Compare the advanced features of HyperSync Panel to Microsoft Identity Manager Synchronization Service and/or Entra ID Provisioning.
Note: In the following chart, "MIM + Identity Panel" includes Identity Panel, Uplift for MIM, and Test Panel.
Comparison Chart | |||||
MIM Sync/Entra ID vs HyperSync Panel™ | MIM Sync | MIM + Identity Panel | Entra ID | Entra ID + HyperSync Panel | HyperSync Panel |
Architecture | |||||
Available as SaaS | Partial | ||||
Available as Windows Server Application | |||||
Supports High Availability | Partial | ||||
Extensible Connector Model | 1 | ||||
Remote/Web Configuration Management | Partial | ||||
API Access to operations | Partial | Partial | |||
Service Desk / Admin user experience | Partial | ||||
Role based security | |||||
Granular security controls | |||||
Performance | |||||
Performance to evaluate full business logic regularly (500K users in 5 minutes) | |||||
No performance penalty for advanced rule logic | |||||
Ability to synchronize large groups (> 200K members) | Partial | Partial | |||
Parallel non-blocking execution of scheduling | |||||
No performance penalty for working with reference attributes | |||||
Operations | |||||
Remote/Web Operations Management | |||||
Health Monitoring and Alerting | |||||
Graphical/flexible scheduler | Partial | ||||
Full application of business logic (full sync) | |||||
Application of logic to new changes (delta sync) | 2 | ||||
Ability to synchronize while importing and exporting | |||||
Ability to synchronize individual accounts | Partial | Partial | 3 | ||
Visualize business rules with identity data | |||||
Track operational history | Partial | Partial | |||
Track identity history | Partial | ||||
Track rule application history | Partial | ||||
Respond to rule application errors | |||||
Thresholds for bulk changes | Partial | 4 | |||
VIP user change thresholds | |||||
Approval flows for identity changes | |||||
Support for audit log feed | |||||
Advanced reporting for audit and compliance | Partial | ||||
Track operations from mobile device | Partial | ||||
Development | |||||
Simulation engine for validating rule changes | Partial | Partial | |||
Management of environment variables | Partial | ||||
Tools for promoting configuration | Partial | Partial | |||
Ability to selectively promote changes | Partial | ||||
Integrated Version Control | Partial | ||||
Visual editor for direct data flow | |||||
Visual editor for advanced data flow | Partial | ||||
Built-in support for unique value management | |||||
Declarative provisioning rules | |||||
Point-to-point data flow rules | |||||
Basic data precedence options | |||||
Advanced data precedence options | |||||
Advanced codeless data precedence options | Partial | Partial | |||
Data categorization by scoping rules | |||||
Ability to traverse and flow properties on referenced identities | Partial | ||||
Support for authoritative identity model (Metaverse) | Partial | Partial | |||
State based rule application (universally enforce business rules) | |||||
Event based rule application | Partial | ||||
Date-based rule application | Partial | Partial | |||
Import rules from configuration samples | Partial | ||||
Rapid rule definition with graphical editor | Partial | ||||
Declarative rules with support for custom function definitions | Partial | ||||
Rule throttling tools | Partial | ||||
Support for rules that consider deleted accounts | |||||
Rapid testing of flow logic | Partial | ||||
Rapid prototyping of rules | Partial | ||||
Formal automated testing platform | |||||
Unit testing | |||||
Regression testing | |||||
Integration testing | |||||
Testing with mock/simulated data | Partial | ||||
Reusable configuration components | Partial | Partial | |||
Other | |||||
AD Password Synchronization | |||||
Password Sync Reporting | |||||
Extensive support for on-premises connectors | |||||
Extensive support for SaaS App connectors | |||||
Full-text search for identities | |||||
Ability to synchronize passwords for disabled accounts | |||||
Support for multi-way/source password sync | Partial | Partial | |||
Fully supported by vendor | |||||
Actively developed with ongoing release of new features | |||||
Actively developed with ongoing release of new connectors |
Notes
- Entra ID provides extensible connectivity for App Provisioning (SCIM), and now also supports an inbound provisioning model (API-driven - in Public Preview as of Feb 2024), but it is important to understand the inherent limitations of both. In particular, SCIM supports a limited schema model and does not support write-back to Entra ID, and for inherent limitations the API-driven model see Frequently asked questions (FAQs) about API-driven inbound provisioning - Microsoft Entra ID | Microsoft Learn.
- Entra ID delta sync frequency default is 3 hourly. While changes are possible, increasing frequency can be expected to result in a performance impact.
- See Known Limitations | On-demand provisioning in Microsoft Entra ID when performing individual syncs.
- Entra ID thresholds can only be configured for deletions - see Enable accidental deletions prevention in the Microsoft Entra provisioning service - Microsoft Entra ID | Microsoft Learn
Comments
0 comments
Please sign in to leave a comment.