How to exclude explicit members defined in a Set during policy export using PowerShell

Hi Folks,

I am trying to migrate delta Policy changes from Dev environment to UAT. I exported the policy config from both the environments and during the compare using SyncPolicy.ps1, encountered an error

Join-FIMConfig : Unable to find anchor attribute 'MailNickname' for object type 'Person' with identifier

urn:uuid:cc29dc1f-93a9-4674-8f21-c5884a3b3245.

When I checked for the uid in Dev, and also checked the Policy file exported from Dev env,found that this user is part of a Set where its added as a member explicitly. This is obviously going to give me problems.

Can someone please help me as to how I can exclude Person objects being exported to Policy file so that during compare I will not get an error.

Regards,
July 22nd, 2015 11:00am
I suggest to change the query not to use mailnickname, but another attribute like accountname.  This is to be done in the PowerShell script itself.  Some tweaking is almost alwa
Free Windows Admin Tool Kit Click here and download it now
July 22nd, 2015 11:31am

Nosh,

Even if i give AccountName, I have many Sets that have "Bulit in Sync Account" and few other service accounts as explicit members. Built in Sync does not have an accountName and again during compare its throwing error.

Is there any way to modify the SyncPolicy.ps1 script to exclude Person objects from Set. I am ok with manually adding the members to the Set in target environment.

Regards,

July 22nd, 2015 11:30pm

I followed the below link to exclude the explicit members from the set in the SourcePolicy.xml file.

https://social.technet.microsoft.com/Forums/en-US/a9d796a8-8bc1-44b2-9e5d-3f35f5361047/fim-configuration-migration?forum=ilm2

But now I am getting below error during compare with TargetPolicy.xml using SyncPolicy.ps1.

ConvertTo-FIMResource : There is an error in XML document (6439, 38).

This line basically refers the Set from which we removed the explicit members earlier.Using the same link I tried excuding all the sets that were having explicit members and after that during compare it gave an error

NullreferenceException: ConvertTo-FIMResource : There is an error in XML document (6439, 38). 

Can someone help me here and make this migration process a bit simpler.

Thanks,

Veena

Free Windows Admin Tool Kit Click here and download it now
July 23rd, 2015 5:04am
So use dispplayName then either as substitute or addition to
July 23rd, 2015 12:15pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics