Sync Tool - Sync from AD | Admin Guide - Zoho One

Sync from Active Directory/LDAP server

Notes
Note: Before you install the Zoho One sync tool, ensure that you meet the system requirements.
  1. Sign in to Zoho One , then click Directory in the left menu.
  2. Go to Directory Stores.
  3. Under Active Directory, click Add.



  4. Click Download.



  5. Install the downloaded file in the Domain Controller (DC), or a system connected to the DC.
  6. Open the tool, go to Zoho Sign-in. Copy the Login URL and Verification code displayed there.
  7. Open a browser, visit the site of the copied Login URL by pasting it in the search bar. You'll be prompted to enter the Verification code. Paste the code copied in the Sign-in page. You'll be signed in to the Sync Tool shortly. 
  8. Go to LDAP Configuration, then sign in with the credentials of an LDAP user who has Read and Replicating Directory Changes permissions. Sign in to all the required domains.
  9. Choose the required OUs and objects to sync with Zoho.
    10. Note: You can check the users and groups that are eligible for sync by clicking View Count in Select OUs.
  10. To further filter the objects to sync, go to Exclusion Rules, then click Add Rule. Select the type of objects to filter out, select the field name and exclusion criteria, then enter the values. Click Add.
  11. Go to Attributes, then map the LDAP fields with the Admin Panel's fields. The list of attributes available to choose from are:
    1. Email ID
    2. Secondary Email
    3. SAM Account Name
    4. First Name
    5. Last Name
    6. Display Name
    7. Employee ID
    8. Job Title
    9. Department
    10. Work Location
    11. Date of Joining
    12. Reporting To
    13. Mobile
    14. Phone
    15. Website
    16. Fax
    17. Post Office Box
    18. Street Address
    19. City
    20. State
    21. Country
    22. Postal Code
  12. If you have users without a domain-based custom email address, consider using the Replace Domain option under the Email Address attribute. Learn more about replacing the domain.


  13. Go to Sync Settings, then set the following:
    1. Default Password: This one-time password will be used for all newly-created Zoho user accounts. Users will be prompted to set a new password during their first sign-in.
    2. User Settings: This setting dictates how the Sync Tool will handle user accounts deleted in the AD server.
    3. Create LDAP Group: This setting creates a Zoho One collaboration group named after your Portal Name, for all users synced from AD through this tool.
    4. Create Groups for OUs: This setting creates a Zoho One collaboration group named after the OU, for each OU that is being synced.
  14. Go to Directory Sync, and review the list of all users and groups that are yet to be created, updated, or disabled. Click Sync.
    15. Note: You can see the status of all the users/groups after the sync.