PKI Blog

Batch Attribute Updates for Users in Forefront Identity Manager (FIM)

Posted by CSS Technical Team on Jun 25, 2014 11:56:00 AM

A client recently requested the ability to use data in an externally-generated file to perform batch attribute updates for Users in the FIM Service. What made this more complicated than expected was that some of the user attributes, for example Manager, were FIM references.

Read More

Topics: Forefront Identity Manager, IT Security, Microsoft Security Partner, FIM, FIM PowerShell, Forefront Identity Manager (FIM), FIM web service, Identity Management, Microsoft Forefront Identity Manager, Blog, FIM automation, PowerShell

Deleting a Large Number of Objects from the FIM Service with PowerShell

Posted by Sami Van Vliet on Jun 3, 2014 10:49:10 AM

Deleting a large number of objects from the FIM Service can be accomplished in several ways:

Read More

Topics: Delete objects FIM, Forefront Identity Manager, IT Security, Microsoft Security Partner, FIM, FIM PowerShell, Identity Management, Microsoft Forefront Identity Manager, Microsoft FIM, Blog, PowerShell, FIM Service

Simplifying FIM Service Migration

Posted by Rex Wheeler on Apr 30, 2014 2:57:26 PM

If you have spent time with FIM you know, and if you have not, you will soon learn that migrating a FIM Service configuration from one environment to another can be very difficult.

Read More

Topics: GitHub FimDelta, IT Security, Microsoft Security Partner, GitHub, FIM, FIM Service Migration, FimDelta, FIM Delta Tool, Identity Management, FIM Service migration process, Migration, Microsoft Forefront Identity Manager, Microsoft FIM, PowerShell migration, Blog, PowerShell, FIM Service

Migrating Relying Party Trusts

Posted by Sarah Duncan on Jul 9, 2013 5:29:48 AM

There are times when you might find yourself needing to migrate a relying party (RP) from one AD FS implementation to another. Unfortunately, at the moment there do not seem to be existing tools to do this. So, we offer the following rather quick and dirty approach. There might be better ways, but this gets the job done.

Read More

Topics: Federation, Microsoft Active Directory AD, Active Directory Federation Services, AD FS, Migration, Blog, PowerShell script, Active Directory, Relying Party trusts, PowerShell

Claims-based Authentication and Authorization with ADFS 2.0 and SharePoint 2010

Posted by Jake Chang on Jan 21, 2013 9:02:07 AM

A lot of technical notes and web articles talk about different aspects for claims-based federation between ADFS 2.0 and SharePoint 2010. In this blog, we will primarily focus on claims mapping, setting for authentication and authorization process.

Read More

Topics: Federation, Microsoft ADFS, Active Directory Federation Services, IT Security, Microsoft Security Partner, authentication, ADFS 2.0, SharePoint, Claims-based authentication, Microsoft AD, ADFS, SharePoint 2010, Blog, Microsoft SharePoint, Microsoft SharePoint 2010, Active Directory, PowerShell

Configuring a Non-Domain-Joined RMS Client Machine

Posted by Sarah Duncan on Nov 8, 2011 4:08:49 AM

In most corporate environments, when you roll out RMS to the client machines you're talking about domain-joined machines that you are configuring via group policy, SCCM and similar desktop deployment tools. But what if you have a few users who need to have access to RMS-protected content from non-domain-joined clients? What if they need to apply rights-protections to content as well? With your custom templates no less, then what? Under some circumstances, it may be possible to get RMS configured on a non-domain-joined client machine just by asking the user to open a rights-protected document, but whether this will work or not depends on a lot of variables, and it's not a reliable solution. Your best bet is to hand the user an easy-to-run script packaged with your rights policy templates to line all the ducks up in a row automatically.

Read More

Topics: Rights Management Services, Active Directory Rights Management Services, IT Security, Microsoft Security Partner, Microsoft RMS, RMS, Blog, PowerShell script, PowerShell, AD RMS

A PowerShell script to find AD FS 2.0 errors

Posted by CSS Technical Team on Nov 2, 2011 10:18:58 AM

So one of your users has received an error from AD FS 2.0, and you need to determine what the problem is. Unfortunately, sometimes the error message doesn't give much of a clue—for example the web page shown below.

Read More

Topics: Federation, Microsoft Active Directory AD, IT Security, Microsoft Security Partner, FS, AD FS, Microsoft AD, AD FS server, AD FS 2.0, Blog, PowerShell script, Active Directory, PowerShell, AD

Recent Posts

Posts by Topic

see all

Subscribe to Email Updates

Want to Learn more about CSS?