Forefront Identity Management Agent // IT Management Solutions

Forefront Identity Management Agent


It’s hard to find a Windows environment that doesn’t rely heavily on Active Directory these days. Indeed, since the inception of AD in the late 90s and early 2000s it has become the de-facto directory of choice and the ‘single source of truth’ for logon credentials, username schemas, mailboxes and many other identity-related facets of an organization. Many organizations simply synchronize data from their HR system directly into Active Directory and populate a few fields of information, but how does this data get managed inside the directory? Provisioning and de-provisioning become a big issue, as is synchronization of credentials and automating workflows in other tools that rely on the directory. Forefront Identity Manager (FIM) 2010 simplifies a lot of these tasks while helping enterprises clean up their Active Directory environment as well. In this article, we’ll walk through some of the features and capabilities of FIM to help you decide if it’s right for your company.

What is FIM and what is it good at?

When evaluating Identity and Access tools, it can be difficult to decide how much to bite off and what an organization really needs from a requirements perspective. Large vendors offer very comprehensive suites of tools that are costly and often require a lot of specialized services to implement and fine tune. For many enterprises, a simple set of requirements emerge when looking at:

  • Data Synchronization. The FIM Synchronization service includes the meta-directory, the provisioning engine, and the management agents (MAs) (See Figure 1). It allows for synchronization between the FIM database and other identity sources in an organization.
  • Self-service password reset - Allowing users to reset their own password to avoid tying up helpdesk resources.
  • Provisioning and de-provisioning accounts in the directory.

FIM fulfills these requirements and has a relatively low cost of admission compared to other products on the market, especially for organizations that are Microsoft shoppers and have Microsoft skillsets within their IT team.

Figure 1: Management Agent creation / provisioning options (Source:

Identity and Password Synchronization

Synchronizing Identities (particularly usernames and passwords) across multiple systems can be a quick win for an identity and access solution. Giving a user a single set of credentials to remember and manage makes it easier for them to get their work done, provides for faster provisioning and onboarding when users are accessing new systems and services, and allows for more efficient credential management in an enterprise environment.

You might also like

Someone in management of their database will

by hazehunt

Unless you know what data mining is, without doing a search.. or cross-platform.. you have no room to speak if dont know exactly how spidering works. databases... you obviously just dont know.
there is a video site that has my user profile, and videos, from my youtube site. it spidered, then copied and created a new profile using the data entries and actual videos contained in my youtube record. In other words, it stole the data, automatically.
systems, and list brokers, seek to have your database whether its from a grocery store or from your local bank

The IT degree is

by Shoe_shine_rae_Jxa

General, a little bit of database, EXCEL, Word, html/webpage design, VB net programming, and management, etc. I have an RN license, but a cherry picker working out in a field for 12 hours a day under the blasing sun fighting flies has an easier time of it then the average nurse.
To finance my unemployment I worked in dialysis for 4 years. Mandatory overtime sometimes for 50-60 hours a week knee deep in HIV, HepC/A/B blood. My personal drawback--I'm 59 years old. I got out of nursing because my life is worth more than $30 dollars an hour to me or in my case $25.(which half of what I made was confiscated by uncle sam

My GOD!! Sake says, "What is wrong with NEOCON?"

by SakeBomb2

It can't be possible that the entire leadership of the NEOCON party is crooked, liars, criminals, could it? We got FRIST, DELAY, ROVE, SCOOTER, That NAM jet fighter pilot senator (forgot his name). So many NEOCONS being indicted for one thing or another. Did I miss anybody? It is really getting tough to keep track of all these NEOCONS. Help me? I need a database management system. Any recommendations?

Yep that is exactly what happened to me

by elainebowers

Netflix was super fast the first month; then, it started in with taking a few days for them to receive the returned dvd, and then a wait before theys shipped the dvd. I became frustrated enough in about month 4 to switch over to Blockbuster.
Blockbuster's queue management is harder because they don't have all the movies in their database until only about 2-3 weeks prior to the dvd being released. With netflix, you could add a movie to your queue that is currently being shown in theatres. That was a super nice feature. With Blockbuster, I have to keep an offline list of movies.
But Blockbuster also lets you rent two free movies or games from the store every month

Springer Architecting User-Centric Privacy-As-A-Set-Of-Services: Digital Identity-Related Privacy Framework (Springer Theses)
Book (Springer)

Shielding names of police, prosecutors in online tax records divides lawmakers  —
Paul Stam, R-Wake, said counties would spend millions of dollars managing databases where some names were out in the open and others weren't. "This idea that you can have two different sets of records electronically – one at the courthouse and the ..

Related Posts

Copyright © . All Rights Reserved