I have configured the ADMA and FIMMA correctly, my sync's have worked and when I do a search in the portal I see the AD users. I have enabled the MPR's required and used the script "Using PowerShell to check your MPR configuration for FIM Portal Access " to confirm and all checks out. When a domain authenticated user that I see in the search user's in the identitymanagement portal try to access the page they are seeing service unavailable and in the URL there is a error code of 3000. I do not see anything relevant in the eventlogs and when I try with my account or the service account I can access the portal fine. Any thoughts? Derek

make sure objectsid, accountName, domain and displayName is thereThe FIM Password Reset Blog http://blogs.technet.com/aho/

When I do a search and return all results the domain feild is indeed missing. I didn't get any errors reported during any sync's from ad or fim portal. Any thoughts on how to track this down? Are my mappings in correct maybe? They all look to match up correctly Thanks for your input Anthony Derek

1. you should notice Domain is NOT an attribute in AD. you need to find someway to flow the domain from AD to MV. Substring on the SID together with some IFF might do the job... or you can use a hardcode a constant for now2. after you import, you can search the user in MV and make sure the domain name is there...3. then flow out the user from sync to FIM...The FIM Password Reset Blog http://blogs.technet.com/aho/

Just looking at the documentationCommon scenariosIt seems very stright forward with the mappings sugested here for domain to MV adn to FIM no?Do you have any example or refrence for retreving domain wiht iff as mentioned above?Thanks again Anthony Derek

Anthony, Would I set this in "configure attribute flow" as advanced import to mv from ad and set the domain name here? What if any do I need to select as the source attribute? Derek

I have hard coded the Domain name "DName" and its not in the MV as well as the portal. Users are still recieving a 3000 error and service unavailable. Only myself and the install account can access the identitymanagement portal. I checked the root site collection and users can access it fine. also nt authenticated users are in the portal as read and I confirmed the check boex were set to allow users access to the portal. Any thoughts? Derek

sorry, i am not good in sync and can't really help out here. The community should be able to help.The FIM Password Reset Blog http://blogs.technet.com/aho/

Got it! the domain hard coded value is not in the portal and my test users seem to access the base portal just fine. Thanks Anthony! derek

Do you have any example or refrence for retreving domain wiht iff as mentioned above? How Do I Synchronize Users from Active Directory Domain Services to FIM. Cheers, MarkusMarkus Vilcinskas, Knowledge Engineer, Microsoft Corporation