Talk to an expert

Connect with a Ravenswood expert using the form below.

How To Get the MIM Synchronization Service Groups

When you install the Microsoft Identity Manager (MIM) Synchronization Service, you have to provide five security groups for privileged access. Once the installation has been completed there isn’t a simple way to find out what groups were configured. This can be an issue if you have inherited an installation or there is no documentation available for reference.

One way to find out what groups were configured is to run the MIM Synchronization Service installer and choose the Configure option. You’ll need to know the password for the service account to do this. Another way to get this information is to query the MIM Synchronization Service database.

The script included in this article will provide output similar to what’s shown below.

MIM Sync Security Groups

To run this script, run the following command:
.\GetMIMSyncGroups.ps1 -Server "&ltMIMSQLServerName&gt" -Database "FIMSynchronizationService"

You can download the script here. Don’t forget to unblock the file before you try to run it.

Partner with Microsoft experts you can trust

If it’s time to take that first step toward leveling up your organization’s security, get in touch with Ravenswood to start the conversation. 

Get in Touch
Picture of Adam Zucker

Adam Zucker

Adam Zucker specializes in enterprise mobility and identity management. He works with customers to develop strategic and long-term solutions, planning and implementing projects using Microsoft IAM and enterprise mobility tools. Adam’s well-rounded skill set allows him to recommend solutions that meet both big picture and day-to-day needs for businesses.
View All Posts

[RELEVANT BLOG CONTENT]

Data Considerations for HR-Driven Provisioning in Entra ID

HR-driven provisioning is a capability of Entra ID that allows data from Human Resource (HR) systems to be used to create and update accounts in Entra ID or Active Directory. [...]

What You Need to Know About Microsoft PKI

Public key infrastructure (PKI) is the bedrock of modern telecommunications. It is a foundational technology to uniquely identify clients and facilitate their secure transmission and storage of data between public [...]

What is a Pass-the-Hash Attack (PtH)? Mitigation Strategies for CISOs and IT Teams

Today, we’ll explore the signs of a pass-the-hash (PtH) attack and discuss methods to detect and prevent such attacks in your environment. At Ravenswood Technology Group, LLC, we have decades [...]

How to Perform an Active Directory Health Check

There are many components of Microsoft Active Directory Domain Services (AD DS) that can be assessed as part of a health check. Which ones to start with is, of course, [...]

Enabling ​Multifactor Authentication for Break Glass Accounts​ in Azure

By now, you’ve likely heard about Microsoft’s mandate requiring multifactor authentication (MFA) for all accounts accessing Microsoft Entra portals and APIs. If you haven’t already started, it’s time to address [...]

Improving Your PowerShell Scripts with PSScriptAnalyzer

PowerShell plays a significant role as an administrative scripting language. It is used extensively to manage Active Directory, Microsoft Azure, and Windows Server among many things as well as a [...]

Ravenswood Technology Group is based in Chicago, IL but with customers around the world. We help companies, universities, and other organizations with less than 100 employees to over 500,000 build secure, hybrid infrastructure that enable their users to work from anywhere. 

Linkedin Twitter

Expertise

Get in Touch

About Us

AD Health Check
Free Assessment

© Ravenswood Technology Group, LLC

Privacy Settings