Manually (Bulk) Synchronize an Identity Source for Cloud Access Service
Manual bulk synchronization is available when you need to update an entire identity source. For example, suppose you have users who have been disabled in the directory server or moved out of scope from the identity source, and their presence in Cloud Access Service (CAS) exceeds the license limit. You can use manual bulk synchronization to disable those users in CAS before they attempt to authenticate. Those users will eventually be deleted from CAS if they are marked for automatic bulk deletion as described in Mark a User for Automatic Bulk Deletion from the Cloud Access Service.
In contrast, just-in-time synchronization ensures that the identity source in CAS is synchronized each time CAS processes a user authentication. One user record is updated per authentication attempt. For more information, see Just-in-Time Synchronization.
Note: CAS synchronizes only a limited number of users during manual synchronization. Any users who exceed this limit are not synchronized.
Manual bulk synchronization can be used during the initial setup, for example, if you need to synchronize an entire identity source immediately. However, it is not the recommended method for keeping user information up to date. Instead, RSA recommends using automatic just-in-time (JIT) synchronization, which updates user data as they sign in, or performing manual single user synchronization when needed.
Before you begin
- At least one identity router is configured.
- The identity source settings for the Root and Object Class are configured to select users from the correct subtree(s) and published using the Cloud Administration Console.
Procedure
- In the Cloud Administration Console, click Users > Identity Sources.
- Next to the name of the identity source you want to synchronize, select Synchronize from the drop-down menu.
- In the Identity Source Details section, click
Synchronize Now. To stop a synchronization that is in progress, click
Stop Sync. You cannot roll back user records that have already been synchronized.
The Synchronization Status section displays the status of the synchronization job, including the number of users added, users updated, and users not synchronized. If some users could not be synchronized, click the Show Details button to display a list of these users. Up to 400 users can be displayed in each category. The list is refreshed when you resynchronize.Only users whose data has changed in the directory are updated during synchronization. For example, if two users were modified in the directory server, only those two users will be updated. If no changes are detected, the Users Updated count will be 0.
Related Articles
Troubleshooting Cloud Access Service Identity Source Synchronization Number of Views Identity Sources Number of Views Delete the Connection Between the Cloud Authentication Service and RSA Authentication Manager Number of Views Identity Sources for Cloud Access Service Number of Views Unified Directory Identity Sources Number of Views
Trending Articles
RSA Authentication Manager 8.9 Release Notes (January 2026) RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide How to install the jTDS JDBC driver on WildFly for use with Data Collections in RSA Identity Governance & Lifecycle Artifacts to gather in RSA Identity Governance & Lifecycle RSA Authentication Manager 8.8 Setup and Configuration Guide
