none
How to import pwdLastSet and badPasswordTime attribute from Active Directory to FIM 2010 R2 Portal. RRS feed

  • General discussion

  • Hi,

    How to import pwdLastSet and badPasswordTime attribute from Active Directory to FIM 2010 R2 Portal.

    Regards

    Anil Kumar

    Monday, May 26, 2014 10:48 AM

All replies

  • Hello,

    since badPasswordTime is (like some other attributes) not replicated wihtin the AD, you cannot import this attribute using the AD Connector.

    padLastSet is stored as a large integer that represents the number of 100 nanosecond intervals since January 1, 1601 (UTC).

    You can use MA Extension Code in an advanced attribute flow to import and convert this value to a DateTime value which fits to your Portal needs.

    Case "updatePwdLastSet"
       If (csentry("pwdLastSet").IsPresent) Then
          If (csentry("pwdLastSet").Value <> "0") Then
              Dim dtFileTimeUTC As DateTime = DateTime.FromFileTimeUtc(csentry("pwdLastSet").IntegerValue)
              mventry("pwdLastSet").Value = dtFileTimeUTC.ToUniversalTime().ToString("yyyy'-'MM'-'dd'T'HH':'mm':'ss'.000'")
           Else
              mventry("pwdLastSet").Delete()
           End If
       End If

    Regards

    Peter

     

    Peter Stapf - Doeres AG - My blog: JustIDM.wordpress.com

    Monday, May 26, 2014 11:35 AM
  • Hello,

    As you use the portal and so FIM Service. The best that to direclty configure these attributes in the sync rules.

    These attributs not exist in the MV. The first step that to create it in MV and in portal, after that, update MA (AD & FIM portal).To finish, configure the synchronization rules in FIM portal.

    Regards,

    Joris


    Joris Faure

    Wednesday, May 28, 2014 8:05 AM