LDAPS

The Lightweight Directory Access Protocol Secure (LDAPS) enables synchronization of users, groups, and department data from a directory server, such as Microsoft Active Directory (AD) or another LDAP-compliant server.

Administrators can choose between two connection methods:

Direct connection (server type: direct) — Establishes a secure LDAPS connection directly from the Forcepoint cloud to the directory server. This option requires inbound connectivity from the Forcepoint cloud to the on-premises directory.
Agent-based connection (server type: agent) — Uses a locally deployed Forcepoint agent to connect to the directory server and synchronize users and groups with the Forcepoint cloud. This option does not require inbound connectivity but does require the agent to be installed and able to establish outbound connectivity to the Forcepoint cloud. For more information, refer to Configuring agent.