Create a gist now

Instantly share code, notes, and snippets.

Nightly FIM-MIM Sync and Service Config Backup
# Username for connection to MIM Sync Server via Function Application Settings
$username = $env:MIMSyncCredUser
# Password for connection to MIM Sync Server via Function Application Settings
$pw = $env:MIMSyncCredPassword
# Credentials password (encrypted)
$keypath = 'D:\home\site\wwwroot\MyDevMIMBackup\keys\MIMSync.key'
$password = $pw | ConvertTo-SecureString -key (Get-Content $keypath)
# Create PS Creds
$credentials = New-Object System.Management.Automation.PSCredential $Username,$password
# Connect to the FIM Sync Server
# Will require an inbound rule for TCP 5786 on your MIM Sync Server Firewall and in you Resource Group Network Security Group Config
# Using Self Signed Cert so skip CA Checks
$options = New-PsSessionOption –SkipCACheck -SkipCNCheck
# Setup scriptblock
$scriptblock = {
# Import LithnetMIISAutomation for MIM Sync Server Config Exports
Import-Module lithnetmiisautomation;
# Find the MA's
$managementagents = Get-ManagementAgent;
$managementagents
# My Root Backup Path
$BackupPath = "C:\Backup";
$foldername = Get-Date -format dd-MM-yyyy-hh-mm;
$outputfilepath = "$BackupPath\$foldername";
# Backup Folder based on date and time
$outputfilepath
# Create Backup Folders
if(!(Test-Path $outputfilepath)){
$BackupFolder = New-Item -Path $outputfilepath -Type Directory ;
# MA Exports
$MAExports = New-Item -Path "$outputfilepath\MAExports" -Type Directory ;
# Extensions Exports
$MAExtensions = New-Item -Path "$outputfilepath\MAExtensions" -Type Directory ;
# SyncExport Exports
$SyncServer = New-Item -Path "$outputfilepath\ServerExport" -Type Directory ;
# Portal Config
$PortalExport = New-Item -Path "$outputfilepath\PortalExport" -Type Directory ;
}
# Export MA's
foreach ($ma in $managementagents.name){
Export-ManagementAgent -File ($MAExports.FullName+"\$ma.xml") -MA $ma ;
}
# Export Sync Server
Export-MetaverseConfiguration -Path $SyncServer.FullName;
# Copy Extensions
$extlocation = get-itemproperty "hklm:\software\microsoft\forefront identity manager\2010\synchronization service" -erroraction stop | select -expand location ;
$extensionsfolder = join-path $extlocation "Synchronization Service" ;
$extensionsfolder = join-path $extensionsfolder "Extensions" ;
Copy-Item "$extensionsfolder\*" $MAExtensions.fullname -recurse -Force ;
# Portal
add-pssnapin FIMAutomation;
$portalConfig = Export-FIMConfig -uri http://localhost:5725/ResourceManagementService -portalConfig ;
$portalConfig | ConvertFrom-FIMResource -file ($PortalExport.FullName+"\PortalConfig.xml");
}
# Connect to MIM Sync Server and execute our backup script from above
$results = Invoke-Command $scriptblock -computer mymimsyncserver.cloudapp.net -useSSL -credential $credentials -SessionOption $options
$results
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment