A colleague and I are validating a number of scenarios for a customer who is looking to deploy Azure MFA Server. One of the requirements from an Identity Management perspective is the ability to interact with the MFA Server for user information.… keep reading
Recently I posted about using PowerShell and the Azure Active Directory Authentication Library to connect to Azure AD here. Whilst that post detailed performing simple tasks like updating an attribute on a user, in this post I’ll use the same method to connect to Azure AD via PowerShell but cover;
- enumerate users, contacts or groups
- where the number of objects is greater than the maximum results per page, get all remaining pages of results
- limit results based on filters
The premise of my script was one that could just be executed without prompts.… keep reading
In the last couple of weeks I’ve been evaluating a number of different approaches/concepts for some upcoming MIM development projects. Some of these I’ve blogged about already.
Having an Identity Manager Metaverse with identity data is a key dependency to being able to validate ideas and concepts.… keep reading
I have a customer that is looking to report on FIM/MIM identity information. The reports they are looking for aren’t overly complex and don’t necessarily justify the need the full FIM/MIM reporting infrastructure. So I spent a few hours over a couple of days looking at alternatives.… keep reading
Update: April 13 2017.
See this post for adapting to changes in the AzureAD
PowerShell Module Helper Libraries
Recently Microsoft released the preview of the v2.0 Azure AD PowerShell cmdlets. https://azure.microsoft.com/en-us/updates/azure-ad-new-powershell-cmdlets-preview/
I’ve got a project coming up where I’m looking to change my approach for managing users in Azure using Microsoft Identity Manager.… keep reading
Another day, another piece of FIM/MIM experimentation. I had built a fresh MIM 2016 environment in Azure to test a few scenarios out. That all went quick and seamlessly thanks to some great templates and a few scripts. Until I came to create the management agent (the purpose of today’s experimentation).… keep reading
Usually when I’m writing PowerShell scripts I do it from a development virtual machine with a known environment state. However, yesterday I was trying to do something simple and quick and was writing it on my everyday laptop.
My script was using Windows Management Framework 5.0 and I was creating a new burn environment in AzureRM.… keep reading
This solution on first look is quite random. A management agent that consumes a flat file (comma separated file) isn’t ground breaking, but when the twist is that the CSV file is in an email in an Exchange Inbox, it’s quite a different scenario.… keep reading
Forefront / Microsoft Identity Manager does not come with an out-of-the-box management agent for managing SharePoint Online.
Whilst the DirSync/AADConnect solution will allow you to synchronise attributes from your On Premise Active Directory to AzureAD, SharePoint only leverages a handful of them.… keep reading
A new hotfix rollup was released on the 11th of March for Microsoft Identity Manager that contains a number of fixes and some new functionality.
One new feature according to the release notes is a new cmdlet Add-MIISADMARunProfileStep
This cmdlet allows the creation of MIM Synchronisation Management Agent Run Profiles using PowerShell.… keep reading