I think it'd be useful to be able to manually trigger an operation list while keeping the scheduler disabled. When making changes to an IAM solution specifically, it is usually desirable to manually run operations to ensure that everything is functioning before enabling the scheduled tasks. Some clients have a number of powershell scripts etc that are run alongside imports/exports which makes triggering the process in FIM directly a hassle.

This would allow consultants to run targeted operation lists on certain systems, without triggering exports to systems that a scheduled delta cycle may. It can also be difficult to disable the deltas...I had a situation just now where upon starting the scheduler the next delta cycle was set to start in 1 second, not giving me time to disable the operaton.

Installation completed but service won't start. Following two messages in Event Log:

Log Name: Application
Source: .NET Runtime
Date: 18/10/2011 9:08:38 AM
Event ID: 1026
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: PRDAPP101VS.act.gov.au
Description:
Application: Unify.Service.Event.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: Unify.Framework.WinEventLogWriterException
Stack:
at Unify.Framework.WinEventLogWriterBase.WriteLogEntryBase(Unify.Framework.ILogEntry)
at Unify.Framework.LogWriterBase.WriteLogEntry(Unify.Framework.ILogEntry)
at Unify.Product.EventBroker.EventBrokerService.LogServerError(Unify.Framework.ILogEntry)
at Unify.Product.EventBroker.EventBrokerService.Dispose(Boolean)
at System.ComponentModel.Component.Dispose()
at System.ServiceProcess.ServiceBase.Run(System.ServiceProcess.ServiceBase[])
at Unify.Product.EventBroker.EventServiceBootStrap.Main()

Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name=".NET Runtime" />
<EventID Qualifiers="0">1026</EventID>
<Level>2</Level>
<Task>0</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2011-10-17T22:08:38.000000000Z" />
<EventRecordID>6256</EventRecordID>
<Channel>Application</Channel>
<Computer>PRDAPP101VS.act.gov.au</Computer>
<Security />
</System>
<EventData>
<Data>Application: Unify.Service.Event.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: Unify.Framework.WinEventLogWriterException
Stack:
at Unify.Framework.WinEventLogWriterBase.WriteLogEntryBase(Unify.Framework.ILogEntry)
at Unify.Framework.LogWriterBase.WriteLogEntry(Unify.Framework.ILogEntry)
at Unify.Product.EventBroker.EventBrokerService.LogServerError(Unify.Framework.ILogEntry)
at Unify.Product.EventBroker.EventBrokerService.Dispose(Boolean)
at System.ComponentModel.Component.Dispose()
at System.ServiceProcess.ServiceBase.Run(System.ServiceProcess.ServiceBase[])
at Unify.Product.EventBroker.EventServiceBootStrap.Main()
</Data>
</EventData>
</Event>

Log Name: Application
Source: Application Error
Date: 18/10/2011 9:08:39 AM
Event ID: 1000
Task Category: (100)
Level: Error
Keywords: Classic
User: N/A
Computer: PRDAPP101VS.act.gov.au
Description:
Faulting application name: Unify.Service.Event.exe, version: 3.0.0.4, time stamp: 0x4e0ab726
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e21213c
Exception code: 0xe0434352
Fault offset: 0x000000000000cacd
Faulting process id: 0x1b24
Faulting application start time: 0x01cc8d1940ee9977
Faulting application path: C:\Program Files\UNIFY Solutions\Event Broker\Services\Unify.Service.Event.exe
Faulting module path: C:\Windows\system32\KERNELBASE.dll
Report Id: 90f2cc09-f90c-11e0-a4cb-005056b40047
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Application Error" />
<EventID Qualifiers="0">1000</EventID>
<Level>2</Level>
<Task>100</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2011-10-17T22:08:39.000000000Z" />
<EventRecordID>6257</EventRecordID>
<Channel>Application</Channel>
<Computer>PRDAPP101VS.act.gov.au</Computer>
<Security />
</System>
<EventData>
<Data>Unify.Service.Event.exe</Data>
<Data>3.0.0.4</Data>
<Data>4e0ab726</Data>
<Data>KERNELBASE.dll</Data>
<Data>6.1.7601.17651</Data>
<Data>4e21213c</Data>
<Data>e0434352</Data>
<Data>000000000000cacd</Data>
<Data>1b24</Data>
<Data>01cc8d1940ee9977</Data>
<Data>C:\Program Files\UNIFY Solutions\Event Broker\Services\Unify.Service.Event.exe</Data>
<Data>C:\Windows\system32\KERNELBASE.dll</Data>
<Data>90f2cc09-f90c-11e0-a4cb-005056b40047</Data>
</EventData>
</Event>

I have created ADDS MA with the following configuration:
Name: ADDS MA-AHG
Server: localhost
Username: FIM\Administrator
Password and Confirmpassword: xxxxx
Authentication: Secure

I have also tried Basic authentication.

(Note: The FIM\Administrator use is used to run the Event Broker service)

Both result in error:

5/2/2011 11:30:31 PM Warning
 UNIFY Event Broker Agent Engine The test of Agent ADDS MA-AHG (32c0ad55-b955-42c0-9194-fd73e2752fb7) failed with message:
System.Runtime.InteropServices.COMException (0x80005000): Unknown error (0x80005000)
at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_SchemaEntry()
at Unify.Product.EventBroker.ADAgent.TestConnection()
at Unify.Product.EventBroker.AgentEngine.Notify(ITestAgentConnectionMessage message) 

2011 11:31:30 PM Error
 UNIFY Event Broker Operations Operation c58cb9c6-0c81-4929-bb99-c49180754641 failed in operation list with id 9852408e-0606-44a7-81a2-8766d08e28ce for the following reason. This is retry number 0: System.Runtime.InteropServices.COMException (0x80005000): Unknown error (0x80005000)
at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
at System.DirectoryServices.DirectorySearcher.FindOne()
at Unify.Product.EventBroker.ADChangesPlugIn.GetChanges(DirectorySearcher searcher)
at Unify.Product.EventBroker.ADChangesPlugInBase.Check()
at Unify.Product.EventBroker.StandardOperationListExecutor.RunCheck(ICheckOperationFactoryInformation checkOperation) 

I could not find anything that I am obviously omitted based on the documentation at https://unifysolutions.jira.com/wiki/display/EB300/Active+Directory

Could someone please assist.

The GUIDs in the logging cannot be resolved to an operation by the end user.
Example below.

Operation 30295b4a-61cc-41ef-a910-15a67fe4f7ab failed in operation list with id d780cfe0-10cd-423c-a667-38f747c80391 for the following reason. This is retry number 0: System.Runtime.Remoting.ServerException: Operation for management agent with id 6c3b4c9c-8410-40b1-8b7a-b84ec0105ab3 with name Export failed with result stopped-extension-dll-exception
 at Unify.Product.EventBroker.FIMAgent.ExecuteRunProfile(IStoredValueCollection storedValuesCollection, Guid agentId, Guid managementAgentId, Guid runProfileId)
 at Unify.Product.EventBroker.RunProfilePlugIn.Execute()
 at Unify.Product.EventBroker.OperationListExecutorBase.RunNextOperations(IEnumerator`1 operationEnumerator)

Currently, the log file is the major source for following events and activity (outside of operation list activity). An alert system should be created that notifies the user of important events, such as:

• An operation list failing unexpectedly
• License expiration (including a warning before it expires)
• Agents whose connection details are not configured correctly

It should also provide helpful tips and information, such as:

• Notifying the user when no FIM Agent is configured
• Notifying the user when operation lists will never be fired or have no operations

Alerts should be raised automatically when necessary and removed from the list when they have been resolved - however, the user should also be able to ignore/hide alerts they are not interested in.

I have noticed following exception on incoming and outgoing tasks of admintribunal.internal ADMA management agent. EvB is able to trigger run profiles however following exception may cause operations to be interrupted. Log file attached with the ticket.

{{
20150712,00:00:36,FIM Event Broker,Operation List Executor,Information,Operation list FIM Agent admintribunal.internal ADMA Outgoing finished,Normal
20150712,00:00:38,FIM Event Broker,OpenLDAPTriggerPlugIn.ResultsCallback,Error,"System.DirectoryServices.Protocols:
System.DirectoryServices.Protocols.DirectoryOperationException: The server cannot handle directory requests.
at System.DirectoryServices.Protocols.LdapPartialResultsProcessor.GetPartialResults(LdapPartialAsyncResult asyncResult)
at Unify.Product.EventBroker.OpenLDAPListenPlugIn.ResultsCallback(IAsyncResult result)",Normal
20150712,00:00:38,FIM Event Broker,OpenLDAPTriggerPlugIn.ResultsCallback,Error,"System.DirectoryServices.Protocols:
System.DirectoryServices.Protocols.DirectoryOperationException: The server cannot handle directory requests.
at System.DirectoryServices.Protocols.LdapPartialResultsProcessor.GetPartialResults(LdapPartialAsyncResult asyncResult)}}

Clicking on the http://localhost:8080/About link shows nothing next to the "About:" label. Expect it is supposed to say something about the version being 3.1.*

James Booth just raised this with me over a Lync IM chat, and I have confirmed it with CSODBB as well. Figure it should be brought to your attention this way.

Attaching a screenshot shortly

If an invalid Identity Broker endpoint is entered into an Identity Broker agent, the following error is thrown when the connection is tested:

The test of Agent Test 3 IdB (580d394e-98fe-4657-ba2f-eb4cd41bd348) failed with message:
System.Net.Sockets.SocketException (0x80004005): The requested name is valid, but no data of the requested type was found
at System.Net.Dns.InternalGetHostByName(String hostName, Boolean includeIPv6)
at System.Net.Dns.GetHostAddresses(String hostNameOrAddress)
at System.Net.Sockets.TcpClient.Connect(String hostname, Int32 port)
at Unify.Product.EventBroker.IdentityBrokerAgent.TestConnection()
at Unify.Product.EventBroker.AgentEngine.Notify(ITestAgentConnectionMessage message)

The error message could be made clearer so as to hint that it is likely the endpoint address which is wrong or uncontactable.

We are currently experiencing some severe memory issues in the Test 1 environment in IE 8. It seems to be exhibited by the Operations screen. I had 3 operations enabled amongst around 30 disabled operation lists. Internet Explorer is sitting at 1.7GB and climbing. The Event Broker service, however, is at normal memory usage (see screenshots).

I have had this screen open in Chrome overnight in the past with a number of operation lists and do not recall seeing this behaviour, although this would be something to investigate also.

In a FIM 2010 sync configuration we now have contacts, users and groups under management, with multiple AD MAs. One configuration option I am considering is consolidating all AD run profiles in a single EvB operation, considering a change to one object type will necessitate a delta import for each of the 3 AD MAs we have in place (same domain - different purposes).

The LDAP query I am trying is the following:

(|(&(objectClass=group)(groupType=-2147483644))(&(|(objectClass=user)(objectClass=contact))(objectCategory=person)))

i.e. give me changes in any security group, contact or user.

The initial query understandably took some time to execute (since I have 59664 objects matching this query) but seemed to work OK. Can I expect that this query will be effective when subsequently run every 10-15 seconds, or is there another approach that's preferable?

The reason I ask is that a user account deletion occurred which didn't trigger an import, so I decided to reconfigure this and give it a more specific query (has anyone else had trouble with deletes not being detected?).

No investigation required here - just a short response on/direction to best practice advice really. I am going to revisit CSODBB-172 today as well ... still to settle on the optimal EvB configuration here, so I will be trying a few different ideas but am keen to understand the constraints I am working with.