Content provided by Microsoft
Applies to: Microsoft Identity Manager 2016 SP2
Introduction
A hotfix rollup package (build 4.6.421.0) is available for Microsoft Identity Manager (MIM) 2016 Service Pack 2 (SP2). This rollup package resolves some issues and adds some improvements that are described in the "Issues fixed and improvements added in this update" section.
Update information
Microsoft Download Center
A supported update is available from the Microsoft Download Center. We recommend that all customers apply this update to their production systems.
Download the update for Microsoft Identity Manager 2016 SP2 (KB4599279) now.
Prerequisites
To apply this update, you must have the following installed:
Microsoft Identity Manager 2016 Service Pack 2 (SP2) build 4.6.34.0
Known Issues
The hotfix may fail to update MIM Service when Group-Managed Service Account or Office 365 basic authentication method is used and PollExchangeEnabled registry key value is set to 1.
As a workaround, set a registry key
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\FIMService\PollExchangeEnabled to 0
before applying this hotfix. After the hotfix is installed, revert this value back to 1 and restart MIM Service.
Restart requirement
You must restart the computer after you apply the add-ins and extensions package (Mimaddinsextensions_x(64/86)_ KB4599279.msp). You may also have to restart the server components.
File information
The global version of this update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.
File name |
File size |
Date |
Time |
|
---|---|---|---|---|
MIMAddinsExtensions_x64_KB4599279.msp |
11,542,528 |
1-Mar-2021 |
12:12 |
|
MIMAddinsExtensions_x86_KB4599279.msp |
4,587,520 |
1-Mar-2021 |
11:28 |
|
MIMAddinsExtensionsLP_x64_KB4599279.msp |
4,026,368 |
1-Mar-2021 |
12:48 |
|
MIMAddinsExtensionsLP_x86_KB4599279.msp |
2,940,928 |
1-Mar-2021 |
11:42 |
|
MIMService_x64_KB4599279.msp |
98,660,352 |
1-Mar-2021 |
12:24 |
|
MIMServiceLP_x64_KB4599279.msp |
12,886,016 |
1-Mar-2021 |
12:55 |
|
MIMSyncService_x64_KB4599279.msp |
25,907,200 |
28-Feb-2021 |
8:05 |
Issues fixed and improvements added in this update
MIM Service and Portal
MIM Service
-
Added Office 365 MIM Service mailbox application context authentication mechanism to replace basic authentication that is announced as deprecated
-
Added support for Office 365 sovereign clouds
-
Added a script ‘Scripts\Create-MIMMailboxApp.ps1’ to register MIM Service as application in Azure AD and grant it proper permissions to access MIM Service mailbox only
-
Fixed MIM Service configuration property names:
-
synchronizationDataReadTimeoutInSeconds
-
synchronizationDataWriteTimeoutInSeconds
-
-
Fixed a performance issue with set membership calculation
MIM Service and Portal Installer
-
Fixed an issue with several MIM Service properties not populated in installer wizard when running Change Mode installation
-
Simplified installer configuration pages related to mail server type and authentication method
-
Fixed an issue with installer failing with some specific SQL Always On Availability Group (AoAG) database mirroring configurations
MIM Portals
-
Fixed an issue with missing banner in Self-Service Password Reset website
-
Fixed an RCDC issue with input fields column width rendered incorrectly
-
Fixed an RCDC issue with custom objects and filters displayed with an error
-
Fixed an issue with SharePoint 2019 .ashx files not being unblocked correctly
Privileged Access Management
-
Fixed a bug with members not removed from shadowPrincipal objects when a role is manually deactivated using Close-PAMRequest cmdlet
Note: In order to reconfigure the MIM service for Office 365 application context authentication, you need to apply this hotfix first, then run Create-MIMMailboxApp.ps1 script to register MIM Service application in Azure AD and run change mode installation. More details could be found in MIM Service for Azure AD Premium customers deployment guide: Install MIM 2016 with SP2: MIM Service and Portal for Azure AD Premium customers
References
Microsoft Identity Manager release history
Learn about the terminology that Microsoft uses to describe software updates.