A controlled life after MIM with Fortified ID Control
Life after MIM
-
Replace MIM at your own pace
-
Reduce complexity and technical debt
-
Create new opportunities beyond MIM
Many organizations use Microsoft Identity Manager (MIM) to synchronize and keep user data up to date between different systems. MIM consists of a portal for control and administration and a synchronization engine for data flows between directories. Over time, many installations have been expanded with customizations and special solutions, which has made the environment complex and difficult to change.
Now that Microsoft has decided to phase out MIM (end-of-life), organizations need to plan for the next step. With Control from Fortified ID, the transition can be controlled and gradual. Control can replace both the portal and the synchronization engine, or be introduced in parallel to gradually take over functions. At the same time, new modern flows are enabled, such as self-registration with e-identifications such as BankID and Freja eID.
Microsoft has stopped further developing MIM and has announced that MIM will reach "end-of-support" in 2029. Already, many organizations are looking for complements/alternatives to the more vulnerable components of MIM, such as MIM Portal.
MIM Portal is based on SharePoint 2019, which in turn reaches "end-of-life" on July 14, 2026.
Control from Fortified ID is a future-proof solution for IAM & IGA, regardless of whether users are stored in Entra ID, AD, SQL, Google, etc.
End-of-life
In many MIM environments, MIM Service and Portal is used as the rules engine for authorization decisions, approval flows, and lifecycle management. These solutions are often tightly coupled with complex workflows and person-dependent customizations.
With Control, this control can be moved to a modern service that is built for clarity, traceability, and ease of change. Control brings together decisions about access, roles, and permissions in a central view, making it possible to reduce or completely eliminate the dependency on MIM Service and Portal – without affecting underlying catalogs or sync flows.
Move governance from MIM Service and portal to Control
Keep MIM Synchronization – but in the right place
During a MIM phase-out, it is common for MIM Synchronization to still be needed during a transition period to keep Active Directory and other data sources up to date.
With Control, organizations can clearly separate governance from technology, where MIM Synchronization is reduced to just sync – not decision logic. This reduces the risk of errors, simplifies troubleshooting and makes the architecture more understandable. At the same time, better conditions are created to eventually replace synchronization with simpler or more modern solutions, as the business and risk picture allow.
A future without MIM – step by step
Once governance and decision logic have been moved from MIM Service and Portal to Control, and MIM Synchronization has been limited to a clear technical responsibility, it becomes possible to phase out MIM completely without stress or big bang migration.
Control interacts naturally with Fortified ID's other solutions, such as Integrity and Confirm, creating a coherent identity chain from access decisions to verification. The result is a modern identity platform with clear component boundaries, reduced person dependency, and full control over identity and authorization – even long after MIM.
Architecture
All operations (read, write, update, delete) are performed by Fortified ID Control against its own SQL database. This SQL database is imported into the MIM synchronization engine via a management agent and thus becomes its own connector space.
