Login to the SEPM
Click Admin > Servers
Right-click your SEPM's name (top-left)
Click Edit Properties
Click Directory Servers > Add
Enter a name to identify your Active Directory server
Select Active Directory next to Server Type
Enter the Active Directory server hostname or IP address
Enter a username and password that the SEPM can use to communicate with the Active Directory server
Click OK. The SEPM will test the Directory Server information which was entered to confirm it works properly.

Step B - Create a new SEPM Administrator account:

Login to the SEPM
Click Admin > Administrators > Add Administrator
Enter a username for the new administrator account. This will be the username used to login to the SEPM.
Enter a full name for the new administrator account. This is used for informational purposes only.
Leave the Password and Confirm Password fields blank
Click Change
Select Directory Authentication
In Directory Server, select the Active Directory server configured in Step A-6
In Account Name, enter the account name as it appears in Active Directory
Click OK
Click OK

Testing the newly created account:

Logoff the SEPM if logged in
Use the username entered in Step B-3. Usernames are case sensitive.
Use the Active Directory password for the Active Directory account specified in Step B-9.
Leave the Domain field blank. (This field expects a SEPM domain and not an Active Directory domain)

WARNING:
Do not use the built-in SEPM "admin" account when setting up Active Directory Authentication, doing so can prevent logon access to SEPM with "Authentication Failure" error. Lockout issues can occur when changing the Active Directory account, upgrading Active Directory, changing Active Directory mode, and when removing SEPM(s) as a replication partner.

SEPM Active Directory Authentication is only supported for Admin accounts that have been created in SEPM by clicking "Add Administrator."

NOTE: The SEPM user name is taken from SEPM database while the password is taken from Active Directory for the account you specified in Account Name.

SOLUTION

hj1979

Active Directory Login ID - Comment:09 Jun 2012 : Link

How to setup a SEPM administrator account to use your Active Directory authentication

http://www.symantec.com/docs/TECH104726

video

https://www-secure.symantec.com/connect/videos/importing-active-directory-sepm

honey_jack

Active Directory Login ID - Comment:09 Jun 2012 : Link

to setup a Symantec Endpoint Protection Manager administrator account to use Active Directory authentication

http://www.symantec.com/business/support/index?page=content&id=TECH104726

Thanks & Regard

Honey Jack

If your issue has been solved, please use the "Mark as Solution" for the valid thread.

Simpson Homer Symantec Employee

Active Directory Login ID - Comment:11 Jun 2012 : Link

Check This:-

How to synchronize/Integrate Active directory with the Symantec Endpoint Protection Manager (SEPM).

Problem

How to add a Directory server in the SEPM console for Active Directory (AD) synchronization.

Environment

Product :- 12.1 RU1

Operating system:- Windows server 2008 R2

Solution

Login to the SEPM console.
Click Admin > Servers.
Right-click on the server name and select Edit the server properties.
Click Directory Servers tab.
Click Add.

Add Directory Server window will pop up.
In the General tab type the domain name.
For Server Type select Active Directory.
In Server IP Address or Name enter IP or Domain Name (For e.g. If Cu's Email address is ABC@symantec.com then try to putsymantec.com in domain name.)
Enter domain administrator's username and password.
Click OK. (If it is not successful Check Use Secure Connection, which will use LDAP Port 636. Click OK.)

In Server Properties window the Directory Server gets listed after credentials are successfully verified.
Under Synchronized Directory Settings check Synchronize with Directory Servers.
Select Schedule as per your convenience.
Click OK.

To import OUs select the Clients tab.
Click on the My Company group.
Under Tasks click Import Organizational Unit or Container.
Integrate with Organizational Unit Tree window will pop up.
Select the domain from the drop down.
Click OK.

Select the appropriate OU as desired to integrate with SEPM and click OK.

It will successfully synchronize AD and will integrate with the OU structure.

In case of issues with AD Sync check following logs in C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Tomcat\logs\ADSITask-0.log (for a 64 bit machine the location would be C:\Program Files(x86)\Symantec\Symantec Endpoint Protection Manager\Tomcat\logs\ADSITask-0.log)

Search for "Error Code" and next few lines for the reason.

http://www.symantec.com/business/support/index?page=content&id=TECH181458