none
Determining if a user has registered with the password portals from an external application RRS feed

  • Question

  • My current FIM set-up has users who are distance-learners and may never log-on to a computer on site. We have a web portal which uses LDAP authentication to allow users to log-in and manage their courses from there. We would like to be able to 'force' a user to register for SSPR by using the portal to check if the user is registered and then redirecting them to the registration portal until they are registered. 

    The simplest way I can think of doing this is to use an AD attribute as a flag to indicate whether or not the user is SSPR registered.. but I'm not even sure that this is possible! 

    Any suggestions?

     
    Tuesday, February 12, 2013 10:51 AM

Answers

  • Possible. I've done that for one of customers recently. Just create a set of people who registered for SSPR (simple query but you will have to enter it through advanced view or set via Powershell) and then trigger a workflow on event of user entering this set to set the value in your target system as needed (use synch rule or some workflow activity - for example Powershell activity from codeplex). 

    Other option is to query fim directly for this information from your app.


    Tomek Onyszko, memberOf Predica FIM Team (http://www.predica.pl), IdAM knowledge provider @ http://blog.predica.pl

    • Marked as answer by FIM-EN Wednesday, February 13, 2013 1:37 PM
    Tuesday, February 12, 2013 1:50 PM

  • I used the filters in Jorge's guide here to create a sets (in advanced view, like you said) one of users who have registered for password reset. It timed out when I tried to submit a change to the filter but it works anyway. 

    Now I can do as you said and create a workflow to run some c# (using Søren's workflow activity library) to update the external portal's database with a flag to indicate the user is registered. 

    Thanks for pointing me in the right direction.

    • Marked as answer by FIM-EN Wednesday, February 13, 2013 1:37 PM
    Wednesday, February 13, 2013 1:35 PM

All replies

  • Possible. I've done that for one of customers recently. Just create a set of people who registered for SSPR (simple query but you will have to enter it through advanced view or set via Powershell) and then trigger a workflow on event of user entering this set to set the value in your target system as needed (use synch rule or some workflow activity - for example Powershell activity from codeplex). 

    Other option is to query fim directly for this information from your app.


    Tomek Onyszko, memberOf Predica FIM Team (http://www.predica.pl), IdAM knowledge provider @ http://blog.predica.pl

    • Marked as answer by FIM-EN Wednesday, February 13, 2013 1:37 PM
    Tuesday, February 12, 2013 1:50 PM

  • I used the filters in Jorge's guide here to create a sets (in advanced view, like you said) one of users who have registered for password reset. It timed out when I tried to submit a change to the filter but it works anyway. 

    Now I can do as you said and create a workflow to run some c# (using Søren's workflow activity library) to update the external portal's database with a flag to indicate the user is registered. 

    Thanks for pointing me in the right direction.

    • Marked as answer by FIM-EN Wednesday, February 13, 2013 1:37 PM
    Wednesday, February 13, 2013 1:35 PM
  • There is also a way to automatically register users - without having them fill in any questions...

    http://technet.microsoft.com/en-us/library/jj134294(v=ws.10).aspx

    • Edited by D Wind Thursday, February 14, 2013 1:51 AM
    Thursday, February 14, 2013 1:50 AM