Data Loss Prevention

 View Only

  • 1.  Active Directory user group resolution failed - DLP 14

    Posted Apr 10, 2017 09:40 AM

    Dear,

    I have some workstation with the following warrning, Active Directory user group resolution failed
    according to this KB https://support.symantec.com/en_US/article.TECH186331.html

    Active Directory permissions conflict with Symantec Data Loss Prevention permissions. Also, Active Directory may be missing attributes.

    Verify that the credentials that are passed to the agent have necessary permissions to extract logged-in user information from Active Directory.

    You cant tell me whats permissions are necessary for the instalation of the agent?
    The user I am using for the installation is the workstation administrator



  • 2.  RE: Active Directory user group resolution failed - DLP 14

    Posted Apr 10, 2017 03:03 PM

    Perhaps the user account you are using does not have permission to read the Active Directory.  Workstation admin does not necessarily mean automatic priviledges in AD.

     

    Does this work on other workstations?  Are you using the same account?

     

    Just some thoughts...

     

    Will



  • 3.  RE: Active Directory user group resolution failed - DLP 14

    Posted Apr 10, 2017 03:31 PM
    I cant tell you if using the same acount for all instalation, in my Workstation the instalation was with a domain admin, the only nessesary is that permissions on ad ?


  • 4.  RE: Active Directory user group resolution failed - DLP 14

    Posted Sep 18, 2017 11:23 AM

    Can we initiate this thread again? We are seeing the same error. What could be the issue?



  • 5.  RE: Active Directory user group resolution failed - DLP 14
    Best Answer

    Trusted Advisor
    Posted Sep 18, 2017 05:30 PM

    All,

    This error is nothing to be concerned about. This happens with all Agents, especially when they are coming out of sleep mode or are NOT connected to the VPN or company network.

    For example..

    Laptop is not connected to the Wifi or corporate network. It will try to authenticate to a AD server, but it can't get to it, so it will error out. This happens a lot to machines that are coming out of sleep mode or have not conected to the network yet.

    If you reboot a computer that is already connected to the network you will not see this issue. Though if it goes to sleep and comes back you will see errros on a disconnection (not shutdown) and then an AD error.. 

    If this happens even after a clean reboot, and connected to the network, I would be concerned.. though I never see that.

    Good Luck

    Ronak

    PLEASE MARKED SOLVED WHEN POSSIBLE



  • 6.  RE: Active Directory user group resolution failed - DLP 14

    Posted Sep 19, 2017 01:32 PM

    I can see this for machine on the network. I did not check locally on the endpoint but pinging the machine was able to resolve and online.



  • 7.  RE: Active Directory user group resolution failed - DLP 14

    Trusted Advisor
    Posted Sep 19, 2017 02:00 PM

    This is a minor Event and can be ignored.. it will not effect the agent. Unlesee there are some AD Group Based policies, and it won't get a good update to the AD info until a reboot or AD authneitcation whenon line... this happens more often than a policy change would.

    Good Luck

    Ronak

    PLEASE MARKED SOLVED WHEN POSSIBLE