Endpoint Protection

I recently inherited the SEP server from a contractor who set it up with little documentation or cross training. Yeah fun! :) Anyways, there is a SEP group that I need to delete because it is based on a test domain that no longer exists. If I try to delete it the message I receive is "Unable to delete this group because there are still clients or subgroups in the group". The domain is no longer up and running and has not been for some time. What is the best way to remove this item? We are running SEP Manager 11.0.4202.75. Thanks.

Have you actually deleted all the clients that still show up in that group before deleting it?  If I recall correctly, you can only delete an empty group. If so and that doesn't help, you might have to contact technical support.  Though somebody here might have an idea.  You might have clients still joined to the non-existant test domain that are still checking into SEPM.  While SEPM links nicely with AD, it doesn't depend on it.

Hi,

Login to SEPM. Go to the clients tab. Make sure that no SEP clients are visible in that group.

If you see those clients, you can select them all, using the shift button, and move them to a different group.

In this way, you can be sure that there are no clients in the group you are trying to delete.

Aniket

Create new Group and Move Clients in that Group..then delete the sub groups and then the main group.

I cannot delete the groups which I am pretty sure is because it is domain synced. The option is greyed out. The move option is not even on the right click menu, again I am guessing because the group is linked to an AD structure. Thus I have not way of cleaning the accounts out in order to delete. If I could break the sync and make it a standard group, that may allow me to clean as needed and delete the group. 

you are right, you cannot delete you AD structure inside SEPM
its just  a blue print of your AD
if you want to delele then the group should be empty
only then you can delete the top OU
you can remove your AD, reimport it, I will show you the correct one.

Managed Symantec Endpoint Protection (SEP) Client appears in Default Group instead of Active Directory Organizational Unit (OU) in the Symantec Endpoint Protection Manager (SEPM)

http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2009090119133848

Organizational Units from Active Directory in Symantec Endpoint Protection 11.0

http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2007092721431648

The problem is this domain is long gone. The contractor did not remove it and I am trying to clean up. Is there any way to remove it at this point?

remove the domain from sepm, readd the one which exists..the clients will stil shown in the same group.
check this discussion follow anikets suggestion to remove entries in DB for AD

https://www-secure.symantec.com/connect/pt-br/forums/sep-and-ad

Thank you for the link but I do not have duplicate entries I have an AD domain that was brought into SEPM as a group that no longer exists. I cannot remove it which is why I have posted this thread. I cannot remove it is not empty, but I cannot delete it either since it is AD synced. Sorry if I am not understanding you, but I am looking for a way to simply remove the domain based group at this point.

First Remove the AD sync. Then in SEPM Change the view to Client status.There may be client that was not there in the Default view

Delete the client from there and then delete the group.

Ok, but being new how do I remove the AD sync.

open sepm
click on admin
click on servers
click on local site
right click on the server name
edit properties
select directory security
remove the ad entry this is how u remove ad,


i would suggest you to delete the top ou
click on clients tab
delete top ou
at the bottom select import from OU
re-import the clients OU
should be what you have in actual AD