Showing results for 
Search instead for 
Did you mean: 

AD synchronisation issues


I have 2 issues:

Epo 4.5 does not handle my exceptions list correctly. It seems that Epo cannot cope with a AD directory called DefaultMigrationContainer... (only visible in AD with Advanced Features turned on). This is in the exceptions list but Epo does synchronise it.

Anybody has the same problem?

I created an extra group in the system tree where I put my machines with the Tag  No Virusscanner. But everytime I synchronise it disappears. As far as I can remember this behaviour did not occur in Epo 4.

Can McAfee help me with this.


2 Replies
McAfee Employee jstanley
McAfee Employee
Report Inappropriate Content
Message 2 of 3

Re: AD synchronisation issues

Both issues *may* be explained by the same thing. You may have multiple AD Sync groups and you have added the exclusion to one of the groups but not the other. Similarly if you have one of the AD Sync groups set to "Move systems from their current System Tree location to the synchronized group" it will move the machine from whatever directory it resides in to one that matches the AD Sync group. You could also have it set to "Delete the systems from the System Tree".

The easiest way to tell if you have multiple AD Sync groups defined is to define a new server task for AD Sync (or modify your existing one) and select "Selected synchronized groups" then click the "Select Synchronized Groups" button and all your AD Sync Groups will be displayed.

Re: AD synchronisation issues

Jeremy, thanks for your reply.

But my synchronisation setting is set to Leave Systems .....   I did this for the same reason you mentioned.

I synchronise just one group but I decided to rebuild my System Tree.

I now created an extra group under My Organization and then let the Server Task synchronise with the new group.

I made a mistake by syncing with the My Organization group. This old sync removes offcourse my self created groups.

With the new sync in place I can create new groups without being thrown away.

But 1 issue remains. The Default Migration Container OU is still being synchronised while being in the exceptions list.

Any other ideas?


Problem Solved. Why I don't know but syncing the AD groups is working fine.

Message was edited by: dinozoff on 12/30/09 8:55:49 AM CET
More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator