During a Symantec Endpoint Protection Manager (SEPM) scheduled Active Directory (AD) sync the process fails. When the Active Directory sync is run manually, however, it succeeds.
In the scheduled AD sync process, SEPM could not retrieve OU objects via LDAP query from AD server, and a NullPointerException was thrown which broken the entire AD sync process.
This issue is fixed in Symantec Endpoint Protection 14.2. For information on how to obtain the latest build of Symantec Endpoint Protection, see Download the latest version of Symantec Endpoint Protection.0