Synchronization is available only with the advanced Passwork license

 allows you to match Active Directory and LDAP security groups with Passwork roles. You can use Windows-based domains (Active Directory) and Linux-based domains (OpenLDAP, FreeIPA, etc.) to manage access and roles in Passwork.

The synchronization is performed in the following stages:

You can use DN filters to create nested groups or users. Nested objects will be displayed, but group restrictions and role mapping will not apply to nested groups.

To map roles to security groups, select a security group from the list and click on the plus button on the right. Then select the roles and save the result:

1. Select a group
2. Choose roles to map
3. Save the changes

For synchronization to work, you will need to set up 

You can configure Synchronization settings to:

Passwork stores synchronization logs as part of the background task history.

To view the synchronization log, click the 

Security groups

LDAP synchronization

Debugging

Technical documentation

Technical requirements

Online installation

Offline installation

Linux

Windows Server

Untitled

Ubuntu

Debian

Alma/Rocky/CentOS

Enabling SWAP file on Linux

Docker

Windows Server (PowerShell)

Manual code updates

Migration from installer to PowerShell

Installation migration

Passwork update

Define encryption mode

Windows Server (installer)

Linux (Git)

Passwork update to version 6.5

Initial data migration

Confirm migration in customer portal

Upgrade PHP to 8.3

Passwork update to version 7

Migration of Passwork database objects

Data migration in the Passwork web interface

Actions after migration

Migration to Passwork 7

Health check

Python connector

CLI utility

Docker container for CLI

API & integrations

Web server

Headers

SSL Termination

Passwork server configuration

UI settings

Emergency mode

Advanced settings

Configuring Cron for Linux

Configuring Windows Task Scheduler

Background tasks

Configuring the Event Viewer

Events list from the Activity Log

Recording Activity log to Syslog or Event Viewer

Mailer config

Setting up mail notifications

In case of errors

MongoDB

Updating Passwork components

Mobile applications

Adding a server

Users

Groups

Synchronization

Test authorization

LDAPS setup

DN filters

LDAP settings

Configuring SSO with Keycloak

Configuring SSO with AD FS

Configuring SSO with Microsoft Entra ID (Azure AD)

SSO settings

Examples of creating and restoring MongoDB backups

Examples of authorization settings

Database

Standard installation

Manual installation

Administration

Passwork 6

Mapping LDAP security groups with roles in Passwork

Migration to Passwork 6

Passwork 5

How to update Passwork 4→5 version

Debian 10

Windows server 2016/2019

CentOS

Passwork 4

Update to Passwork 4

Passwork 3

Legacy

User manual

Passwork 6.1

Passwork 6.2

Passwork 6.3

Passwork 6.4

Passwork 7.0

Release notes

Help center