AARGH!! win2003 GPO is driving me NUTS!
- From: "verus" <verus@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Fri, 1 Jul 2005 07:01:07 -0700
Hi,
I want to implement GPO, but with different policies for different users.
i have of course the default policy and i added a second policy "test"
i did all this in the global domain (right click test.local = domain name
and then group policies).
i made a new security group with that user and his computer
i added that user in the default domain policy ==> security ==> read and
apply gpo deny.
so, when i perform a gpupdate /force, it's not in the gpresult.exe list,
that's okay and i can see like that that the security list is working.
then i go to the security of my test policy, removed "authenticated users"
and added the "test" security list.
do a gpupdate /force , gpresult and nothing happens.
when i do the same with a direct username and computername in the security
tab, it works.
okay, then i added a new OU for testing it in that way, moved a user and his
computer and that worked, move another user and computer and that doesn't
works!
in a book i have "mastering windows server 2003" they say and show that it
is perfectly possible to restrict or allow users in GPO's with security lists
but on google i read the opposite...
so, what is it and why is it not working with me ??
grtz,
Verus
.
- Follow-Ups:
- Re: AARGH!! win2003 GPO is driving me NUTS!
- From: lforbes
- Re: AARGH!! win2003 GPO is driving me NUTS!
- From: Andrew Mitchell
- Re: AARGH!! win2003 GPO is driving me NUTS!
- From: lee_mre
- Re: AARGH!! win2003 GPO is driving me NUTS!
- Prev by Date: Windows NT4 group policies on Windows 2003 servers
- Next by Date: Re: Redirected Folders
- Previous by thread: Windows NT4 group policies on Windows 2003 servers
- Next by thread: Re: AARGH!! win2003 GPO is driving me NUTS!
- Index(es):
Relevant Pages
|
