Microsoft Identity Manager (MIM) 2016 builds on the identity and access management capabilities of FIM 2010 R2. Like its predecessor, MIM helps you manage the users, credentials, policies, and access within your organization. Additionally, MIM 2016 adds a hybrid experience, privileged access management capabilities, and support for new platforms.
This version of Microsoft Identity Manager provides new features such as Privileged Identity Manager and support in Certificate Management for REST API access. In Certificate Management there is now added support for multi-forest topologies, a Windows store app for virtual smartcard and certificate lifecycle management, updated events and troubleshooting capabilities. Self-service scenarios now include Account Unlock and multifactor authentication gate for Password Reset.
Microsoft Identity Manager 2016 works alongside Azure to give you control over your full environment. Hybrid reporting in Azure presents your cloud and on-premises data in one place. Also, the Self Service Password Reset portal supports Azure multi-factor authentication (MFA).
Privileged Identity Management
Privileged Identity Management controls and manages administrative access by providing temporary, task-based access to sensitive resources. This means you can give users only as much permission as necessary, which lowers the chances of a cyber attacker gaining full administrative access. In addition, Privileged Identity Management extracts and isolates administrative accounts from existing Active Directory forests.
MIM supports an on-premises Privileged Identity Management solution for managing Active Directory. To get started, Use Privileged Access Management.
Microsoft Identity Manager is still closely related to its predecessor, Forefront Identity Manager. If you still use FIM, or want to refer to additional documentation, take a look at the FIM 2010 R2 Documentation Roadmap.