Tuesday, April 12, 2011

Google Apps Directory Sync Exclude Organization

With release 2.01 of Google Apps Directory Sync you can exclude organizations within your Google Apps domain from being sychronized.  This avoids having to individually exclude accounts like administrators or any other account that isn't in your LDAP or Active Directory.

However, there is zero documentation provided and we've found that only substring match will work.

Note also that there is an issue we confirmed with Google support that should be fixed in a future release where this exclusion rule will not work on any usernames that contain capital letters.  So if the username is Username@yourdomain.com instead of username@yourdomain.com this exclusion rule won't work on that account.  We had to use the GAM command line tool to rename some accounts to work around this issue for a customer.

If you would like some assistance with Google Apps Directory Sync feel free to contact Interlockit.com.


  1. Thank you for this post. I think Google's term of 'Organization Complete Path' was tripping me. I stumbled across you post about using just the suborgname and users are being excluded - finally. Thank you for taking the time to share this.

    1. You're welcome. Thank you for taking the time to share your feedback.


Note: Only a member of this blog may post a comment.