Introduction

The Directory Synchronization Client collects user directory information from one or more directory servers for use by Forcepoint cloud-based services.

For Forcepoint Email Security Cloud, the client synchronizes registered email addresses and groups (Mail synchronization).
For Forcepoint Web Security Cloud, the client synchronizes user and group information (Group+User synchronization).

The Directory Synchronization Client supports on-premises LDAP-based directories such as Microsoft Active Directory and IBM Domino, as well as cloud-based directory services such as Microsoft Azure and Google Apps.

Note: Support for Directory Synchronization Client is limited to the most recent version and the version that immediately preceded it.

The Directory Synchronization Client runs either as a graphical or command-line application. Start by using the graphical application to create a configuration profile.

You can then:

Run the synchronization process from the graphical console or the command line.
- The graphical console allows you to choose either a full upload of all data or an incremental upload.
- By default, the command-line synchronization process passes only incremental changes since the last run.
  You can enable an option in the cloud portal to force a full update using the command-line process.
Schedule the process to run automatically.
Receive email notifications reporting the results of each synchronization run.

Refer the Migrating the Cloud Directory Sync Client Configuration Profile Between Servers Knowledge Base Article for additional information.