Initialization parameters

Initialization parameters are used mainly for configuring the communication against FIM but there's also a parameter for turning tracing to the event log on and off. None of the parameters are mandatory but leaving them all out will make the attribute store to try to connect to the FIM service on the local machine as the ADFS Service Account and that might not be what you want to do.

Note: Parameter Names are case sensitive

Name Description Default value Required Example
Endpoint The path to the FIM Web Service http://localhost:5725 N/A http://fimserver:5725
FIMServiceSPN Allows the Attribute Store to connect to the FIM Web Service by it's SPN. You typically use this if you have problems authenticating with FIM WS N/A No FIMService/FIMServer
UserName The username you wish to connect to FIM WS with The ADFS 2.0 Service account in that he own the calling thread No Administrator
Password The password for your user N/A No P@ssw0rd
UserDomain The domain your user is a member of N/A No CONTOSO
TracingEnabled If True the attibute store will trace information to the event log False N/A True or False

The parameters might seem a little bit odd especially the UserName, UserDomain and Password but the attribute store is built so that the ADFS 2.0 service account will normally be the caller of the FIM WS but that requires that the account is avaialble in FIM with it's SID and this is hardly the best way to solve this. A better way is that you supply all three parameters: UserName, Password and UserDomain, if all these are set these credentials will be used instead but this user will as well have to be available in FIM with it's SID. As you can see above there's actually no required parameters but then you'll have to live with the default values and the ADFS 2.0 service account.

This is how your ADFS 2.0 attribute store configuration could look like when you are done...
FIMAttributeStoreConfig.png

If you're instead ae configuring the test client it's config file will look like this with the same set of parameter values:
<?xml version="1.0"?>
<configuration>
<configSections>
  <sectionGroup 
      name="userSettings" 
      type="System.Configuration.UserSettingsGroup, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" >
        <section 
      name="Cortego.ADFS.FIMAttributeStore.Tests.Properties.Settings" 
      type="System.Configuration.ClientSettingsSection, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089"
    allowExeDefinition="MachineToLocalUser" requirePermission="false" />
        <section name="ADFS2FIM.Tests.Properties.Settings" 
    type="System.Configuration.ClientSettingsSection, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089"
    allowExeDefinition="MachineToLocalUser" requirePermission="false" />
    </sectionGroup>
</configSections>
<startup>
  <supportedRuntime version="v2.0.50727"/></startup>

    <userSettings>
        <Cortego.ADFS.FIMAttributeStore.Tests.Properties.Settings>
            <setting name="TracingEnabled" serializeAs="String">
                <value>True</value>
            </setting>
            <setting name="UserName" serializeAs="String">
                <value>Administrator</value>
            </setting>
            <setting name="UserDomain" serializeAs="String">
                <value>CONTOSO</value>
            </setting>
            <setting name="Password" serializeAs="String">
                <value>P@ssw0rd</value>
            </setting>
            <setting name="FIMServiceSPN" serializeAs="String">
                <value>FIMService/FIMServer</value>
            </setting>
            <setting name="Endpoint" serializeAs="String">
                <value>http://localhost:5725</value>
            </setting>
        </Cortego.ADFS.FIMAttributeStore.Tests.Properties.Settings>
    </userSettings>

</configuration>

Last edited Dec 5, 2010 at 11:54 AM by HenrikNilsson, version 4

Comments

No comments yet.