Tuesday, August 07, 2012 3:08 PM
In FIM 2010 R2 we have users from different domains that are using one Policy of SSPR that includes questions.
Select user that match any of the following conditons:
Domain is Corp
Domain is Corp2
Domain is Corp3
This rule help me to generalize and include all users in the domain.
I´ve now other policy for SSPR that also includes the OTP Email(questions+security code) that i want to use with users that also belong to the Domain Corp and i want to exclude this user from the "old" policy to put this user in the SSPR with OTP,
My scenario is possible?, the tests that i´ve made shows limitation of the FIM fields.
I´ll appreciate the comments,
- Edited by Elías De la Garza Tuesday, August 07, 2012 3:09 PM
Tuesday, August 07, 2012 3:39 PM
You will need to remove the condition for "Domain is Corp" from the set associated with the current password reset MPR and enter this condition into a new set to be used with your new password reset MPR
- Marked As Answer by Elías De la Garza Wednesday, August 08, 2012 6:15 PM
Wednesday, August 08, 2012 6:15 PM
Following your suggestion:
I´ve created different Sets per Domain,
To have the exclusion it needs to belong to the same domain and use "ALL".The excluded users of the Sets can be added to another Set with the "ANY" to include them.
This is a good source to create different MPR: