Share via


Featured Wiki Article: FIM 2010 R2: How to Manage Group Membership from the User UI

By Peter_Stapf
October 26, 2013

Here is the introduction...

As everybody knows FIM has great capabilities in user self-services, but when features for helpdesk are required it sometimes gets a little bit tricky. The solution I describe here is a request of a customer who wants to remove an old helpdesk tool for user, group and team management. The old helpdesk management tool was a web application and worked directly on Active Directory. While I have implemented most of the functionality of the old application there was one problem I've spend a little more time on to find a solution. This
missing feature or problem is that you cannot OOB manage group membership on the user UI in FIM Portal (aka. memberOf Problem).

So after trying and thinking about a lot of possibilities, I've implemented the following solution.

So how does it work?
I've decided to create 2 multi-value reference feeder attributes (one for adding a group, one for removing). In the RCDC I use uocIdentityPicker controls to display them. Adding one or more groups to this attributes will trigger a workflow with the appropriate PowerShell script which adds or removes the user from the groups via the web service. After that the feeder attributes are cleared.Together with a uocListView control for group reporting on the user UI the look and feel is like adding members to a group in the group UI.

This solution relies on the great FIM PowerShell Activity and FIM PowerShell Module from Craig Martin and Brian Desmond, so make sure you install and configure the following steps correctly.

 

=========

Read the rest here: FIM 2010 R2: How to Manage Group Membership from the User UI

 

Thanks to Peter for this great article that won the gold medal for the September FIM Guru contest!

   - Ninja Ed

Comments

  • Anonymous
    November 22, 2013
    Thanks again to Peter Stapf for this great article! If you want to learn more about the TechNet Guru program, go here: social.technet.microsoft.com/.../17641.technet-guru-contributions.aspx

  • Anonymous
    August 16, 2015
    After the configuration of this scenario, after the request I get an error "-- PowerShell Error: Missing expression after unary operator '-'." What could be the cause of this error?