i am new in FIM......please provide the simplest Answer

Any step by step guide....

and do i need Echange Server for that...i just want the communication between FIM & AD.

• Edited by srm.ankur Thursday, December 05, 2013 6:16 PM

I don't understand your need.

What do you want to do exactly ?

I want to provision a user in AD only if Manager of that user approves in FIM.

Its like when HR creates a user on FIM portal, a request is send to that user's Manager, untill and unless Manager approves that request that user should not be provisioned to AD.

Hope I am clear enough this time.

A far I understand, during user creation you would choose manager?

It can be done by, for example, adding one attribute in schema. And as long this attribute would not be filled out by manager, user would not be provisioned to AD. But provisioning has to be realized through Synchronization Rules or Metaverse rules extensions -> provision user only if this attribute is filled (or "true" if boolean).

So it's rather simple:

1. Add new boolean attribute to FIM schema and add this attribute as user's attribute,

2. Make "manager" field in FIM Portal as obligatory when creating user (via RCDC).

3. Make MPR that manager can update such attribute.

3.1. If wanted, add MPR that notifies manager that new user is waiting for acceptance.

4. Make provisioning rules extension - in code or Synch Rule.

Exchange is not needed. Exchange is only useful if you want FIM to create mailboxes automatically when creating user or if you want FIM to manage mailboxes.

Well you need a mailserver to send the approval notifications to the manager, maybe he is regarding to that with Exchange?

Step 4. Provisioning rules extension is not necessary, you can create a set which contains all users with "ADprovisioningApproved" = true, and create a transition in MPR which triggers the AD syncrule workflow.

Thanks Robin -

My basic moto is that once the HR create an USER on FIM Portal (With Manager attribute), a request will go to his/her Manager to approve. (Before approving  That User is on FIM poratal But not in AD)

Once the Manager Approves that request that user will be provisioned to AD. for that do i need Exchange rule extention?

Any link or what YOU & DOMINIK have suggested is enough??

Our suggestions would be enough here. Export would be realized only when manager accepts user.