With Google Cloud Directory Sync (GCDS), you can synchronize the data in your Google Account with your Microsoft Active Directory or LDAP server. GCDS doesn't migrate any content (such as email messages, calendar events, or files) to your Google Account. You use GCDS to synchronize your Google users, groups, and shared contacts to match the information in your LDAP server.
Benefits of using GCDS to sync data
-
Runs as a utility in your server environment
Includes all necessary components in the installation package. Includes a number of features to make your data more secure. There is no access to your LDAP server data outside your perimeter.
-
Syncs users, aliases, groups, and other data with your Google Account
Ensures your Google data matches that of your Active Directory or LDAP server. Performs a one-way synchronization. Data on your LDAP server is never updated or altered.
-
Configure rules for custom mapping
Allows you to configure rules for custom mapping of users, groups, nonemployee contacts, user profiles, aliases, calendar resources, and exceptions.
-
Use default settings to make setup easier
If you’re using GCDS with an Active Directory server or OpenLDAP, you can easily set up your configuration using the default values in Configuration Manager.
-
Guides you through creating and running a synchronization. Includes a simulation stage to make sure your setup is tested.
-
Uses rules and exclusions so you can omit data from a sync
Set up exclusion rules to omit data such as users, profiles, groups, organizational units, or calendar resources from a sync.
How GCDS works
First, you set up rules to specify how the system generates a list of your data. During a sync, the list is exported from your LDAP server. GCDS connects to your Google Account and generates a list of users, groups, and shared contacts that you specify.
GCDS compares these lists and updates your Google Account to match the data. After the synchronization, you get an email report so that you can monitor the process.
Encryption
- GCDS to LDAP:
- These types of connections are encrypted by SSL when the chosen Connection type on the Configuration Manager LDAP Configuration page is LDAP+SSL.
- No encryption is used if the chosen Connection type is Standard LDAP.
- GCDS to Google connections are encrypted using HTTPS.
Next step
Before you set up your sync, familiarize yourself with the GCDS best practices.
Google, Google Workspace, and related marks and logos are trademarks of Google LLC. All other company and product names are trademarks of the companies with which they are associated.