Re: Not apply a policy against the administrator

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

Si <Si@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
This will only deny the user configuration settings not the computer
settings

No, I don't think so; I do this myself and don't have any restrictions when
I log into my TS boxes. However, even if that were true, the TS profile path
is a user thing. :-)



"Ziad K. Chafi" wrote:

You do not need to use WMI filters, you can just use security
filtering, try doing the following plz:
1- You should be using Group Policy Managemnt, if you don't have it
just google for gpmc.msi, dounload it and install it
2- Open GPMC and select the Group Policy Link that you desire
3- On the right pane select the Deligation Tab
4- Press the Advanced Button
5- Click add to add a the Administrator account or any account that
you like 6- make sure that the user that you selected is highlited
7- Scroll down to "Apply Group Policy" and check the Deny checkbox.
This should solve it.

Let me know...
--
Ziad K. Chafi
CompTIA A+, CompTIA N+, MCP, MCDST, MCAS: S, MCSE: S, MCDBA, MCTS,
MCT


"Si" wrote:

Against our Citrix/Terminal Server OU is a GPO that sets the path
for terminal services profile under the computer settings section.

The problem is our administrator account picks up this setting and
uses a TS profile. I dont want the admin to use this profile.

Is it possible to write a WMI filter to not apply the GPO if it is
the administrator who is loggging on?

Or if anybody has any better suggestions?????



.

Quantcast