This module is a tour of many of the built-in features of FIM focusing on the user experience. The student will explore the FIM interface, the high level architecture of FIM, and the business needs that FIM addresses. In this module, the student will examine FIM in its installed and confi gured state, whereas the rest of the course will be spent understanding how FIM works, and building the fully configured FIM from a raw installation. The lab explores creating a new user, managing groups and credentials for that user, and the experience of that new user. Introducing FIM; Synchronization Concepts; Other FIM Concepts.02/. The Synchronization Service Manager
This module introduces the FIM Synchronization Service Manager and explains its features through scenarios that do not use the FIM Portal. It introduces the main tools (such as Metaverse Designer, Operations Tool, and Joiner), and covers the basic configuration of a Management Agent along with run profi les, results verifi cation, and simple Metaverse search. During the lab, students will create a new Management Agent for a simple HR system. The Synchronization Service; The Synchronization Service Manager: The Management Agents Tool; Synchronization Service Manager: Other Tools.03/. More About Synchronization
This module looks at various types of Management Agent (MA), including LDAP and file-based sources. It covers concepts such as schema discovery, filters, join and projection rules, connectors and disconnectors, joining, provisioning, deprovisioning, and different kinds of attribute fl ow. In the lab, students create two more Management Agents, and establish a simple data-driven scenario for managing a directory (AD LDS). Inbound Synchronization; Outbound Synchronization.04/. The FIM Service and Portal
This module introduces the FIM Synchronization Service Manager and explains its features through scenarios that do not use the FIM Portal. It introduce the main tools (such as Metaverse Designer, Operations Tool, and Joiner), and covers the basic confi guration of a Management Agent along with run profiles, verifying results, and simple Metaverse search. During the lab, students create a new Management Agent for a simple HR system. Introducing the Portal; Integrating the FIM Service and FIM Synchronization Service.
This module explores creation of an Active Directory MA, and configuration via the portal to manage mailboxenabled users in AD. Aspects of this process include synchronization rules, workflows, and management policy rules, including complex attribute flows. In the labs, students configure FIM so that users are automatically created (provisioned) into AD, renamed, and removed (deprovisioned) as necessary. Synchronization Rules; Outbound Synchronization Rules; Managing Users in Active Directory; More About Synchronization Rules.06/. Managing Credentials with FIM
This module primarily explores passwords. First, it addresses the essentials of Certificate Management, and then explores in detail the selfservice password reset and password synchronization functions. The two labs cover all aspects of password management in FIM (with the exception of writing custom password management workfl ows and extensions). FIM Password Management; Password Self-service Reset; Synchronizing Passwords - PCNS; FIM Certificate Management.07/. Group Management
This module covers the management of distribution and security groups, including the relationship between groups in Active Directory and other systems. Synchronization rules, workfl ows, and MPRs are explored further, along with the configuration of workfl ow approvals. Groups and the Portal; Managing Groups in Active Directory.08/. Other Considerations
This module examines management policy rules (MPRs) perhaps the most important feature of FIM. It explores the different types of management policy rules, their different uses, how they are processed, and how to troubleshoot them. Then it examines some operational considerations, such as the management of run cycles using scripts, and also covers backup, restore, and disaster recovery. Managing MPRs; Operations.
This four-day instructor-led courseintroduces and explains the features and capabilities of Microsoft Forefront Identity Manager 2010 (FIM), and provides an overview of the solution scenarios that FIM addresses. The course format includes presentation, discussion, demonstration, and many handson exercises. It is intended for students who have no previous Forefront Identity Manager 2010 or Microsoft Identity Lifecycle Manager 2007 (ILM) experience.
CThis course is intended for Systems Engineers, Developers, Architects, and Project Leaders who need to gain a good understanding of how Forefront Identity Manager 2010 can be applied to manage identity information across a number of directories or databases. It is also suitable for those who simply want to review the technology in some depth.
After completing this course, students will be able to: Understand FIM concepts and components. Identify appropriate FIM scenarios. Manage users, groups, and passwords using FIM. Synchronize identity data across systems, such as Active Directory and HR. Understand the issues involved in loading data (initial load, backup, and disaster recovery). Configure security for different levels of user. Manage password self-service reset and synchronization. Automate run cycles. Handle sets, simple workfl ows, and management policy rules (MPRs).