There are many advantages and disadvantages to moving an organization to an active directory environment. In this paper I will tell a few advantages and disadvantages. One of a few advantages “Easy Management of clients”. What this means is when PCs are joined to a domain, they “should” automatically move to the correct group. You can also Ad sync that will adapt for a network with more than 10k clients to manage the groups. The last and final advantage to an organization moving to an organization active directory environment, would be as follows, you can find unmanaged computers. You can scan a whole range of IP addresses which can also find your computer so there is no need to specify any names as you can leave this area blank. With this feature a person can deploy as many clients as they want and\or need.
In this next section I will be explaining the disadvantages of moving an organization to an active directory environment. One of a few disadvantages is one cannot move a client from one group to another this has to be done from an active directory only. Another one of the disadvantages is when the copy procedure happens it is possible that a single client can be used in more than one seat doing this could cause an over deployment. A person cannot switch the mode manually. Data in the organization must be imported in units read only.
Cited from http://www.symantec.com/connect/articles/advantages-and-disadvantages-active-directory-symantec-endpoint-protection-manager Page cited from
