Who we are
- - - WHY WORK HERE
    - We solve tough problems for organizations big and small. As a trusted partner to international brands, small firms, and colleges/universities, we need top-notch people to do what we do.
  - - Join Our Team
What We Do
- - - Services
    - We solve tough problems for organizations big and small. As a trusted partner to international brands, small firms, and colleges/universities, we need top-notch people to do what we do.
Technology
Blog
Get in touch
- - - Free Assessment
    - Our experts are always ready to jump on a discovery call to discuss your organization’s needs – whatever stage you’re at – and with no obligation.
  - - Join Our Team

How To Get the MIM Synchronization Service Groups

When you install the Microsoft Identity Manager (MIM) Synchronization Service, you have to provide five security groups for privileged access. Once the installation has been completed there isn’t a simple way to find out what groups were configured. This can be an issue if you have inherited an installation or there is no documentation available for reference.

One way to find out what groups were configured is to run the MIM Synchronization Service installer and choose the Configure option. You’ll need to know the password for the service account to do this. Another way to get this information is to query the MIM Synchronization Service database.

The script included in this article will provide output similar to what’s shown below.

To run this script, run the following command:
.\GetMIMSyncGroups.ps1 -Server "&ltMIMSQLServerName&gt" -Database "FIMSynchronizationService"

You can download the script here. Don’t forget to unblock the file before you try to run it.

Adam Zucker

Adam Zucker specializes in enterprise mobility and identity management. He works with customers to develop strategic and long-term solutions, planning and implementing projects using Microsoft IAM and enterprise mobility tools. Adam’s well-rounded skill set allows him to recommend solutions that meet both big picture and day-to-day needs for businesses.

[RELEVANT BLOG CONTENT]

Deploying the eduPerson Schema to Active Directory

James Babb September 19, 2023

If you work in a higher education environment, there exists a set of standards that must be implemented to allow students and faculty to collaborate

Improving Entra ID B2B User Management with Cross-Tenant Synchronization

David Conners August 1, 2023

B2B user management is a challenge for many organizations that utilize it for collaboration. In this blog, we discuss how to address this challenge using

Flattening Group Memberships to a Single Group

James Babb July 19, 2023

In previous blog posts (Part 1, Part 2), we discussed a powerful feature in Entra ID (formerly Azure Active Directory) known as dynamic membership rules.

Securing On-Premises Access Is Easier Than You Think: Utilizing the Entra Application Proxy

Tony LaGrassa June 14, 2023

In a previous blog post, we discussed taking advantage of Entra (formerly Azure Active Directory) Application Proxies to allow access to on-premises applications without a

Win32 App Deployment with Intune Supersedence Rules

Adam Zucker May 16, 2023

There are several ways to deploy applications to users or devices that are managed by Microsoft Intune. In addition to application types, you must also

Manage Entra Groups with the Graph API

Adam Zucker May 14, 2023

In my previous blog [Win32 App Deployment with Intune Supersedence Rules] I explained how to update Win32 applications deployed within Microsoft Intune by using the

3 Components of Cloud Authentication: Enterprise SSO, Zero Trust, Passwordless

Miles Gratz April 11, 2023

In the past few years, we’ve seen a rapid expansion in remote and remote-hybrid workforces. Remote employees primarily use cloud-native services to manage their daily

Network Time Protocol Configurations: A Deeper Dive

Tony LaGrassa January 19, 2023

In my previous blog post we reviewed why time synchronization is important, as well as proper time synchronization configuration of domain controllers (DCs) holding the

Leave a Comment Cancel Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Ravenswood Technology Group is based in Chicago, IL but with customers around the world. We help companies, universities, and other organizations with less than 100 employees to over 500,000 build secure, hybrid infrastructure that enable their users to work from anywhere.

[Recent Blog Posts]

Deploying the eduPerson Schema to Active Directory

September 19, 2023

Improving Entra ID B2B User Management with Cross-Tenant Synchronization

August 1, 2023

Flattening Group Memberships to a Single Group

July 19, 2023

[Expertise]

© Ravenswood Technology Group, LLC