Test Lab Guide: Demonstrating the FIM 2010 R2 SSPR SMSProvider with the OTP SMS Gate

  • Article

In This Guide

This guide contains instructions for demonstrating Forefront Identity Manager 2010 R2 Self-Service Password Reset (SSPR) using the default Question and Answer Gate and the One-Time Password SMS Gate. The One-Time Password SMS Gate allows a one-time password SMS message to be sent to a user via a SMS provider of your choice.

A full copy of this document is available for offline viewing here.

Important

The following instructions are for demonstrating the Forefront Identity Manager 2010 R2 SSPR test lab using a scaled-out deployment. That is, the FIM Portal and the FIM database will not be residing on the same server. The FIM Password Reset and Password Registration portals will not be on the same server as the FIM Service and the FIM Synchronization Service. Individual computers are needed to separate the services provided on the network and to clearly show the desired functionality. This configuration is neither designed to reflect best practices nor does it reflect a desired or recommended configuration for a production network. The configuration, including IP addresses and all other configuration parameters, is designed only to work on a separate test lab network. Attempting to adapt this Forefront Identity Manager 2010 R2 test lab configuration to a pilot or production deployment can result in configuration or functionality issues. To ensure proper configuration and operation for your pilot or production Forefront Identity Manager 2010 R2 deployment, use the additional documentation provide with the Forefront Identity Manager 2010 R2.

Test Lab Overview

In this test lab, one additional Windows 7 computer is named CLIENT2 is needed.

The Forefront Identity Manager test lab uses the following subnet:

  • The intranet established by the Base Configuration Test Lab Guide, referred to as the Corpnet subnet (10.0.0.0/24).

Computers on each subnet connect using a hub or switch. See the following figure.

SSPR SMS Architecture

This test lab will guide you through the Forefront Identity Manager 2010 R2 SSPR process. The purpose of this test lab is to allow for the creation of a basic test lab environment that consists of Forefront Identity Manager 2010 R2 SSPR using the default Question and Answer Gate and the One-Time Password SMS Gate. This test lab guide can be used as a building block for additional test lab guides that demonstrate increased functionality or additional features of Forefront Identity Manager 2010 R2.

Hardware and Software Requirements

A valid SMS (Short Message Service) provider - You need to sign up with an SMS Service Provider in order to use the SmsServiceProvider.dll. The SMS Provider used in this example, is for a fictitious mobile message content service provider. The idea is to illustrate how the code might look with an actual SMS provider.

Should you have a valid SMS provider and wish to substitute your own code, you will also need to ensure that DC1 can properly route the SMS message. This can be accomplished by adding an additional network card to DC1 and making it multi-homed. This additional adapter can be used for routing of the SMS messages to the internet. You need to ensure that you have properly setup DNS and that you are able to contact your SMS provider.

Steps for Configuring the Forefront Identity Manager 2010 R2 Test Lab

There are nine steps to follow when setting up the Forefront Identity Manager 2010 R2 test lab based on the Forefront Identity Manager 2010 R2 Test Lab Guide.

This guide provides steps for configuring the computers of the Forefront Identity Manager 2010 R2 SSPR test lab using the default Q&A gate and the One-Time Password SMS Gate. The following sections provide details about how to perform these tasks.