"Backport" the new sync engine features from AAD Connect to MIM
There are several new and handy scope operations, functions & operators available in AAD Connect that are not available in MIM Sync. Would be very useful to have in MIM aswell, for example NOW, SWITCH, ISMEMBEROF etc.
AADConnect will not replace MIM as they serve 2 distinct roles within the identity Access Managment Solution.
AADConnect is for Simplistic Onboarding to Azure Services
MIM is for complex on-prem/hybrid identity business needs
Tobias Vilén commented
But it was not my proposal to replace MIM with AADConnect. I was proposing to extend MIM with some of the nice new features from AADConnect, for example the functions that we can use in AADConnect when writing synchronization rules.
Tom Houston commented
Hi David, it'd be good to know if the Azure AD Connect Sync Service will eventually replace the one in MIM. I also agree with Ian that we wouldn't want to lose metaverse rules extension functionality.
Ian Bassi commented
I think if this feature is implemented in MIM, for the join rules it would just extend the list of operators already provided.
For the flow rules it would be good to add it as an additional method of configuring advanced attribute flow rules. I imagine an additional option when selecting advanced flow rule, so you would have Rule Extensions, Expressions (The Azure AD Connect functions), Constant, and Distinguished Names.
I would not want Rule Extensions to be replaced as they are in Azure AD Connect.