FIM CM permissions

Permissions for FIM CM are set in five different places, sometimes making it hard to troubleshoot permission errors. On the other hand, the granular permission model makes it possible for a granular policy to be defined.

If, for example, you have a policy that managers in the USA should only be able to issue Smart Cards for consultants in the USA but not in Europe, you can do so.

Service Connection Point

The Service Connection Point , SCP, permissions determine whether a user is assigned a management role in the FIM CM deployment.

When you run the configuration wizard, the SCP is decided but the default is the one shown in the following figure:

If a user is assigned any of the FIM CM permissions available on the SCP, the administrative ...

Get Microsoft Forefront Identity Manager 2010 R2 Handbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Microsoft Forefront Identity Manager 2010 R2 Handbook by Kent Nordstrom

FIM CM permissions

Service Connection Point

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly