How To Get the MIM Synchronization Service Groups

When you install the Microsoft Identity Manager (MIM) Synchronization Service, you have to provide five security groups for privileged access. Once the installation has been completed there isn’t a simple way to find out what groups were configured. This can be an issue if you have inherited an installation or there is no documentation available for reference.

One way to find out what groups were configured is to run the MIM Synchronization Service installer and choose the Configure option. You’ll need to know the password for the service account to do this. Another way to get this information is to query the MIM Synchronization Service database.

The script included in this article will provide output similar to what’s shown below.

To run this script, run the following command:
.\GetMIMSyncGroups.ps1 -Server "&ltMIMSQLServerName&gt" -Database "FIMSynchronizationService"

You can download the script here. Don’t forget to unblock the file before you try to run it.

Adam Zucker

Adam Zucker specializes in enterprise mobility and identity management. He works with customers to develop strategic and long-term solutions, planning and implementing projects using Microsoft IAM and enterprise mobility tools. Adam’s well-rounded skill set allows him to recommend solutions that meet both big picture and day-to-day needs for businesses.

WHAT WE DO

Win32 App Deployment with Intune Supersedence Rules

Adam Zucker May 16, 2023

There are several ways to deploy applications to users or devices that are managed by Microsoft Intune. In addition to application types, you must also

Manage Azure AD Groups with the Graph API

Adam Zucker May 14, 2023

In my previous blog [Win32 App Deployment with Intune Supersedence Rules] I explained how to update Win32 applications deployed within Microsoft Intune by using the

3 Components of Cloud Authentication: Enterprise SSO, Zero Trust, Passwordless

Miles Gratz April 11, 2023

In the past few years, we’ve seen a rapid expansion in remote and remote-hybrid workforces. Remote employees primarily use cloud-native services to manage their daily

Network Time Protocol Configurations: A Deeper Dive

Tony LaGrassa January 19, 2023

In my previous blog post we reviewed why time synchronization is important, as well as proper time synchronization configuration of domain controllers (DCs) holding the

Active Directory Forest Recovery: Plan to Eliminate Downtime

Brian Britt November 8, 2022

Active Directory (AD) is still the predominant identity and management platform for tens of thousands of organizations worldwide. Larger organizations with hundreds to even thousands

How to Build a Tier 0 Windows Admin Center Instance

Thomas Garrity October 19, 2022

Are you tired of seeing the Windows Admin Center (WAC) prompt from Microsoft Windows Server Manager (as shown in Figure 1) and not knowing what

How to Implement Microsoft Azure Active Directory Password Protection for a More Secure Environment

Brian Britt September 28, 2022

Passwords have long been the de facto authentication mechanism for identities. Length and complexity plagued us as we struggled to produce an acceptable password that

How to Use the Microsoft Azure Portal to Disable Basic Authentication

Tony Brzoskowski September 6, 2022

Microsoft is disabling Basic authentication in an effort to improve data security in Exchange Online. Starting October 1, 2022, Microsoft will begin turning off Exchange

Leave a Comment Cancel Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Ravenswood Technology Group is based in Chicago, IL but with customers around the world. We help companies, universities, and other organizations with less than 100 employees to over 500,000 build secure, hybrid infrastructure that enable their users to work from anywhere.

[Recent Blog Posts]

Win32 App Deployment with Intune Supersedence Rules

May 16, 2023

Manage Azure AD Groups with the Graph API

May 14, 2023

3 Components of Cloud Authentication: Enterprise SSO, Zero Trust, Passwordless

April 11, 2023

[Expertise]

© Ravenswood Technology Group, LLC