SharePoint: Profile Sync with MIM – Managers and Group memberships are not updated
Update 6/9/19: It was found that the name of the membership processing timer job changed between SP 2016 and SP 2019, so the PowerShell to find it was updated. I want to thank my colleague Dhiren for doing most of the leg work to figure this one out. Spoiler alert: Turns out it has
SharePoint: Profile Synchronization Status stuck at Stopping
Symptoms: Consider the following scenario: You are using SharePoint 2010 or 2013 and using the “Use SharePoint Profile Synchronization” (FIM Sync) option to import user profiles. In Central Administration | Manage Service Applications | User Profile Service Application, the “Profile Synchronization Status” shows as “Stopping” although the “<UPAName>-User Profile Incremental Synchronization” timer job is not
SharePoint: Cross-forest group memberships not reflected by Profile Import
Consider the following scenario: You have an Active Directory Forest trust between your local forest and a remote forest. You create a “domain local” type security group in Active Directory and add users from both the local forest and the remote trusted forest as members. You configure SharePoint Profile Synchronization to use Active Directory Import
SharePoint: FIM / MIM fails on Import with stopped-extension-dll-exception or read-error
Consider the following scenario: You have one of the following User Profile Synchronization configurations for SharePoint: SharePoint 2010, which utilizes Forefront Identity Manager (FIM) for User Profile Synchronization. SharePoint 2013, using the “Use SharePoint Profile Synchronization” option, which also uses FIM. SharePoint 2016 or 2019, using the “Enable External Identity Manager” option, which (typically)
SharePoint: Quick Troubleshooting TIP: Check SAML token-signing Certificate
When the SAML Identity Provider (ADFS, SiteMinder, Ping Federate, OKTA, etc) token-signing certificate is renewed or rolled over, SharePoint can be in trouble. This is because there’s currently no functionality in SharePoint to automatically update the certificate within the Trusted Identity Token Issuer on the SharePoint side when it’s been updated on the Identity
SharePoint: Unique list permissions: The server was unable to save the form at this time
Consider the following scenario: You break permission inheritance on a list and give some users permission to only that list. The users can browse to the list, but when they try to add an item to the list or edit an existing item, the following error occurs: The server was unable to save
SharePoint – Intermittent error: “Sorry, this site hasn’t been shared with you”
Consider the following scenario: Randomly, when a user browses to a resource (site, list, etc) that they are supposed to have access to, they receive “Sorry, this site hasn’t been shared with you” (access denied). The users continue to get “Access Denied” for a period of time, and then it starts working again after making