none
FIM for dummies guidance? RRS feed

  • Question

  • The scenario I want to establish (in this order):

    1. Import data from HR

    2. Export the data to AD and create user accounts

    3. Create Exchange 2013 mailbox

    4. Create Lync user

    Steps 1 and 2 I think I can handle, how about steps 3 and 4? Powershell? HOW?

    I do not want to create Exchange mailbox simoultenasly with the AD account that's why this approach..

    Saturday, October 19, 2013 2:44 PM

All replies

  • Hello,

    you can let the needed attributes for exchange flow after the attribute is created in AD, simple build a Set/Workflow/MPR condition that sets this values if the account is in AD.

    Then use the Exchange Provisioning Option in the AD MA, it will only work if the attributes are present.

    Another approach is to call the appropriate PowerShell cmdlets for exchange and lync in a FIM PowerShell Activity Workflow, have a look at this: http://fimpowershellwf.codeplex.com/

    Or use Sorens PowerShell MA if you want it outside the Portal: http://blog.goverco.com/p/powershell-management-agent.html

    Simple call the needed PowerShell cmdlets for Exch. and Lync in them.

    For needed attributes and some background information, have a look at jorge's article, its about 2010 but should still be valid for 2013.

    In addition maybe for later use, here is an article on how to create an archiv mailbox on provisioning

    Regards
    Peter


    Peter Stapf - Doeres AG - My blog: JustIDM.wordpress.com


    • Edited by Peter_Stapf Saturday, October 19, 2013 4:04 PM added archiv mailbox link
    Saturday, October 19, 2013 4:02 PM

  • Another approach is to call the appropriate PowerShell cmdlets for exchange and lync in a FIM PowerShell Activity Workflow, have a look at this: http://fimpowershellwf.codeplex.com/


    This seems to be pretty useful.. couple of questions though...

    How to install this? Didn't see a simple installation instructions fromt he website.

    Can I use variables (for example username etc...) with the workflow? Any documentation about these?

    Like I said, I'm new to FIM so bare with me :)

    Sunday, October 20, 2013 7:00 AM
  • Hello,

    there is a install script on the codeplex site, at the download section and also some sample script.
    They need the second project from Craig which are the FIMPowershell Module, but these are in adition very useful if you use the Activity. I'm using both in my environment.

    Craig has also an article on how to install in his blog.

    Regards
    Peter


    Peter Stapf - Doeres AG - My blog: JustIDM.wordpress.com

    Sunday, October 20, 2013 7:45 AM
  • it may not be good idea to use the powershell ACTIVITY over the powershell MA, it would be pretty hard to control the sequence of events if you use the powershell ACTIVITY.

    For instance, your activity will run the powershell before the account has been created in AD or Exchange.

    For exchange i would recommend using the AD MA which will always make sure the account is there in AD before it tries to create a mailbox for the user. Please follow the link for a great article on this.

    http://technet.microsoft.com/en-us/magazine/ff472471.aspx


    For Lync i would suggest the powershell MA, where you can have control to run the export after the account has been created in AD and Exchange.

    Hope this helps.


    Regards Furqan Asghar

    Sunday, October 20, 2013 6:20 PM
  • Any step by step documentation about both methods would be really helpful...

    Tuesday, October 22, 2013 2:39 PM
  • Disclaimer: FIM is not for Dummies...

    There are lots of step-by-step guides on TechNet, here is a relevant one:

    http://technet.microsoft.com/en-us/library/jj150433(v=ws.10).aspx


    CraigMartin – Edgile, Inc. – http://identitytrench.com

    Wednesday, October 23, 2013 10:10 PM
  • Yea, I'm a ConfigMgr guy myself so I'm still in the learning phase...

    I'll start digging out the TechNet when I got the time..

    I was just hoping that there were some blogs or other simple guidelines how to implement those Powershell features discussed here, but I can't find anything... doh.

    Friday, October 25, 2013 2:55 PM
  • Welcome to the FIM side!  Digging out the TechNet docs I pointed to is the right start.  Extending FIM with PowerShell wouldn't make a whole lot of sense until you've understood FIM's two main engines:

    1. FIM Service - Policy and Workflow
    2. FIM Sync - state-based data enforcement


    CraigMartin – Edgile, Inc. – http://identitytrench.com

    Sunday, October 27, 2013 4:12 AM
  • I know some of the basics already (took the official MS FIM course couple of weeks a ago...)

    Goals for the implementation:

    1. HR inputs / modifies user resource in the SQL-based HR system
    2. Telephones are configured in other SQL-based system
    3. FIM combines this info
    4. FIM provisions the user to AD, Exchange and Lync

    Glad if I can find help here also, thanks already :)

    Monday, October 28, 2013 4:30 AM