How to manually delete orphaned clients in Symantec Endpoint Protection Manager

Article:TECH159592  |  Created: 2011-05-09  |  Updated: 2012-05-07  |  Article URL
Article Type
Technical Solution



 1)      Clients are deleted from their Active Directory OU and a re-sync is run in Symantec Endpoint Protection Manager (SEPM)

 2)      The SEP client - AD imported -icon is grey in SEPM and it cannot be deleted from the client group. Delete command from the client pop down is unavailable.




Windows 2003 SP2 x86


Generally, re-synching a SEPM with the Active Directory Domain Controller will cause the SEPM to correctly reflect the computers that are present in the AD OU's.

Consistent delay of the re-synchronize command execution due to network bandwidth drops may complicate the situation


SEP Client grey icon scenario

- In the client tab of the client resident group, left mouse double click on the grey computer icon and a pop-up warning saying  ‘’this client has already been disconnected and deleted…’’shows up. Press the OK button to delete the grey client.
SEP Client sky blue icon scenario
- In this instance in the client tab of the client resident group,  mouse right click on the sep computer icon and select – Enable as Unmanaged Detector – and the pop-up warning mentioned above appears allowing to delete the redundant client.
Additional details are available in Symantec's Connect Forum thread Orphaned Client in Endpoint Console

Article URL

Terms of use for this information are found in Legal Notices