Wednesday, November 14, 2012 4:52 PM
Has anyone had experience on deploying only one SSPR for multiple Active Directory domain controllers? Is it possible? I'm thinking about Active Directory Federation Services but wonder if FIM (in domain A) would be able to synchronize user profiles (in domain B) to FIM service database.
Wednesday, November 14, 2012 5:54 PMOne FIM Portal to manage multiple domains/forests should be fine; ADFS for the FIM Portal itself or other FIM services, however, is not supported and probably won't work.
Thursday, November 15, 2012 12:13 AM
On Thu, 15 Nov 2012 00:00:53 +0000, Gray_Hat wrote:
Good luck and hope it helps-
No offense but it would appear that you are hawking your software on these
forums. Having had a look at your profile it seems that every post you've
made has been pushing software from sysoptools.
As per the TOS of these forums advertising is not allowed. If you want to
push your product then put a link in your signature and stop pushing your
product in your posts.
You'll find that this kind of stealth advertising where you don't even
bother to mention that you have a financial interest in the product you're
posting about is not very well received in technical forums like these.
MVP - Forefront Identity Manager
Unprecedented performance: Nothing ever ran this slow before.
Thursday, November 15, 2012 4:35 AM
FIM supports cross-forest scenario provided there is appropriate trust between the forests.
ADFS is not supported since it is not claim-aware
- Marked As Answer by Markus VilcinskasMicrosoft Employee, Owner Wednesday, November 28, 2012 11:43 PM
Thursday, November 15, 2012 9:49 AM
Monday, November 26, 2012 2:22 AM
Monday, November 26, 2012 2:40 AMRe trust -- the user needs to be able to login to the portal. So the forest FIM is in needs to trust the forest the user is in
The FIM Password Reset Blog http://blogs.technet.com/aho/
Thursday, December 06, 2012 9:09 AMWould you prefer to use a third party tool..????