How can I deliver software to an AD group?
Although Altiris is designed to deliver software to computers, you can use the AD import facility and deliver to an AD group.
As you have seen, the "Users to Machines" (usually called Organizational Units - Users to Machines or Security Groups - Users to Machines) collection, under Resources>Resource Management>Collections>Directory Collections>your domain, lists every computer that the user has ever been a primary user of. If you follow these instructions, you should be able to create a collection of computers with the latest primary user only.
- Import the groups via AD import. Here you find both the groups and the "Users to Machines" collections.
- Copy the GUID of the group you want to send to. Copy the Security Group GUID and not the "Users to Machines" GUID.
- Add the copied GUID to the following SQL. Replace the red section with the GUID.
select Guid from vResource where ResourceTypeGuid in (select
ResourceTypeGuid from ResourceTypeHierarchy where
AND Guid IN
(SELECT DISTINCT ac.[_ResourceGuid]
FROM Inv_AeX_AC_Identification ac JOIN Inv_AeX_AC_Primary_User pu
ON ac._ResourceGuid = pu._ResourceGuid
-- LATEST PRIMARY USER
(SELECT MAX(_id) FROM Inv_AeX_AC_Primary_User GROUP BY _ResourceGuid)
-- MACHINE STATUS IS ACTIVE
AND ac._ResourceGuid IN
(SELECT Guid FROM vComputer WHERE IsManaged = '1')
-- USER IS MEMBER OF SPECIFIED OU
AND pu.[User] IN
(SELECT [Name] FROM vUser WHERE Guid IN
(SELECT ResourceGuid FROM CollectionMembership
WHERE CollectionGuid = 'ADD COLLECTION GUID HERE
--This collection GUID is from the Security Group user collection, not the "User to Machine" collection.
- Create the collection by pasting in the new SQL into a new collection.