If you connect your Symantec DLP Agent to the corporate network through VPN, you may see a Warning icon associated with that agent on the Agent Overview page of the Enforce Server.
The Warning icon indicates that the Symantec DLP Agent was not able to connect to the Active Directory (AD) server during its last attempt. Because the server information is cached in the Symantec DLP Agent, the warning indicates that the Symantec DLP Agent may not contain the latest AD information.
However, this notification is probably just a warning. In all likelihood, the AD information in the agent is correct. AD information does not change frequently.
Receiving this warning does not mean that Group Based Policies will fail. The AD information cached in the Symantec DLP Agent is retained. It is this information that is the basis for Group Based Policies.
Restart the Symantec DLP Agent service.
Restarting the agent service forces a connection to the AD server. This connection replaces the yellow Warning icon with a green Ready icon.
Imported Document ID: TECH220970
Subscribing will provide email updates when this Article is updated. Login is required.