cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Former Member
Not applicable
Report Inappropriate Content
Message 1 of 9

AD sync

Epo mcafee 5.3.0 .I have created a subgroup under main group for testing purpose. A policy is applied on subgroup and subgroup includes machines. Now when AD sync happens the subgroup is automatically wiped out and machine returns to its original group. Also the policy on the group is wiped out. i need the machine to stay in the same testing group even after the AD sync. Can someone help me with this??

8 Replies
catdaddy
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 2 of 9

Re: AD sync

Successfully moved from Support Forums to ePolicy Orchestrator (ePO) > Discussions

For better exposure and assistance.

Cliff
McAfee Volunteer
Former Member
Not applicable
Report Inappropriate Content
Message 3 of 9

Re: AD sync

System Tree Sorting is disabled?

Former Member
Not applicable
Report Inappropriate Content
Message 4 of 9

Re: AD sync

No

tao
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 5 of 9

Re: AD sync

"....Now when AD sync happens the subgroup is automatically wiped out and machine returns to its original group...."

....are the subgroup and subgroup setup within AD?

"No"

When using this AD synchronization, changes in the AD structure are carried over into your System Tree structure at the next synchronization. When systems or containers are added, moved, or removed in Active Directory, they are added, moved, or removed in the corresponding locations of the System Tree.

If this information was helpful or has answered your question, please select Accept as Solution. This will assist other memebers
tao
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 6 of 9

Re: AD sync

When using this AD synchronization, changes in the AD structure are carried over into your System Tree structure at the next synchronization. When systems or containers are added, moved, or removed in Active Directory, they are added, moved, or removed in the corresponding locations of the System Tree.

So, the question becomes, "...applied on subgroup and subgroup includes machines..." are the subgroup and subgroup setup within AD?

If this information was helpful or has answered your question, please select Accept as Solution. This will assist other memebers
Former Member
Not applicable
Report Inappropriate Content
Message 7 of 9

Re: AD sync

No

Troja
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 8 of 9

Re: AD sync

Hello,

i would suggest using two Groups.

My Organization -> My Company -> Endpoints.

The Policy is assigned on Group My Company. So you can ensure that alsways the right Policy is assigned. Regardless what happens with Group Endpoints.

If there are endpoints located in another Group like My Organization -> Company2 you can choose if the endpoints should be moved during AD sync.

AD_Sync.jpg

Hope This helps,

Cheers

Former Member
Not applicable
Report Inappropriate Content
Message 9 of 9

Re: AD sync

​, you can follow what Thorsten suggested IF you are applying policies on a particular system tree folder. Another solution is to create a tag in the tag catalog (name something like "test.VSE"). Manually assign this tag to your target systems. When you create your custom/test policies, simply apply it to systems with that specific tag "test.VSE". This way your systems could be anywhere in the system tree but they will retain your test policies or tasks.

Hope this helps.

You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community