Import and sync network administrators with LDAP

Complete the following steps to import and sync network administrators with LDAP.

Steps

  1. Log in to the Keycloak admin console.
  2. Navigate to Configure > User Federation.
  3. Select the Add LDAP providers tile to configure Active Directory user provisioning and synchronization.

    For more details, see the Keycloak User Federation (LDAP/AD) section on the documentation site.

  4. Configure the following steps to allow Forcepoint DSPM administrators to use their organizational domain credentials:
    1. Log in to Keycloak as an administrator and ensure the gv realm is selected.
    2. Navigate to Configuration > User Federation and click your LDAP source. Opens the LDAP User Federation page.
    3. From the Settings tab, locate the section named Connection and Authentication Settings.
    4. Change the Username LDAP attribute to userPrincipalName.

      Click Save.

    5. Scroll to the top of this page and click the Mappers tab. Click the mapper named username to open the Mapper details page.
    6. Change the LDAP attribute to userPrincipalName. This will allow Forcepoint DSPM administrator users to use their domain username if desired.

      Click Save. This allows the Forcepoint DSPM administrator to log in to the Forcepoint DSPM management console using their domain username and password.