none
Testing PCNS RRS feed

All replies

  • test for what. Please explain a little more about what you want to do with PCNS


    /kj
    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

    Thursday, May 16, 2013 10:46 PM

  • Actually , i want to know when a user change his password that is captured by pcns and send to FIM

    i want juste to see if my installation and configuration are ok



    • Edited by gentelman Friday, May 17, 2013 8:14 AM
    Friday, May 17, 2013 7:24 AM
  • There is a pretty good tutorial for building and sending password change info to SQL at the following:http://myitforum.com/cs2/blogs/forefrontsecurity/archive/2011/02/08/synchronize-active-directory-password-to-an-sql-database-with-fim-and-pcns.aspx

    The code could easily be changed to write to a text file output, for simplicity.

    • Marked as answer by gentelman Tuesday, May 21, 2013 8:47 AM
    • Unmarked as answer by gentelman Wednesday, May 29, 2013 9:52 AM
    Friday, May 17, 2013 12:48 PM
  • PCNS event log and FIM logs will give you that information.


    /kj
    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

    • Marked as answer by gentelman Tuesday, May 21, 2013 8:47 AM
    • Unmarked as answer by gentelman Wednesday, May 29, 2013 9:52 AM
    Monday, May 20, 2013 5:26 PM
  • it tried this http://myitforum.com/cs2/blogs/forefrontsecurity/archive/2011/02/08/synchronize-active-directory-password-to-an-sql-database-with-fim-and-pcns.aspx

    in the eventlog the PCNS is OK, but the exporting in sql of the password is not OK.

    any help ? 

    Wednesday, May 29, 2013 10:24 AM
  • Does your SQL MA have all the users in your AD MA? You can use a view to pull all the users over from the MV into the SQL MAs connector space. Your anchor should probably be AccountName. Is your custom password extension assembly, added to the SQL MA, ever getting instantiated? Is it throwing an exception? The most common cause for the assembly not to be called is due to no matching account name in the SQL MA connector space.

    Turn on FIM's password sync logging:

    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\FIMSynchronizationService\Logging
    FeaturePwdSyncLogLevel (REG_DWORD)

      • 0 = Minimal logging
      • 1 = Normal logging (default)
      • 2 = High logging
      • 3 = Verbose logging

    When working correctly, the EventLog should have the following message:

    "A password synchronization set operation was successful in a target connected data source."

    Otherwise, you should get a stack trace if your dll is erroring.

    Wednesday, May 29, 2013 12:05 PM