what is the best way to add user access from child groups to parent group...
We have investigated the steps for denesting of AD groups. Step1: here we are extracting the reports of nested groups Step2: we are going to add the groups from child AD groups to parent AD...
View ArticleMIM Graph MA error on delta import "File was corrupted or removed. Try to...
I recently upgraded the MS Graph connector to 1.1.1170.0 (from 1.1.1130.0). Now when I run a delta import on the MA that uses this connector, it fails with an error. Full import and all the other...
View Articleto check zw.knightfrank.com is registered under knightfrank.onmicrosoft.com,...
Need to check if zw.knightfrank.com is registered under knightfrank.onmicrosoft.com, office 365swathi
View ArticleAzure Global Admin
I signed up for Azure AD services after discovering MMC no longer allowed for add-ins to manage local users and groups. I began the process and think I skipped a step as my gmail account was my local...
View Article"stopped-extension-dll-exception" on a PS MA
Hi all,I have this error "stopped-extension-dll-exception" on a PS MA.On the event viewer, I can see this : The extensible extension returned an unsupported error. The stack trace is:...
View ArticleAccess Reviews in Azure & Bulk Group Upload
I'm trying to set up a recurring access review in Azure to track guest access to Teams Sites. Given then number of sites I have I need to be able to automatically update the access review with the...
View ArticleFire Workflow based on Request Creation
Do you know if you can fire a workflow based on the creation of a Request? I added an MPR and Workflow that should fire on Transition In to the All Requests set. But the workflow doesn't fire. I...
View ArticleMIM Justification - Justification response provided by the approver
So how we really get the value of the response provided by the approver for example to include it in email notification?Some examples in internet are providing solution to use [//WorkflowData/Reason]....
View ArticleGet-AzureADServicePrincipalOwner -ObjectId XXXXX
When I execute below command , the output is not returning anything. Could you please help how to get the owner information of a SPNGet-AzureADServicePrincipalOwner -ObjectId XXXXX
View ArticleAllow group owners delete access - FIM 2010 R2
Hello, I am using FIM 2010 R2 for group management and currently user's are allowed to manage membership "add and remove members, now i want to allow them delete access on group they own. As i know, i...
View ArticleConvert Privileged Group scope from Universal to Global
Hello Team,Is there an option to convert domain privileged group, (Enterprise Admins & Schema Admins) from Universal to Global scope. Will that secure the privileged group in a Single domain...
View ArticleError: The RPC server is unavailable. 0x8007706ba (WIN32: 1722...
So we upgraded our Certificate Authority Server from windows 2012 to windows 2019 and it stopped working. Every time I try to issue a certificate from a network PC (Start >> Manage User...
View ArticleMicrosoft Identity Manager 2016 upgrade - MSP patch keeps rolling back and...
Hi folks I'm trying to update our instance of Microsoft Identity Manager 2016 from version 4.3.1935.0 to version 4.6.263.0 via the provided MSP. I'm trying to update the MIM Service and Sync...
View ArticleMIM 2016 SP2 4.6.258.0 and deadlock issues on portal export
I am aware that there is a hotfix 4.5.286.0 that fixes deadlock issues. However, I am already on 4.6.258.0. As a matter of fact, this is a fresh install of MIM 2016 SP2 4.6.34.0 and hotfix...
View ArticleClik here to view.
Reference attribute retaining old value in metaverse
I have a reference attribute called "teamLeader" in the Metaverse, which is being imported from the FIM management agent and no other flow.If the value in FIM is null, the previous value in the...
View Articlesyncing to two different locations
A third party app creates account in active directory OU (lets say OU-1). After creation of accounts, some accounts get moved to a different OU (lets say OU-2) for business purpose. Currently using FIM...
View ArticleDevice Admin for Local Admin Group not working
Hi All,As I imagine many companies, we dont want the majority of our users having local admin rights on their laptops, however we still need a local admin on those devices to be able to support them...
View ArticleWindows Hello for Business
Hello everybody, I have a question regarding authentication via Windows Hello for Business. When authenticating to your pro computer and pro applications using Windows Hello for Business, how long does...
View ArticleIs AD FS required for computer certificates (not user) for Office 365...
I have a customer that has an existing AD FS architecture that is going to be using smart cards to logon to their workstations. I know that AD FS is required for smart cards when using user...
View ArticleActive Directory Groups Management
Hi,I am trying to find a way to manage my Azure AD groups. There seem to exist a lot of unused groups, but no way to organize them properly. Kindly help.
View Article