Presentation is loading. Please wait.

Presentation is loading. Please wait.

Kent Nordström Blog: Twitter:

PublishHortense Fleming Modified over 6 years ago

Similar presentations

Presentation on theme: "Kent Nordström Blog: Twitter:"— Presentation transcript:

1 Blog: http://konab.com Twitter: http://twitter.com/kentnordstrom
Kent Nordström Blog: Twitter: My name is Kent Nordström and you will find my blog at konab.com and I know many of you are already following me on Twitter. © 2014 XP Services AB. All rights reserved. Kent Nordström

2 Using the FIM Portal as administrative tool Topic
Todays topic is about how to use the FIM Portal as administrative tool. I will focus on the things I almost always add to FIM’s configuration to make it more useful. © 2014 XP Services AB. All rights reserved. Kent Nordström

3 FIM 2010 R2 Handbook In 2012 I released the FIM 2010 R2 handbook. If you have read it you already know that this book is very much about how to build FIM 2010 R2 solutions as codeless as possible. © 2014 XP Services AB. All rights reserved. Kent Nordström

4 FIM 2010 R2 Video http://konab.com/fim-2010-r2-video/
In July 2014 I released the FIM 2010 R2 Video course. 2 ½ hours of FIM spread into 36 videos covering a complete FIM implementation. © 2014 XP Services AB. All rights reserved. Kent Nordström

5 Users and Computers One the crappiest tools you can use for managing users is the Users and Computers tool that comes in Windows. © 2014 XP Services AB. All rights reserved. Kent Nordström

6 FIM Portal The FIM Portal can be used to replace many current solutions and also to merge different admin tools into one. © 2014 XP Services AB. All rights reserved. Kent Nordström

7 FIM Portal – Edit User In the FIM Portal the UI is ”dynamic” from a security perspective. Controls are hidden or readonly automagically based on permissions. Building your own management UI with the same level of authorization control, you have in the FIM portal, is not easy. © 2014 XP Services AB. All rights reserved. Kent Nordström

8 Replace multiple tools
In the same tool we can also replace multiple management tools like Exchange Control Panel or… © 2014 XP Services AB. All rights reserved. Kent Nordström

9 O365 Licenses managing O365 settings. The idea is to make all ”common” administrative tasks available through the FIM Portal UI. © 2014 XP Services AB. All rights reserved. Kent Nordström

10 FIM Portal – Create User
When creating a new user in the FIM Portal we should minimize the amount of information required and trying to avoid text controls as muchg as possible. © 2014 XP Services AB. All rights reserved. Kent Nordström

11 Serialize WFs – Avoid locks
Just a reminder when it comes to creating users in the FIM Portal. SQL locks are common when a lot of WF’s fire when a new user is created. Try to serialize them to avoid the locks. © 2014 XP Services AB. All rights reserved. Kent Nordström

12 ”Parent” Object I always try to implement some kind of parent object or objects that can hold the common settings for many objects. These settings can then be inherited down to the child objects. In most customer cases the main parent object is the organizational unit we get from some HR system. But In the examples today I will show other parent objects customers are using. © 2014 XP Services AB. All rights reserved. Kent Nordström

13 Inherit from ”parent” By using the inherit method the amount of information required to be managed can be reduced. © 2014 XP Services AB. All rights reserved. Kent Nordström

14 “Inheritance” update WF
The use of the parent object typically also require some WF to update the child objects when parent is updated. Here I use Soren’s Copy Values activity from his CodePlex WorkFlow Library. © 2014 XP Services AB. All rights reserved. Kent Nordström

15 ”Delegated” Administration
I also have customers where the parent object is used for advanced delegations. By defining the Admins on the parent object I avoid having to create a lot of MPRs. © 2014 XP Services AB. All rights reserved. Kent Nordström

16 The MultiValue problem
The problem with the Admins is that it’s MultiValue and modifying MultiValue reference values is not easy. I have only found that the PowerShell WF activity solves it for me at the moment. © 2014 XP Services AB. All rights reserved. Kent Nordström

17 Coming soon… or? Hopefully Sorens next version is coming soon to allow easier management of MultiValue attributes. © 2014 XP Services AB. All rights reserved. Kent Nordström

18 Only ONE MPR! Inheriting the Admins from the Parent object gives the big benifit of only having ONE MPR to allow Admins to manage their objects in this case where administration is split into 20+ admin units. © 2014 XP Services AB. All rights reserved. Kent Nordström

19 ”Dynamic” RCDC RCDC’s are, as we all know, NOT dynamic in their nature. To make them kind of dynamic we need to make some tricks. The most common one is to use boolean values to control the visibility of groupings and controls. © 2014 XP Services AB. All rights reserved. Kent Nordström

20 Booleans controlling UI
So if I check the Mailbox and/or Lync checkbox the groupings (or tabs) get’s visible. © 2014 XP Services AB. All rights reserved. Kent Nordström

21 RCDC – Dynamic Tab/Control
There are plenty of exampels on how to do this, but I add this slide for reference on how it’s done. The key to make it dynamic is the AutoPostback=true on the boolean controlling the visibility. The grouping or control you want hide/show can then use this boolean as the value for Visible. If you use this in the Create RCDC you must remember to always have the DefaultValue configured. © 2014 XP Services AB. All rights reserved. Kent Nordström

22 Don’t chain dynamic controls
A ”dynamic” Grouping cannot contain a ”dynamic” Control! As far as I have found it’s not possible to chain this usage of boolean flags to control the visibility of tabs and controls. If you have a ”hidden” tab that in itself contains a control where the visibility is controlled by some other boolean value. You will get an RCDC rendering error. © 2014 XP Services AB. All rights reserved. Kent Nordström

23 UocSearchDataSource Another addon to the default UI is the somewhat undocumented UocSearchDataSource you can add to your RCDC’s. This can really have a great impact on the usability of the FIM Portal. © 2014 XP Services AB. All rights reserved. Kent Nordström

24 Reference Search A common usage of the search datasource is to show reference searches like the groups tab on a user to show member of. But it can also be used to show child objects on the parent object as you saw earlier to make finding and administering objects easier. © 2014 XP Services AB. All rights reserved. Kent Nordström

25 Questions? Summary “Kent’s Best Practices” “Parent” object
Inheritance when possible Booleans for basic UI control UocSearchDataSource Reference searches for backlinks in UI To summarize my rules of thumbs… I use … Parent objects to reduce the amount of information required to manage on each object. Booleans for basic dynamic RCDC control Always add the UocSearchDataSource to your RCDC’s This was all I planned for today. Hopefully I have showed you that the FIM Portal is actually quite easy to make useful even with just the built-in functionality in FIM. Questions? © 2014 XP Services AB. All rights reserved. Kent Nordström

Download ppt "Kent Nordström Blog: Twitter:"

Similar presentations

Kentico CMS 5.5 R2 What’s New. Highlights Intranet Solution Document management package – WebDAV support – Project & task management – Document libraries.

Kentico CMS 5.5 R2 What’s New. Highlights Intranet Solution Document management package – WebDAV support – Project & task management – Document libraries.
Microsoft ® Lync ™ 2010 IM and Presence Training.

Microsoft ® Lync ™ 2010 IM and Presence Training.
SharePoint 2010 Permissions Keith Tuomi. profile KEITH TUOMI SharePoint Consultant / Developer at itgroove Developing Online Systems since 1991 10 years.

SharePoint 2010 Permissions Keith Tuomi. profile KEITH TUOMI SharePoint Consultant / Developer at itgroove Developing Online Systems since years.
Www.expertpointsolutions.com SharePoint 2013 Catalog Sites Brian Culver ● SharePoint Saturday DFW ● March 7, 2015 Build a SharePoint 2013 Search Driven.

SharePoint 2013 Catalog Sites Brian Culver ● SharePoint Saturday DFW ● March 7, 2015 Build a SharePoint 2013 Search Driven.
Calendar Browser is a groupware used for booking all kinds of resources within an organization. Calendar Browser is installed on a file server and in a.

Calendar Browser is a groupware used for booking all kinds of resources within an organization. Calendar Browser is installed on a file server and in a.
Microsoft ® Lync ™ 2010 Delegate Training. Objectives In this course you learn how to: Set up Delegate Access by using Outlook Set up Delegate Access.

Microsoft ® Lync ™ 2010 Delegate Training. Objectives In this course you learn how to: Set up Delegate Access by using Outlook Set up Delegate Access.
Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.

Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.
MCDST 70-271: Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 6: Configure and Troubleshoot Local User and Group Accounts.

MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 6: Configure and Troubleshoot Local User and Group Accounts.
Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.

Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.
Administering Active Directory

Administering Active Directory
Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.

Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.
1 of 2 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.

1 of 2 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.
Internet, 16 July 2014 Predica bag of (FIM)tricks Tomasz Onyszko

Internet, 16 July 2014 Predica bag of (FIM)tricks Tomasz Onyszko
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.
By Rashid Khan Lesson 8-Crowd Control: Controlling Access to Resources Using Groups.

By Rashid Khan Lesson 8-Crowd Control: Controlling Access to Resources Using Groups.
Invoices Training Presentation for Supply Chain Platform: BAE Systems July 2012.

Invoices Training Presentation for Supply Chain Platform: BAE Systems July 2012.
© Wiley Inc. 2006. All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.

© Wiley Inc All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.
9.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.

9.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
Microsoft ® Lync ™ 2010 IM and Presence Training.

Microsoft ® Lync ™ 2010 IM and Presence Training.

Similar presentations

Ads by Google