Integration with an external directory service

Kaspersky Secure Mail Gateway can connect to servers of external directory services used by your organization over the LDAP protocol.

A connection to an external directory service via the LDAP protocol enables the Kaspersky Secure Mail Gateway administrator to:

• Add senders or recipients from an external directory service to message processing rules.
• Use the autocompletion feature on Sender email and Recipient email fields when filtering copies of messages of corporate LAN users in Backup.

After configuring the LDAP server connection, the program automatically synchronizes data with the Active Directory domain controller every 30 minutes. If you need to update user account data immediately (for example, after adding a user), you can start the synchronization manually.

Each cluster node synchronizes independently of other nodes. As a result of a successfully synchronization, the LDAP cache stores the following information:

• Accounts of all users in the domain
• Groups to which domain users belong
• Email addresses of domain users

The program stores and uses this data until the next synchronization is initiated. If the domain controller is not available, the last received data is used. After deleting the LDAP server connection, all LDAP cache data is deleted.

In this Help section Creating a keytab file Adding a LDAP server connection Deleting a LDAP server connection Modifying LDAP server connection settings Manually starting synchronization with the Active Directory domain controller

Page top