Error You do not have permission to access this site after creating inbound AD sync rule RRS feed

  • Question

  • Hi all,

    i configured an inbound AD sync rule to sync the AD users to FIM, after creating this rule no one can access the portal even the administrator, i receive this error You do not have permission to access this site.



    Tuesday, March 3, 2015 9:11 AM

All replies

  • Hello,

    to enable users (incl. admin) to Access the Portal, at least the following attributes are needed in portal:

    - Domain, AccountName, ObjectSID.

    Could it be that your sync rule has cleared one or more of this attributes ?

    You should also have some Import filter in the FIM MA to not Import the SyncEngine and Administrator to MV to avoid such Problems.


    Peter Stapf - ExpertCircle GmbH - My blog:

    Tuesday, March 3, 2015 9:24 AM
  • now i can't access the portal to add these attributes back, how can i do that now? also how can i configure the import filter.



    Tuesday, March 3, 2015 9:34 AM
  • Hi, please configure flows in Sync engine that would import values (domain, objectSID and accountName) from AD and export them to FIM.

    Or stop service and use FIMService database backup that you have made before changes. You did a backup, right?

    If you found my post helpful, please give it a Helpful vote. If it answered your question, remember to mark it as an Answer.

    Tuesday, March 3, 2015 9:37 AM
  • i added the attributes to FIMMA flow but it's not synced maybe because i didn't configure these attributes in the syn rule in FIM portal, also unfortunately i didn't take the backup.


    Tuesday, March 3, 2015 9:59 AM
  • also sometimes i receive this error:

    The webpage cannot be found
     HTTP 404  


    Tuesday, March 3, 2015 10:29 AM
  • also i didn't sync the admin account i only configured the AD MA to sync 1 test OU and the FIMadmin is not in this OU.


    Tuesday, March 3, 2015 11:58 AM