One other thing, once we have the AD synch set up the way we want it, how do I phase out the current groups we are using?
If I keep thinking out loud, I'll answer my own questions. After digging further, I see that I'm not creating a new grouping on the server, but rather, using my existing tree structure, and simply changing the group settings to AD synchrnoization. This answers the question of having to create new client tasks.
One thing I am concerned with - after reading through different topics in the forums, I'm seeing some issues with AD that are supposed to be fixed in Patch 1 for ePO 4.5. Would it be wise to wait until this patch is RTW, or go ahead with the change?
Patch 1 for ePO 4.5 is already available for download on the McAfee website. Below there are two useful KBs where you can find additional information regarding the issues resolved by this patch:
Before applying ePO 4.5 Patch 1, I'd suggest you to perform a backup of your current ePO installion, so you have data needed to recovery if anything goes wrong duirng the update process. The KB https://kc.mcafee.com/corporate/index?page=content&id=KB66616&actp=search&search id=1273985025103 should help you on this.