“Regarding Microsoft Identity Manager Management Agent (MIM MA), this account is not considered a service account and should be a regular user account. The account must be able to log on locally in order for The “FIM Synchronization Service” service account to be able to impersonate it.”
The MA accounts do use service Id(s), not sure how this aligns (or doesn’t) with the above statement?