The future of MIM - as we see it

The special role of MIM

Microsoft Identity Manager (MIM), like its predecessors, has proven to be inexpensive, flexible and robust and has therefore been successfully deployed in many different environments. Many of its functions can be easily migrated to the cloud (to Azure AD), but there are some functions that cannot be covered by Azure AD and that MIM supports very well. This should come as no surprise as Azure AD is not an alternative – it is not trying to solve exactly the same problems, but rather a set of problems that overlap.

MIM-Support

MIM currently falls under the ‘Fixed and Modern Lifecycle Policy’. MIM therefore has the same Modern Lifecycle Policy for support as Azure AD – however, this is only available for Azure AD Premium customers. With the Modern Lifecycle Policy, there is no end date for MIM support, but support can be terminated with a notice period of 12 months. After that, various paid support options are available – from Microsoft or partners such as the Oxford Computer Group (OCG) – and in any case, your MIM solution will not suddenly stop working.

In the meantime, Microsoft continues to release features in its cloud offerings that can replace MIM functionality (even if it is not yet a complete replacement). In addition, various Microsoft partners, such as the OCG, are working on complex solutions to extend MIM with additional functions, support the migration of MIM or even replace MIM completely.

MIM alternatives

You have the following options until 2026:

• A complete replacement of MIM with Azure AD functionalities
• Replace most MIM functions with Microsoft cloud functions and replace some remaining functions by selecting and implementing a tool (probably from a Microsoft-friendly provider).
• Retention of MIM, as the required level of support can be provided, e.g. via OCG support
• Migrate to another provider. The risks of switching to another IAM provider are discussed in detail in the original article (see here)

We would like to introduce you to a product that completely replaces the functionalities of the MIM portal, in detail

IDABUS

Oxford Computer Group Germany (OCG DE) has developed some excellent enhancements to the MIM Portal over the years, including a better interface (data service), role management and reporting. IDABUS, a subsidiary of OCG DE, is a cloud-based solution that can do everything the MIM Portal can do and much more (except for things that are obviously better done by Azure AD, like SSPR).

IDABUS is fully Azure-based (no local servers required) and uses a subscription model (an on-premises version is planned for high-security environments or customers without a cloud connection). The range of functions corresponds to that of the MIM portal, plus:

• Role-based access control (RBAC)
• Reporting
• Very fast resource history, with recovery options
• Event diagram that displays all data events related to any object in the system – a powerful tool for troubleshooting and auditing
• Preview/simulation/cancellation/correction/continuation functions for workflows
• Workflows with complex scenarios (demanding approval processes)
• Time-controlled workflows
• Connection to any Rest API
• Extended XPATH language with visual builder
• Expandable schema (users, groups, roles, cost centres, organisational structures and many more)
• Configuration changes without downtime
• MIM migration tool available (with security checks)

Short reference

*The IDABUS development team is working with high priority on the development of its own synchronisation engine.

**Until the completion of our own synchronisation engine, we are using the MIM synchronisation engine. Therefore, both legacy provisioning and legacy HR import can be realised via an ECMA2 host.

***The MIM synchronisation engine can also be used to implement multiple information sources.