An Azure MFA Management Agent for User MFA Reporting using Microsoft Identity Manager

Microsoft as part of the uplift in Authentication Methods capability have extended the Graph API to contain User Azure MFA information. My customers have been requesting MFA User Reporting data for some time. How many users are registered for Azure MFA?… keep reading

Automated Microsoft Identity Manager Configuration Backups & Documentation to Azure

MIM Backup and Config Nightly Reports

Two and half years ago I wrote this post on creating an Azure Function to trigger the process of Automating Microsoft Identity Manager Configuration backups. The Azure Function piece was a little obtuse. I was using it, as it was the “new thing” and it was my new hammer.… keep reading

Accessing your Ubiquiti Unifi network configuration with PowerShell

Unifi network configuration with PowerShell

Almost two years ago I rebuilt my home network with Ubiquiti Unifi equipment. Yet it wasn’t until recently I wanted to programmatically get configuration information out of it. Luckily there were a number of examples accessing the Unifi API, but none with PowerShell.… keep reading

Microsoft Identity Manager Graph Connector stopped-extensible-extension-error

Graph Connector Delta Token Expired over 30 Days

Running a Delta Import on the Microsoft Identity Manager Graph Connector returns stopped-extensible-extension-error .

Looking into the Application Event Log we initially see BadRequest.

Graph Connector Delta Token Expired

Digging deeper we find DeltaLink older than 30 days is not supported.

Graph Connector Delta Token Expired over 30 Days.PNG

In this particular case the Microsoft Graph Connector for Microsoft Identity Manager has not run in over 30 days and the Differential Query DeltaLink cookie that I detailed in this post and this post has expired.… keep reading

Using AzCopy with Azure Virtual Machines Managed Identity

AzCopy file to Azure Storage Account using Managed Identity -640px

The Managed Identities for Azure Resources feature is a free service with Azure Active Directory. Formerly known as Managed Service Identity, Managed Identities for Azure Resources first appeared in services such as Azure Functions a couple of years ago.  Much more recent though Azure Copy (AzCopy) now supports Azure Virtual Machines Managed Identity.… keep reading

VSCode on Raspberry Pi for PowerShell Development

VSCode on Raspberry Pi for PowerShell

This is a post that I started more than a year ago. A goal was to be able to use a Raspberry Pi as a PowerShell Development environment. Whilst a lot has changed in that time (Powershell Core, Code Server and now the new Raspberry Pi 4) and a lot of progress made, I haven’t achieved my ultimate goal of using a Raspberry Pi as a development environment for Azure PowerShell Functions.… keep reading

Troubleshooting the SailPoint IdentityNow RACF Connector Gateway Configuration

SailPoint IdentityNow RACF Connector Gateway Troubleshooting

Installing and configuring a SailPoint IdentityNow RACF Connector isn’t something you do everyday. It’s probably something you will only over do once or twice it at all. This post is my learnings from troubleshooting the SailPoint IdentityNow RACF Connector Gateway to allow the IdentityNow RACF Source to connect to the RACF Agent on z/OS.… keep reading

Microsoft MVP Renewal 2019/20

Microsoft MVP

It’s hard to believe that its been close to two years since I was first awarded Microsoft MVP (Most Valuable Professional) in the Enterprise Mobility – Identity and Access Management category.

Due to changes in the renewal process and the MVP program, I’ve had quite a long honeymoon period as an MVP.… keep reading

Configuring a SailPoint IdentityNow JDBC Source with multivalue fields – ‘mergeColumns’

Recently I was configuring a SailPoint IdentityNow JDBC Source with data a little different than a simple series of single valued columns. The Source was an Oracle SQL View with around 19 columns of which one key column was multi-valued. It contained a list of the Roles a user is a member of.… keep reading

A Rudimentary RACF Management Agent for Microsoft Identity Manager

PowerShell RACF z/OS PowerShell MIM MA

A RACF Management Agent for Microsoft Identity Manager ? Isn’t there one in the box? No. Host Integration Management Agents were deprecated when Microsoft released Forefront Identity Manager as the successor to Identity Lifecycle Manager (ILM). I understand it was partly due to lack of demand for the integration, and the reliance on Host Integration Server (HIS) along with the move in operating system support 32-bit (in ILM) to 64-bit (in FIM).… keep reading