This document discusses synchronizing user and group information between an SRAM collaboration and iRODS. It describes challenges in keeping the systems synchronized as users and groups are added or removed. The proposed solution uses a Python module to read from the SRAM LDAP and update the iRODS server and SSH server. It also details how user authentication would flow between the SSH server and iRODS using a PAM plugin to redirect to the SRAM IDP for authentication. Components involved include the Python sync module, iRODS PAM plugin, and adjusted iRODS iCommands.