This module is a tour of many of the built-in features of FIM focusing on the user experience. The student will explore the FIM interface, the high level architecture of FIM, and the business needs that FIM addresses. In this module, the student will examine FIM in its installed and confi gured state, whereas the rest of the course will be spent understanding how FIM works, and building the fully configured FIM from a raw installation. The lab explores creating a new user, managing groups and credentials for that user, and the experience of that new user. Introducing FIM; Synchronization Concepts; Other FIM Concepts.
02/. The Synchronization Service ManagerThis module introduces the FIM Synchronization Service Manager and explains its features through scenarios that do not use the FIM Portal. It introduces the main tools (such as Metaverse Designer, Operations Tool, and Joiner), and covers the basic configuration of a Management Agent along with run profi les, results verifi cation, and simple Metaverse search. During the lab, students will create a new Management Agent for a simple HR system. The Synchronization Service; The Synchronization Service Manager: The Management Agents Tool; Synchronization Service Manager: Other Tools.
03/. More About SynchronizationThis module looks at various types of Management Agent (MA), including LDAP and file-based sources. It covers concepts such as schema discovery, filters, join and projection rules, connectors and disconnectors, joining, provisioning, deprovisioning, and different kinds of attribute fl ow. In the lab, students create two more Management Agents, and establish a simple data-driven scenario for managing a directory (AD LDS). Inbound Synchronization; Outbound Synchronization.
04/. The FIM Service and PortalThis module introduces the FIM Synchronization Service Manager and explains its features through scenarios that do not use the FIM Portal. It introduce the main tools (such as Metaverse Designer, Operations Tool, and Joiner), and covers the basic confi guration of a Management Agent along with run profiles, verifying results, and simple Metaverse search. During the lab, students create a new Management Agent for a simple HR system. Introducing the Portal; Integrating the FIM Service and FIM Synchronization Service.
This module explores creation of an Active Directory MA, and configuration via the portal to manage mailboxenabled users in AD. Aspects of this process include synchronization rules, workflows, and management policy rules, including complex attribute flows. In the labs, students configure FIM so that users are automatically created (provisioned) into AD, renamed, and removed (deprovisioned) as necessary. Synchronization Rules; Outbound Synchronization Rules; Managing Users in Active Directory; More About Synchronization Rules.
06/. Managing Credentials with FIMThis module primarily explores passwords. First, it addresses the essentials of Certificate Management, and then explores in detail the selfservice password reset and password synchronization functions. The two labs cover all aspects of password management in FIM (with the exception of writing custom password management workfl ows and extensions). FIM Password Management; Password Self-service Reset; Synchronizing Passwords - PCNS; FIM Certificate Management.
07/. Group ManagementThis module covers the management of distribution and security groups, including the relationship between groups in Active Directory and other systems. Synchronization rules, workfl ows, and MPRs are explored further, along with the configuration of workfl ow approvals. Groups and the Portal; Managing Groups in Active Directory.
08/. Other ConsiderationsThis module examines management policy rules (MPRs) perhaps the most important feature of FIM. It explores the different types of management policy rules, their different uses, how they are processed, and how to troubleshoot them. Then it examines some operational considerations, such as the management of run cycles using scripts, and also covers backup, restore, and disaster recovery. Managing MPRs; Operations.
Public
This four-day instructor-led courseintroduces
and explains the features and capabilities
of Microsoft Forefront Identity Manager
2010 (FIM), and provides an overview of
the solution scenarios that FIM addresses.
The course format includes presentation,
discussion, demonstration, and many handson
exercises. It is intended for students who
have no previous Forefront Identity Manager
2010 or Microsoft Identity Lifecycle Manager
2007 (ILM) experience.
Objectifs
CThis course is intended for Systems
Engineers, Developers, Architects,
and Project Leaders who need to gain
a good understanding of how Forefront
Identity Manager 2010 can be applied to
manage identity information across a number
of directories or databases. It is also suitable
for those who simply want to review
the technology in some depth.
Prérequis
After completing this course, students
will be able to:
Understand FIM concepts and components.
Identify appropriate FIM scenarios.
Manage users, groups, and passwords
using FIM.
Synchronize identity data across systems,
such as Active Directory and HR.
Understand the issues involved in loading
data (initial load, backup, and disaster
recovery).
Configure security for different levels of user.
Manage password self-service reset and
synchronization.
Automate run cycles.
Handle sets, simple workfl ows,
and management policy rules (MPRs).