manager, FIM 2010, IT Security, Microsoft Security Partner, FIM, FIM Portal, INSTALLDIR64, Identity Management, FIM Service Service, Microsoft Forefront Identity Manager, Microsoft FIM, Blog, install path, FIM Sync Service, FIM 2010 R2, FIM Service

FIM 2010 R2 Upgrade - How to Tell MSDN Media Was Used for the 2010 Install

Posted by CSS Technical Team on Nov 20, 2012 3:57:00 AM

With the new features of FIM 2010 R2 such as external SSPR, reporting, and BHold (not to mention all of the other extras - like the the gains in performance, new connectors, etc.), folks are of course interested in updating their FIM 2010 installations.

Read More

Topics: MSDN, FIM 2010 R2 Upgrade, BHold FIM, Identity Management, Microsoft Forefront Identity Manager, Microsoft FIM, MSDN Media, Blog, FIM Sync Service, BHold, FIM 2010 R2

What Cannot Be Done With FIM 2010 R2 Password Reset Extensions

Posted by Laurin Kline on Sep 5, 2012 5:16:46 AM

“Can we install the FIM 2010 R2 Add-ins and Extensions on our desktops before we upgrade the rest of the FIM environment?”

While this may be an obvious, self-answering question, I had a client ask me about it recently, and while I was pretty certain of the answer, “No,” I had some time and a virtual environment so I went ahead and tested it.
The first clue that things were going horribly wrong was when I got to this panel in the install process (an example from the “Installing the FIM 2010 R2 Add-ins and Extensions” found here http://technet.microsoft.com/en-us/library/hh322877(v=ws.10).aspx):

Read More

Topics: SSPR Client, Forefront Identity Manager, FIM 2010, IT Security, Microsoft Security Partner, FIM Client Add-ins and Extensions, FIM SSPR Client, FIM 2010 Password Reset Extensions, FIM 2010 R2 Password Reset Extensions, SSPR, FIM R2 Client Add-ins and Extensions, Blog, Self-Service Password Reset, FIM R2 SSPR Client, FIM 2010 R2

Posts by Topic

see all

Subscribe to Email Updates

Want to Learn more about CSS?