Create and Modify an LDAP Synchronized List?
- Click Policy > Email Addresses (on an Email
- Click
New. A dialog box enables you to choose the list type you want to add. -
Select LDAP Synchronized Address List (email) or LDAP Synchronized User Name List (web) and click Create.
To edit an existing 
LDAP Synchronized list, select a list from the available entries and click 
Edit. - Edit the Overview section to provide the list with a Name or any relevant Notes. Click Save.
-
Configure the Server Connection details. Use this section to define the LDAP server details and connection properties.Show me
Server Connection Property Description LDAP Server Hostname or IP address of the LDAP server Secure connection Option to use Secure LDAP when connecting your Port Port number on which to connect the LDAP server. Firewall Ports for a list of default ports. User name Account user name with which the Password Account password associated with the User name. Leave blank if anonymous access is required. Timeout Connection timeout value in seconds. If you change any of the LDAP settings, you must also re-enter the Password to save the changes. Click Save.
-
Use the Search Criteria section to specify the criteria used to retrieve the data from the LDAP server. Click to Save to save the changes.Show me
Search Criteria Description Example Target DN for sync Distinguished Name of the base node of the LDAP directory tree containing the entries with which you want to synchronize.
Click Browse to open the Select Base DN dialog box and locate the base node. Maximum entries to display specifies the number of nodes the directory tree displays in the dialog box.
O=MyCompany Scope Scope of the search
Select whether to search the base node only (Target Only), the entire tree recursively (Recurse Tree) or only the direct children of the target node (Children of Target).
Recurse Tree Filter to Apply Search filter used to determine which nodes to search
ObjectClass=* obtains all LDAP nodes within the specified scope.
objectclass=* Attributes to Retrieve LDAP attributes to be retrieved. Attributes must be comma-separated. mail,proxyAddresses Request Paging Enables paging requests with a configurable page size. 1000 Group Expansion Enables group expansion with maximum expansion depth and selected attributes. Attributes must be comma-separated. Expansion is enabled using 'member,uniquemember' to a depth of 10. - Apply the configuration.
Test an LDAP connection?
- Configure an LDAP Synchronized List.
- Select the list from the available entries and click Edit.
-
Click
Test Query in the Task Panel.If the query is successful, the
If the query fails, check your server connection and search criteria settings. If necessary, contact your LDAP administrator.
Synchronize a list with the LDAP directory?
- Configure an LDAP Synchronized List.
- Select the list from the available entries and click Edit.
-
Click
Synchronize Now in the Task Panel.If the synchronization is successful, the
After a suitable period, refresh the list page by clicking your browser's Refresh button. The Synchronization Status area indicates whether the synchronization was successful, and when the synchronization occurred.
Remove an LDAP Synchronized List?
- Click Policy > Email Addresses (on an Email
-
Select a list from the available entries. Click
Delete - Click the Delete button to confirm the deletion.
- Apply configuration.
