I'm trying the password reset function, but cant seem to get it off the ground. It crashes before it really starts. When I try the portal it says: "Registration is not possible at this time" "The Fim Password and Authentication extensions experienced an error when trying to launch registration for password reset please reinstall or contact you system administrator" I tried to run it like: "C:\Windows\System32\MsPwdRegistration.exe -all" from commandline, read that somewhere on this forum, but it also fails there. Gives me: "FIM password and registration encountered an error, you may be able to resolve this issue by trying again. If you still experience issues contact your support team" With this second way in the background you see the program starts to load, but closes when you ok on the error message. The system log seems empty so dont really know where to start looking. I tried reinstalling but gives me the same result. I also Also i'm not getting the password reset option on login. This is on my Windows 7 client I tried on Windows 2008 R2. I get link to password reset on login screen(so thats more then on my windows 7) but cant register. On the first screen I can click next and then in the proces, it gives me an error saying call helpdesk or admin. I cant find anything in the logs of the machine On the Windows 2008 R2 which has FIM and all components installed the password reset works fine. I can register and reset passwords there with the tool. Disabling firewalls doesnt make a difference. Can anyone tell me where to look ? Thanks

I can help you on that. I assume you have read and followed the deployment guide for SSPR (previously called Introduction to Password Reset). To assist you on your issue, it's important for me to understand your topology and have a common terminology. In particular, for easy communication, i would like to know the hostname of the machine with FIMService and FIMPortal installed, and also the hostname for the client machine (The Win7 machine). Also, on one hand, you said "I tried on Windows 2008 R2. I get link to password reset on login screen(so thats more then on my windows 7) but cant register"; on the other hand you said "On the Windows 2008 R2 which has FIM and all components installed the password reset works fine". You seems to be contradicting yourself?

Yes I followed the guide. I run windows 2008 r2. It has all FIM components on it. Its also the domain controller. The name is VNDFIMDC01.fim-poc.local. The password reset tool works on this machine I have a second machine with Windows 2008 r2 runnning exchange 2010 and a sql2008 with my HR source. The name is VNDFIMEX01.fim-poc.local The password reset tool acts as discribed in my easlier post. I can see the action starting in the portal when I look at requests I can see the update on person with status authenticating. Third machine runs windows 7 VNDFIMCLNT.fim-poc.local. Tool doesnt seem to do anything here as described in first post

logon to VNDFIMCLNT (Win7 client) as the install user for FIMService (i will refer that user as FIMAdmin). open a regular command prompt and try "C:\Windows\System32\MsPwdRegistration.exe -all". I think you should get an error as you mentioned in the first post Now on the client machine: use notepad to open C:\Program Files\Microsoft Forefront Identity Manager\2010\Password Reset Client Service\PwdMgmtProxy.exe.config uncomment that section change "Warning" and "Error" to "Verbose" (capital V) Save the config file Create the folder C:\Logs and grant "Authenticated Users" full permission (in theory, only NETWORK SERVICE, but granting more permission makes your life easier) net stop FIMPasswordReset & net start FIMPasswordReset verify a log file is created under C:\Logs now repro it by launching "MsPwdRegistration.exe -all" again. You should be able to see the error in either Event Viewer or in the log file (Event Viewer is usually easier). Post the error you see here

I fixed the VNDFIMEX01. Its working now! I actually had localhost configured as fimservice adress. Thats why it worked local but not on the other server. Windows7 client is still not doing anything though edit. didnt try your post yet on windows 7 doing that now so above comment about win7 can be ignored

Thanks. Looking at the log I fixed it. I make a typo in a config using fim-poc,local instead of fim-poc.local. I know deleted it and reinstalled it later so not sure how I managed to make a mistake twice, but turning on the log gave me the info I needed Thanks