Successfully running a centralized Identity and Access Management system in a large enterprise isn’t easy. But how about migrating from a long existing and grown IAM tool into a new consolidated one? In a traditional IT environment? In an agile project? We tackled the challenge and offer an insight into our findings and successful outcome. In particular, we focus on some architectural pitfalls when moving from an existing system to a completely new, consolidated enterprise IAM. Finally we will talk about the challenges when using an agile approach in IAM and migration projects.