Jorge's Quest For Knowledge!

All About Identity And Security On-Premises And In The Cloud – It's Just Like An Addiction, The More You Have, The More You Want To Have!

(2019-10-31) Microsoft Identity Manager 2016 Service Pack 2 (build 4.6.34.0) Has Been Released

Posted by Jorge on 2019-10-31


Microsoft has released Microsoft Identity Manager 2016 Service Pack 2! It is available for download as an ISO for fresh installs (available through Visual Studio Downloads), and as an MSI for updating existing environments.

Please find below what has been fixed and/or improved.

I particularly like the TLS 1.2 only support DURING installation of the MIM components. Previously it supported TLS 1.2 during runtime, but not during installation/updating. You always had to decrease the security level to TLS 1.0 to be able to install/update. And in addition I also like the gMSA support! Gone try both and blog about it regarding experiences.

Issues fixed and improvements added in this update

MIM Client add-ons

  • Added support for MIM Outlook add-in to be loaded into the Microsoft Office 365 Outlook Click-To-Run version.

Service and Portal

  • Added support for MIM Service and Portal to be installed on Windows Server 2019, and to use SQL 2017, Exchange Server 2019, SharePoint 2019, System Center Service Manager Data Warehouse 2019.
  • Enabled MIM Service and Portal installation in TLS 1.2 only environments.
  • Enabled installation for MIM Service, Password Reset and Password Registration websites to use group-managed service accounts.
  • New installer parameter "keepSQLjobs" introduced to keep existing SQL Agent MIM related jobs untouched (keep ownership and schedule), for example, "msiexec /p ‘MIMService_KB4512924.msp’ keepSQLjobs=true."
  • Added an additional step to MIM SQL Server Agent temporal jobs to skip execution on secondary SQL Always-On Availability Group replicas.
  • Added a code to handle "ExplicitMember.Add" and "ExplicitMember.Remove" virtual attributes in RCDC forms for custom object types.
  • MIM Service MA schema refresh no longer causes synchronization rules corruption.
  • Accessibility improvements for customers by using MIM Portal together with a screen reader.

Synchronization Service

  • Added support for MIM Synchronization Service to be installed on Windows Server 2019, and to use SQL Server 2017, Exchange Server 2019.
  • Enabled installation in TLS 1.2-only environments.
  • Enabled installation for MIM Synchronization Service to use a group managed service account.
  • Added "Use MIMSync account" option for MIM Service Management Agent to use Synchronization Service’s group-managed service account credentials to connect to MIM Service and MIM Service Database.
  • Accessibility improvements for customers by using MIM Synchronization Service Client together with a screen reader.

Privileged Access Management

  • PowerShell cmdlet "Get-PAMRequest" returns an additional property.
  • Enabled installation for PAM Monitoring Service, PAM Component Service to use group-managed service accounts.

More Information: Microsoft Identity Manager 2016 Service Pack 2 (build 4.6.34.0) Update Rollup is available

Cheers,

Jorge

————————————————————————————————————————————————————-
This posting is provided "AS IS" with no warranties and confers no rights!
Always evaluate/test everything yourself first before using/implementing this in production!
This is today’s opinion/technology, it might be different tomorrow and will definitely be different in 10 years!
DISCLAIMER:
https://jorgequestforknowledge.wordpress.com/disclaimer/
————————————————————————————————————————————————————-
########################### Jorge’s Quest For Knowledge ##########################
####################
http://JorgeQuestForKnowledge.wordpress.com/ ###################
————————————————————————————————————————————————————-

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

 
%d bloggers like this: