Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Working with LDAP Directories > Planning for your first synchronization
Planning for your first synchronization
When you are setting up directory synchronization, it is important that you review the data you are about to synchronize before you synchronize it. The way that you structure data in your LDAP-compliant directory affects how you should structure groups and users in the portal for policies and exceptions. You should devise a synchronization strategy before you start.
To start, what data do you want to get out of your LDAP directory and what do you plan to do with it?
Second, how is that data organized?
Third, how do you need to structure users and groups in the portal to accommodate your security requirements?
In a typical directory, users are members of many groups. For example, users may be members of global groups like "All Sales;" they may be members of geographical groups like "London" or "New York;" and they may be members of a department such as "NY Telesales" and many others. When deciding on which groups to synchronize, select only groups that are going to be useful to the cloud service, typically for setting policy or group-based exceptions. See Deciding what to synchronize for more guidelines on this decision.
If you already have users and groups in the portal, then you'll need to determine how and whether to adjust that structure to match the LDAP directory (or vice versa).
Following are the most common use cases. Follow the links to review considerations and checklists designed just for you.
*
*
*
*
*
*

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Working with LDAP Directories > Planning for your first synchronization
Copyright 2020 Forcepoint. All rights reserved.