Step 8: Install FIM Synchronization Service, FIM Portal, SSPR, and FIM Reporting

Installation of the FIM Synchronization Service and the FIM Portal for the Forefront Identity Manager 2010 R2 Beta test lab consists of the following:

  • Install the FIM Synchronization Service on FIM1

  • Install the FIM Service and Portal

Install the FIM Synchronization Service on FIM1

Install the FIM Synchronization Service on FIM1.

To install the FIM Synchronization Service on FIM1

  1. Log on to FIM1 as CORP\Administrator.

  2. Navigate to the directory that contains the binaries for Forefront Identity Manager 2010 R2 and double-click FIMSplash.htm. This will bring up the Forefront Identity Manager 2010 R2 splash screen.

  3. On the splash screen, click Install Synchronization Service. You will see a pop-up that says Do you want to run or save this file? Click Run. This will take a minute. Then you will see another pop-up asking Do you want to run this software? Click Run. This will start the Forefront Identity Manager 2010 R2 Setup Wizard.

  4. On the Welcome page, click Next.

    Install FIM Synch Service

  5. On the End User License Agreement page, read the License Agreement, select I accept the terms in the License Agreement, and then click Next.

  6. On the Custom Setup page, click Next.

  7. On the Configure Forefront Identity Manager Synchronization Service page, under SQL Server is located on, click the radio button next to A remote machine, type the following text for the Computer name, and then click Next:
    APP1

    Sync Install 2

  8. Next to Service account enter FIMSynchService, next to Password enter Pass1word$, and next to Service Account Domain or local computer name enter CORP. Click Next.

    Sync Install 3

  9. Leave the default groups, and click Next.

    Sync Install 4

  10. Select Enable firewall rules for inbound RPC communications, and click Next.

    Sync Install 5

  11. Click Install.

  12. This will bring up a pop-up box that says the setup will now create a backup key. Click OK. In the File name box, type the following text, and then click Save:
    BackupKey
    This will continue the installation.

    Sync Install 6

  13. Once the installation completes, click Finish. This will bring up a pop-up box that says you must log off and log on to your system again for the security group membership changes to take effect. Click Yes. This will log you off FIM1.

  14. Log on to FIM1 as CORP\Administrator.

Install the FIM Portal on FIM1

Next, you need to install the FIM Portal on FIM1.

To install the FIM Portal on FIM1

  1. Navigate to the directory that contains the binaries for Forefront Identity Manager 2010 R2 and double-click FIMSplash.htm. This will bring up the Forefront Identity Manager 2010 R2 splash screen.

  2. On the splash screen, click Install Service and Portal. You will see a pop-up that says Do you want to run or save this file? Click Run. This will take a minute. Then you will see another pop-up asking Do you want to run this software? Click Run. This will start the Forefront Identity Manager 2010 Service and Portal Setup Wizard.

  3. On the Welcome page, click Next.

  4. On the End User License Agreement page, read the License Agreement, select I accept the terms in the License Agreement, and then click Next.

  5. On the FIM Customer Experience Improvement Program page, select I don’t want to join the program at this time, and then click Next.

  6. On the Custom Setup page, click the drop-down list next to FIM Password Registration, select Entire feature will be unavailable.

  7. On the Custom Setup page, click the drop-down list next to FIM Password Reset Portal, select Entire feature will be unavailable.

  8. On the Custom Setup page, click the drop-down list next to FIM Reporting, select Entire feature will be installed on local hard drive, and then click Next.

    Custom Setup

  9. On the Configure Common Services page, next to Database Server, remove the FIM1 value, and then type the following text:
    APP1
    Leave the remaining defaults, and click Next.

    Configure Common Services

  10. Next to Mail Server, type the following text, EX1.corp.contoso.com, clear the SSL box and check the Mail Server is Exchange 2007 or Exchange Server 2010 and Enable polling for Exchange Server 2007 or Exchange Server 2010 boxes, then click Next:

    FIM R2 Mail Server Location

  11. In the box next to Management Server, enter APP2 and click Next. This might take a moment.

    Important

    Be sure to specify the SCSM Management Server and not the Data Warehouse Server. Be sure to put APP2.

    Management Server

  12. On the Configure service certificate page, select Generate a self-signed certificate.

    securitySecurity Note
    Be aware that FIM does not use this certificate for client authentication. This certificate is only used internally by the FIM Synchronization Service.

    Generate certificate

  13. On the Configure FIM Service account page, next to Service Account Name, type the following text:
    FIMService.

  14. On the Configure FIM Service account page, next to Service Account Password, type the following text:
    Pass1word$

  15. On the Configure FIM Service account page, next to Service Account Domain, type the following text:
    CORP

  16. On the Configure FIM Service account page, next to Service Email Account, type the following text:
    FIMService@corp.contoso.com

    Configure FIM Service Account

  17. Click Next.

  18. On the Configure the Forefront Identity Manager Service and Portal synchronization page, next to Synchronization Server , type the following text:
    FIM1

  19. On the Configure the Forefront Identity Manager Service and Portal synchronization page, next to FIM Management Agent Account*, type the following text:
    CORP\FIMMA

    Configure Synch Server

  20. Click Next.

  21. On the Configure connection to the FIM Service page, next to FIM Service Server address, type the following text:
    FIM1

    Warning

    Do not specify localhost for FIM Service Server address. This will result in an error.

    Connection to FIM Service

  22. Click Next.

  23. On the Configure connection to the FIM Service page, leave the default of https://localhost and click next.

    Sharepoint site collection

  24. On the Configure optional portal homepage configuration page, in the box next to Registration Portal URL: enter https://passwordregistration.corp.contoso.com and then click Next.

    Registration Portal URL

  25. On the Configure security changes configured by setup page, select Open ports 5725 and 5726 in firewall, select Grant authenticated users access to the FIM Portal site, and then click Next.

    Configure Firewall

  26. On the Enter optional password portal configuration page, place a check in FIM Password Registration Portal will be installed on another host and under Enter the existing account under which the password registration application pool will run in IIS, next to Account Name, type the following text:
    CORP\FIMPassword.

  27. On the Enter optional password portal configuration page, place a check in FIM Password Reset Portal will be installed on another host and under Enter the existing account under which the application pool will run in IIS, next to Account Name, type the following text:
    CORP\FIMPassword.

    FIM Password Portal Information

  28. Click Next.

  29. Click Install. This will begin the installation.

  30. Once the installation completes, click Finish.

  31. Close the Splash screen.

  32. Restart FIM1.

Install Password Registration and the Password Reset Portal on FIM2

Next we will install the Password Registration and the Password Reset Portal on FIM2.

To install Password Registration and Password Reset Portal on FIM2

  1. Log on to FIM2 as CORP\Administrator.

  2. Navigate to the directory that contains the binaries for Forefront Identity Manager 2010 R2 and double-click FIMSplash.htm. This will bring up the Forefront Identity Manager 2010 R2 splash screen.

  3. On the splash screen, click Install Service and Portal. You will see a pop-up that says Do you want to run or save this file? Click Run. This will take a minute. Then you will see another pop-up asking Do you want to run this software? Click Run. This will start the Forefront Identity Manager 2010 Service and Portal Setup Wizard.

  4. On the Welcome page, click Next.

  5. On the End User License Agreement page, read the License Agreement, select I accept the terms in the License Agreement, and then click Next.

  6. On the FIM Customer Experience Improvement Program page, select I don’t want to join the program at this time, and then click Next.

  7. On the Custom Setup page, click the drop-down list next to FIM Service, select Entire feature will be unavailable.

  8. On the Custom Setup page, click the drop-down list next to FIM Portal, select Entire feature will be unavailable.

  9. Click Next.

    Custom Setup

  10. On the Configure FIM Password Registration Portal page, next to Account Name, type the following text:
    CORP\FIMPassword.

  11. On the Configure FIM Password Registration Portal page, next to Password, type the following text:
    Pass1word$.

  12. On the Configure FIM Password Registration Portal page, next to Host Name, type the following text:
    passwordregistration.corp.contoso.com.

  13. On the Configure FIM Password Registration Portal page, next to Port, type the following text:
    80. Place a check in the box next to Open port in firewall.

    Config PW Registration Portal

  14. Click Next.

    Important

    This will bring up a box that says Your deployment is not secure in its current configuration. This is because we have not setup SSL yet. This will be done in the steps that follow. Click Next.

  15. On the Configure FIM Password Registration Portal page, next to FIM Server Service Address, type the following text:
    FIM1.

    Config PW Registration Portal 2

  16. Click Next.

  17. On the Configure FIM Password Reset Portal page, next to Account Name, type the following text:
    CORP\FIMPassword.

  18. On the Configure FIM Password Reset Portal page, next to Password, type the following text:
    Pass1word$.

  19. On the Configure FIM Password Reset Portal page, next to Host Name, type the following text:
    passwordreset.corp.contoso.com.

  20. On the Configure FIM Password Reset Portal page, next to Port, type the following text:
    80. Place a check in the box next to Open port in firewall.

    Config PW Reset Portal

  21. Click Next.

    Important

    This will bring up a box that says Your deployment is not secure in its current configuration. This is because we have not setup SSL yet. This will be done in the steps that follow. Click Next.

  22. On the Configure FIM Password Reset Portal page, next to FIM Server Service Address, type the following text:
    FIM1.

    Config PW Reset Portal 2

  23. Click Next.

  24. Click Install. This will begin the installation.

  25. Once the installation completes, click Finish.

  26. Close the Splash screen.