Owner and Displayed Owner attributes in the FIM Portal RRS feed

  • Question

  • Hello all,

    I need help populating the Owner and Displayed owner list in the Portal.  Here is my situation:

    For DL groups imported from Active Directory we are trying to populate the Owner and Displayed Owner list attributes in the Portal.  For the OwnerList attribute we would like to use the members listed in the DL’s msExchCoManagedByLink.  For the Displayed Owner we need to use managedBy.  We are under the constraint that the Portal requires the DisplayedOwner to be a part of the OwnerList; however,  Exchange stores the managedBy and msExchCoManagedByLink as separate ReferenceDN values.  If I attempt add the managedBy person to msExchCoManagedByLink then Exchange will remove it automatically.

    What kind of workflow can I use to combine these two attributes from AD and use it to populate the Owner and Displayed Owner list in the Portal for groups?


    Tuesday, March 11, 2014 6:44 PM

All replies

  • To do this you can create a new multi-value reference binding (say CoManagedBy) to Group in the FIM Service and synchronise this with AD ... then use a FIM workflow activity to combine these two properties into the Owner binding whenever either of these contributing binding values change (either directly in FIM or via sync).  The xpath expression for the combined values on the target group object would be something like this:

    /*[ObjectID = /Group[ObjectID='[//Target/ObjectID]']/DisplayedOwner or ObjectID = /Group[ObjectID='[//Target/ObjectID]']/CoManagedBy]

    Bob Bradley (FIMBob @ ... now using FIM Event Broker for just-in-time delivery of FIM 2010 policy via the sync engine, and continuous compliance for FIM

    • Proposed as answer by UNIFYBobMVP Friday, March 14, 2014 1:48 PM
    Friday, March 14, 2014 1:47 PM
  • Hello, 

    I have similar kind of requirement. 

    My scenario is:-

    Group Name - MyGroup 
    Group Name - Owner-MyGroup
    Users Name - MyUser1, MyUser2,MyUser3

    "MyGroup" is the main group and in ManagedBy it is "Owner-MyGroup".
    MyUser1 is a member of "Owner-MyGroup" which is the owner of  "MyGroup".
    I have created a Multi-Value attribute in AD "GroupOwner" and update the member's DN value from members of "Owner-MyGroup".
    I am mapping attribute from AD 'GroupOwner' => mv-GroupOwner which is mapped to Owners in Portal. 
    But still, I am not getting Owner.

    Could you please assist how can I Configure this?

    Regards, Amol Patil

    Monday, June 11, 2018 6:22 PM