Microsoft Identity Integration Server: Difference between revisions

Browse history interactively

← Previous edit

Content deleted Content added

VisualWikitext

Revision as of 15:25, 1 July 2015 edit 167.234.14.241 (talk) →External links ← Previous edit		Latest revision as of 22:24, 9 August 2025 edit undo Bender the Bot (talk \| contribs) Bots 1,064,377 edits m →External links: HTTP to HTTPS for SourceForge Tag: AWB
(28 intermediate revisions by 22 users not shown)
Line 1: {{Short description\|Identity management (IdM) product offered by Microsoft}} '''Microsoft Identity Integration Server''' (MIIS) is an [[identity management]] (IdM) product offered by [[Microsoft]]. It is a service that aggregates identity-related information from multiple data-sources. The goal of MIIS is to provide organizations with a unified view of a user's/resources identity across the heterogeneous enterprise and provide methods to automate routine tasks. MIIS manages information by retrieving identity information from the connected data sources and storing the information in the connector space as connector space objects or CSEntry objects. The CSEntry objects are then mapped to entries in the [[metaverse]] called metaverse objects or MVEntry objects. This architecture allows data from dissimilar connected data sources to be mapped to the same MVEntry object. All back-end data is stored inon Microsoft SQL Server.<ref>{{cite web\|title=MIIS 2003 Overview\|url=~~http~~https://technet.microsoft.com/en-us/library/cc708678%28WS.10%29.aspx\|publisher=[[Microsoft]]\|date=2006-08-14\|accessdate=2009-10-27}}</ref> For example, through the metaverse an organization's e-mail system can be linked to its human resources database, ~~to the organization's~~its [[Private branch exchange\|PBX]] system toand any other data ~~repository~~repositories containing relevant user information. Each employee's attributes from the e-mail system and the human resources database are imported into the connector space through respective management agents. The e-mail system can then link to individual attributes from the employee entry, such as the employee telephone number. If an employee's telephone number changes, the new telephone number will automatically be propagated to the e-mail system. One of the goals of the [[identity management]] is to establish and support authoritative ~~source~~sources of information for every known attribute and to preserve data integrity according to predetermined business rules. On IdM market of products MIIS stands out by implementing state-based architecture. The majority of competitors are offering transaction-based products. Due to this approach MIIS requires no software/drivers/agents/shims ~~being~~to be installed on the target system. ==Extensibility== The product is extensible through the use of the [[.NET ~~framework~~Framework]], which allows developers and network administrators to extend out-of-the-box capabilities and perform complex tasks. ==Versions== * '''Zoomit Via''' (pre 1999) * '''Microsoft Metadirectory Server''' [MMS] (1999–2003) * '''Microsoft Identity Integration Server 2003 Enterprise Edition''' [MIIS] (Retired) * '''Microsoft Identity Integration Server 2003 Feature Pack''' [IIFP] (Retired) * '''Microsoft''' [[Identity Lifecycle Manager]] '''Server 2007''' [[Identity Lifecycle Manager\|ILM]] (Retired) * [[Microsoft Forefront]] Identity Manager 2010 [[Forefront Identity Manager\|FIM]] (Retired) * [['''Microsoft ~~Forefront]]~~ Identity Manager ~~2010~~2016''' [~~[Forefront Identity Manager\|FIM]~~MIM] (Current) ==History== MIIS has its origins in two Canadian companies' products, Linkage Software's metadirectory product '''LinkAge Directory ~~Echange~~Exchange (LDE)''' which [[List of ~~assets~~mergers ~~owned~~and acquisitions by Microsoft ~~Corporation~~\|Microsoft acquired]] on June 30, 1997<ref>{{cite web\|url= http://www.microsoft.com/presspass/press/1997/jun97/linkAgPr.mspx\| title= Microsoft Acquires LinkAge Software\|publisher= Microsoft Press}}</ref> and Zoomit Corporation's metadirectory product, '''Via''', which [[List of ~~assets~~mergers ~~owned~~and acquisitions by Microsoft ~~Corporation~~\|Microsoft acquired]] on July 7, 1999.<ref>{{cite web\|url= http://www.microsoft.com/presspass/press/1999/Jul99/metadirPR.mspx\| title= Microsoft Acquires Leading Developer of Meta-Directory Products\|publisher= Microsoft Press}}</ref> '''LDE''' was strongly email system oriented but traces of it and its field mapping technology remain through MIIS 2003. Line 32 ⟶ 29: After acquiring '''Zoomit Via''' Microsoft renamed it to '''MMS''' (Microsoft Metadirectory Services) and offered this product for free; however they will strongly encourage customers to hire Microsoft Consulting Services to install and configure product. Microsoft Identity Integration Server 2003 was completely re-written from ground up. No original '''Zoomit Via''' code was moved into MIIS. However Microsoft preserved methodology and original idea of the '''Via''' product. MIIS 2003 no longer uses '''ZScript''' (proprietary scripting language of '''Zoomit Via'''), instead it offered [[.NET ~~framework~~Framework]] support. With this upgrade Microsoft did not offer a migration path from MMS to MIIS due to the significant differences in the products. Currently Service Pack 2 is available for MIIS 2003. IIFP is a slimmed-down version of MIIS that is limited to synchronization between AD, ADAM, and exchange datastores[.<ref>{{cite web \| url=http://forums.microsoft.com/TechNet/ShowPost.aspx?PostID=1848075&SiteID=17] \| title=Library of Congress Web Archives \| access-date=2018-03-10 \| archive-date=2012-08-03 \| archive-url=http://webarchive.loc.gov/all/20120803230557/http://forums.microsoft.com/TechNet/ShowPost.aspx?PostID=1848075&SiteID=17 \| url-status=bot: unknown }}</ref> In fall 2007 MIIS 2003 was ~~recently (Fall 2007)~~ incorporated into a new offering called [[Identity Lifecycle Manager]] (ILM) 2007. This product was announced at the RSA Conference in February 2007 and made available to customers in May 2007. Identity Lifecycle Manager 2007 includes not only the original MIIS 2003 product, but also a component called Certificate Lifecycle Manager (CLM) which is used to manage X.509 digital certificate and smart card issuance. ==Future ~~Developments~~developments== Future releases of MIIS/ILM are expected to be [[x86-64\|x64]] only; [[x86]] support expected to be dropped, following suite of [[Exchange Server]] Public [[Release Candidate]] (RC) version for [[Identity Lifecycle Manager]] '2' is available now (December 2008)<ref> {{cite web\|url= ~~http~~https://technet.microsoft.com/en-us/evalcenter/cc872861.aspx\| title= Evaluate Microsoft Identity Lifecycle Manager "2" RC \|publisher= Microsoft Corporation}}</ref> The [[Microsoft SQL Server]] 2008 is a new [[backend as a service\|back-end]] dependency of ILM '2' ==Supported ~~Data~~data ~~Sources~~sources== MIIS 2003, Enterprise Edition, includes support for a wide variety of identity repositories including the following. '''Network operating systems and directory services :''' Microsoft [[Windows NT]], [[Active Directory]], [[Active Directory Application Mode]], IBM Directory Server, [[Novell eDirectory]]<ref>{{cite web \| ~~title=Troubleshooting LDAP SSL connection issues between Microsoft ILM/MIIS & Novell eDirectory 8.7.3 \|~~ url=http://capitalhead.com/articles/troubleshooting-ldap-ssl-connection-issues-between-microsoft-ilmmiis--novell-edirectory-873.aspx \| ~~work~~title=Troubleshooting LDAP SSL connection issues between Microsoft ILM/MIIS & Novell eDirectory 8.7.3 \| last=\|first=\|date=~~1900~~2008-103-0 15\|publisher=\| accessdate=~~2009~~2017-0601-1623}}</ref> , [[Resource Access Control Facility]] (RACF), SunONE/[[iPlanet]] Directory, [[X.500]] systems and other network directory products '''E-mail :''' [[Lotus Notes]] and [[IBM Lotus Domino]], [[Microsoft Exchange Server\|Microsoft Exchange]] 5.5, 2000, 2003, 2007, 2010, & 2013. '''Application :''' Line 60 ⟶ 57: '''Database :''' [[Microsoft SQL Server]], [[Oracle RDBMS]], [[IBM Informix]], [[dBase]], [[IBM ~~DB2~~Db2]] '''File-based :''' Line 66 ⟶ 63: '''Other:''' MIIS provides developers with well defined framework to create additional management agents (in any [[.NET ~~framework~~Framework]] languages currently available on the market) that are not available out-of-the box. Microsoft itself as well as third party vendors isprovide ~~continuing to provide~~a wide array of additional management agents, such as [[OpenLDAP]], [[IBM U2\|IBM UniData]], [[PeopleSoft]], [[Windows Live ID]]/[[Hotmail]], [[MySQL]] etc. ==~~Wish list~~Limitations== While ~~Whilst the product~~MIIS appears to support [[Directory Service Markup Language\|DSML]], there is currently no out-of-the-box support for [[SPML]] version 1 or version 2.0. Standardization in the service provisioning space would benefit consumers and assist in avoiding costly lock-in to proprietary systems~~. To implement SPML or any other standard, see '''Extensibility''' and '''XMA''' sections~~. ==See also== Line 80 ⟶ 77: == External links == [~~http~~https://sourceforge.net/projects/openldap-ma OpenLDAP Management Agent] * [https://web.archive.org/web/20080106114310/http://miisexperts.org/DevVerse-MySQL.html MySQL Management Agent] *[http://capitalhead.com/articles/troubleshooting-ldap-ssl-connection-issues-between-microsoft-ilmmiis--novell-edirectory-873.aspx Troubleshooting LDAP SSL connection issues between Microsoft ILM/MIIS & Novell eDirectory 8.7.3] [[Category:Identity management systems]] [[Category:Internet Protocol based network software]]