Data Loss Prevention

 View Only

  • 1.  Endpoint agent error: AD user group resolution failed

    Posted Mar 02, 2011 09:53 AM
    Some of the newly installed endpoint agents connect successfully. However at some point later in the day this error appears in the DLP management interface: "AD user group resolution failed" Any suggestions?


  • 2.  RE: Endpoint agent error: AD user group resolution failed

    Broadcom Employee
    Posted Mar 06, 2011 09:36 AM

    What the configuration of the Network? Do you have AD and configure AD Group in DLP Enforce?

    And, what the state of the client on the Enforce Console after you see this error? Is the endpoint agent still connected to the Endpoint Server?



  • 3.  RE: Endpoint agent error: AD user group resolution failed

    Posted Mar 10, 2011 09:20 AM

    We found through trial and error that:

     

    1)

    If the client PC is started off-network, then endpoing agent starts but of course is unable to resolve AD information.

     

    2)

    When the client PC is then connected to the network, the agent establishes communication with the endforce server.

    However, the "AD user group resolution failed" error does not resolve itself.  (We expected that the agent would re-try this after it connects to the server.)

     

    The error can be resolved (worked around) by issuing a Restart of the DLP agent.