General FAQs
Q - What's the difference between Single Sign-On (SSO) and Lightweight Directory Access Protocol (LDAP)?
A - SSO provides access to the org and is an alternative to using an email address and password to log in. It doesn't control permissions or provide access to data. The LDAP Sync tool provides access to user groups (and therefore some permission data) but does not provide access to an org.
Q - Does the LDAP Sync tool run on a schedule?
A - Yes. The LDAP tool uses a scheduled task to trigger an event. The task frequency and timing are configured based on the customer's preference.
Q - Can you use an LDAP sync to update user email addresses in Resolver®?
A - No. Each system (Resolver and LDAP) requires you to update an email address separately, including bulk updates (e.g., domain name changes). If you update a user's email address in the LDAP Active Directory but not in Resolver, this could create a new user in Resolver (if you have spare user licenses). We recommend disabling the scheduled task in LDAP when updating email addresses to ensure a sync doesn't occur while making changes in Resolver or the directories.
Q - Does LDAP delete users?
A - No. LDAP never deletes users.
|
Note: For more details on this LDAP tool, see the LDAP section. |