Cannot delete Active Directory clients in the Symantec Endpoint Protection Manager

book

Article ID: 178152

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

How to delete clients from the Symantec Endpoint Protection Manager that are no longer in Active Directory


Cannot delete clients from the Symantec Endpoint Protection Manager


Cannot move clients in the Symantec Endpoint Protection Manager

Symptoms
The "Delete Clients" option is greyed out in the Symantec Endpoint Protection Manager
  • The "Move Clients" option is greyed out in the Symantec Endpoint Protection Manager


Cause

This functionality is not available for clients synchronized with Active Directory as they are managed by Active Directory not the Symantec Endpoint Protection Manager. The changes must be made within Active Directory itself.

Resolution

Delete, Move, or otherwise edit the clients in Active Directory, then re-sync the OU that the client(s) belong to in the Symantec Endpoint Protection Manager.

    How to re-sync an OU in the Symantec Endpoint Protection Manager:

      1. Log into the Symantec Endpoint Protection Manager
      2. Click on the Clients tab
      3. Right-click the desire OU
      4. Click Sync Now



References
Managed Symantec Endpoint Protection (SEP) Client appears in Default Group instead of Active Directory Organizational Unit (OU) in the Symantec Endpoint Protection Manager (SEPM)