Exchange 2010 Self-Service vs. FIM

I got to sit in on a 'What's New' session on Exchange 2010 last week and there are some really compelling features. Archiving, better high availability and disaster recovery, anywhere access, etc... the list goes on. A few things that did grab my attention were the new Role Based Access Controls and the Exchange Control Panel. There is a good 5 minute demo here http://edge.technet.com/Media/Exchange-2010-Control-Panel-Demo/

Role Based Access Control allows IT Admins to move specific self-service tasks to end users and they carry out these tasks in the Exchange Control Panel web UI. The self-service tasks are things like distribution group mgmt and being able to update attributes like a users Title or Department.

All of these are well and good but I do see a potential conflict with IAM solutions, specifically FIM. Roles and self service are big parts of FIM and from this session there does not seem to be much of an integration point between the two. If a company wants to manage Distribution Groups, do they do this in Exchange 2010 or in FIM? If a company wants to have a central location to update employees Titles and Departments, do they do this in Exchange 2010 or FIM?

What do you think? Or if you want to discuss further, drop me an email at Michael.tweddle@quest.com