We have installed version 7.4 on a new server connected to a new database. When launching the ARS console, we get the following message.
Cannot retrieve the Two-Factor Authentication configuration information from the Active Roles Administration Service…
Hi,
I am currently struggling to figure out a strategy to ensure that user attributes are unique.
I did some reading and found an article that recommended what attributes should be unique: https://blogs.technet.microsoft.com/389thoughts/2017/02/03/uniqueness…
Does anyone have any experience with running ARS in a distributed architecture? I'm currently testing a viable solution and have a few questions.
1) I have run into an issue with syncing the History database. Our lab history database is 50gb and…
Hello All,
I am relatively new to AR, and I have to create a worklow for new users. If the User is created, a multi admin workflow should start. Initialision of the workflow is clear for me. Now the challenge, where I did not know how to achieve this…
I've done my share of web customizations to feed the hungry monster help desk … reducing the number of clicks required to assist customers.
This one - I don't have a warm fuzzy about. Unless there is some hidden control I'm unaware of.…
Hello All,
I have to implement a solution, where I have to use Workflows with partly User Input and also getting Workflow information in Scripting (prefered PowerShell). I searched these forum for Knowledge about it, but I could not find much. And the…
Is there any way to add an Azure tenant to Active Roles when the admin user has MFA enabled?
Hi,
I am trying to access Quest AD server via Powershell PSSession which is running in windows 7, powershell 5.1. But the Quest AD server running in Windows 12, Powershell 3.1.
I am facing the below error when add-snapin from PSSession
"Add-PSSnapin …
Hello!
While I realise that the bona fide Quick Connect SDK was "delisted" (the CHM help file removed) way back in QC v5.4, the SDK libraries are still present, available, and are updated (e.g., the class library is called ActiveRoles.SyncService…
Active Roles 7.3.3 is now live on the Support Portal!
Software and documentation are available at the following location(s):
https://support.oneidentity.com/active-roles/7.3.3/download-new-releases
https://support.oneidentity.com/active-roles/7.3.3/technical…
Hi,
I want to be able to add a secondary email adresse @domaine.mail.onmicrosoft.com to all my new user account so that I can migrate them to my Office365 during the night.
I have a policy that creates new exchange account. I tried to add a new secondary…
Having followed the instructions and prerequisites, we cannot get the websites on our fresh install of ARS 7.3.1 to work. We have matched our install to an existing install that works. We have the correct .NET Framework and copied all of the settings…
We are planing to install a new version of ARS version 7.3.1 to run along side current version 6.9. The installation will be performed using new servers.
Current infrastructure:
2 ARS servers and 2 Web interface servers with database pointing to SQL cluster…
Hello!
So, pardon me if this has been asked in a previous post, but how does one go about ensuring high availability for a web interface? I currently have one web interface and one web database, and my business is soon expecting a huge number of users…
Hello,
So I can see in the Sync Engine workflows (Old QC) we have the ability to deprovision a user. we can deprovision if the user doesn't exist in the CSV file.. or trigger a Deprovision based on Field if we are pulling from SQL.
However, I don…
Hi all,
we are currently planning to roll-out SelfServicePortal for group management purposes.
However, we've got some requirements when it comes to objects that can be added to groups. Types are split by OU.
We have distribution lists, which can…
Hi all,
is there a way to properly set a policy for a given value being digits?
I successfully set the policy to validate an attribute saying "must be: {4 required [0-9} which is working fine. However, I also need to check that there is no 0 in the…
Hi all,
we are about to roll-out self-service for group management.
For that reason, I need to bulk-set primary and secondary owners.
While trying to get started I am experiencing issues in settings neccessary attributes.
I can set ManagedBy flag and…
Hello all,
Recently, we have implemented Workflows into ARS and I am trying to make sure that I can still automate certain processes. Currently, I am working with a security group that has a workflow implemented which sends an email to an approver which…
Hi,
I have a workflow that finds inactive user accounts, this has two filters to exclude accounts that have "NODEL" in the comment filed, OR the account password is set to never expire, but the password expiration filter does not seem to be…
Has anyone been able to create a custom command that can be performed against multiple selected objects? I created a custom command that would set the edsvaProtectFromDeletion attribute to 'TRUE', but this command only appears when a single objects is…
We are looking for a solution to the following. We have employees that are assigned managers in ARS. We have found that if the Manager account deprovisions, the user account is not updated to reflect that the Manager account has been deprovisioned. What…
I need to implement a workflow/policy script that triggers onPostModify of the mail attribute, both for new users and changes to the mail attribute of existing users, and writes the user's employeeID and mail attribute to a CSV file and uploads it to…
Hello ,
To test a scenario out where I have a single Managed unit with all users. Only want admins from same department to see and modify users from same department.
Enabled AD claim rules on domain and ARS server, setspns as described in the admin guide…
We have a policy that will delete deprovisioned user 31 days after. Can I change the edsvaDeprovisionDeletionDate by setting it to tomorrow, and force and earlier deletion that way? I am just doing a test right now, as we want to be sure that the internal…
