From 7f86f2d4f388602a4bc0309c3ef5367c27036eab Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Agn=C3=A8s=20Toulet?=
 <35176601+AgnesToulet@users.noreply.github.com>
Date: Mon, 24 Feb 2020 10:48:07 +0100
Subject: [PATCH] Docs: Add info on active LDAP sync (#22347)

* Docs: Add info on active LDAP sync

* Update docs/sources/enterprise/enhanced_ldap.md

Co-Authored-By: Leonard Gram <leo@xlson.com>

* Docs: remove usage of "he" in LDAP sync

Co-authored-by: Leonard Gram <leo@xlson.com>
---
 docs/sources/enterprise/enhanced_ldap.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/docs/sources/enterprise/enhanced_ldap.md b/docs/sources/enterprise/enhanced_ldap.md
index 1603f760779..d28520bbb6b 100644
--- a/docs/sources/enterprise/enhanced_ldap.md
+++ b/docs/sources/enterprise/enhanced_ldap.md
@@ -38,7 +38,9 @@ a user as member of a team and it will not be removed when the user signs in. Th
 
 In the open source version of Grafana, user data from LDAP will be synchronized only during the login process when authenticating using LDAP.
 
-With this feature you can configure Grafana to actively sync users with LDAP servers in the background. Role and team membership will be updated, removed users will be disabled and logged out. Only users that have logged into Grafana at least once will be synchronized.
+With this feature you can configure Grafana to actively sync users with LDAP servers in the background. Only users that have logged into Grafana at least once will be synchronized.
+Users with updated role and team membership will need to refresh the page to get access to the new features.
+Removed users will be automatically logged out and their account disabled. They will be displayed in the Server Admin / Users page with a `disabled` label. Disabled users will keep their custom permissions on dashboards, folders and datasources so if you add them back in your LDAP database, they will have access to the application with the same custom permissions as before.
 
 ```bash
 [auth.ldap]