Duplicate Computer in AD Synched Groups
Created: 25 Sep 2012 | 11 comments
I have a computer that appears in two AD synched groups. In AD the computer does appear in one of the OU's, but not the other. On the SEPM, it appears in both Groups, but when querying the client it is actually getting group information and policy from the "ghost" entry on the SEPM. I can't delete either object on the SEPM (as they are both synched from AD) and a manual sync and a restart of both server and client have not corrected the issue. I even performed a clean wipe of the client and reinstalled it, and have not had any success.
Any suggestions?
Discussion Filed Under:
Comments 11 Comments • Jump to latest comment
You should be able to delete the groups in SEPM, re-create and import and sync again.
What version is this for?
Similar thread here:
https://www-secure.symantec.com/connect/forums/orp...
SEP Knowledge Base
Endpoint SWAT
I would have to delete the top level OU/Group in SEPM to do this. Won't that make me lose all my customized location and policy settings for individual groups under that entire heirarchy?
This is on a SEP 11.0.6200.754 server.
Yes, if you have to do it this way than you would lose all groups. Probably not what you would want than.
SEP Knowledge Base
Endpoint SWAT
Export all your policies, delete groups, import OU again.
Import policies.
here is the doc to do it
http://www.symantec.com/business/support/index?page=content&id=TECH106486
Please don't forget to mark your thread solved with whatever answer helped you : ) Rafeeq
Delete both the OU and import it again from the AD.
Let me know on both the groups the same client showing green dot or not.
Goto SEPM-->Admin-->Servers-->Localhost-->
You have a option Delete clients which is not connected for 30 days
Make it has 1 day.
If this option is not available on your SEPM then
Goto SEPM-->Admin-->Domain-->Edit domain properties
You have a option Delete clients which is not connected for 30 days
Make it has 1 day.
Within 24 hours the Duplicate clients will be deleted.
Issue will be resolved.
Hope this resolves the issue.
Mohan Babu
moglie20@gmail.com
+91 9884382160
Your satisfaction is very important to us.If you find above information helpful or it has resolved your issue...please mark it accordingly :)
ok, so how about if someone is away from the office for 1 month and then bring their laptop in ?
can their laptop be joined and managed by the SEPM server again ?
Kind regards,
John Santana
Graduate IT Professional
--------------------------------------------------
Please be nice to me as I'm newbie in this forum.
HI,
http://www.symantec.com/connect/articles/symantec-endpoint-protection-heartbeat-process
Next heartbeat interval you sep client showing in sepm console.
Thanks In Advance
Ashish Sharma
SEPM Knowledgebase Documents
thank you Ashish !
Kind regards,
John Santana
Graduate IT Professional
--------------------------------------------------
Please be nice to me as I'm newbie in this forum.
Removing duplicate clients from the Symantec Endpoint Protection Manager using the CleanClients tool
http://www.symantec.com/business/support/index?page=content&id=TECH97371
Thanks In Advance
Ashish Sharma
SEPM Knowledgebase Documents
Hello,
Either work on the steps provided in the Article below:
Duplicate client entries in the Symantec Endpoint Protection Manager console
http://www.symantec.com/docs/TECH138350
OR / AND
Use this link to delete the duplicate entry
http://127.0.0.1:9090/servlet/ConsoleServlet?Actio...
Reference:
Removing duplicate clients from the Symantec Endpoint Protection Manager using the CleanClients tool
http://www.symantec.com/docs/TECH97371
Hope that helps!!
Mithun Sanghavi
Symantec Technical Support Engineer, SEP
MIM | MCSA | MCTS | STS | ITIL v3
Twitter: @mithun_sanghavi
Don't forget to mark your thread as 'SOLVED' with the answer that best helps you.<&a
Yes, if the Laptop is gone away more than 30days the settings will delete the entry fom the SEPM database.
However when the Laptop is back it will register wiith SEPM and it will be listed on SEPM database...
So our vision is to remove the dupliate entries. Without affecting the existing clients.
It will be done if you set the option to 1 day as i suggested previously.
Let me know the status....... Hugs....
Mohan Babu
moglie20@gmail.com
+91 9884382160
Your satisfaction is very important to us.If you find above information helpful or it has resolved your issue...please mark it accordingly :)
Would you like to reply?
Login or Register to post your comment.