none
Microsoft Identity Manager 2016 - roadmap for on-premise IDM RRS feed

  • Question

  • Hi,

    I'm consulting to a public sector customer in Australia that is planning a new portal for citizen engagement. The customer has a preference for Microsoft platforms, products, etc. Due to data sensitivity the deployment must be on-premise - at least for the next 12 months.

    For identity management, we've being looking at MIM 2016+AD+ADFS and it seems to fit the customer's need quite well.

    However, there's a Gartner Magic Quadrant article that implies Microsoft is not investing in MIM 2016 (on-premise) and anyone choosing it might be heading up a dead end. This also accords with most of the marketing by the local Microsoft subsidiary which emphasises cloud over all else. My deeper reading seems to contradict this.

    Can anyone refer me to a definitive message about MIM 2016 (on-premise IDM)?


    Leroy

    Sunday, March 26, 2017 1:07 AM

Answers

  • Leroy

    The product team understand the ask we are in the planning of H2 events ight now and fully aware of what communication needs to be had for the IDM on prem. At this point please hold tight . We just released our biggest hotfix yet take a look a the Official support blog https://blogs.technet.microsoft.com/iamsupport/ for the new enhancements to include SQL AoA support. So are we actively investing into the IDM MIM product "YES


    Kind regards, David David Steadman - MIM Engineering Lead

    • Proposed as answer by Nosh Mernacaj Tuesday, March 28, 2017 12:25 PM
    • Marked as answer by Leroy Mason1 Tuesday, March 28, 2017 4:34 PM
    Tuesday, March 28, 2017 12:23 PM
    Moderator

All replies

  • Leroy

    The product team understand the ask we are in the planning of H2 events ight now and fully aware of what communication needs to be had for the IDM on prem. At this point please hold tight . We just released our biggest hotfix yet take a look a the Official support blog https://blogs.technet.microsoft.com/iamsupport/ for the new enhancements to include SQL AoA support. So are we actively investing into the IDM MIM product "YES


    Kind regards, David David Steadman - MIM Engineering Lead

    • Proposed as answer by Nosh Mernacaj Tuesday, March 28, 2017 12:25 PM
    • Marked as answer by Leroy Mason1 Tuesday, March 28, 2017 4:34 PM
    Tuesday, March 28, 2017 12:23 PM
    Moderator
  • I also have concerns about the future for MIM specifically with BHOLD. Early last year the official recommendation was don’t install BHOLD, are there any other recommendations for RBAC with MIM? Azure RBAC doesn’t do what we need yet and access assessments are still limited for attestation. Do you have any ideas or know of any solutions that work for other orgs? We are managing 20k users and can assume the need for 100’s of roles and at least 5 synced identity repositories. Thoughts?
    Sunday, April 8, 2018 7:30 AM
  • Sean,

    BHOLD has been deprecated. We have built custom attestation solutions on top of the MIM portal. I do know that Azure RBAC seems to be getting more and more features. While David refers to investment in MIM, I see it, I don't know that a replacement RBAC solution will be forthcoming. 


    David Lundell, Get your copy of FIM Best Practices Volume 1 http://blog.ilmbestpractices.com/2010/08/book-is-here-fim-best-practices-volume.html

    Friday, April 13, 2018 12:28 AM
  • Thanks for the reply. I was afraid we'd have to go down that route. By chance are you guys making use of the Lithnet MIM REST service? Or did you guys roll your own for getting at MIM service data?
    Sunday, April 29, 2018 8:53 AM
  • What we built did not use the Lithnet MIM REST service -- it was built on top of the MIM Portal using the MIM Service

    David Lundell, Get your copy of FIM Best Practices Volume 1 http://blog.ilmbestpractices.com/2010/08/book-is-here-fim-best-practices-volume.html

    Monday, April 30, 2018 1:22 PM