Endpoint Protection

 View Only

  • 1.  I would like more info on the AD sync part of SEPM

    Posted Jun 04, 2011 09:22 AM

    What is it's usefulness, does it deploy the client automatically? We also have a lot of what I call dead space computers in our OS's because we have a lot of computers being taken out and added in. Would I end up with a console with tons of clients that will look like they need Symantec but in reality are these dead computers? thanks for any good links

    Gary 



  • 2.  RE: I would like more info on the AD sync part of SEPM

    Posted Jun 04, 2011 12:07 PM

    Hi,

    AD sync is not for automatic SEP deployment.

    If you remove the dead computers from your AD, they are removed from SEPM as well, aren't they?

    Regards,



  • 3.  RE: I would like more info on the AD sync part of SEPM

    Posted Jun 04, 2011 04:46 PM

    If you have computers synched to AD can you install the client from there?



  • 4.  RE: I would like more info on the AD sync part of SEPM

    Posted Jun 05, 2011 01:08 AM

    NO. You cannot install/Deploy from AD automatically. However you can do GPO deployment but it is not dependant on AD sync.

    If the clients are not there in AD in next Sync they will drop from SEPM aswell. Just make sure you have SEPM of not very old version.



  • 5.  RE: I would like more info on the AD sync part of SEPM

    Broadcom Employee
    Posted Jun 06, 2011 01:19 AM

    one advantage is to know which all computers not installed with OU, when SEPM synched with OU. However as everyone above have said you cannot deploy.

     
    How to configure Symantec Endpoint Protection Manager to synchronize user data with a directory server
    http://www.symantec.com/business/support/index?page=content&id=TECH96201&locale=en_US