FIM 2010 can provide user authentication?

Similar Messages

• How to provide user authentication to a PDF form

  Guys I have develop a webservice on XI , and I am calling that webservice using PDF forms developed in WebDynpro . The problem is the webservice needs user authentication and I don't know how to pass user id and password from pdf form to web service . Can anybody help me out
  Thanks
  Manish

  I don't know what you mean by "printed entries"; you mean filled-in form fields?

• Is it possible to populate readOnly text box(es) on a FIM 2010 R2 RCDC User create form with the details of the logged in user?

  Hello
  I am curious if this can be done. I guess its a Person object I need to fetch, but how can I refer to it?
  What would the XPath look like?
  *HH

  Thankyou for the response. Yes indeed those environment variables are documented, but how to use them is not.
  Very Hard to use. I just wanted to show the Requester information on the User Create and Edit rcdc screens.
  I could only get the UocListView control to work though, but it is sufficient, like so:
          <my:Control my:Name="CurrentUser" my:TypeName="UocListView" my:ExpandArea="true" my:Caption="Requester">
          <my:Properties>
              <my:Property my:Name="ColumnsToDisplay" my:Value="DisplayName,Email,OrganizationalUnit" />
              <my:Property my:Name="EmptyResultText" my:Value="" />
              <my:Property my:Name="PageSize" my:Value="1"/>
              <my:Property my:Name="ShowTitleBar" my:Value="true" />
              <my:Property my:Name="ShowActionBar" my:Value="false" />
              <my:Property my:Name="ShowPreview" my:Value="false" />
              <my:Property my:Name="ShowSearchControl" my:Value="false" />
              <my:Property my:Name="EnableSelection" my:Value="false" />
              <my:Property my:Name="SingleSelection" my:Value="false" />
              <my:Property my:Name="ItemClickBehavior" my:Value="Server" />
              <my:Property my:Name="ListFilter" my:Value="/Person[ObjectID='%LoginID%']" />
          </my:Properties>
          </my:Control>
  This gives me a nice 3 column display of the current Requester's Name, Email and Unit.

• Best way Of providing user authentication using ADF security...

  Hi,
  I have a web application . I want to implement to ADF security to the application.. What is the best approach of doing this? I have the user information in the database tables along with the roles and other information. I want to these tables for authorization ?
  What is the best approach to do this? It would be great if u could help ..
  I ma using 11g release 2
  Thanks in advance.
  Rakesh

  Hi,
  Thanks for the quick response.
  I have been looking at the post but i found one of the forum post in which the person was saying the SQLAuthentication doesnt work ..
  "Be wary when using ADF Security (OPSS) with a SQLAuthenticator.
  This is feedback I got in SR 3-4124753004 :
  "If the you want to use DB as the identity store, then the supported way is to buy OVD server license and configure DB adapter in OVD and then configure an OVD authenticator in Weblogic. SQLAuthenticator will not be used as identity store. And, we do not recommend to use LibOVD for DB identity store. OVD server is the recommended and supported way."
  related bugs are :
  - bug 13876651, "FMW CONTROL SHOULD NOT ALLOW MANAGING USERS GROUPS FROM SQL AUTHENTICATOR"
  - enhancement request 12864498, "OPSS : ADDMEMBERSTOAPPLICATIONROLE : THE SEARCH FOR ROLE FAILED"
  related forum threads are :
  - "ADF Security : identity store : tables in a SQL database"
  - "OPSS : addMembersToApplicationRole : The search for role failed"
  regards
  Jan Vervecken"
  Is this true?
  Rakesh

• FIM 2010 R2 - User Access Validation

  Hi,
  Does FIM 2010 R2 provide any feature for performing user access revalidation? If not, are there any 3rd party tools that can be used along with FIM. Is this something being introduced in MIM.
  Thanks in Advance.

  All, I have started seeing sporadic validation viewstate MAC errors in a non-HA password portal environment.  I have done some research on this but have not found a definitive fix.  Does anyone know what the best practice, or most effective way,
  is to solve this error?
  Thanks,
  Scott
  If this post has been useful please click the green arrow to the left or click Propose as answer

• User Authentication o router

  Dear All
  Is the Cisco 3745 router having NM-8A/S module supports dialup user authentication and if yes what is the configuration requires.
  With Regards
  Anand

  Hi,
  It does but you need to be more specific in your backend technology.
  The reason i say this is because you can use AAA on the router to provide user authentication via TACACS+ or RADUIS, both which require a device with TACACS+ or RADUIS applications.
  The other option is to use local authentication which is not very scalable in a dialup environment.
  Rgds
  PD

• Cisco ISE User Authentication Certificates for Wired and Wirless Users (BYOD)

  Can any one tell me from where we can purchase User Authentication Certificates for Wired and Wireless Users (BYOD) for Cisco ISE. Also Confirm what certificates we required for the purpose.
  Please suggest the Website form where we can purchase and ipmort in Cisco ISE certificate Section.
  Thanks.

  Dear Mohana,
  Thanks for your reply, Can you please confirm me in regards EAP-TLS certificate, which authorities you recomend if i go to Go dadday or very Sign to buy it and then import in ISE.
  Looking forward for your reply.
  Regards,
  Muhammad Imran Shaikh
  Resident Engineer, IT Network Section - PPL
  Mobile : 0092-312-288-1010
  LinkedIn : pk.linkedin.com/pub/muhammad-imran-shaikh/10/471/b47/

• Can the user unlock his AD account in FIM 2010 R2

  Hi all
  can a user unlock his AD account from FIM portal.
  Thanks
  Teka

  Hello,
  currently not out-of-box, but you can do this by customizing the portal.
  MIM vNext will provide Self-Service Account Unlock, you can check the
  preview on connect for that.
  I currently have Account Unlock through helpdesk but it is possible to change this to self service.
  You can use the
  powershell activitiy for that for example:
  1. Change RCDC for user UI and add a boolean attribute for account unlock.
  2. On change of this attribute trigger a MPR with the PS activity that unlocks the account.
  3. Reset the unlock account attribute to normal state (false).
  4. create approp. permission MPRs to allow users to change only their own account unlock attribute.
  thats it.
  -Peter
  Peter Stapf - ExpertCircle GmbH - My blog:
  JustIDM.wordpress.com

• My app store is not working after installing mavericks. When I open app store it repeatedly asking me to login with apple ID and to provide User name and Password for proxy authentication in a loop.I am a newbie to mac,Please help me.

  My app store is not working after installing mavericks. When I open app store it repeatedly asking me to login with apple ID and to provide User name and Password for proxy authentication in a loop.I am a newbie to mac,Please help me.

  Hmmmm... would appear that you need to be actually logged in to enable the additional menu features.
  Have you tried deletting the plists for MAS?
  This page might help you out...
  http://www.macobserver.com/tmo/answers/how_to_identify_and_fix_problems_with_the _mac_app_store
  Failing that, I will have to throw this back to the forum to see if anyone else can advise further.
  Let me know how you get on?
  Thanks.

• Use Microsoft Online Directory Services as a user authentication provider for our own SharePoint farm?

  Hi,
  I've managed to configure my farm so that  Microsoft Online Directory Services (Office 365 etc.) can be used for STS authentication, but what I'm actually trying to do is allow user authentication - that is, I'm hoping to be able to use the user's
  O365 credentials to authenticate them in my own farm so they can view certain parts of it. If I need to write my own login form or authentication provider or whatever that's fine, as long as the user doesn't need to enter anything when they access my farm
  (provided they already have cached O365 credentials in their browser session).
  FWIW I actually need to be able to support the possibility that users are coming from multiple O365 tenancies, whereby each site collection will be configured to allow users from a different O365 tenancy (more or less).
  If it's not possible to do with my own development farm on a PC, it is possible if the farm is hosted in Azure?
  Thanks
  Dylan

  Hi  Dylan,
  According to your description, my understanding is that you want to use Microsoft Online Directory Services as a user authentication provider for your SharePoint farm.
  For your demand, you can configure a hybrid topology for your SharePoint farm:
  http://technet.microsoft.com/en-us/library/jj838715(v=office.15).aspx
  http://technet.microsoft.com/en-us/library/dn197168(v=office.15).aspx
  Thanks,
  Eric
  Forum Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support,
  contact [email protected]
  Eric Tao
  TechNet Community Support

• How to get Reports for specific User that how many password has been reset using FIM SSPR in FIM 2010 R2 SSPR

  Hi,
  How to get Reports for specific User that how many password has been reset using FIM SSPR in FIM 2010 R2 SSPR
  Regards
  Anil Kumar

  Hello there Anil,
  A simple way to quickly get a overview is to look at the request history within the portal environment (note that this will expire in a few day based on your environment, after that you would need to FIM Reporting Module - but you could increase this to
  maybe 60 days to so, watch the DB size).
  To do this you could create some custom search scopes of do some custom queries. The creator of the SSPR activities always has the same GUID so you can use that so search.
  In your search scope you can use the following XPath to play with.
  - All Password Reset Requests - /Request[Creator='b0b36673-d43b-4cfa-a7a2-aff14fd90522' and Operation='Put']
  - All Completed Password Reset Requests - /Request[Creator='b0b36673-d43b-4cfa-a7a2-aff14fd90522' and RequestStatus=‘Completed']
  You can play with the "RequestStatus".
  Hope this helps.
  Almero Steyn (http://www.puttyq.com) [If a post helps to resolve your issue, please click the "Mark as Answer" of that post or "Helpful" button of that post. By marking a post as Answered or Helpful, you help others find the answer
  faster.]

• How do you make the Filter so we can use the FIM cmdlets to list Users who have no Manager attribute

  I can easily create a Set of Users who are "unusual"
  The SET criteria is
  EmployeeID starts with %
  and Any of
      EmployeeStatus not starts with %
      EmployeeType not starts with %
      Manager not in All FIM users
  This criteria works and gives me all the users when I push the View Members button.
  But when I look at the Set's Filter it seems to refer to a uuid of that All FIM users Set. To be honest I dont fully understand the set's XPATH filter.
  What I hope to do is to some how build a filter so that the FIM cmdlets can be used to identify and fix up these users, especially those who do not have a valid Manager. There are hundreds of these non-standard users and although possible, its not practical
  to do this by hand via the "All Non Standard Users" set.
  Any hints welcomed.

  All users without a manager: Xpath Filters
  /Person[not(Manager=/Person)]
  or,
  /Person[Manager!=/Set[DisplayName='All People']/ComputedMember]
  <# Please do not anything in the production environment unless and until you are very much sure #>
  # Powershell Cmdlet to find all users in portal not having manager
  # Load FIMAutomation module
   if(@(Get-PSSnapin | ? { $_.Name -eq "FIMAutomation" } ).Count -eq 0)
       Add-PSSnapin FIMAutomation;
  $users = Export-FIMConfig -customConfig "/Person[not(Manager=/Person)]" -Uri "http://localhost:5725"  -OnlyBaseResources
  foreach ($user in $users)
  $x = (($user.ResourceManagementObject.ResourceManagementAttributes | Where-Object {$_.AttributeName -eq "DisplayName"}).Value) 
  Write-Host "$x"
  Thanks and regards,
  Anirban Singha(Bangalore)

• How to show register attribute value in my register users report in FIM 2010 R2

  Hi,
  How to show register attribute value in my register users report in FIM 2010 R2?
  Please suggest on this.
  Regards
  Anil Kumar

  hello,
  the only way I know is manage the attribute descriptiona s a property and then enable the pivot table option "Show properties in tooltip".
  But I'm interested in what you mean with  "using
  "OLAP pivot table extension" is an option". How this works?
  Thanks
  bye
  Norman

• When I send e-mail messages with file by using a POP3 in Exchange 2010 I received delivered message with file. How I can disable this functions that file do not include to delivery message. I use Exchange 2010 only local users.

  When I send e-mail messages with file by using a POP3 in Exchange 2010 I received delivered message with file. How I can disable this functions that file do not include to delivery message.  I use Exchange 2010 only local users.

  I think there is not native rule for this, but you could try a transport rule which removes all attachments over a very small file size like 1KB.
  http://blogs.technet.com/b/exchange/archive/2009/05/11/3407435.aspx
  CRM Advisor

• How to create bulk user ids in the FIM 2010 using powershell

  i have the below powershell script but which will create only one user at time in the FIM. Can somebody help me with powershell scripit which will help us to create a bulk users .
   set-variable -name URI -value "http://localhost:5725/resourcemanagementservice' " -option constant
   function SetAttribute
      PARAM($object, $attributeName, $attributeValue)
      END
          $importChange = New-Object Microsoft.ResourceManagement.Automation.ObjectModel.ImportChange
          $importChange.Operation = 1
          $importChange.AttributeName = $attributeName
          $importChange.AttributeValue = $attributeValue
          $importChange.FullyResolved = 1
          $importChange.Locale = "Invariant"
          if ($object.Changes -eq $null) {$object.Changes = (,$importChange)}
          else {$object.Changes += $importChange}
   function CreateObject
      PARAM($objectType)
      END
         $newObject = New-Object Microsoft.ResourceManagement.Automation.ObjectModel.ImportObject
         $newObject.ObjectType = $objectType
         $newObject.SourceObjectIdentifier = [System.Guid]::NewGuid().ToString()
         $newObject
   if(@(get-pssnapin | where-object {$_.Name -eq "FIMAutomation"} ).count -eq 0) {add-pssnapin FIMAutomation}
   clear-host
   if($args.count -ne 1) {throw "You need to specify your attribute values as parameter"}
   $attributes = ($args[0]).split("|")
   if(0 -ne [String]::Compare(($attributes[0]).split(":")[0],"displayname", $true))
   {throw "You need to specify a display name"}
   $objectName = ($attributes[0]).split(":")[1]
   $exportObject = export-fimconfig -uri $URI `
                                    –onlyBaseResources `
                                    -customconfig "/Person[DisplayName='$objectName']"
   if($exportObject) {throw "L:User $objectName already exists"}
   $newUser = CreateObject -objectType "Person"
   foreach($attribute in $attributes)
      $attrData = $attribute.split(":")
      SetAttribute -object $newUser `
                   -attributeName  $($attrData[0]) `
                   -attributeValue $($attrData[1])
   $newUser | Import-FIMConfig -uri $URI
   write-host "`nUser created successfully`n"
   trap
      $exMessage = $_.Exception.Message
      if($exMessage.StartsWith("L:"))
      {write-host "`n" $exMessage.substring(2) "`n" -foregroundcolor white -backgroundcolor darkblue}
      else {write-host "`nError: " $exMessage "`n" -foregroundcolor white -backgroundcolor darkred}
      Exit

  There's a good example on the
  FIM PowerShell Module CodePlex site.
  You could extend it by doing something like this:
  ### Create a sample CSV file
  FirstName, LastName, AccountName, DisplayName
  James, Bond, JamesBond, Agent
  James, Taylor, JamesTaylor, Quartet
  Wayne, Gretzky, WayneGretzky, The One
  '@ | Out-File -FilePath Users.csv
  ### Create the users in FIM
  foreach ($user in Import-Csv -Path Users.csv)
  New-FimImportObject -ObjectType Person -State Create -Changes @{
  DisplayName = $user.DisplayName
  AccountName = $user.AccountName
  FirstName = $user.FirstName
  LastName = $user.LastName
  Description = 'Have any grapes?'
  EmployeeType = 'Contractor'
  Domain = 'LITWARE'
  Email = "$($user.AccountName)@litware.ca"
  } -ApplyNow
  CraigMartin – Edgile, Inc. – http://identitytrench.com