|
|
|
When resynchronizing your CA DLP user hierarchy with your principal user directory, we strongly recommend that you run a single operation to synchronize all of your users in one go, rather than several smaller operations, each synchronizing a specific set of users. This approach eliminates the risk that a partial synchronization may inadvertently move unknown users (that is, users not present in the specified source LDAP directory) to an ‘exceptions’ group.
If a single synchronization operation is not practical, it is possible to a run a separate operation for each network domain. For example, if your users are spread across multiple domains, you may prefer to run a separate Account Import operation for each domain. The ‘Synchronize users from this domain’ check box ensures that only users in the specified domain can be reorganized within the CA DLP user hierarchy.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |