Currently, Cloud Sync provides the core functionality for managing accounts in Zivver with Exchange Online as source data, covering basic synchronization tasks. More complex scenarios will be addressed in future updates.

Functionalities

The following functionalities are included in this first version of Cloud Sync:

• Create and update user and functional accounts: Automatically creates and updates both user and functional accounts in Zivver by pulling information from Exchange Online user and shared mailboxes respectively.

• Suspend user and functional accounts: Automatically suspend accounts in Zivver if the corresponding mailbox is either removed from Exchange Online, suspended in Exchange Online, the primary email address does not match with configured domains, or is not part of the Cloud Sync Source Filter (when configured).

• Manage delegated access to users and functional accounts: Assigns and removes delegate access in Zivver if users have Full Access mailbox permissions in Exchange.

• Logging: Provides detailed logs of actions taken during the synchronization process for tracking and auditing purposes. Log levels can be specified. Logging is also sent to Zivver for monitoring.

• Preview mode: Allows administrators to preview and verify proposed changes before they are executed.

• Update display name: Synchronizes and updates user or functional account display names in Zivver based on Exchange Online display name.

• Add and remove email aliases: Automatically adds or removes secondary smtp addresses in Zivver to reflect changes in Exchange Online.

• Domain filter: Filters accounts based on specified domain names, allowing for more targeted account management.

• Source filter: Option to only include mailboxes that are member of the groups specified in the source filter.

• Indirect delegations for groups (first level): This version can assign delegated access to functional accounts through membership to a group. This is done for the first level of groups. Further levels (nested groups) are not yet supported.

• Email report: Automatic email reports after every Cloud Sync job.

• Validations for significant numbers of changes: Failsafe machinism that prevents updating, creating or suspending more than 10 % of the accounts in Zivver. The user needs to confirm that this is intended by adding the allow_large_sync parameter.

Limitations

While Cloud Sync is meant to cover the basic account synchronization use case, several limitations apply. Depending on how these limitations impact your organization, you can take one of these three approaches:

1. Use Cloud Sync for daily synchronisations, and in addition use the Synctool for special functions (e.g. deleting accounts, merging guest accounts)
2. Use Cloud Sync for daily synchronisations, and in addition use the Zivver administrator portal for special functions (e.g. deleting accounts, merging guest accounts)
3. Keep using the Synctool until blocking limitations have been resolved

Use the Synctool for special functions

The following actions are not supported in Cloud Sync yet, but only need to be performed every once in a while. For these you can use a local setup of the Synctool, until the functionality is supported in Cloud Sync. Set up your Synctool locally by following these installation instructions and adding an Exchange Online source with MFA authentication:

• Change primary email address: Changing the primary email address of a Zivver account can be done manually by the admin or the users, or automated with the Synctool (if the Account Mapping functionality is enabled).

• Account deletion: Irreversibly deleting accounts if suspended and not present in the source is not supported in Cloud Sync.

• Account merging: Merging Zivver accounts, when aliases are freemium or business accounts cannot be done by Cloud Sync.

• SsoAccountKey updates: Updating the SsoAccountKey in Zivver is not supported in Cloud Sync. This is usually only needed for troubleshooting reasons.

• Mobile phone number management: Adding or changing mobile phone numbers for two-factor authentication in Zivver is unsupported in Cloud Sync.

Use the administrator portal for special functions

The below items cannot be performed by either the Synctool or Cloud Sync. Please use the Zivver administrator portal to perform these actions:

• Account type modification: Switching account types between user and functional accounts is not possible.

• Administrator promotion or demotion: Changing roles between user and admin based on source variables is not supported. It is also not possible to change roles of administrators if Role-Based Access Control is used.

• Timezone or language changes: Altering account timezone or language settings based on source data is not supported in an automated way.

• Active session management: Deleting active sessions in Zivver is not possible.

• Change displayed sender settings: Changing the displayed sender settings is not supported in Cloud Sync or the Synctool.

Keep using the Synctool

If any of the below synchronisation options apply to your synchronisation, then we recommend to use the Synctool for now. If these more complex configurations are required for your organization, tell us about your use case so that we can consider supporting this in the future.

• Source filter on exchange attribute: Within Cloud Sync, is not possible to select the Exchange source based on specific attributes for more refined synchronization.

• Synchronization options: This version of Cloud Sync will execute all account synchronization actions, it is not possible to select a particular action (for instance updating functional accounts).

• Custom attribute mapping: The ability to map custom Exchange fields to Zivver fields is not implemented in Cloud Sync.

• Nested shared mailbox synchronization: Synchronizing nested shared mailboxes for delegations and filtering on nested group membership is not available.

• Password login support: Supporting syncs for organizations not using Single Sign-On (SSO) is not possible.

• Syncs longer than 3 hours: The current setup supports synchronizations of maximum three hours.