Before we can start to use our new MIM environment, we need to perform some post-installation tasks.
In order for the MIM service to manage the MIM Synchronization service, we need to add the MIM Service service account to the MIMSyncAdmins
group. If you are implementing Password Reset, you also need to add the MIM Service service account to the MIMSyncPasswordSet
group.
After adding the MIM Service service account to the new groups, you need to restart the MIM Service service in order for the new group membership to take effect.
This is not required, but it is best practice to take a look at the mailbox used by the MIM service (if you're running Exchange). A few things you might consider are as follows:
Secure the mailbox, making sure only internal users can send a mail to it.
Configure the mailbox quota to make sure the MIM Service mailbox does not get blocked by default quota settings...