How To Get the MIM Synchronization Service Groups

When you install the Microsoft Identity Manager (MIM) Synchronization Service, you have to provide five security groups for privileged access. Once the installation has been completed there isn’t a simple way to find out what groups were configured. This can be an issue if you have inherited an installation or there is no documentation available for reference.

One way to find out what groups were configured is to run the MIM Synchronization Service installer and choose the Configure option. You’ll need to know the password for the service account to do this. Another way to get this information is to query the MIM Synchronization Service database.

The script included in this article will provide output similar to what’s shown below.

To run this script, run the following command:
.\GetMIMSyncGroups.ps1 -Server "&ltMIMSQLServerName&gt" -Database "FIMSynchronizationService"

You can download the script here. Don’t forget to unblock the file before you try to run it.

Adam Zucker

Adam Zucker specializes in enterprise mobility and identity management. He works with customers to develop strategic and long-term solutions, planning and implementing projects using Microsoft IAM and enterprise mobility tools. Adam’s well-rounded skill set allows him to recommend solutions that meet both big picture and day-to-day needs for businesses.

WHAT WE DO

Network Time Protocol Configurations: A Deeper Dive

Tony LaGrassa January 19, 2023

In my previous blog post we reviewed why time synchronization is important, as well as proper time synchronization configuration of domain controllers (DCs) holding the

Active Directory Forest Recovery: Plan to Eliminate Downtime

Brian Britt November 8, 2022

Active Directory (AD) is still the predominant identity and management platform for tens of thousands of organizations worldwide. Larger organizations with hundreds to even thousands

How to Build a Tier 0 Windows Admin Center Instance

Thomas Garrity October 19, 2022

Are you tired of seeing the Windows Admin Center (WAC) prompt from Microsoft Windows Server Manager (as shown in Figure 1) and not knowing what

How to Implement Microsoft Azure Active Directory Password Protection for a More Secure Environment

Brian Britt September 28, 2022

Passwords have long been the de facto authentication mechanism for identities. Length and complexity plagued us as we struggled to produce an acceptable password that

How to Use the Microsoft Azure Portal to Disable Basic Authentication

Tony Brzoskowski September 6, 2022

Microsoft is disabling Basic authentication in an effort to improve data security in Exchange Online. Starting October 1, 2022, Microsoft will begin turning off Exchange

How to Use Staged Rollout to Migrate to Azure Active Directory Single Sign-On

James Babb August 31, 2022

Are you ready to make the move to Azure Active Directory (AD) single sign-on (SSO)? Do you want to avoid the complications of federated authentication

How to Connect to Microsoft Exchange Online PowerShell with Certificate Authentication in Azure Functions

David Conners August 25, 2022

In a previous blog series, I discussed how to use certificate authentication for PowerShell scripts running in a standard Windows environment. (See “Authentication Options for

Get Started With LDAP Security

Thomas Garrity August 10, 2022

You may recall that in March 2020 Microsoft was planning to configure a couple of Lightweight Directory Access Protocol (LDAP) security settings on behalf of

Leave a Comment Cancel Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

[About Us]

Ravenswood Technology Group is based in Chicago, IL but with customers around the world. We help companies, universities, and other organizations with less than 100 employees to over 500,000 build secure, hybrid infrastructure that enable their users to work from anywhere.

[What we do]

[Recent Blog Posts]

Network Time Protocol Configurations: A Deeper Dive

January 19, 2023

Active Directory Forest Recovery: Plan to Eliminate Downtime

November 8, 2022

How to Build a Tier 0 Windows Admin Center Instance

October 19, 2022

[Expertise]

[Get in Touch]

© Ravenswood Technology Group, LLC