I’m providing BF Patch as a managed service so I don’t have access to my clients AD. My BF server is in my cloud from my clients perspective. The initial goal is to have BF query a list of all devices an Active Directory environment has and their corresponding OUs. It’s my understanding that the only Active Directory OUs BF can see are the devices under management. How can BF query an AD and show all computers and their OUs completely separate from BF. This query will be used to compare the AD computers with what BF has under management.
You cannot do this directly in BigFix – BigFix just knows what OUs the clients are in because the Client knows what OU its in.
You would have to export the data from the clients AD and from BigFix and compare them outside of BigFix.