Home » SoM Policy
Applicable For Endpoint Central MSP 
 
 
On-PremisesCloud

Scope of Management (SoM) Policy

The SoM policy enables IT administrators to automate the provisioning and de-provisioning of computers in Central Server, offering a seamless way to manage all computers within Active Directory (AD) that are not yet managed in Endpoint Central. To configure SoM Policy, navigate to Agent > SoM Policy > AD Sync Settings.

Table of contents

  1. Advantages
  2. Detect and Add Computers
  3. Delete Inactive Computers
  4. Sync Settings
  5. Notification Settings

Advantages

  • Automated Addition of New Computers: Automatically adds new AD computers to SoM with agent installation and sends a notification.
  • Inactive Computer Management: Allows actions for managing computers removed from AD or inactive for a set period.
  • Configurable Inactivity Period: Sets an inactivity threshold after which inactive computers are deleted and notifications sent.
  • Sync Frequency Customization: Supports configurable sync frequencies for Domain, SoM Policy, and Custom Group syncs.
  • Targeted Synchronization: Select specific targets (Domains, OUs, or Groups) for streamlined AD management.
  • Notification Settings: Provides updates on SoM activities, improving monitoring.

Features

Detect and Add New Computers

Automatically manages new devices added to AD by integrating them into the SoM.

  • Automated Agent Installation: Installs the agent on newly detected AD computers, bringing them under Central Server management.

    Note:
    i)If IP scope for remote offices is not configured, the local office agent will be installed by default, which can be manually modified later.
    ii) If you do not want to install agents on specific computers that have been newly added to Active Directory, you can exclude them from agent deployment using the SoM Policy.

  • Email Notifications: After agent installation, Central Server sends an email notification to administrators.
  • View and Manage Added Computers: Navigate to Agent > SoM Policy > View Sync Information > Show > Added Computers to monitor recent additions.

Delete Inactive Computers

This feature manages computers removed from AD or inactive for a set period to maintain an updated SoM.

  • AD-Based Removal: Detects and removes computers deleted from AD, helping keep SoM and AD environments synchronized.
  • View and Manage Active Directory based Computers removal: Navigate to Agent > SoM Policy > View Sync Information > Show > Deleted Computers to view the list of computers that are removed from Active Directory. Kindly note that if you want to view the list of computers that are removed from Scope of Management, you can view them in Action Log Viewer for a specific period of time.
  • Inactive Devices: Allows setting an inactivity threshold, removing computers that haven't contacted Central Server within the specified period. This is based on agent last contact time with server.

Sync Settings

Controls the sync frequency to apply consistent SoM policies across the organization.

  • Frequency Configuration: Customizes sync intervals for Domain, SoM Policy, and Custom Group syncs, helping maintain up-to-date device information.

Notification Settings

Configures specific email alerts to receive updates on changes and activities within the SoM, keeping administrators informed.

To know more about how to configure SoM Policy, refer here.

Was this article helpful?

Thank you for your feedback!

Sorry about that!

By clicking "Submit", you agree to processing of personal data according to thePrivacy Policy.
Back to Top