SQL Server permission requirement for MIM Sync

BIll Lam 25 Reputation points
2023-09-27T07:09:26.6133333+00:00

We are setting up a new MIM Sync 2016 R2 server, and we are reviewing the requirements on its SQL Server according to this guide:

https://learn.microsoft.com/en-us/microsoft-identity-manager/install-mim-sync

We cannot find any information about the permission required by MIM Sync to access the SQL Server. A user suggested that "sysadmin" role is required during installation, and can be downgraded to "db_owner" role after installation.

https://github.com/MicrosoftDocs/MIMDocs/issues/193

What's the actual SQL Server permission required to run MIM Sync?

Thank you!

Microsoft Identity Manager
Microsoft Identity Manager
A family of Microsoft products that manage a user's digital identity using identity synchronization, certificate management, and user provisioning.
694 questions
0 comments No comments
{count} votes

Accepted answer
  1. Sylvain Clb 941 Reputation points
    2023-09-28T09:09:43.4266667+00:00

    Hello Bill,

    The sysadmin permission is required for the account that will install MIMSync, not for the service account itself. All SQL permissions required for the MIMSync service account will be set during the installation.

    You will need to remove the sysadmin permission of the install account after the installation. Just remember that you will need it to re-add again for future patch.

    Best Regards,

    Sylvain


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.