Welcome to Zoho Directory Sync

Zoho Settings

1. Click on 'Authorize with Zoho'.
   
2. accounts.zoho.com will open in a separate window, where you will get authtoken to handle further requests.
   

1. When users who don't have permission to Admin console (not an org admin) tries to setup Directory Sync, they will get an error message. 
   

1. If the connection had failed due to proxy, then user will get a prompt.
   

1. Once logged in, you will be able to see who installed the tool.
   
2. The User who installed this will have Ownership and authorization privileges of Zoho Directory Sync.
   
3. Please note that if this user's account is disabled by the admin then access to the tool might be lost.
   
4. Hence to prevent this, there is a Re-Authorize button in the top right corner. By clicking this, the admin can change the ownership of the tool.
   

LDAP Credentials

1. Enter the required details and click on ADD.
   

If you have multiple domain controllers, then separate them with commas, and also make sure the domain controller names are fully qualified. 

1. The next screen will display the domain list. If needed, you can add domains by clicking on Add Domain in the top right corner.
   

Sync Preference

1. Here you can select Organizational Units or configure advanced LDAP queries.
   
2. Go ahead and click Add OU's.
   

1. You can choose multiple based DN to apply the query.
   

1. Test your LDAP query by clicking on the Test LDAP Query button.
   

1. Here you can set rules based on the criteria you need.
   
2. The users matching these criteria will be excluded during the scheduled sync.
   
3. Click on Add Rule button in the top right corner and fill in the details of your rule.
   

1. Here you can select the required attributes based on which the synchronization will happen. 
2. You can select from email, first name, language etc.
   You can edit each attribute by hovering over the attribute and clicking on edit icon.

Directory Sync 

1. The Users to Update column will list the users who have been updated in LDAP server. Their attributes will be synced to Zoho when you click Sync.
   
2. The Users to create column will list new users from LDAP results. Here you can select the users to be added and their attributes will be synced to Zoho when you click Sync.
   
3. The Users to disable column will list the users not available in LDAP result.
   

1. The Groups to Update column will list the groups that have been updated in LDAP. Their attributes will be synced to Zoho when you click Sync.
   
2. The Groups to Create column will list new groups from LDAP results. Here you can select the groups to be added and their attributes will be synced to Zoho when you click Sync.
   
3. The Groups to Disable column will list the groups not available in LDAP result.
   

Password Sync

1. The Password Sync tool must be installed on all the domain controllers in a domain including the primary domain controller.
   
2. The domain controllers should have been a Full installation instead of a Server Core installation.
   
3. The domain controllers should have the Microsoft .NET Framework 2.0 or 3.5 profile installed. Even if you have a higher version, please make sure you have .NET Framework 2.0 or 3.5 is also installed.
   
4. Make sure the Message Queuing service is enabled and is running before starting the installation of the password sync tool.
   

Before installation of the password sync agent, when you create the users, default passwords will be given using which the users can log into their account. These default passwords can be changed later.

After installation of the password sync agent, when you create new users, their passwords will be synchronized with Active Directory. The passwords of existing users will not be read. If all users' passwords need to be synced then please request them to change their account passwords. The newly updated passwords will be synchronized with active directory.

Schedule Sync

Reports

Settings