What are the differences between MIM, FIM and ILM?
MIM 2016, the latest incarnation of Microsoft’s on-premises identity management platform, incorporates the best features of its predecessors, FIM 2010 and ILM, plus additional components.
Going from ILM 2007 to FIM 2010, we got more management agents (“connectors” if you like), but we also got the FIM portal and service, offering a web interface for user and group management, and self-service password reset (SSPR), allowing solutions like white pages and user self-service. The portal has a comprehensive security model, and policy in the portal is set using very accessible UI-based rules. However, the portal also introduced the mixed blessing of synchronization rules that can be created entirely in a UI (where the existing synchronization service manager requires some code). These rules are imported by the synchronization engine where they are interpreted and acted upon. Most seasoned practitioners see these as cumbersome, inflexible, less capable, and less performant.
The primary advantage of FIM 2010 SP1 over FIM 2010 is significant performance improvements, especially in the connection between the (portal) service and the synchronization service. Going from FIM 2010 to MIM 2016 was a re-brand, with management agents (connectors) brought up to date and SSPR being made compatible with Azure AD MFA. A small but important addition in MIM 2016 SP1 is the ability to directly use Office 365 for email notifications and approvals.
Still using ILM? Here are Five Reasons to upgrade from ILM to MIM now! If you need help with this, let us know. Our consultants are experts in this.
Need to learn MIM? No problem! We run the world’s best MIM training courses and we’ll take you from foundation level all the way to expert. Learn live in the classroom or live via Skype, or online, self-paced. Check out our courses: