1. Export the Default MP.
2. Find the Rules and DisplayStrings sections relating to the deleted AD Integration rules, and delete everything highlighted in yellow (below example) for each instance found.
3. Save and Import cleaned Default MP.
4. Delete associated security groups in Active Directory.
<Monitoring>
<Rules>
<Rule ID=”OPSMGRLAB_omms_1_opsmgrlab.com” Enabled=”true” Target=”SC!Microsoft.SystemCenter.RootManagementServer” ConfirmDelivery=”false” Remotable=”true” Priority=”Normal” DiscardLevel=”100″>
<Category>Maintenance</Category>
<DataSources>
<DataSource ID=”DS1″ TypeID=”Windows!Microsoft.Windows.LdapProvider”>
<Domain>opsmgrlab.com</Domain>
<Query>(&(sAMAccountType=805306369)(objectCategory=computer)(cn=admin*))</Query>
<Params>
<Param>distinguishedName</Param>
<Param>dNSHostName</Param>
</Params>
<UserAndDomain />
<Password />
<Frequency>3600</Frequency>
</DataSource>
</DataSources>
<WriteActions>
<WriteAction ID=”WA1″ TypeID=”SC!Microsoft.SystemCenter.ADWriter”>
<ManagementServerName>72f2e063-3332-7c1b-b393-e8cf2d83545d</ManagementServerName>
<Domain>opsmgrlab.com</Domain>
<UserAndDomain />
<Password />
<SecureReferenceId />
<dNSXPath>DataItem/Property[@Name=’dNSHostName’]</dNSXPath>
<distinguishedNameXPath>DataItem/Property[@Name=’distinguishedName’]</distinguishedNameXPath>
<FailoverList>
<ManagementServerGuid>bd1b6aed-27d3-71ec-dd34-66b9f7818c90</ManagementServerGuid>
<ManagementServerGuid>696e6c4c-c80d-6e61-5dc2-7ab6aff975f0</ManagementServerGuid>
</FailoverList>
</WriteAction>
</WriteActions>
</Rule>
</Rules>
Also the Display Strings associated
<DisplayString ElementID=”OPSMGRLAB_omms_1_opsmgrlab.com”>
<Name>AD rule for Domain: opsmgrlab.com, ManagementServer: OPSMGRLAB\omms-1</Name>
<Description>AD agent assignment rule for Domain: opsmgrlab.com, ManagementServer: OPSMGRLAB\omms-1</Description>
</DisplayString>