18.12 Organizational Structure Synchronization

Chapter 1: Introduction
- 1.1 Preface
- 1.2 Features Overview
Chapter 2: Installation and Deployment
- 2.1 Basic Operating Framework
- 2.2 Software and Hardware Requirements
- 2.3 Installation and Deployment of Server and Console
- 2.4 Installing and Deploying the Repeater
- 2.5 Installing and Deploying the Web Server
- 2.6 Deploying the Client Module
- 2.7 Creating the USB Encryption Client
- 2.8 System Upgrade
- 2.9 Uninstallation
Chapter 3: Console
- 3.1 Console Login
- 3.2 Console Overview
- 3.3 Computer and User Operations
- 3.4 Policy Roles
- 3.5 Control
- 3.6 Auxiliary Functions
Chapter 4: Statistics
- 4.1 Application Statistics
- 4.2 Web Browsing Statistics
- 4.3 Network Traffic Statistics
Chapter 5: Logs
- 5.1 Basic Event Logs
- 5.2 Application Logs
- 5.3 Web Browsing Logs
- 5.4 Keyword Search Logs
- 5.5 Document Operation Logs
- 5.6 CD/DVD Burning Operation Logs
- 5.7 Shared Document Operation Logs
- 5.8 Remote Desktop Logs
- 5.9 Document Print Logs
- 5.10 Removable Storage Operation Logs
- 5.11 Asset Change Log
- 5.12 Windows System Logs
- 5.13 Policy Logs
- 5.14 System Event Logs
Chapter 6: Policies
- 6.1 Introduction to Policies
- 6.2 Basic Policies
- 6.3 Device Control Policies
- 6.4 Application Policies
- 6.5 Web Browsing Policies
- 6.6 Screen Recording Policies
- 6.7 Logging Policy
- 6.8 Remote Control Policies
- 6.9 Custom Configuration Policies
- 6.10 System Alert Policies
- 6.11 Network Traffic Control Policies
- 6.12 Network Control Policies
- 6.13 Email Control Policy
- 6.14 IM File Transfer Policy
- 6.15 Upload Control Policy
- 6.16 Document Operation Policy
- 6.17 Print Control Policy
- 6.18 Removable Storage Authorization Policy
- 6.19 Software Installation Management Policy
Chapter 7: Monitoring
- 7.1 Instant Messaging Content
- 7.2 Email Content
- 7.3 Real-Time Screen Monitoring
- 7.4 Multi-Screen Monitoring
- 7.5 Screen History Query
- 7.6 Screen History Viewer
Chapter 8: Remote Maintenance
- 8.1 Remote Maintenance
- 8.2 Remote Control
Chapter 9: Security Monitoring
- 9.1 All Security Conditions
- 9.2 Security Check Settings
- 9.3 Security Check Logs
- 9.4 Security Check Status
Chapter 10: Sensitive Information
- 10.1 Enable/Disable Sensitive Content Inspection Authorization
- 10.2 Sensitive Information Exfiltration Control Policy
- 10.3 Sensitive Information Local Control Policy
- 10.4 Document Label Policy
- 10.5 Document Classification Permission Policy
- 10.6 Sensitive Information Logs
- 10.7 Document Tag Logs
- 10.8 Sensitive Information Scanning Tools
- 10.9 Full-Disk Sensitive Information Scan Tasks
Chapter 11: Visual Perception
- 11.1 Enable/Disable Visual Perception Authorization
- 11.2 Visual Perception Settings
- 11.3 Capture Logs
- 11.4 Client Usage
Chapter 12: Watermarks
- 12.1 Watermark Policies
- 12.2 Watermark Logs
- 12.3 Watermark Code Query
- 12.4 Document Watermark Extraction
- 12.5 Document ID Scanning Task
Chapter 13: Asset Management
- 13.1 Asset Management
- 13.2 Software Version Management
- 13.3 Patch Management
- 13.4 Vulnerability Assessment
- 13.5 Software Distribution
- 13.6 Software Uninstallation
Chapter 14: Category Management
- 14.1 Application Categories
- 14.2 Website Classification
- 14.3 Time Type Categories
- 14.4 Removable Storage Categories
- 14.5 Network Address Categories
- 14.6 Network Port Categories
- 14.7 Software Installation Package Rule Repository
- 14.8 Software Uninstallation Categories
- 14.9 Email Categories
- 14.10 Sensitive Information Classification Library
- 14.11 Watermark Templates
- 14.12 User Permission Template Categories
- 14.13 Condition Library
Chapter 15: Request Management
- 15.1 Desktop Request Management
- 15.2 Encryption Request Management
- 15.3 Superior Approval
- 15.4 Permission Viewing
- 15.5 Request Approval Permission Settings
- 15.6 Self-Record Permission Settings
- 15.7 Self-Record Logs
- 15.8 Desktop Request Document Upload Settings
- 15.9 Client Requests
- 15.10 Client Self-Approval
- 15.11 Proxy Administrator
Chapter 16: Network Access Detection
- 16.1 Starting Network Access Detection
- 16.2 Enabling Access Control
- 16.3 Other Settings
Chapter 17: Data Backup
- 17.1 Database Backup
- 17.2 Console Backup Management
Chapter 18: Tools
- 18.1 Account Management
- 18.2 Computer Management
- 18.3 USB Encryption Client Management
- 18.4 Alert Messages
- 18.5 Mail Report Settings
- 18.6 Network Access Gateway Management
- 18.7 Policy Application Query
- 18.8 Client Tools
- 18.9 Server Time
- 18.10 Relay Server Management
- 18.11 Policy and Library Synchronization Management
- 18.12 Organizational Structure Synchronization
- 18.13 Client Upgrade Management
- 18.14 Options
Chapter 19: User System Management
- 19.1 Server Configuration
- 19.2 Login Authentication
- 19.3 Associated Authentication
- 19.4 Associated Information
Chapter 20: Audit Console
- 20.1 Login to Audit Console
- 20.2 Audit Console Interface Overview
- 20.3 Using the Audit Console
Chapter 21: Document Security Management
- 21.1 Terminology Overview
- 21.2 Operation Workflow
- 21.3 Enable/Disable Encryption Authorization
- 21.4 Authorized Software Management
- 21.5 Secure Zone Management
- 21.6 External Release Object Management
- 21.7 External Release Configuration Template Management
- 21.8 Encryption Permission Settings
- 21.9 Encryption Parameter Settings
- 21.10 Long-Term Offline Authorization Settings
- 21.11 Secure Communication Settings
- 21.12 Encrypted Document Operation Logs
- 21.13 Full-Disk Scan
- 21.14 Document Management
- 21.15 Intelligent Terminal Management
- 21.16 USBKey Management
- 21.17 Backup Server Settings
- 21.18 Custom Keys
- 21.19 Encrypted Document Backup
Chapter 22: Windows Encrypted Client
- 22.1 Client Operating Status
- 22.2 File Explorer
- 22.3 Encrypted Document Scan Tool
- 22.4 Encrypted Files
- 22.5 Decrypt Files
- 22.6 Request Decryption
- 22.7 Read-Only Access
- 22.8 Export
- 22.9 Request Export
- 22.10 Export Extraction
- 22.11 Modify Encrypted Document Security Attributes
- 22.12 Modify Encrypted Document User Permissions
- 22.13 Request Change of Encrypted Document Attributes
- 22.14 View Document Attributes
- 22.15 Request Temporary Offline
- 22.16 View Request Information
- 22.17 Encrypted System Information
- 22.18 Offline Authorization Login
- 22.19 Import License File
- 22.20 Login and Logout of the Encryption System
- 22.21 Parameter Settings
- 22.22 Using the Encryption USBKey
- 22.23 Proxy Administrator
- 22.24 Force Update Policy
Chapter 23: Linux Encrypted Client
- 23.1 Encrypted Document Scanning Tool
- 23.2 Encryption
- 23.3 Decryption
- 23.4 Request Decryption
- 23.5 View Request Information
Chapter 24: Mac Encrypted Client
- 24.1 Encrypted Document Scanning Tool
- 24.2 Encryption
- 24.3 Decryption
- 24.4 Request Decryption
- 24.5 View Request Information
Chapter 25: USB Encrypted Client
- 25.1 Launch and Exit
- 25.2 Update Policy
Chapter 26: External Viewer
- 26.1 Installation
- 26.2 Authorization
- 26.3 Time Synchronization
- 26.4 USBKey Management
- 26.5 View External Documents
Chapter 27: Backup Encryption Server
- 27.1 Installation and Operation
- 27.2 Check Backup Server Status
- 27.3 Login Password Settings
- 27.4 Backup Server Configuration
- 27.5 View Client Status
- 27.6 View Connection List
- 27.7 Create Backup Mode Authorization File
- 27.8 Super Authorization
Chapter 28: Document Storage Request
- 28.1 Installation and Deployment
- 28.2 WEB Management
Chapter 29: Cloud Document Backup Server
- 29.1 Installation and Deployment
- 29.2 WEB Management Portal
- 29.3 WEB Audit Client
- 29.4 Cloud Document Backup Scan Tool
- 29.5 Cloud Document Backup Operation Logs
- 29.6 Upgrading the Cloud Document Backup Server
Chapter 30: Reporting System
- 30.1 Terminology
- 30.2 Reporting Console
- 30.3 Predefined Reports and Queries
- 30.4 General Report Settings
  - 30.4.1 Condition Settings
  - 30.4.2 Statistical Settings
- 30.5 Report Statistics Content
- 30.6 Template Management
- 30.7 Period Management
- 30.8 Indicator Management
- 30.9 Periodic Reports
- 30.10 Query
- 30.11 Historical Reports
- 30.12 Email Reports
- 30.13 Data Center
Chapter 31: WEB Console
- 31.1 Logging in to the WEB Console
- 31.2 Introduction to the WEB Console
- 31.3 Computer and User Operations
- 31.4 Policy Roles
- 31.5 Home
- 31.6 Statistics
- 31.7 Logs
- 31.8 Encryption Logs
- 31.9 Monitoring
- 31.10 Policies
- 31.11 Encryption Policies
- 31.12 Category Library
- 31.13 Settings
Chapter 32: WEB Approval
- 32.1 Desktop Request Management
- 32.2 Encryption Request Management
Chapter 33: WEB Reports
- 33.1 Home
- 33.2 Reports
- 33.3 Data Center
Chapter 34: Software Center
- 34.1 Installation & Deployment
- 34.2 Software Center Server
- 34.3 Software Center Client
- 34.4 Software Center Client Logs
Chapter 35: Security Viewer
- 35.1 Software and Hardware Requirements
- 35.2 Installation
- 35.3 Authorization
- 35.4 Viewing Encrypted Files
- 35.5 Encrypting/Decrypting Files
- 35.6 Sharing Files
- 35.7 Recent and Favorites
- 35.8 Settings
- 35.9 Resetting Password
Chapter 36: Security Approval App
- 36.1 Software and Hardware Requirements
- 36.2 Installation
- 36.3 Login
- 36.4 Application Management
- 36.5 Settings
- 36.6 Account
Chapter 37: Dedicated Burning Tool
- 37.1 Interface Overview
- 37.2 Burning
- 37.3 Configuration File
Chapter 38: Access Gateway
- 38.1 Network Architecture
- 38.2 Device Introduction
- 38.3 Device Deployment
- 38.4 Management Interface Overview
- 38.5 Home Page
- 38.6 Network Parameters
- 38.7 Access Gateway Configuration
- 38.8 Server Management
- 38.9 Guest Login Management
- 38.10 Status Information
- 38.11 System Management
- 38.12 Access Gateway Logs
- 38.13 Other Operations
- 38.14 Super Mode
- 38.15 Usage Example
Chapter 39: Secure Access Gateway
- 39.1 Network Architecture
- 39.2 Device Overview
- 39.3 Device Deployment
- 39.4 Basic Information
- 39.5 Network Parameters
- 39.6 Scope Settings
- 39.7 Application System Protection
- 39.8 File Sharing Protection
- 39.9 Status Information
- 39.10 System Tools
- 39.11 Super Mode
- 39.12 Usage Example

Icon	Description
	Add a synchronization configuration.
	Modify the selected synchronization configuration.
	Delete the selected synchronization configuration.
	Execute the selected synchronization configuration immediately.
	View the selected synchronization configuration to see its execution results; if none is selected, display results for all configurations.

Parameter	Description
Connection Settings	Enter AD or LDAP server details so the server can connect and retrieve the organizational structure.
Configuration Name	Name of the configuration; if left blank, the domain name will be used by default.
Server Type	Select the server type: Domain Server or LDAP Server.
Domain Name	The domain name of the server to be synchronized.
Domain Server Address	The IP address of the server to synchronize. If LDAP Server is selected, click Advanced to configure the LDAP port, protocol version, SSL usage, and whether to use anonymous connection. If Anonymous Connection is not checked, manually enter the specified username and password. Username format: cn=xx,ou=xx,dc=xx,dc=xx Example: For LDAP domain Dep.com, with user userA in group Sales, to log in as userA, enter: cn=userA,ou=Sales,dc=Dep,dc=com Password: Enter the password corresponding to userA.
Login Account	If a Domain Server is selected, enter a domain user account authorized to access the AD structure.
Password	Password for the AD domain login account.
Enable Automatic Synchronization	Default is unchecked. Check this option and set the synchronization interval to enable automatic synchronization according to the specified interval.
Object Settings	Specify which domain objects (including domain computers and users) are synchronized to designated locations on the server. A single synchronization configuration can contain multiple object settings, enabling multiple synchronization relationships. Icons at the top-right of the Object Settings section allow Add, Modify, Delete, and Preview actions. Click the icon to add an object setting. Detailed parameter explanations are provided below.
Source Settings	Configure the source for the domain synchronization, specifying which organizational units (OUs) in the domain to synchronize.After configuring the connection settings, click Test Connection. Only when the connection succeeds can the source settings be selected.
Source Selection	Click the icon button to choose the groups to synchronize. Multiple selections are supported, but cross-level selection is not allowed.
Exclusion List	Click the icon button to select objects to exclude from synchronization. Excluded objects will not be synchronized. You can select one or more computers, users, or organizational units, including across levels.
Target Settings	Specify where the selected domain organizational units will be synchronized in the console. Supports synchronization to computer groups and user groups.
Computer Group	Click the icon button to select the target computer group in the console for synchronization. The selected source structure will sync to this target, and domain computers will be automatically assigned to the corresponding group after installing the client.When setting the computer group, a synchronization mode must be selected. See the Synchronization Mode section for details.
User Group	Click the icon button to select the target user group in the console for synchronization. All users in the selected source structure will be synchronized to this target location.
Other Settings	Miscellaneous settings
Do Not Import Empty OUs	If checked, OUs with no objects in the source will not be imported; if unchecked, all selected OUs will be imported. Checked by default.
Sync Only Source Computers	Only clients corresponding to computers in the source domain OUs are synced to the console’s computer groups.
Sync Only Source Users	Only clients corresponding to users in the source domain OUs are synced. When a client connects, the logged-in user is matched to the source users; if a match is found, the client is synced to that user’s group. If no match, the client is placed in “Ungrouped.”
Sync Source Computers and Users (User Priority)	Synchronize client machines to the console’s computer group based on both computers and users from the source domain organizational units.After a client installs the client software and connects to the server, the logged-in user on the client is first matched against the source users. If a match is found, the client is synced to that user’s group in the source; if no user match is found, the client computer is then matched against the source computers. If a computer match is found, the client is synced to that computer’s group in the source. If neither user nor computer matches, the client is assigned to the ungrouped category.
Sync Source Computers and Users (Computer Priority)	Synchronize client machines to the console’s computer group based on both computers and users from the source domain organizational units. After a client installs the client software and connects to the server, the client computer is first matched against the source computers. If a match is found, the client is synced to that computer’s group in the source; if no computer match is found, the logged-in user on the client is matched against the source users. If a user match is found, the client is synced to that user’s group in the source. If neither computer nor user matches, the client is assigned to the ungrouped category.

Attribute Name	Description
Operation Type	Includes: Add, Move, Rename, Failure.
Object Type	Type of synchronized object, including Computer, Computer Group, User, User Group.
Object Name	Name of the synchronized object.
Description	Description of the event corresponding to the object type.

Query Criteria	Description
Time	General query condition.
Operation Type	Defaults to All; you can also select a specific operation type from the dropdown.
Object Type	Filter by object type to view synchronization logs for a specific type.
Object Name	Search by object name to find logs for a specific object; supports fuzzy search.
Description	Search by description; supports fuzzy search.

18.12 Organizational Structure Synchronization

18.12.1 Synchronization Configuration

Add Configuration

18.12.2 Synchronization Logs

18.12.3 Exception Objects

Don't see what you're looking for?