Synchronization User Details tab

Use this window to view the detailed results of a user synchronization or download the results to a .csv file

Synchronization Details User Details tab option definitions
Option Definition
Approve Approves the changes displayed in all tabs of the synchronization details.
Reject Rejects the changes displayed in all tabs of the synchronization details.
Download Downloads the synchronization details in a .csv file, for example sync_details.csv.
Back to User Synchronization Returns you to the Directory Services Connector review page.
Add Records Displays the number of email addresses that need to be added in the Control Console and the details for each, including:
  • Address
  • Type
  • New Primary
  • GUID — the globally unique ID (GUID) assigned to the user's address within Active Directory.
  • Username — the username associated with the email address.
  • Distinguished Name — the user's DN identifier used in Active Directory.

When approved, the email addresses are added in the Control Console. These newly added primary accounts are assigned to the ungrouped users and follow the policy settings assigned to this group.

Inactive Displays the number of primary and alias email addresses that are no longer in the Active Directory and the details for each, including:
  • Address
  • Type
  • Original Primary

When approved, the email addresses are set to inactive in the Control Console. Alias addresses that are associated with inactive accounts are deleted.

Primary Changes (Applies only to AD domain synchronizations with Directory Services Connector) Displays accounts with primary email address changes that were administered in Active Directory.
AD Domain Switch Displays user accounts that have been moved on the Active Directory server from one AD domain to another. Details include:
  • Address
  • Original AD Domain
  • New AD Domain
Alias Switch Displays the number of alias email addresses that changed from an alternate primary account to a different primary account and the details for each, including:
  • Address
  • Original Primary
  • New Primary

When approved, the alias accounts are moved from the alternate primary account to the new primary account and the preferences and settings use those from the new primary.

Alias to Primary Displays the number of alias email addresses that changed to primary accounts and the details for each, including:
  • Address
  • Original Primary

When approved, the alias account is removed from the previous primary account and a new primary account is created. The new primary account is assigned to the ungrouped users and follows the policy settings assigned to this group.

Primary to Alias Displays the number of primary email addresses that changed to aliases and the details for each, including:
  • Address
  • New Primary

When approved, the primary account is removed and the alias is added to a different existing primary account. The alias retains the user preferences and settings of the previous primary account.

Type Changes Displays the number of type changes and details for each, including:
  • Address
  • Type
  • Reason

Type changes indicate that an account has changed from the single recipient User type to the multi-recipient Distribution List type or vice versa.

Username Changes User accounts for which the Username has been changed. Details include:
  • Address
  • Original Username
  • New Username
Adoptions User accounts that had been previously unassociated with an AD domain but are now associated with an AD domain after the synchronization. Details include:
  • Address — the user's email address
  • GUID — the globally unique ID (GUID) assigned to the user's address within Active Directory.
  • Username — the username associated with the email address.
  • Distinguished Name — the user's LDAP bind identifier used in Active Directory.
Rejections Displays the number of rejections and details for each, including:
  • Address
  • Type
  • Primary
  • Reason

Rejections include accounts that are listed in the Active Directory but cannot be modified in the Control Console. Typically this is because there are email address in the Active Directory that are not contained within the primary or alias domain that are being synchronized.

Possible reasons include:

  • Alias has been rejected — The email address was rejected when the Control Console was importing it. Typically, an alias email address is rejected when it also exists as a primary email address or as an alias email address for two different primary addresses. In addition, the domain of the alias email address may have been rewritten, which can cause the duplication of email addresses.
  • Primary has been rejected — The email address was rejected when the Control Console was importing it. Typically, a primary email address is rejected when it exists more than once in the input synchronization data. In addition, the domain of the rejected primary email address may have been rewritten and this can cause the duplication of the primary email address.
  • Alias is poorly formatted — The email address is formatted incorrectly in the Active Directory.
  • Primary is poorly formatted — The email address is formatted incorrectly in the Active Directory.
  • Attempted to deactivate a protected address — If an email address is protected in the Control Console but doesn't exist in the Active Directory, it will not be modified.
  • Attempted to convert a protected primary account to an alias — The email address is protected in the Control Console but the Active Directory has tried unsuccessfully to make it an alias of another email account.
  • Unknown domain — The domain of this email address does not exist in the Control Console either as a primary domain or as an alias domain for the selected primary domain for synchronization.
  • Attempt to insert a pre-existing primary or alias — The Active Directory contains an email address that is listed as both a primary address and an alias address.
  • Cannot adopt an alias from an existing local primary user account unless the primary is also adopted — The synchronized AD domain contains an alias address that is associated in the Control Console with a primary address in a different AD domain.
  • No valid primary address could be selected from the aliases given for this account — (Applies only to AD domain synchronizations with Directory Services Connector) The globally unique ID (GUID) with which this alias is associated has no account that is acceptable as a primary email address. All addresses for this GUID will be rejected.
    An address cannot be a primary address for reasons such as the following:
    • The address is in a public domain.
    • The address is already in use by a different account in a different AD domain.
    • The address is an alias of an account in the Control Console that will not be adopted.
  • The email address is already attached to an account in a different AD domain — (Applies only to AD domain synchronizations with Directory Services Connector) The synchronized AD domain contains an email address that is associated in the Control Console with a different account or GUID in a different AD domain.
  • Public address is not valid for the primary address — (Applies only to AD domain synchronizations with Directory Services Connector) The synchronized AD domain contains a public domain address that cannot be an alias for the primary email address of the account.
  • Attempt to modify user on Legal Hold — An email address that was on legal hold within Email Archiving could not be deleted, deactivated, or changed.
  • Bad attribute value has been rejected: <attribute name>; Max length of <# of characters> exceeded — The value for a user attribute had too many characters and was rejected.