Carol Wapshere, MVPLANexpertcarol.wapshere@lanexpert.ch

FIM 2010

Forefront Identity Manager 2010

Too many names already!

MMSIIFP

ILM 2007DirSync

GALSync

CLM

MIIS 2003

User Management previous versions

AccountsDepartment = SalesSales

Resigned

Ext = 123Ph = +41 876 5123Ph = +41 876 5123

Attribute Flows

JaneJaneJaneCampionCampionCampionProject ManagerProject ManagerProject ManagerSales

Password Sync Provisioning Deprovisioning Access Changes

Sales

******

User Provisioning FIM-style

RequestName = “Joe Bloggs”Description = “Consultant working on email project”EndDate = 1/8/2010...

Consultant’s account expires in two weeks

Manager

Requestor

Consultant

User Requests an account for an external person

User enters request in FIM PortalApproval request sent to the user’s ManagerManager approvesUser account provisionedUser account deleted.

Notification sent to Requestor: Consultant’s account will be deleted in two weeks unless extended in the Portal

Email sent to requestor with username and password

Account expired

FIM 2010 Component ArchitectureOutlook plugin:Approvals and

group management.

Portal for Users and

Administrators.

Password reset from the login

screen.

Custom extensions through WS-*,

includes powershell.

DemoA quick look at the PortalUser self-serviceUser provisioning with approval

Identity Management PortalFlexible schema, menus, forms, access controls...

User Self-ServiceProfile update, password reset, join groups.

WorkflowNotifications, approvals, generate attributes – and roll your own!

And my favorites…Automatically populated groups,Using Powershell to query and upload data to the Portal!

Key FIM 2010 Features

Windows Server 2008/r2 StandardSQL Server 2008Sharepoint Services 3.0FIM 2010

Server License: Sync ServiceUser CALs: Portal, PW Reset, Codeless Sync, CLM

FIM 2010 Requirements

All on one server, or functions split across several servers

FIM 2010 Architecture

FIM 2010 homepage: http://www.microsoft.com/forefront/identitymanager

Download a 180-day trial versionDocumentation

Technet Forums/Identity Management ForumsVery active communityScriptbox, Experts Corner, Greatest Hits Articles

MVP BlogsLike mine... http://www.wapshere.com/missmiis

TrainingAvailable from LANexpert

FIM 2010 Resources

Thank you for your Attention!For more Information please contact

Carol WapshereSenior Consultantcarol.wapshere@lanexpert.ch

Laurent CalaisSecurity Business Developmentlaurent.calais@lanexpert.ch