Security, What is synchronized, What is synchronized 13 – Google Apps Directory Sync Administration Guide User Manual

Overview of Google Apps Directory Sync

13

Security

GADS has the following security features:

•

It runs inside your network, on a machine you control.

•

It connects to your LDAP server inside your network through Standard LDAP
or secure LDAP + SSL. This connection occurs on any port you specify, but
defaults to standard LDAP ports.

•

It connects to Google Apps through the Internet via HTTPS on port 443. This
connection can also run through a proxy host in your network.

•

It connects to any mail server using standard SMTP or SMTP over TLS.

•

It does not store LDAP data on the Directory Sync machine. Directory Sync
stores connection details, configuration files, and event logs on the Directory
Sync server, but does not store any LDAP data. All LDAP data is
synchronized with Google Apps and stored as user information on Google
Apps secure servers.

•

It caches some Google Apps information locally on your Directory Sync
server.

What Is Synchronized

The chart below details what gets synchronized by GADS, the equivalent terms
between LDAP and Google Apps, and notes on what is and is not synchronized.

.

LDAP

Google Apps

Synchronizes

Notes

Org Units (OU)

Organizations

Organizations in Google Apps contain multiple
users. Organizations can be used to structure
users by department, location, or other
categories. You can synchronize org structure
automatically, or manually by each
organization.

Mailing Lists

Groups

Mailing lists in LDAP correspond to public
groups in Google Apps. Groups can also be
used to control access to sites and
documents.

Google Apps users can also create private,
user-managed Groups. These are not altered
or synchronized by Google Apps Directory
Sync.

User

Users

In Google Apps, users are organized by email
address, not LDAP Distinguished Name.