Compare the advanced features of HyperSync Panel to Microsoft Identity Manager Synchronization Service and/or Entra ID Provisioning.
Note: In the following chart, "MIM + Identity Panel" includes Identity Panel, Uplift for MIM, and Test Panel.
| Comparison Chart | |||||
| MIM Sync/Entra ID vs HyperSync Panel™ | MIM Sync | MIM + Identity Panel | Entra ID | Entra ID + HyperSync Panel | HyperSync Panel |
| Architecture | |||||
| Available as SaaS | Partial | ||||
| Available as Windows Server Application | |||||
| Supports High Availability | Partial | ||||
| Extensible Connector Model |
|
||||
| Remote/Web Configuration Management | Partial | ||||
| API Access to operations | Partial | Partial | |||
| Service Desk / Admin user experience | Partial | ||||
| Role based security | |||||
| Granular security controls | |||||
| Performance | |||||
| Performance to evaluate full business logic regularly (500K users in 5 minutes) | |||||
| No performance penalty for advanced rule logic | |||||
| Ability to synchronize large groups (> 200K members) | Partial | Partial | |||
| Parallel non-blocking execution of scheduling | |||||
| No performance penalty for working with reference attributes | |||||
| Operations | |||||
| Remote/Web Operations Management | |||||
| Health Monitoring and Alerting | |||||
| Graphical/flexible scheduler | Partial | ||||
| Full application of business logic (full sync) | |||||
| Application of logic to new changes (delta sync) |
|
||||
| Ability to synchronize while importing and exporting | |||||
| Ability to synchronize individual accounts | Partial | Partial |
|
||
| Visualize business rules with identity data | |||||
| Track operational history | Partial | Partial | |||
| Track identity history | Partial | ||||
| Track rule application history | Partial | ||||
| Respond to rule application errors | |||||
| Thresholds for bulk changes | Partial | ||||
| VIP user change thresholds | |||||
| Approval flows for identity changes | |||||
| Support for audit log feed | |||||
| Advanced reporting for audit and compliance | Partial | ||||
| Track operations from mobile device | Partial | ||||
| Development | |||||
| Simulation engine for validating rule changes | Partial | Partial | |||
| Management of environment variables | Partial | ||||
| Tools for promoting configuration | Partial | Partial | |||
| Ability to selectively promote changes | Partial | ||||
| Integrated Version Control | Partial | ||||
| Visual editor for direct data flow | |||||
| Visual editor for advanced data flow | Partial | ||||
| Built-in support for unique value management | |||||
| Declarative provisioning rules | |||||
| Point-to-point data flow rules | |||||
| Basic data precedence options | |||||
| Advanced data precedence options | |||||
| Advanced codeless data precedence options | Partial | Partial | |||
| Data categorization by scoping rules | |||||
| Ability to traverse and flow properties on referenced identities | Partial | ||||
| Support for authoritative identity model (Metaverse) | Partial | Partial | |||
| State based rule application (universally enforce business rules) | |||||
| Event based rule application | Partial | ||||
| Date-based rule application | Partial | Partial | |||
| Import rules from configuration samples | Partial | ||||
| Rapid rule definition with graphical editor | Partial | ||||
| Declarative rules with support for custom function definitions | Partial | ||||
| Rule throttling tools | Partial | ||||
| Support for rules that consider deleted accounts | |||||
| Rapid testing of flow logic | Partial | ||||
| Rapid prototyping of rules | Partial | ||||
| Formal automated testing platform | |||||
| Unit testing | |||||
| Regression testing | |||||
| Integration testing | |||||
| Testing with mock/simulated data | Partial | ||||
| Reusable configuration components | Partial | Partial | |||
| Other | |||||
| AD Password Synchronization | |||||
| Password Sync Reporting | |||||
| Extensive support for on-premises connectors | |||||
| Extensive support for SaaS App connectors | |||||
| Full-text search for identities | |||||
| Ability to synchronize passwords for disabled accounts | |||||
| Support for multi-way/source password sync | Partial | Partial | |||
| Fully supported by vendor | |||||
| Actively developed with ongoing release of new features | |||||
| Actively developed with ongoing release of new connectors | |||||
Notes
- Entra ID provides extensible connectivity for App Provisioning (SCIM), and now also supports an inbound provisioning model (API-driven - in Public Preview as of Feb 2024), but it is important to understand the inherent limitations of both. In particular, SCIM supports a limited schema model and does not support write-back to Entra ID, and for inherent limitations the API-driven model see Frequently asked questions (FAQs) about API-driven inbound provisioning - Microsoft Entra ID | Microsoft Learn.
- Entra ID delta sync frequency default is 3 hourly. While changes are possible, increasing frequency can be expected to result in a performance impact.
- See Known Limitations | On-demand provisioning in Microsoft Entra ID when performing individual syncs.
- Entra ID thresholds can only be configured for deletions - see Enable accidental deletions prevention in the Microsoft Entra provisioning service - Microsoft Entra ID | Microsoft Learn
Comments
0 comments
Please sign in to leave a comment.