The automated process of synchronizing user group memberships between an external identity provider (such as LDAP, SAML, or OAuth) and LogScale groups during user login. Group synchronization enables organizations to centrally manage user access permissions in their existing identity management systems while automatically propagating those permissions to LogScale. The synchronization is one-way from the identity provider to LogScale, and can be configured for either 1:1 mapping (one external group maps to one LogScale group) or, with the OneToManyGroupSynchronization feature enabled, one-to-many mapping (one external group maps to multiple LogScale groups). Group synchronization uses either lookupName or displayName matching to map external groups to LogScale groups, and users remain members of synchronized groups until their next login updates the membership.