You are done with the configuration of your environment, you are starting the first run profiles, and when you run an export run profile on the FIM MA, you are running into this error…
The first recommendation is to NOT modify the security settings of your FIM related accounts.
This is really a bad idea. So, please don’t touch them at this point…
The “80% reason” for this error is related to the following two areas:
The account, you have currently configured to be used by your FIM MA has to be the same as the account you have configured during setup. This account also needs the right to logon locally to your FIM server if your FIM computer is a domain controller. How can you verify whether this is true in your environment?
The answer is by running a script! In the FIM Script Box, you can find a PowerShell script to “test the FIM management agent account”. This script will tell you whether there is an issue with your FIM MA account.
If this script fails to complete successfully, you should re-run the FIM setup and correct the configuration of your FIM MA. To do so, go to the “Programs and Features” section in your “Control Panel” and select the repair mode for your FIM installation.
To perform end-to-end synchronization cycles in your environment, you need to:
Verifying this is the objective of the PowerShell script to “check your MPR configuration for synchronization”. The script lists the MPRs that need to be enabled if they are not enabled yet and it also lists the attributes that are missing in the related MPRs if this is the case in your environment.