Password Reset: An error occurred when trying to reset your password
Hi,
I am trying to test password reset using FIM. I have registered a user for password reset. However I am getting an error message when I get to the stage of resetting the password ("An error has occurred when trying to reset your password, please
contact the helpdesk for assistance").
I have gone through some of the suggestions here and run the scripts to set WMI and DCOM permissions. The error message that I am getting on the server is Password Reset Activity ould not find Mv record for user.
I have checked using WBEMTEST and when I run the query
WQL:SELECT * FROM MIIS_CSObject WHERE (Domain='UL' AND Account='09000099') or (FullyQualifiedDomain='UL' AND Account='09000099') or (Domain='UL' AND UserPrincipalName='09000099') or (FullyQualifiedDomain='UL' AND UserPrincipalName='09000099')
it returns one result MIIS_CSObject.Guid="{F2C2C485-1607-4031-892D-430D5872A72F}".
At this point I am stuck.
August 19th, 2010 9:03am
run WBEMTEST as the fimservice service account
is the fimservice service account in the FIMSyncPasswordSet group? it looks like it, but can u double check
Free Windows Admin Tool Kit Click here and download it now
August 19th, 2010 11:04am
running WBEMTEST as the fimservice accounts returns the same MIIS_CSObject.Guid. The fimservice account is included in the FIMSyncPasswordSet group
August 19th, 2010 11:52am
can u post the complete error including full stack trace?
Free Windows Admin Tool Kit Click here and download it now
August 19th, 2010 12:21pm
From the event viewer I can see that it runs the following:
WQL:SELECT * FROM MIIS_CSObject WHERE (Domain='UL' AND Account='09000099') or (FullyQualifiedDomain='UL' AND Account='09000099') or (Domain='UL' AND UserPrincipalName='09000099') or (FullyQualifiedDomain='UL' AND UserPrincipalName='09000099')
Then it produces an error
Password Reset Activity could not find Mv record for user.
There doesn't seem to be anything associated with these errors
August 19th, 2010 12:42pm
No clue then.
I assume you have already verified that the user is in the MV? (which i assume yes) At this point, i am cluelessThe FIM Password Reset Blog http://blogs.technet.com/aho/
Free Windows Admin Tool Kit Click here and download it now
August 19th, 2010 3:26pm
I just ran into the same issue. In addition to a Metaverse object for the user, it must be connected to a connector space object in the AD MA. I'm not sure if that WMI query is searching for that, or the MV object.
If you're using the Sync Engine to populate the Portal, then I wouldn't expect that you'd run into this issue, however if you're using Powershell, perhaps in a lab environment..... You'll need to configure appropriate join rules or use the Joiner tool to
create a manual join.
September 5th, 2012 2:38pm
did you find a solution to this problem
Free Windows Admin Tool Kit Click here and download it now
October 28th, 2012 9:46am