In This Guide
This guide contains instructions for demonstrating Forefront Identity Manager 2010 R2 Self-Service Password Reset (SSPR) using the default Question and Answer Gate and the One-Time Password SMS Gate. The One-Time Password SMS Gate allows a one-time password SMS message to be sent to a user via a SMS provider of your choice.
A full copy of this document is available for offline viewing here.
|The following instructions are for demonstrating the Forefront Identity Manager 2010 R2 SSPR test lab using a scaled-out deployment. That is, the FIM Portal and the FIM database will not be residing on the same server. The FIM Password Reset and Password Registration portals will not be on the same server as the FIM Service and the FIM Synchronization Service. Individual computers are needed to separate the services provided on the network and to clearly show the desired functionality. This configuration is neither designed to reflect best practices nor does it reflect a desired or recommended configuration for a production network. The configuration, including IP addresses and all other configuration parameters, is designed only to work on a separate test lab network. Attempting to adapt this Forefront Identity Manager 2010 R2 test lab configuration to a pilot or production deployment can result in configuration or functionality issues. To ensure proper configuration and operation for your pilot or production Forefront Identity Manager 2010 R2 deployment, use the additional documentation provide with the Forefront Identity Manager 2010 R2.|
Test Lab Overview
In this test lab, one additional Windows 7 computer is named CLIENT2 is needed.
The Forefront Identity Manager test lab uses the following subnet:
The intranet established by the Base Configuration Test Lab Guide, referred to as the Corpnet subnet (10.0.0.0/24).
Computers on each subnet connect using a hub or switch. See the following figure.
This test lab will guide you through the Forefront Identity Manager 2010 R2 SSPR process. The purpose of this test lab is to allow for the creation of a basic test lab environment that consists of Forefront Identity Manager 2010 R2 SSPR using the default Question and Answer Gate and the One-Time Password SMS Gate. This test lab guide can be used as a building block for additional test lab guides that demonstrate increased functionality or additional features of Forefront Identity Manager 2010 R2.
Hardware and Software Requirements
A valid SMS (Short Message Service) provider - You need to sign up with an SMS Service Provider in order to use the SmsServiceProvider.dll. The SMS Provider used in this example, is for a fictitious mobile message content service provider. The idea is to illustrate how the code might look with an actual SMS provider.
Should you have a valid SMS provider and wish to substitute your own code, you will also need to ensure that DC1 can properly route the SMS message. This can be accomplished by adding an additional network card to DC1 and making it multi-homed. This additional adapter can be used for routing of the SMS messages to the internet. You need to ensure that you have properly setup DNS and that you are able to contact your SMS provider.
Steps for Configuring the Forefront Identity Manager 2010 R2 Test Lab
There are nine steps to follow when setting up the Forefront Identity Manager 2010 R2 test lab based on the Forefront Identity Manager 2010 R2 Test Lab Guide.
Step 1: Set Up the Base Configuration Test Lab—The Base Configuration is the core of all Test Lab Guide scenarios. The first step is to complete the Base Configuration.
Step 2: Set Up the Exchange Server 2010 with Service Pack 1 Test Lab—The second step is to complete the Exchange Server 2010 with Service Pack 1 test lab guide. This provides Active Directory® attributes and e-mail functionality for the FIM Service account.
Step 3: Set Up the SQL Server 2008 R2 Enterprise Test Lab—The third step is to complete the SQL Server 2008 Enterprise with Service Pack 2 test lab guide. This provides the database server for your FIM installation.
Step 4: Set Up the System Center Service Manager SP1 Test Lab
Step 5: Set Up the Forefront Identity Manager 2010 R2 Test Lab—The fifth step includes installing Forefront Identity Manager 2010 R2.
Step 6: Perform SSPR Prerequisite Tasks— The sixth includes setting up the basic SSPR QA Gate.
Step 7: Configure Self-Service Password Reset—The seventh step configures password reset.
Step 8: Verify SSPR- The eighth step involves registering and reset the test users password.
This guide provides steps for configuring the computers of the Forefront Identity Manager 2010 R2 SSPR test lab using the default Q&A gate and the One-Time Password SMS Gate. The following sections provide details about how to perform these tasks.