Microsoft Identity Manager (MIM) Service Pack 3 Update
Microsoft has released the long-anticipated MIM Service Pack 3 – an important update for organizations running MIM. We explore what’s included, key considerations, and the options available for your next steps.
Background
The background to MIM SP3 involves its underlying server products:
- Windows Server
- SharePoint Server
- SQL Server
As with most software, each of these platforms is available in new versions, and the older versions are reaching the end of their support.
With the release of Service Pack 3 (SP3), support for Microsoft Identity Manager (MIM) 2016 SP2 effectively ends in May 2027. Although the overall MIM 2016 platform receives extended support until January 9, 2029, users must upgrade from SP2 to SP3 within 12 months of the SP3 release to maintain support.
The products in the table above which have a specific date are supported under the Fixed Lifecycle Policy, where an end of support is announced alongside the products release (though this may be extended through the release of service packs, for instance).
The Modern Lifecycle Policy does not specify a distinct end date for support: Microsoft commits to providing patches with a 30-day advance notice, and in addition, will give a year’s advance notice if a product will no longer be updated.
MIM Service Pack 3 supports the latest versions of underlying platform components (but not currently Windows Server 2025), ensuring that solutions can remain in support.
SharePoint Server
The earliest end-of-support date is for SharePoint Server 2019. Among all the platform components that underpin MIM, SharePoint provides the least direct functionality – it simply hosts the MIM Portal solution. The data for the portal, as well as the Workflow functionality, is provided by the underlying MIM Service and Windows Server components, such as Windows Workflow Foundation.
Some organizations only use SharePoint on-premises to support MIM – and there is (arguably) a disproportionate amount of support required for the value that SharePoint delivers.
OCG has a replacement portal solution for MIM that does not need SharePoint. If the opportunity to eliminate the requirement to support SharePoint Server on-premises, while gaining a quick, modern, and flexible alternative to the MIM Portal, seems appealing, find out more about the Identity Director solution here.
CONTACT US ABOUT A SHAREPOINT FREE SOLUTION
If there is no need or opportunity to remove SharePoint from the MIM solution, it will be important to plan for implementing SharePoint Subscription Edition, which requires MIM SP3 before its imminent end-of-support.
Additional Functionality in MIM SP3
In addition to supporting the new platforms, MIM SP3 introduces two new capabilities.
Support for Azure SQL underlying MIM Synchronization Service
For customers who only utilise the Synchronization component of MIM, considering Azure SQL as the underlying database service could be beneficial. This is especially applicable for those running MIM Sync on an Azure VM: employing Azure SQL provides a highly available SQL service without requiring complex SQL Server setups in additional Azure VMs. In this context, Microsoft supports both system-assigned and user-assigned managed identities for credential-free authentication.
Support for ADFS as an Authentication provider for MIM Portal
With MIM SP3, it is now possible to configure claims-based authentication for the MIM Portal, where previously only Kerberos-based authentication was supported. This enables more flexible authentication architectures, including Extranet scenarios where a direct connection to an on-premises Active Directory Domain Controller would not be practical.
Support for MIM Service Pack 3 implementation
For Oxford Computer Group’s UK customers who have a MIM support contract with us, the in-place installation of MIM SP3 is part of the support offering and therefore carries no additional cost. As usual, though, more significant re-platforming or other architectural changes are not automatically included in support – please consult with your OCG team for full information.
Want to implement MIM SP3?
Oxford Computer Group is ready and able to support any organization with a MIM solution in updating to Service Pack 3, including:
- Pre-upgrade health check to identify possible issues in advance
- Review to identify possible benefits from the implementation of a portal replacement solution, e.g. allowing the retirement of on-premises SharePoint
- Upgrade support
- Follow-up support to maintain MIM in peak health and performance
I NEED HELP WITH A MIM SP3 UPGRADE
Planning for a future beyond MIM?
Our experts are ready to help you evaluate the full range of your MIM migration options – from the components in Microsoft’s identity stack to trusted third-party solutions – and find the right fit for your organization.