Edit Default Security Domain Mappings

Security domain mappings allow you to override the system’s default behavior of adding all users from an LDAP identity source to the top-level security domain. Using security domain mapping, you can configure the system to add users from an LDAP identity source into a specific security domain.

Before you begin

  • The identity source must be in your administrative scope.

  • You must have the Security Domain Mappings permission.


  1. In the Security Console, click Setup > Identity Sources > Default Security Domain Mapping.

  2. In the Identity Source field, select the identity source where you want to edit security domain mappings.

  3. In the Security Domain Mapping section, click Add/Update Mapping.

  4. Modify the security domain mappings.

  5. Click Save.