Microsoft's Identity Integration Server (MIIS) can help organizations get a handle on all the disparate databases throughout the organization that contain information about a person's identity.
MIIS specifically consolidates identity information. That could include user logon IDs and passwords, e-mail account information, telephone numbers, addresses, social security numbers, employee ID numbers and other information.
MIIS can perform all of the provisioning, change propagation, de-provisioning and password synchronization as described in the Identity Management section.
MIIS is state driven. MIIS consolidates the identity data from a connected system by executing a run profile of the connected system. The run profile would either import, export data to it's identity repository. The run profiles can either be scheduled to run at specific times or the run profiles can be called to run as and when an event happens in a connected system. This is provided that the connected system has means of notifying external processes of events.
MIIS will distribute password changes from Active Directory domain controllers. MIIS receives the password from the Password Change Notification Service (PCNS). At the point of a password change event in an Active Directory domain controller the Password Change Notification service will intercept the password change event and it will securely and immediately send the password to the MIIS service. MIIS will distribute the password to user accounts in different systems to all the Active Directory users linked user accounts.
