Forum Discussion

HyunSim's avatar
HyunSim
Comet
2 months ago

API for LDAP Sync

Hi, Team.

We have checked the KB and API documents and there are only two ways to sync LDAP users which is through Daily Sync feature and 'Sync Now' button. We have asked to Cato Support that if there is a way to automatically sync in defined minutes or hours. (ex. set 5 minutes to automatically sync LDAP users) The response was we have to RFE for that feature. Then I asked them if there is API for LDAP Sync and they lead me to here. So, currently, is there any API query for LDAP Sync we can use?

5 Replies

Sort By
  • AdiR's avatar
    AdiR
    Icon for Cato Employee rankCato Employee
    2 months ago

    Thank you for your question.
    We don't have an API for scheduled LDAP sync, but this an item we plan to address in the future. Can you please elaborate on why do you need it in shorter intervals like 5 minutes? Did you consider moving to SCIM that push chnages in near real time? 

    • HyunSim's avatar
      HyunSim
      Comet
      2 months ago

      Hi Team, Thank you for the response.
      Our customer is not capable of using SCIM right now so they were trying to use LDAP as they are already using Windows Server(AD). So when user on customer side request the SDP User account through ITSM system, they want to automate the process to Sync LDAP as soon as possible. In conclusion, they want to avoid manual processing(like click Sync Now button) for LDAP Sync for every single request for SDP User account in their company.

      • michaelsaw's avatar
        michaelsaw
        Icon for Cato Employee rankCato Employee
        2 months ago

        Hi HyunSim, 

        Appreciate your infromation.

        This is a good point. We hope to understand more on the situation and requirements.
        Can we check how often does new users get added on the AD?
        Would a daily sync (every 24 hours) meet the requirements in this situation?

        Thank you.

  • HyunSim's avatar
    HyunSim
    Comet
    28 days ago

    Sorry for Late response. 

    Our client wants to Sync everytime(imediately if possible, or within 5 minutes) when they add new user on user group since the user need to use SDP Client right away.

    • michaelsaw's avatar
      michaelsaw
      Icon for Cato Employee rankCato Employee
      28 days ago

      Hi HyunSim, 

      Appreciate your feedback.

      Based on your requirements, it would be recommended to reach out to our SE/Sales team to discuss the details and submit an RFE for this (API for LDAP sync).

      Thank you.