Verification Checklist for Cross-Forest Management Solution Using Forefront Identity Manager (FIM) 2010
Updated: June 3, 2010
Applies To: Forefront Identity Manager 2010
This following table details the verification steps that you need to perform to ensure that you have correctly deployed a cross-forest management solution by using Microsoft® Forefront® Identity Manager (FIM) 2010.
| Section | Step | Completed? |
|---|---|---|
Microsoft Office SharePoint® Server 2007 |
Configure Office SharePoint Server 2007 for multi-forest browsing. |
|
Office SharePoint Server 2007 |
Configure Office SharePoint Server 2007 for multi-forest access permissions. |
|
Forest configuration |
Create the Forest Configuration objects. |
|
Forest configuration |
Create the Forest Contacts sets. |
|
Forest configuration |
Create the Forest Foreign Security Principal (FSP) sets. |
|
Domain configuration |
Create the Domain Configuration objects. |
|
Workflow |
Create the Group Membership Validation workflow. |
|
Management policies |
Create the Group Membership Validation management policy rule (MPR). |
|
Schema |
Create the SidString attribute in FIM. |
|
Schema |
Bind SidString to User and Group in FIM. |
|
Schema |
Create the SidString attribute in the Synchronization Engine. |
|
Schema |
Bind the SidString attribute to person and group in the Synchronization Engine. |
|
Sets |
Create the AD DS Users provisioning set. |
|
Sets |
Create the AD DS Security Groups provisioning set. |
|
Sets |
Create the AD DS Distribution Groups provisioning set. |
|
Sets |
Create the AD DS User FSP provisioning set. |
|
Sets |
Create the AD DS Security Group FSP provisioning set. |
|
Sets |
Create the AD DS User Contact provisioning set. |
|
Sets |
Create the AD DS Distribution List Contact provisioning set. |
|
Sets |
Create the AD DS Mail-enabled Security Group Contact provisioning set. |
|
Synchronization rule |
Create the AD DS Users synchronization rule. |
|
Synchronization rule |
Create the AD DS Security Groups synchronization rule. |
|
Synchronization rule |
Create the AD DS Distribution Groups synchronization rule. |
|
Synchronization rule |
Create the AD DS User FSP synchronization rule. |
|
Synchronization rule |
Create the AD DS Security Group FSP synchronization rule. |
|
Synchronization rule |
Create the AD DS User Contact synchronization rule. |
|
Synchronization rule |
Create the AD DS Distribution List Contact synchronization rule. |
|
Synchronization rule |
Create the AD DS Mail-enabled Security Group Contact synchronization rule. |
|
Workflow |
Create the AD DS Users workflow. |
|
Workflow |
Create the AD DS Security Groups workflow. |
|
Workflow |
Create the AD DS Distribution Groups workflow. |
|
Workflow |
Create the AD DS User FSP workflow |
|
Workflow |
Create the AD DS Security Group FSP workflow. |
|
Workflow |
Create the AD DS User Contact workflow. |
|
Workflow |
Create the AD DS Distribution List Contact workflow. |
|
Workflow |
Create the AD DS Mail-enabled Security group Contact workflow. |
|
Management policies |
Create the AD DS Users MPR. |
|
Management policies |
Create the AD DS Security Groups MPR. |
|
Management policies |
Create the AD DS Distribution Groups MPR. |
|
Management policies |
Create the AD DS User FSP MPR. |
|
Management policies |
Create the AD DS Security Group FSP MPR. |
|
Management policies |
Create AD DS User Contact MPR. |
|
Management policies |
Create the AD DS Distribution List Contact MPR. |
|
Management policies |
Create AD DS Mail-enabled Security group Contact MPR. |