Some of you might have struggled trying to install FIM 2010, I must admit it’s a little tough at first the software having so many requirements.
Here is a quick guide that should help you deploy that solution in one shot and be done with it. I’ve skipped the obvious part or this would have taken me forever so here we go.I will assume that you have a windows domain with Microsoft Exchange and an SQL server installed so I will skip these step and go on to the part that’s important in the FIM installation process.
1- Account Creation
You will need to create multiple standard domain accounts each of which will be used for a different purpose, (try not to use the domain admin account even though it works):
· Create an e-mail-enabled domain service account to run the FIM Service
· Create a domain service account to run the FIM Synchronization Service
· Create a domain FIM Service management agent account
· Create a SharePoint Server management account.
· Create an SQL Server admin account.
2- Account configuration
Next step is to configure those accounts:
· Allow Logon locally on the FIM server to the FIM MA account
· Grant the « log on as a service » right to the FIM Service Account
3- SharePoint Installation and configuration
We can now install SharePoint services (WSS 3.0) on your FIM server (standard standalone install):
Once the installation is complete, launch the central administration website open the site actions and select “Create”.
Select « Create or extend Web application »
And configure the new web application as follows:
Once the application created you should be able to browse the localhost website and get the page below:
Navigate back to the central administration website and choose to create a basic web page:
4- Securing the SharePoint Website :
Start by issuing a webserver certificate for the FIM Server
Then in IIS, bind the SharePoint website in HTTPS using the certificate created previously.
Then get back to the central administration website and go to operations/alternate access mappings
Edit the http://fimserver url into https://fimserver
5- FIM Installation
Start by installing the synchronization service
Select the machine you’d like to install the service on and the sql server instance to use,
This step will create the local groups you will need to administer FIM, leave as is and continue then finish.
Next step is the manager service and portal installation:
Skipping the obvious parts, select the features you’d like to install
Select the database server and database name you’dd like to use to store the FIM data
Enter the mail server Address and the features you’d like enabled:
For exchange 2007 and 2010, the three checkboxes should be selected.
Select the Generate a new self-issued certificate option even if you have a pki installed on your domain.
Enter the service account created in the first step of this document:
As well as the synchronization server and the management account:
Enter the FIM server Address
Then enter the SharePoint site URL you created earlier (localhost if the site is on the server):
Finally choose to open the ports on the local firewall and to grant authenticated users read access to the FIM portal and password reset site.
Users that wish to administer the solution must be members of the local FIMSyncAdmins group
Make sure that the fim services are started
You can now finally begin using FIM
No comments:
Post a Comment