LDAP user and group information not synchronising with SAC
search cancel

LDAP user and group information not synchronising with SAC

book

Article ID: 241957

calendar_today

Updated On:

Products

Symantec ZTNA

Issue/Introduction

SAC setup with an LDAP Identity Provider

When adding a user to an existing AD group on the Domain Controller, the SAC user does not see the group on the SAC user portal

Is there any way to force a synchronisation with Ldap server?

Cause

The LDAP synchronisation is done every 3 hours, and AD updates may take up to 3 hours to register with SAC

Resolution

There is no option to force a synchronisation with LDAP server

Current option it to wait 3 hours max until user/group updates reflected in SAC.

If this is a test environment, and we need an immediate sync, it is possible to remove and re-add the LDAP Identity provider too.