Sync Rules

Sync Rules

Sync Rules determine how changes made in AD are reflected in Password Boss. The Sync rules are configured from the Password Boss Portal by editing your Active Directory Connector.

The same sync rules are available for both the Active Directory Connector and the Azure Active Directory Connector.
Tip - click the images to make them larger

787787

Tip - click the images to make them larger

  1. When a new user account is synced from Active Directory to Password Boss
  • Create a user account in Password Boss. This is the recommended setting and will work best for most businesses.
  • Create a pending user account in Password Boss that an admin must approve. When this setting is chosen the new accounts will remain in a pending status until an admin manually approves the accounts in the Password Boss Portal.
  1. When a user account is deleted in Active directory
  • Disable the user account in Password Boss. This is the recommended setting and will work for most businesses. Note: there is no way to automatically delete accounts in Password Boss from the Active Directory connector. This is a safety mechanism to avoid accidentally deleting Password Boss accounts if an error is made in AD.
  • Remove the user from your account and convert the user to a personal account. This setting will generally only be useful for businesses where users use their personal email addresses for their Password Boss accounts.
  1. When a user account is disabled in Active Directory
  • Disable the user account in Password Boss. This is the recommended setting and will work for most businesses.
  • This setting will generally only be useful for businesses where users use their personal email addresses for their Password Boss accounts.
  1. When an Active Directory account is removed from syncing to Password Boss
  • Disable the user account in Password Boss. This is the recommended setting and will work for most businesses.
  • Remove the user from your account and convert the user to a personal account. This setting will generally only be useful for businesses where users use their personal email addresses for their Password Boss accounts.