Directory Synchronization - Overview

This article contains information on configuring Directory Synchronization in Mimecast, including integration options for Active Directory, Azure AD, Google Workspace, and Domino Directory to automate user and group management.

Directory Synchronization allows you to securely automate the management of Mimecast users and groups using your company directory, whether that be hosted on-premises or in the cloud. Integrate your company's directory with Mimecast has a number of benefits, ranging from feature enablement to reducing the administrative overhead of configuring and maintaining Mimecast features.
Also see Managing Groups.

If you want to integrate your Directory, the following options are available for you:

On-Premises Active Directory

• LDAP Active Directory Sync: Using an inbound LDAP(S) connection, Active Directory users and groups are automatically synchronized to Mimecast. This requires a firewall change to allow connectivity from Mimecast to your Domain Controllers.
  See Enabling LDAP Directory Synchronization for Active Directory.
• Active Directory Sync using the Mimecast Synchronization Engine: Using the Mimecast Synchronization Engine and a secure outbound connection from your internal network, Active Directory users and groups are securely and automatically synchronized to Mimecast.
  See Mimecast Synchronization Engine - Directory Synchronization.

Azure Active Directory

• Microsoft Azure - Standard: If your organization uses Microsoft 365 or is already synchronizing an on-premises Active Directory to Microsoft Azure, Mimecast offers a cloud to cloud Azure Active Directory Sync to allow you to automate the management of your users and groups.
  See Directory Synchronization - Azure Active Directory Integration.
  The connection between the Mimecast and Microsoft environments gets facilitated via a Connector. Mimecast takes you through a consent workflow and once consent has been granted, Mimecast will use the Connector to obtain a secure token for communication with your Azure tenant. The same functionality is also offered for Microsoft Azure - GCC HIGH.

Google Workspace

• Google Workspace Directory Synchronization: To configure a directory synchronization connection for Google Workspace, you must perform external tasks in the Google API and Administration Console.
  See Configuring Google Workspace for Directory Synchronization.

Domino Directory

• Domino Directory: If your organization uses Domino Directory, Mimecast offers a LDAP Sync feature to automate the management of your users and groups.
  See Enable LDAP Directory Sync for Domino Directory.

The graphic below displays the Directory Sync workflow: