Syncing users

After you have successfully completed the tasks in Setup, you can perform a sync to add and/or update user information in the FortiDLP Infrastructure.

You should perform a sync whenever your LDAP directory is updated to ensure the FortiDLP Console reflects the latest user information.

How to perform a sync

Running the tool with photo sync enabled will increase processing time and bandwidth usage. For efficiency, we recommend regularly syncing with photos disabled, and then periodically running the tool with the --photosync=true flag.

1. Open a command-line interface.
2. Navigate to the directory containing the LDAP Sync Tool.
3. Run one of the following commands, where <configuration file> is the path to your configuration file:
   • On Windows:
     • If the configuration file is in the same directory as the LDAP Sync Tool and is named config.yaml, run .\ldap-sync.
     • If the configuration file is not in the same directory as the LDAP Sync Tool, run
       .\ldap-sync --config <configuration file>.
   • On macOS or Linux:
     • If the configuration file is in the same directory as the LDAP Sync Tool and is named config.yaml, run ./ldap-sync.
     • If the configuration file is not in the same directory as the LDAP Sync Tool, run
       ./ldap-sync --config <configuration file>.

The output will indicate the progress of the sync, including the number of users retrieved from your LDAP directory server and the number of users that have been uploaded to the FortiDLP Infrastructure. If you want to stop the sync at any point, press Ctrl + C. When the sync completes, the output will look as follows:

200 users have been uploaded to the stack

You can view your users and labels in the Users module by clicking on the left-hand sidebar of the FortiDLP Console.