Re: Default Domain GPO
From: Kevin Bowersock (a-KBower_at_online.microsoft.com)
Date: 08/02/04
- Next message: Jason Robarts [MSFT]: "TIP: repadmin /listhelp makes repadmin easier to use"
- Previous message: Tomasz Onyszko: "Re: Apply Group Policy to Security Group???"
- In reply to: Chriss3 [MVP]: "Re: Default Domain GPO"
- Next in thread: ITLush: "Re: Default Domain GPO"
- Reply: ITLush: "Re: Default Domain GPO"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 02 Aug 2004 21:44:28 GMT
While you can do it remember that the policy at the domain level will
affect all domain users.
a-Kbower@online.microsoft.com
This posting is provided "AS IS"
with no warranties, and confers no rights
--------------------
| From: "Chriss3 [MVP]" <noSpamHere@chrisse.se>
| References: <94DA842D-029D-4AEB-8CD0-3C3A93CE50F7@microsoft.com>
<eZHLpaGeEHA.3680@TK2MSFTNGP11.phx.gbl>
<0E839B1E-461C-414C-8EAE-3FA0EC597032@microsoft.com>
| Subject: Re: Default Domain GPO
| Date: Mon, 2 Aug 2004 19:33:37 +0200
| Lines: 62
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2800.1409
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409
| Message-ID: <#A$MZbLeEHA.2812@tk2msftngp13.phx.gbl>
| Newsgroups: microsoft.public.win2000.active_directory
| NNTP-Posting-Host: h134n2fls31o1008.telia.com 217.209.142.134
| Path:
cpmsftngxa10.phx.gbl!TK2MSFTNGXA02.phx.gbl!TK2MSFTNGXA01.phx.gbl!TK2MSFTNGP0
8.phx.gbl!tk2msftngp13.phx.gbl
| Xref: cpmsftngxa10.phx.gbl microsoft.public.win2000.active_directory:86611
| X-Tomcat-NG: microsoft.public.win2000.active_directory
|
| Yes
|
| --
| Regards
| Christoffer Andersson
| Microsoft MVP - Directory Services
|
| No email replies please - reply in the newsgroup
| ------------------------------------------------
| http://www.chrisse.se - Active Directory Tips
|
| "ITLush" <ITLush@discussions.microsoft.com> skrev i meddelandet
| news:0E839B1E-461C-414C-8EAE-3FA0EC597032@microsoft.com...
| > Thanks Chris
| >
| > So if I make the test domain policy the highest priortiy this should
work?
| >
| > "Chriss3 [MVP]" wrote:
| >
| > > You are right about the password policy only applies to domain users
| when
| > > they are linked to the domain, how ever only the first listed policy
| linked
| > > to the domain applies the password policy for domain users, there
can't
| be
| > > multiple policies.
| > >
| > > --
| > > Regards
| > > Christoffer Andersson
| > > Microsoft MVP - Directory Services
| > >
| > > No email replies please - reply in the newsgroup
| > > ------------------------------------------------
| > > http://www.chrisse.se - Active Directory Tips
| > >
| > > "ITLush" <ITLush@discussions.microsoft.com> skrev i meddelandet
| > > news:94DA842D-029D-4AEB-8CD0-3C3A93CE50F7@microsoft.com...
| > > > Hi
| > > >
| > > > I hope someone can help me. I am re-structuring the AD within a
small
| > > company. The Default Domain GPO has been active for approx 12 months
| with
| > > only a couple of setting, password length and lockout duration. I
have
| > > decided on new new policy and have created a Test Domain GPO. I have
| > > removed authenticated users and applied a DSG with a couple of users.
| Some
| > > of the policies work, i.e. the password protected screen saver, items
| > > removed from desktop etc, but things like the Warning Message, prompt
to
| > > change password and account lockout are not.
| > > >
| > > > I understand that passwords can only be set at the domain level, so
| > > thought by applying a second Domain GPO I would be able to test this
| without
| > > affecting all the authenticated users.
| > > >
| > > > Could someone please let me know what I am doing wrong?
| > >
| > >
| > >
|
|
|
- Next message: Jason Robarts [MSFT]: "TIP: repadmin /listhelp makes repadmin easier to use"
- Previous message: Tomasz Onyszko: "Re: Apply Group Policy to Security Group???"
- In reply to: Chriss3 [MVP]: "Re: Default Domain GPO"
- Next in thread: ITLush: "Re: Default Domain GPO"
- Reply: ITLush: "Re: Default Domain GPO"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
