cancel
Showing results for 
Search instead for 
Did you mean: 

AD synchronisation issue

Hi

I configured AD synchronisation for a specific Group in ePOs System Tree. Invoking synchronisation does not move any systems to the group.

I use a AD-Group Type 'Security Group - Global' and the string in 'Container'-Field of 'Synchronisation Settings...' is 'CN=<name>,OU=<name>,OU=<name>,DC=<name>,DC=<name>,DC=<name>,DC=<name>' (real names replaced by <name>) because the AD does not contain any OU containing the same Clients. Is this because 'Security Groups' are not allowed for Synchronizing with AD or is there another error in my reflections?

Using the AD-SnapIn from MMC opens the properties window when clicking on the 'Security Group' and all the Clients are listed when clicking the 'Members'-Tab.

ePO 4.5

Thank you.

Nachricht geändert durch vaccinator on 11/16/09 2:43 AM

Nachricht geändert durch vaccinator on 11/16/09 5:12 AM
2 Replies
Highlighted
McAfee Employee jstanley
McAfee Employee
Report Inappropriate Content
Message 2 of 3

Re: AD synchronisation issue

Check your AD Sync group configuration and make sure the following options is set:

Systems that exists elsewhere in the System Tree:  **Set to -->  Move systems from their current System Tree location to the synchronized group

Re: AD synchronisation issue

Thank you Jeremy

The option was already set to 'Move systems...' but none of the Security Group Members are sorted in the ePO Tree Group when clicking 'Synchronize now'. The 'Members'-Tab of the Secuity-Group Properties in Active Directory users and Computers lists  about 2000 members.

Markus

More McAfee Tools to Help You
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • Visit: Business Service Portal
  • More: Search Knowledge Articles
  • ePolicy Orchestrator Support
  • The McAfee ePO Support Center Plug-in is now available in the Software Manager. Follow the instructions in the Product Guide for more.