Couple of seconds ago, Microsoft disclosed new information about FIM vNext – now called Microsoft Identity Manager (MIM)!
Go quickly to http://blogs.technet.com/b/server-cloud/archive/2014/04/23/forefront-identity-manager-vnext-roadmap-now-microsoft-identity-manager.aspx to get the latest update about the on-premis part of Microsoft’s hybrid identity management solution. It’s worth the time…
Yesterday, Microsoft has published a new page covering hybrid identity management – http://www.microsoft.com/en-us/server-cloud/solutions/identity-management.aspx#fbid=OqTC3iMQfHz.
So what’s new and what’s Microsoft’s approach regards hybrid identity management?
Microsoft has a rich history in identity management, via Windows Server Active Directory and Forefront Identity Manager. Now, Microsoft is expanding this lineup to include cloud-based identity and access management solutions on Azure Active Directory. The result provides Microsoft customers with a powerful set of hybrid identity solutions to maintain a single identity for each user across on-premises and in the cloud.
In addition to the new web page, a white paper and datasheet have been published as well:
Microsoft has just published the Active Directory Authentication Library (ADAL) for Java. Such as ADAL for Android and iOS, the source code and a sample application can be found and downloaded from GitHub: https://github.com/MSOpenTech/azure-activedirectory-library-for-java.
Note-to-self: Microsoft has published lot of new Azure Active Directory (AAD) content after //build:
Yesterday was a really great day, because Microsoft released or published the DirectAccess Client Troubleshooting tool on Microsoft Downloads.
But what’s the DirectAccess Client Troubleshooting Tool? Well, here’s a very short description:
The DirectAccess Client Troubleshooting Tool is a graphical application, based on the .NET Framework, which checks the health of a DirectAccess client by running various tests. The following tests are currently implemented:
- Network interfaces
- Network location (NLS and NRPT DNS)
- IP connectivity (6to4, Teredo, IPHTTPS, entry point in a multisite setup, DNS)
- Windows Firewall (applied profile, Firewall outbound rules)
- Certificates (EKU Client Authentication, trust chain for AIA and CRL)
- IPsec infrastructure tunnel (Domain SysVol share)
- IPsec intranet tunnel (PING and HTTP probes)
And there are more “hidden” features that I will describe in a next blog. Oh and yes, the development team of this tool is working on the next release, which will include even more awesome features!
Go and crab your copy from http://www.microsoft.com/en-us/download/details.aspx?id=41938
Interesting whitepaper about the circumstances under which the use of pre-boot authentication with BitLocker is recommended. You can grab a copy of it here http://www.microsoft.com/en-us/download/details.aspx?id=41671.
Released last week – the BPA (Best Practice Analyzer) for DirectAccess based on Windows Server 2012! The BPA scans the DA configuration and lists the found issues in a sortable list.
You can find the BPA for DA on http://www.microsoft.com/en-us/download/details.aspx?id=41178.
And in addition to the three new Connector, Microsoft has shipped a new hotfix rollup package for FIM 2010 R2 as well:
After a couple of months, the three new FIM 2010 R2 Connectors have left the RC phase and are now GA! Here’s a short overview about the three new Connectors:
Windows Azure Active Directory Connector
This Connector can be used in scenarios not supported by DirSync, for example multi-forest or non-AD. The Connector comes with sample code and configuration for a resource/account-forest scenario. For more information, please refer to the TechNet documentation: http://go.microsoft.com/fwlink/?LinkID=330371.
This Connector will allow you to connect to an LDAPv3 compliant directory. It currently supports the same LDAP directories (IBM, Novell, and Oracle) we ship with FIM 2010 R2 and will over time replace the built-in LDAP Management Agents. For more information, please refer to the TechNet documentation: http://go.microsoft.com/fwlink/?LinkID=270179.
SharePoint User Profile Store
This Connector will connect to the SharePoint User Profile Store and can be used as a replacement for the built-in synchronization engine which comes with SharePoint, for example in mulit-forest or non-AD scenarios. For more information, please refer to the TechNet documentation: http://go.microsoft.com/fwlink/?LinkID=331344.