Who is Microsoft in the Context of Identity & Governance?
Microsoft is not only one of the world's leading cloud and platform providers but also a central player in Identity & Access Management. With Microsoft Entra—the strategic successor to Azure AD—Microsoft offers a comprehensive portfolio for securing digital identities, deeply integrated into the Microsoft 365 and Azure ecosystems.
For organizations with hybrid environments or simpler governance requirements, Microsoft continues to offer the Microsoft Identity Manager (MIM) as well as advanced features like Entra ID Governance and Privileged Identity Management (PIM). These solutions address key challenges in managing, monitoring, and controlling identities and access rights—for both employees and privileged users.
Overview of Microsoft's Identity Solutions
- Microsoft Entra ID Governance
The governance component of Entra provides extensive features for identity lifecycle management, entitlement management, access reviews, recertifications, and risk-based access control—all fully integrated into Microsoft 365 and Azure. This solution is ideal for organizations needing to comply with regulations such as DORA, ISO 27001, or NIS2.
- Microsoft Identity Manager (MIM)
MIM is the established on-premises solution for identity lifecycle management, particularly in hybrid or highly regulated environments. It enables automatic provisioning of user accounts, management of groups, roles, and certificates, as well as self-service functions. MIM, the successor to Forefront Identity Manager (FIM), remains relevant for organizations with legacy systems or as a bridge between on-premises and cloud-based identities.
- Privileged Identity Management (PIM)
PIM is part of the Microsoft Entra suite and allows for time-limited, approval-required assignment of privileged rights. Administrator roles in Azure AD or Microsoft 365 can thus be granted just-in-time, monitored, and documented—a central component for zero-trust strategies and regulatory compliance measures.
Products & Use Cases
In many organizations, Microsoft Entra serves as the central identity platform, forming the backbone for modern access control, automation, and security architectures. Entra ID Governance is employed whenever access to sensitive resources needs to be traceable, controlled, and recertified.
MIM remains the preferred solution when local applications, legacy systems, or non-cloud-capable infrastructures need to be integrated. Typical use cases include automating account creation in Active Directory, Exchange, SAP, or file services, as well as integrating HR systems.
PIM specifically addresses the risk of permanent admin rights. Through temporary role assignments, approval processes, and comprehensive logging, access to critical resources can be highly secured—in compliance with requirements from ISO/IEC 27001, DORA, NIS2, or industry-specific IT security regulations.
Licensing Model
Microsoft typically licenses Entra ID Governance and PIM through Microsoft Entra Plan 2 or Microsoft 365 E5. MIM is delivered as part of the server licensing model (CAL) and can be operated separately with Software Assurance. Additional subscriptions are required for governance functionalities like access reviews, entitlement management, or PIM—depending on the number of users and the scope of features.
IPG as Your Microsoft Identity Specialist
IPG is not a traditional Microsoft partner but a focused identity expert with deep knowledge of the Microsoft identity stack. We provide consulting, implementation, and operation of Entra ID Governance, MIM, and PIM in demanding environments—from analysis and process definition to technical integration and managed service operation.
We also bring our experience with hybrid IAM landscapes, especially in combining Microsoft with third-party providers like One Identity, BeyondTrust, or Ping Identity. This makes us the ideal partner for clients who strategically use Microsoft but do not want to compromise on governance, integration depth, or process automation. For in-depth Microsoft expertise, we collaborate with our sister company, novaCapta.
Successful Customer Projects
IPG has a long history of implementing Microsoft Identity Manager (MIM) and increasingly with Entra ID Governance and PIM. Our clients include banks, energy providers, logistics companies, healthcare institutions, IT providers, and public institutions. Projects typically focus on controlled identity flows, auditable role assignments, and secure administration paths—with direct relevance to requirements from DORA, ISO 27001, and NIS2. Hybrid projects involving MIM and Azure AD Connect are also part of our portfolio, especially in identity transformations or migrations.
Learn More!
Are you looking to implement Entra ID Governance, modernize MIM, or better secure privileged admin rights? We offer vendor-neutral, practical consulting with a focus on regulatory feasibility. Contact us for an initial workshop or architectural consultation.
