In some scenarios, there is the need to disable AD information that is sent by the Symantec Management Agent (aka Altiris Agent) so "AeX AC Location" dataclass is not reported.
ITMS 8.x
Background information:
We use Active Directory queries using Win32 AD API passing info to ACTIVEDS.DLL (That is Win32 AD API calls ADsGetObject() into ACTIVEDS.DLL, which is part of Windows OS. The parameter passed into it is either "LDAP://RootDSE" or "LDAP://<defaultNamingContext>", where defaultNamingContext is obtained from the previous ADsgetObject call), for example to get CN name of the user 'example\username' on the client's computer.
Here are some follow up questions about disabling AD API functionality from our Symantec Management Agent:
Usage:
As a way to facility the use case where AD information is not collected/triggered by our Agent, you can try the following:
--Create manually the following regkey on any client machine.
--Set the following registry entry to 1 to disable activeds.dll usage
HKEY_LOCAL_MACHINE\SOFTWARE\Altiris\Altiris Agent
REG_DWORD: DisableActiveDSAPI = 1
The registry entry mentioned above should be manually added for ITMS any release. It is not be created automatically.
ITMS 8.7.3 Release will read the registry entry if it exists (there will be no command-line) and Basic Inventory NSEs that are sent to the SMP Server will skip "AeX AC Location" dataclass so it is not reported.