Configuring directories is the foundational step for establishing accurate user identification across your network. By connecting the Cloud Identity Engine to your organization's directory services—whether on-premises Active Directory, cloud-based providers like Microsoft Entra ID (Azure AD) and Okta, or a local CIE directory—you enable the engine to synchronize user, group, and device attributes.

This synchronization creates a unified view of identity, allowing you to enforce security policies based on actual users and their roles rather than static IP addresses. For on-premises environments, this involves installing the Cloud Identity Agent to securely collect attributes, while cloud directories connect directly via APIs or the SCIM protocol. Once configured, the engine continuously updates this data, ensuring that access controls automatically adapt as users move departments or change roles within your organization.