I'm just wondering is it possible to make historical snaps for MIM with AD group membership?
We have DB where we are keeping the desired state for users. So we know that user1 must be a member of Group1.
If the user1 will be a member of Group2 this should be threatened as a security alert and the user must be removed from Group2. That could be done by MIM.
But if we want to track such changes and make something like historical snaps with user-group membership information for the security investigations? How it could be done?