Video Screencast Help
Search Video Help Close Back
to help
New in the Rewards Catalog: Vouchers for "Symantec Technical Specialist" and "Symantec Certified Specialist" exams.

AD Integration in SEP

Updated: 21 May 2010 | 4 comments
utak222's picture
utak222
0 0 Votes
Login to vote
This issue has been solved. See solution.

Is AD groups supported when giving access via SEP Administration?

I have tried with use account only; but need to make sure groups are also supported?

tks,

discussion Filed Under:
,

Comments

Vikram Kumar-SAV to SEP's picture
12
Jun
2009
0 Votes 0
Login to vote
Vikram Kumar-SAV to SEP
Symantec Employee
Accredited

Import Groups

 You can import group structures, or organizational units. To import the
organizational units, you use an LDAP directory server or an Active Directory
server. Symantec Endpoint Protection can then automatically synchronize the
groups on the Clients tab with those on the directory server.

You cannot use the Clients tab to manage these groups after you import them.
You cannot add, delete, or move groups within an imported organizational unit.
You can assign security policies to the imported organizational unit. You can also
copy users from an imported organizational unit to other groups that are listed
in the View Clients pane. The policy that was assigned to a group before the group
was imported has priority. A user account can exist in both the organizational
unit and in an outside group. The policy that was applied to the outside group has
priority

Reference Admin guide : pg no. 48
About importing an existing organizational structure

VMWARE-- SEP 12.1 vs McAfee vs Trend Micro

SOLUTION
Jeff4379's picture
12
Jun
2009
0 Votes 0
Login to vote
Jeff4379

Security

It sounds like utak is talking about administrator logins to SEPM.  I'm not sure there's a way to allow a group single sign-on access.  Each user has to be setup and mapped to an AD user.

kavin's picture
12
Jun
2009
1 Vote +1
Login to vote
kavin

Before you that

Before you try to give the Authentication to the SEPM through AD
I would like you to make a new Account & then authenticate that account with AD dont change the "admin" account authentication from SEPM to AD, as this may give you problems in fure & you may not be able to login to the SEPM & you might have to uninstall & reinstall the SEPM, So better you make a new account & then get it authenticated with AD. :)

jrudbecka's picture
14
Jun
2009
0 Votes 0
Login to vote
jrudbecka

Nope - that is not supported,

Nope - that is not supported, you have to create a user for every single admin, and then join this account to a AD account for password validation.

Technical Support

Symantec.com

Store

Community Stats

Total Content Items
Members
259,025