more than two admins for forefront identity manager sync RRS feed

  • Question

  • our organization has more than two admins for FIM 2010. for the sync server has anyone come up with a way to allow more than two people to manage FIM, either with making the FIM sync server a term server or making the sync engine UI work remotely or maybe something else?
    Tuesday, July 2, 2013 1:26 PM

All replies

  • You can have as many admin accounts as you want. Each admin account must be a member of at least one of the 5 default FIM Sync security groups (e.g. FIMSyncAdmins, FIMSyncOperators, FIMSyncJoiners, FIMSyncBrowse, FIMSyncPasswordSet) and which group depends of course on what the admin is going to do.

    The FIM Sync Manager can only be used locally and not remotely. So each admin must first RDP into the Windows Server and then start the FIM Sync Manager. To be able to RDP into the Windows Server you must have the user right directly or indirectly through some security group to allow terminal server access (or RDP access, whatever it is called)

    Jorge de Almeida Pinto [MVP-DS] | Principal Consultant | BLOG:

    Wednesday, July 17, 2013 7:38 AM