A search shows that this question has been asked before, but I did not find a solution to my issue.
Registered AD server used for sync
Sync'ing into "My Organization"
Sync type = Active Directory
"Systems only (as a flat list)" enabled. AD structure does not match System Tree.
Specific OU containers selected.
"Delete the systems from the System Tree" enabled.
"Remove McAfee Agent on next agent-server communication" disabled
Sync task enabled. Tried various times (once a day/twice a day/once an hour)
When the sync task runs it pulls systems correctly, but it does not delete systems that have been deleted from AD ... unless that system is located specifically in "My Organization." It does not delete the system if it is located in any subgroup of "My Organization."
Is this the expected behavior? I feel like this should be deleting systems from subgroups as well.
Unfortunately I have already opened a case on this. The response I got back was...
In your AD Sync Settings, select the "Delete the systems from the System Tree" option and select the "Remove McAfee Agent on next agent-server communication". This would remove this from ePO permanently. ePO will not automatically delete the system from the system tree if the agent is still on the computer. This option can only work if you turn on the machine, and wait for the next ASCI cycle for this to go through.
I know that is not an accurate answer, since I have used this feature at other places.
If the machine you would like to delete has MA present on the machine and is communicating . After deleting the machine from ePO server from AD sync task. If MA from client machine communicates at ASCI then entry will be created again.
Please look into Audit log, search for the machine which should be deleted. Do you see machine deleted/adding system etc?
What version of epo and what is your SR number? You can send it in private message if you want.
Was my reply helpful?
If this information was helpful in any way or answered your question, will you please select Accept as Solution in my reply and together we can help other members?