Microsoft Identity Integration Server: Question on adding contact

Asked By josephparera 30 points N/A Posted on - 07/29/2011

Hello all,

I'm looking for info regarding MIIS.

When a new contact is created on domain 2 by synchronisation from domain 1,
the SID of the user account on domain 1 is added to the SID history of the
contact on domain 2. Is that both ways. Meaning is the SID of the contact on
domain 2 added to SID history of the user on domain 1

I ask because I am wondering what will happen if I need to migrate the user
from domain 1 to domain 2. Will it have access to the resources that its
contact counterpart had on domain 2.

Please excuse me if this sounds very long winded.

Regards,

Josephparera

 

• Status: Open
• Question Views: 1553
• Answer Count: 3
• Vote Up 2 Vote Down

• Answer Accepted: Yes
• Question Category: MS Identity Integration

Best Answer by Harpe byers

Go To Solution

Answered By jimpointy 0 points N/A #95590

Microsoft Identity Integration Server: Question on adding contact

Hi,

Just go through the above link

These are the Requirement which are need to be satisfied by the Identity Integration Feature Pack, But it has nothing to do with the systems being connected to it.

Well all you need is an active directory that's it, the requirements are for the Identity Integration Feature Pack ,

Your Machine Doesn't come under that category. 🙂

http://download.cnet.com/Identity-Integration-Feature-Pack-for-Microsoft-Windows-Server-Active-Directory-with-Service-Pack-2-SP2/3000-10248_4-10732870.html

Go through the above link also.

About jimpointy

Questions
0

Answers
3

Best Answers
0

• Vote Up 0 Vote Down

• Posted on - 08/02/2011
• Question Category: MS Identity Integration

Answered By Peter franklin 10 points N/A #95591

Microsoft Identity Integration Server: Question on adding contact

Hi,

It is very simple if you want your user to redirect from one page to another. You can use this script in the head section of your websites page.

<meta http-equiv="REFRESH" content="seconds";url="*********************"

Now the user will be redirected to another page of which you have specified the URL. And yes it will have access to the resources of the domain 2. I hope this helped.

Regards,

Peter Franklin

About Peter franklin

Questions
0

Answers
102

Best Answers
35

• Vote Up 0 Vote Down

• Posted on - 12/04/2012
• Question Category: MS Identity Integration

Best Answer

Best Answer

Answered By Harpe byers 10 points N/A #95592

Microsoft Identity Integration Server: Question on adding contact

Hey Joseph,

You must be aware of Access Control Lists (ACLs). ACLs are lists of given permissions to an object.

Security Identifiers (SIDs) will be different for domain 1 & 2 in your case and therefore you need to completely modify your ACLs to add SID of the contact on domain 2 to SID history of the user on domain 1.

Instead of manually programming (which is too time consuming and tough for even small volume of users), you can use free tool of Microsoft Active Directory Migration Tools (ADMT).

Please follow this link to download ADMT – https://www.microsoft.com/en-in/download/details.aspx?id=19188.

Remember, it only supports Windows Server 2008 R2.

About Harpe byers

Questions
3

Answers
202

Best Answers
91

• Vote Up 0 Vote Down

• Posted on - 12/05/2012
• Question Category: MS Identity Integration