Endpoint Protection

Hi,

I want to configure AD authentication into the SEPM console and have a few questions (bottom of post):

I went into the server properties to add a directory server and added the configs but did not put a username and password and received the following message:

I then clicked Yes but get a failed test connection message.

My Questions:

1) If username and password is not required, what would make it fail connection? 

2) If I do end up using a username and password, what type of account needs to be created in AD to support that.  I will need to have the AD admin create the account, but need to inform him what I need. (FYI - I did a test with my own domain admin account and it worked just fine, but that is not the best practice)

hope this helps

How to setup a SEPM administrator account to use your Active Directory authentication
http://www.symantec.com/docs/TECH104726
 

The default admin account does not use ad info.

I use the AD accounts of people approved for access. I create an account for each user.

No one logs into SEPM as the default admin account.

Hi,

1) If username and password is not required, what would make it fail connection? --> How can you load AD without authentication. 

--> How to setup a SEPM administrator account to use your Active Directory authentication

http://www.symantec.com/business/support/index?page=content&id=TECH104726

Best practices when using Microsoft Active Directory as an LDAP source

https://www-secure.symantec.com/connect/articles/best-practices-when-using-microsoft-active-directory-ldap-source

Check this video as well

https://www-secure.symantec.com/connect/videos/importing-active-directory-sepm

I hope it will help you.