Policy Pending Group includes the client computers to which the security policies inherited by Policy Server have not deployed during a certain period of time. You can manually send the client computer to the policy pending group, or specify the grouping settings to automatically classify the policy pending clients. By grouping the policy pending clients, you can monitor the client computers which denied inheritances from Policy Server, and forcefully run update or scan, and distribute package files.
1) Log in to Policy Admin.
2) Click Domain Settings.
3) Go to the Grouping tab.
4) Click Policy Pending Group Settings.
5) Specify the following fields:
Criteria: Select the criteria for grouping policy pending client computers. The policy pending group collects and shows the client computers with the inherited policies not deployed, or disconnected from Policy Server during the user-defined period.
- Duration of policy not deployed: Indicates the entire period for which the policies inherited by Policy Server are not deployed to the client computer.
- Disconnected period: Arranges the client computers: Indicates the entire period for which the client computer is disconnected from Policy Server.
- Period: Specify the period for which the client computer denies the policy inheritances. If the client computer denies the inheritances for the specified period, it will be automatically sent to Policy Pending Group.
The example below is a setting that automatically classifies you into a risk group after seven days of inactivity, and automatically deletes you if you are classified as a risk group and remains in a state after seven days (total of 14 days of inactivity).