Hi Jef,
I am currently using adamsync.exe to create UserProxy objects in AD LDS to allow users to authenticate.
Can i replace the command line adamsync tool with Forefront Identity Manager
I assume that you want to create userProxy objects using Forefront Identity Manager.
Theoretically, we can create userproxy objects in FIM, since the AD LDS userProxy object is a representation of the Active Directory account and only exists in AD LDS, we will need to provision created userproxy objects back into
AD LDS, which brings much extra work as the way I see it.
I would like to move away from the command line approach and use another tool to do it
If you don’t want to use command line tool, you will need to find object SID manually in Active Directory database, then add object SID attribute manually when creating userproxy objects, which is also extra work.
Here are some related articles below for you:
Understanding Proxy Authentication in AD LDS
https://technet.microsoft.com/en-us/magazine/2008.12.proxy.aspx
How Do I Provision Users to AD DS
https://technet.microsoft.com/en-us/library/Ff686263(v=WS.10).aspx
In addition, since we are not familiar with Forefront Identity Manager, here is a FIM forum below for you:
https://social.technet.microsoft.com/Forums/en-US/home?category=identitymanagement
Best Regards,
Amy
Please remember to mark the replies as answers if they help and un-mark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
tnmff@microsoft.com.
