How To Get the MIM Synchronization Service Groups

When you install the Microsoft Identity Manager (MIM) Synchronization Service, you have to provide five security groups for privileged access. Once the installation has been completed there isn’t a simple way to find out what groups were configured. This can be an issue if you have inherited an installation or there is no documentation available for reference.

One way to find out what groups were configured is to run the MIM Synchronization Service installer and choose the Configure option. You’ll need to know the password for the service account to do this. Another way to get this information is to query the MIM Synchronization Service database.

The script included in this article will provide output similar to what’s shown below.

To run this script, run the following command:
.\GetMIMSyncGroups.ps1 -Server "&ltMIMSQLServerName&gt" -Database "FIMSynchronizationService"

You can download the script here. Don’t forget to unblock the file before you try to run it.

Adam Zucker

Adam Zucker specializes in enterprise mobility and identity management. He works with customers to develop strategic and long-term solutions, planning and implementing projects using Microsoft IAM and enterprise mobility tools. Adam’s well-rounded skill set allows him to recommend solutions that meet both big picture and day-to-day needs for businesses.

WHAT WE DO

How to Implement Microsoft Azure Active Directory Password Protection for a More Secure Environment

Brian Britt September 28, 2022

Passwords have long been the de facto authentication mechanism for identities. Length and complexity plagued us as we struggled to produce an acceptable password that

How to Use the Microsoft Azure Portal to Disable Basic Authentication

Tony Brzoskowski September 6, 2022

Microsoft is disabling Basic authentication in an effort to improve data security in Exchange Online. Starting October 1, 2022, Microsoft will begin turning off Exchange

How to Use Staged Rollout to Migrate to Azure Active Directory Single Sign-On

James Babb August 31, 2022

Are you ready to make the move to Azure Active Directory (AD) single sign-on (SSO)? Do you want to avoid the complications of federated authentication

How to Connect to Microsoft Exchange Online PowerShell with Certificate Authentication in Azure Functions

David Conners August 25, 2022

In a previous blog series, I discussed how to use certificate authentication for PowerShell scripts running in a standard Windows environment. (See “Authentication Options for

Get Started With LDAP Security

Thomas Garrity August 10, 2022

You may recall that in March 2020 Microsoft was planning to configure a couple of Lightweight Directory Access Protocol (LDAP) security settings on behalf of

How to Use Dynamic Group Memberships in Azure Active Directory: Part 2

James Babb July 27, 2022

In Part 1 of this blog post, we looked at what goes into thinking about and designing your automated access policies. As discussed, we want

How to Use Dynamic Group Memberships in Azure Active Directory: Part 1

James Babb July 20, 2022

Many organizations control access to internal systems by simply relying on whether or not an account is enabled. However, users often change roles throughout their

How to Use CA Enrollment Agent to Securely Modify Certificate Requests

Andy Schneider June 22, 2022

Web application owners need to generate and submit certificate requests to secure traffic to their websites. Application owners often use IIS to generate or renew

Leave a Comment Cancel Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

[About Us]

Ravenswood Technology Group is based in Chicago, IL but with customers around the world. We help companies, universities, and other organizations with less than 100 employees to over 500,000 build secure, hybrid infrastructure that enable their users to work from anywhere.

[What we do]

[Recent Blog Posts]

How to Implement Microsoft Azure Active Directory Password Protection for a More Secure Environment

September 28, 2022

How to Use the Microsoft Azure Portal to Disable Basic Authentication

September 6, 2022

How to Use Staged Rollout to Migrate to Azure Active Directory Single Sign-On

August 31, 2022

[Expertise]

[Get in Touch]

© Ravenswood Technology Group, LLC