LDAP/AD UserSync connector - User Provisioning¶
A pull based user provisioning connector for LDAP/AD that syncs users and groups from LDAP/AD to Privacera at a configured interval.
Features¶
-
User Search: Search for users in the LDAP/AD server based on configured search base and LDAP Filter if required.
-
Group Search: Search for groups in the LDAP/AD server based on configured search base and LDAP Filter if required.
-
Group Only: UserSync can be configured to sync only users that are members of synced groups from LDAP/AD server.
-
Nested groups: Support for nested groups. Nested groups will be imported in a flattened manner. The LDAP/AD connector supports nested groups up to 10 levels by default, but can be configured.
For example:
Group1
|-- Group2
|---|-- User1
|---|-- User2
|---|-- Group3
|-------|-- User3
|-- User4
will be imported as:
Group1
|-- User1
|-- User2
|-- User3
|-- User4
Group2
|-- User1
|-- User2
|-- User3
Group3
|-- User3 -
Incremental Sync: Incremental sync is supported. UserSync will perform a delta search to get the changes since the last sync.