@Bombbe Thank you for reaching out to us, discussed your ask with my team. Its not possible to restrict manage identities via PIM. PIM is meant for Users, only when limiting with a time interval is possible for SP or MI.
Let me know if you have any further questions, feel free to post back.