It will be named with a GUID and is hosted by an Application Pool (which is also named with a GUID! It hosts a couple of WCF services (profileproperty and profiledbcache). The Service Application Endpoint has three associated back end databases and other configuration.Pages for managing the Service Application are hosted in Central Administration and are called using a GUID in the query string.The WCFs don’t actually do any work themselves but provide an interface to calling clients and calls other elements of the system. NET assemblies that do some work with profiles and other elements which are not to do with Synchronising of properties. This should run on the machine in the farm you wish to use to host the User Profiles “Role”.There can be more than one instance of the User Profile Service Application, but there is a one to one mapping between a Service Application and the User Profile Synchronization Service Service Machine Instance or “Share Point Service”. This lives within the Share Point Foundation Web Application Service and allows Service Consumers (Web Applications) to call the Service Application. When it’s running that machine is known as the Service Machine Instance. This is a wrapper responsible for the provisioning of the Forefront Identity Manager (FIM) bits.
There's a ton of stuff out there on User Profile Sync in Share Point Server 2010. Tech Net has some of the best material, but unfortunately Tech Net’s format restrictions are counter-intuitive. The following is the least privilege you can get away with.Added "Set Cursor Position" binding controller action.This allows an arbitrary X/Y position to be moved to on a button press and optionally warp back to the original position on release.You select a UPS SA to associate with, and need to specify the credentials under which the FIM Services will run.Physical Security -- it's often described as the "forgotten side of security" at some financial institutions, and yet it is a key element of an overall protection strategy.