Okay so here is my setup which I realize may be wrong. I have a system tree that is divided by computer type then physical location. It is not sycned with AD.
If I were to synchronize the groups into AD, does that mean computers are added into the tree as they are put into an OU in AD? Is virusscan for example installed automatically? I just want to make sure I've got this set up all the same way and I know the way I have it set up now isn't necessarily the best.
does that mean computers are added into the tree as they are put into an OU in AD?
You have 2 options sync the complete AD tree or only sync the flat systems list
Is virusscan for example installed automatically?
Nop, you need to have an agent deployment task running in order to install the VSE to manage machines using ePO
Okay, so you are saying that even if my ePO groups are synced with AD, the agent task does not automatically run on a computer that is put in there? So there is no automatic way to install the agent just by putting it in a group?
Hi jwood.mls, when you set your AD sync definition under a group you can also set credentials for deploying McAfee Agent to new computers at the same time.
Otherwise you can also plan an automated server task that will run the unmanaged query 2 times a day (for example) and as a sub-action you can chose to deploy mcafee agent to all of thee unmanaged computers.
do I need to make a new tree structure that mirrors AD?
I did not have to. I created a parent group and synced it to AD. Once I did that I was able to pull all of the sub folders and OUs so it made the tree itself.
And it looks like you can sync just the structure itself and manually pull the items into it. My concern would be making sure all policies are applied the same was as they were under the old structure.