What's New in Forefront Identity Manager 2010 R2 SP1

What’s new in Forefront Identity Manager 2010 R2 SP1

Forefront Identity Manager 2010 R2 SP1 introduces several new features and improvements to Forefront Identity Manager 2010 R2.

These include the following:

Improved Performance

  • The time it takes to upgrade from FIM 2010 to FIM 2010 R2 has been improved.

    For example, for large scale synchronization service databases the amount of time to perform an update has been reduced from days to hours with FIM 2010 R2 SP1.

  • The Management Agents for Active Directory Domain Services, FIM Service Management Agent, and Extensible Connectivity 2.0 have been optimized to import objects with many reference attribute values (e.g.: groups with members).

    For example, imports of groups with 30,000 members are 2.5 times faster.

  • In the cases where a management agent reports many thousands errors during a run, the performance has been improved to not degrade over time.

  • You can improve the performance of your FIM service in an environment that has a large number of criteria-based groups deployed by configuring deferred evaluation in the FIM portal.

PowerShell

The Import-MIISServerConfig PowerShell cmdlet supports now overwriting and existing configuration. The newly added behavior enables the automation of the deployment of the FIM synchronization service

Extensible Connectivity MA Framework

  • The Extensible Connectivity MA framework has been updated to version 2.1, which introduces the following new features:

    1. During import and export it is possible to return a custom error message on object level. The custom error has two parts, a short description which will show up in the Operations Log and a longer detailed message including stack traces and other debug level information.

    2. When running packaged management agents, the version number of the DLLs is reviewed. If the version number between run profiles runs has changed, the interfaces will be refreshed and the user will be asked to go through the configuration pages again.

      This functionality is the same as selecting “Refresh DLL” in a non-packaged management agent.

    3. You can configure the schema to only display an object or attribute when the “Show All” checkbox has been selected.

    4. The GetCapabilities method supports a new option for the ExportType attribute to update multi-valued reference attributes (e.g.: member). For all other attribute types, a replace is performed.

    5. The GetCapabilities method supports new options for the ObjectConfirmation attribute that are adding support for “No confirmation on add”.

FIM Connectors

  • Support for Active Directory 2012 has been added to the management agent for Active Directory Domain Services.

  • Support for SQL Server 2012 has been added to the management agent for SQL Server.

  • Support for Exchange 2013 to provision Exchange mailboxes has been added to the management agent for Active Directory Domain Services.

  • Support for Sun 7.x and Oracle 11 has been added to the management agent for Sun and Netscape directory servers.

    Note

    The management agent has been renamed to Oracle directory servers.

FIM Service

  • Support for Windows Server 2012 has been added.

    Note

    The Microsoft .NET Framework 3.5 needs to be enabled on the hosting computer.

  • Support for SQL Server 2012 has been added.

  • Support for Internet Explorer 10 has been added.

  • Support for SharePoint Foundation 2013 has been added.

    Important

    FIM portal is supported on SharePoint Foundation 2013 if the following 4 conditions are met:

    1. The SharePoint 2013 site collection is running in 2010 experience mode

    2. Server-side viewstate is to be disabled.

    3. Self-service upgrades on SharePoint Foundation 2013 from SharePoint 2010 experience mode to 2013 experience mode are not allowed

    4. Claims-based authentication is turned off

    For more details, see Installing FIM 2010 R2 on SharePoint Foundation 2013.

FIM Synchronization Service

  • Support for Windows Server 2012 has been added.

  • Support for SQL Server 2012 has been added.

  • Support for Visual Studio 2012 for extension projects targeting the Microsoft .NET Framework 4.5 has been added.

Password Change Notification Service (PCNS)

  • Support for Windows Server 2012 has been added.

FIM Reporting

  • Support for Windows Server 2012 has been added.

  • Support for SQL Server 2012 has been added.

  • Support for SCSM 2012 has been added.

FIM Client Add-in

  • Support for Windows 8 has been added.

  • Support for Outlook 2013 has been added.

FIM Certificate Management (CM)

  • Support for Windows Server 2012 has been added

  • Support for SQL Server 2012 has been added.

  • Support for Windows 8 has been added for 32-bit client. The x64 client should not be used with Windows 8.

  • Support for Windows 8 TPM Virtual Smart Cards (VSC) has been added.

    Note

    FIM CM treats VSCs as standard BaseCSP smart cards. Installation and removal of VSCs needs to be completed independently in corporate images or by using logon scripts as recommended in the Windows documentation. For more details, see Understanding and Evaluating Virtual Smart Cards and Virtual smart cards.

  • Support for the DataCard CD800 printer has been added.

    Note

    This applies only to the two-wire model. The one-wire model is not supported.

Important

For customers running their CA on Windows Server 2003 Microsoft highly recommends to upgrade the CA to a later version.