Why Does Admin Portal Need Access To LDAP?

As part of our Ethical Wall and DLP capabilities we offer to set policies on the basis of LDAP groups.


Access to LDAP is required for getting group membership information to identify relevant policies
and for getting AD user info to be sent to the DLP provider


Since some of the actions of the DLP and the Ethical Wall are done on the Skype for Business Edge
server which is not part of the DMZ, there for this information mentioned above is retrieved from
the portal.


For performance reasons, user info is saved into the DB.