To sync passwords between a user's Mac and Google account, Self Service+ uses Google's Secure LDAP service. This service is available with the following Google Workspace subscriptions: Business Plus, Enterprise, Education Fundamentals, Education Standard, Teaching and Learning Upgrade, and Education plus.
After a user authenticates in Self Service+, it uses the entered network username and password to attempt authentication to the LDAP server. If authentication fails, users are prompted to sync passwords.
To establish a secure connection between the computer and your organization's LDAP server domain, an LDAP certificate must be installed in a computer's system keychain. This certificate must be downloaded from an LDAP client in your Google admin console and then converted to .p12 format.