Microsoft Identity Manager (MIM) Service Pack 3 Update

Microsoft has officially released Microsoft Identity Manager (MIM) Service Pack 3, bringing important updates for existing MIM users. This article explains what’s new in SP3 and outlines your options for upgrading or moving forward.

Background

The long-awaited Microsoft Identity Manager (MIM) Service Pack 3 has been released this week. The background to MIM Service Pack 3 involves its underlying server products:

  • Windows Server
  • SharePoint Server
  • SQL Server

As with most software, each of these platforms is available in new versions, and the older versions are reaching the end of their support.

With the release of Service Pack 3 (SP3), support for Microsoft Identity Manager (MIM) 2016 SP2 effectively ends in May 2027. Although the overall MIM 2016 platform receives extended support until January 9, 2029, users must upgrade from SP2 to SP3 within 12 months of the SP3 release to maintain support.

The products in the table above which have a specific date are supported under the Fixed Lifecycle Policy, where an end of support is announced along with the release of the product itself (although this may be extended through the release of service packs, for example).

The Modern Lifecycle Policy does not specify a distinct end date for support: Microsoft commits to providing patches with a 30-day advance notice, and in addition, will give a year’s advance notice if a product will no longer be updated.

So these underlying products can be maintained in support, MIM Service Pack 3 supports the newest versions (but not currently Windows Server 2025).

SharePoint Server

The earliest end-of-support date is that of SharePoint Server 2019. Of all the platform components underlying MIM, SharePoint is the one delivering the least direct functionality – it simply hosts the MIM Portal solution. The data for the Portal, as well as the Workflow functionality, is provided by the underlying MIM Service and Windows Server components, e.g. the Windows Workflow Foundation.

Some organizations only use SharePoint on-premises to support MIM – and there is (arguably) a disproportionate amount of support required for the value that SharePoint delivers.

OCG has a replacement portal solution for MIM that does not need SharePoint. If the opportunity to eliminate the requirement to support SharePoint Server on-premises, while gaining a quick, modern, and flexible alternative to the MIM Portal, seems appealing, contact your local Oxford Computer Group office for advice.

CONTACT YOUR LOCAL OCG OFFICE ABOUT A SHAREPOINT-FREE SOLUTION

Where SharePoint remains part of your MIM solution, it’s essential to plan for a move to SharePoint Subscription Edition ahead of the upcoming end-of-support deadline.

Additional Functionality in MIM Service Pack 3

Along with supporting the new platform component versions, MIM SP3 introduces two new capabilities.

Support for Azure SQL underlying the MIM Synchronization Service

For customers who use only the synchronization component of MIM, it may be of interest to use Azure SQL as the underlying database service. This is particularly relevant for those customers who run MIM Sync in an Azure VM: using Azure SQL delivers a highly available SQL service without the need for complex SQL Server implementations in additional Azure VMs. In this context, Microsoft supports the use of both system-assigned and user-assigned managed identities for credential-free authentication.

Support for ADFS as an Authentication provider for MIM Portal

With MIM SP3, it is now possible to configure claims-based authentication for the MIM Portal, where previously only Kerberos-based authentication was supported. This enables more flexible authentication architectures, including Extranet scenarios where a direct connection to an on-premises Active Directory Domain Controller would not be practical.

Want to implement MIM Service Pack 3?

Oxford Computer Group are ready to help any organization running MIM update to Service Pack 3, including:

  • Pre-upgrade health check to identify and mitigate possible issues in advance
  • Review to identify possible benefits from the implementation of a portal replacement solution, e.g. allowing the retirement of on-premises SharePoint
  • Upgrade support
  • Follow-up support to maintain MIM in peak health and performance

CONTACT YOUR LOCAL OCG OFFICE FOR HELP UPGRADING TO MIM SP3

Planning for a future beyond MIM?

Oxford Computer Group can assist you in assessing the full range of options — from components within Microsoft’s Identity stack to trusted third-party solutions — and identifying the best fit for your organization.

CONTACT YOUR LOCAL OCG OFFICE TO DISCUSS A FUTURE BEYOND MIM