Management Agent for non domain joined RRS feed

  • Question

  • Hi , I am new to FIM and can't figure out if there is a way for me to sync user accounts from non domain joined servers. That is we have a set of servers that do not belong to the domain , mainly 2008 R2 -2012-2012 R2 , and we need to provide some way of self service password reset for the accounts stored on these.

    The user that actually has a local admin account on those servers  , also has a domain account in the forest.

    Any ideas , greatly appreciated

    Tuesday, June 9, 2015 7:25 AM

All replies

  • Doubt it would be possible using traditional SSPR as this uses a DC for the reset. My approach would be to hold the local account name and computer in an attribute in the portal (perhaps multivalued if multiple local accounts to a person) then use a workflow to apply a reset.

    So the user could login to the portal, tick a "reset local account password" checkbox and that would fire a workflow which would reset the password via WMI (you could use a powershell workflow for that or Granfeldt's code run workflow or a custom workflow), notify the user of the new password via an email notification and untick the reset checkbox.

    • Edited by FIM-EN Tuesday, June 9, 2015 8:57 AM
    • Proposed as answer by Nosh Mernacaj Tuesday, June 9, 2015 4:03 PM
    Tuesday, June 9, 2015 8:56 AM