Google Apps Now Syncs with Directory Systems, Such as Microsoft's Active Directory
According to a post on the Google Enterprise Blog this morning, there's a new tool for Google Apps users that lets businesses sync the user account information in Google Apps with the business's LDAP user directory system. If you're in I.T., you probably already know what that means, but if not let me spell it out for you: Google now syncs with Microsoft's Active Directory.
Of course, there are other systems that use LDAP (Lightweight Directory Access Protocol), including Lotus Domino and even the open source software OpenLDAP, but syncing with Microsoft's Active Directory - the directory system used by businesses worldwide running Windows Server - that's a big deal.
The syncing is made possible by way of a new utility called Google Apps Directory Sync, something that was brought over from Google's Postini security and archiving service. With this tool, businesses no longer have to create an entirely separate user account list within Google Apps - they can just use the user account information already stored within their current LDAP repository. The Directory Sync tool copies over all sorts of directory information to Google Apps, including mailing lists, groups, and user aliases to match up with the organizational schema currently in place in the LDAP system. The sync is performed one-way from the LDAP directory to Google Apps, so there's no fear of the LDAP's server information being updated or altered in any way.
Considering that many Google Apps implementations are used within schools, the time saved by not having to create separate user lists for hundreds or even thousands of students is going to be a lifesaver for the often overworked I.T. professionals. For others who have yet to adopt Google Apps, a tool like this may place the service under consideration for the first time.
Google Apps Directory Sync is now included at no additional cost with Google Apps Premier, Education and Partner Edition customers.
Share
Facebook
Sponsored by
-
Is the Relational Database Doomed?
February 12, 2009 / 136 Comments -
Ironic? New Google Apps Security Features For All Devices Except the Nexus One
February 4, 2010 / 4 Comments -
Facebook's HipHop: Impact on the Enterprise May Go Deep into the Code
February 3, 2010 / 7 Comments -
4 Ways Companies Use Twitter for Business
March 26, 2009 / 54 Comments -
A New Era For Corporate Culture: iPhone Use Doubles in the Enterprise
January 26, 2010 / 4 Comments
-
4 Ways Companies Use Twitter for Business
March 26, 2009 / 54 Comments -
Is the Relational Database Doomed?
February 12, 2009 / 136 Comments -
Facebook's HipHop: Impact on the Enterprise May Go Deep into the Code
February 3, 2010 / 7 Comments -
Ironic? New Google Apps Security Features For All Devices Except the Nexus One
February 4, 2010 / 4 Comments -
SAP's Proof of Concept for Augmented 'Corporate' Reality
February 4, 2010 / 1 Comments
Comments
Subscribe to comments for this post OR Subscribe to comments for all ReadWriteEnterprise posts
In other words you can get your info out of MS but you can't have 2 way sync. Why would businesses want this? It's great for Google but that means they're then trapping that sensitive data on their servers for now. I think a bidirectional synching mechanism is the only way to go. Until then it's a roll over and lock-in strategy.
I may be wrong as I'm just being a lazy blog reader and not reviewing the specs.
It's not an "enterprise" feature, but it'd be great if Google Apps worked with Google Voice. Connecting those two with 2-way sync to LDAP would be fantastic and useful.
I think this is a Big Deal.
Companies often choose on-premise software because of Active Directory. It's a huge differentiator for my company's social intranet software -- the ability to do 2-way sync with Active Directory so users can be set up, groups can be created and the employee directory can be fully populated with zero administration by IT.
The fact that Google Apps didn't provide this kept large installations (100+ users) away. Now that barrier to entry is gone. I expect that over the next year, this will greatly increase the number of organizations that switch to using Google for mail, calendaring, and shared docs.
And the lack of 2-way sync, although often useful, is probably a good thing. As "do-no-evil" as Google is, it's asking too much to let a 3rd-party, remotely hosted service to write to your AD. Read-only is sufficient.
Thanks for the heads up Sarah!
Does anyone have a list of large Lotus Notes shops that are migrating to Google Apps?
Enjoyed the article and agree that if you have AD this is critically important for IT if you don't want to manage users in two totally separate environments. For most all organizations including schools, they have to be able to combine what they have with what they want.
That's the reason Ensim built a way for IT to manage Google Apps using your existing Microsoft infrastructure including Exchange. Management includes full 2-way user provisioning and role-based administration (end user self-service for groups etc.) with the existing Active Directory.
Product plug aside, if you are an organization of any size and want to use Google Apps with AD to contain costs, here is a possible solution to check out.
http://www.ensim.com/products/ensim_unify/google_apps/
If you want a syncronization master class, go buy Zimbra and watch it work with Exchange.
Very good article, especially I like the way you present the information.
For Everybody's Information. Google Apps Sync for Active Directory does not Sync Password for Microsoft Active Directory.
Regards,
Rahul
Regarding two way sync, most organizations see the value in maintaining a single, centralized source for Identity Management. LDAP is a natural fit since they are already administering it.
While Google' Sync is good, SADA Systems, Inc, one of Google top 2 Partners in the US, has developed Single Sign On, Password Sync, Directory Failover and a variety of other custom and branded solution to fill the gaps in the market.
http://www.sadasystems.com/services-and-solutions/google-apps/google-apps-for-the-enterprise
Niv Dolgin,
Director, ITS
SADA Systems, Inc.
corporates will surely take you is tenkyou admin for you admin.