Extending - PowerPoint Presentation

420 views
Uploaded On 2016-03-13

Extending - PPT Presentation

Forefront Identity Manager Phil Whipps Principal Consultant CGI Australia SESSION CODE SEC304 c 2011 Microsoft All rights reserved Agenda FIM 2010 Overview Portal Customisation Custom Applications ID: 254346

fim microsoft reserved rights microsoft fim rights reserved 2011 based customisations management call file service amp directory text services 2010 workflow extension

Link:

Copy

Embed:

<iframe width="560" height="315" src="https://www.docslides.com/embed/254346" frameborder="0" allowfullscreen></iframe>

Download Presentation from below link

Download Presentation The PPT/PDF document "Extending" is the property of its rightful owner. Permission is granted to download and print the materials on this web site for personal, non-commercial use only, and to display it on your personal computer provided you do not modify the materials and that you retain all copyright notices contained in the materials. By downloading content from our website, you accept the terms of this agreement.

Presentation Transcript

Slide1
Slide2

Extending Forefront Identity Manager

Phil WhippsPrincipal ConsultantCGI Australia

SESSION CODE: SEC304

Agenda

FIM 2010 OverviewPortal CustomisationCustom Applications

FIM 2010 Overview

Evolution

Office Integration for Self-Service

Declarative Provisioning

Group & DL Management

Workflow and Policy

Support for 3rd Party CAs

User

Mgmt

Group

Mgmt

Credential

Management

Common Platform

Workflow

Connectors

Logging

Web Service

API

Synchronization

Policy

Management

Identity Synchronization

User Provisioning

Certificate and Smartcard Management

Web based password reset

Reporting

Simplified deployment and troubleshooting

Enhanced performance

Enhanced MA connectivity

Added language support

User

Management

Group

Management

Credential

Management

Common Platform

Workflow

Connectors

Logging

Web Service

API

Synchronization

Policy

Management

R2Slide5

FIM Extension Points

Portal Customisation

FIM Customisations

Portals

FIM Customisations

Custom application -WS

FIM Customisations

Custom - WS

Web service APIsMultiple EndpointsCreate – Resource FactoryEdit / Delete – Resource Alternate endpoint – Anonymous accessSecurity Token Service (STS)Additional usesClient based applicationPassword resetWeb based application (Silverlight Demo)ADFS attribute store(c) 2011 Microsoft. All rights reserved.Slide12

Silverlight Integration

demo

Slide13

Powershell

FIM

Customisations Powershell

FIMAutomation snapinExport-FIMConfig / Import-FIMConfigConvertFrom-FIMResource / ConvertTo-FIMResourceJoin-FIMConfigCompare-FIMConfigMigration Between EnvironmentsBulk import or exportFIM ScriptboxFIM

Powershell Commandlets

DEV

ExportPRODExport

JOIN

COMPARE

IMPORT

Generates the deltas

Joins matching objects

FIM

Customisations

Powershe

- MigrationSlide16

FIM Customisations

PowershellSlide17

Custom WORKFLOWS

FIM Customisations

Workflows

Custom business policy IntegrationWindows Workflow FoundationActivity (Service) / Activity Settings Part (Portal)Pass values to Workflow ParametersAuthentication / Authorization / Action(c) 2011 Microsoft. All rights reserved.Slide19

FIM Customisations

Workflows

Committed to Database

Rights based MPRSlide20

FIM Customisations

Synchronisation

Service – No

AuthN

AuthZSlide21

Out Of the Box Activities

Activity Name

Type

Description

Lockout Gate

AuthN

Used

by password registration to lock on to many failed attempts

QA Gate

AuthN

Question and Answers for password reset

Function Evaluator

AuthZ

/ Action

handful of functions to used in workflow

Notification

AuthZ

/ Action

Email a user – based on an email template

Filter Validation

AuthZ

List of “Allowed

” attributes for Sets & Groups

Group Validation

AuthZ

Validates attributes on groups –

must have

alias on distribution lists

Approval

AuthZ

Send Approval email – based on an email template

Password Reset

Action

Resets the password for the user

Synchronization Rule

Action

Assigns an ERE to a

Resource for Outbound Sync

Customisation - Workflow ActivitySlide23
Slide24

Extensible management agents

FIM Customisations

Extensible Management Agents

Cookie cutter for application IntegrationExport / Import / Password syncCan be packaged and deployed to other Sync ServersEnterprise applicationsCloud based services(c) 2011 Microsoft. All rights reserved.Slide26

FIM Management Agents

Management Agent

Versions

Supported

Type

AD Domain Services

2000, 2003, 2003 R2, 2008, 2008 R2

Call-based

AD Lightweight Directory Services (ADLDS)

Call-based

AD Global Address List (GAL)

Exchange 2000, 2003, 2007, 2010

Call-based

Attribute-Value Pair text file

Attribute-value pair text files

File-based

FIM Certificate Management

FIM 2010 Certificate Management

Call-based

Delimited text file

Delimited text files

File-based

Directory Services Mark-up Language (DSML)

Directory Services

Markup

Language (DSML) 2.0

File-based

Fixed-Width text file

Fixed-width text files

File-based

FIM Service

Forefront Identity Manager 2010

Call-based

IBM DB2 Universal Database

DB2 v9.1 or v9.5

Call-based

IBM Directory Server

IBM Tivoli Directory Server 6.0 or 6.2

Call-based

LDAP Data Interchange Format (LDIF)LDAP Data Interchange Format (LDIF)File-basedLotus NotesLotus Notes Release v6.5 or v7.0

Call-basedNovell eDirectory

Novell

eDirectory version 8.7.3 or 8.8.5

Call-based

Oracle Database

Oracle Database 10g, 11g (64 Bit)

Call-based

SAP R/3

R/3 Enterprise (4.7) /

mySAP 2004 (ECC 5.0)

File-basedMicrosoft SQL ServerSQL Server 2000, 2005, 2008

Call-based

Sun and Netscape Directory Servers

Sun Directory Server 5.x and 6.xCall-based Slide27

FIM Customisations

ECMA 2 FeaturesCall based Import

FIM Customisations

ECMA 2 Features

FIM Customisations

String

(

RegEx

validation)

Label (descriptive text)

String

Encrypted

Text (

multi-line)

Checkbox

Divider

Drop down

FileSlide30

ECMA 2 – Twitter Integration

demo

Slide31

HealthSMART Case study

Next Steps

FIM Extensibility Roadmaphttp://msdn.microsoft.com/en-us/library/ff182370.aspx

Portal Customisationhttp://technet.microsoft.com/en-us/library/ee534913(WS.10).aspxWeb Servicehttp://fim2010client.codeplex.com/FIM Script Boxhttp://social.technet.microsoft.com/Forums/en-US/ilm2/thread/807617bc-b560-4cbe-a137-b9f338bfbd8e/FIM Powershell Cmdletshttp://fimpscmdlets.codeplex.com/Custom Workflowhttp://msdn.microsoft.com/en-us/library/ee652258.aspxXMA 2.0https://connect.microsoft.com/site433/fimcep

FIM TIPshttp://www.fimtips.com@

FIMTips

Enrol in Microsoft Virtual Academy Today

Why Enroll, other than it being free?

The MVA helps improve your IT skill set and advance your career with a free, easy to access training portal that allows you to learn at your own pace, focusing on Microsoft technologies.

What Do I get for enrolment?

Free training to make you become the Cloud-Hero in my Organization

Help mastering your Training Path and get the recognition

Connect with other IT Pros and discuss The Cloud

Where do I

Enrol?

www.microsoftvirtualacademy.com

Then tell us what you

think.

TellTheDean@microsoft.comSlide34

2010 Microsoft

Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

www.msteched.com/Australia

Sessions On-Demand & Community

http

://

technet.microsoft.com/en-au

Resources for IT Professionals

http

://

msdn.microsoft.com/en-au

Resources for Developers

www.microsoft.com/australia/learning

Microsoft Certification & Training Resources