Re: Not apply a policy against the administrator

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

Si <Si@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
This will only deny the user configuration settings not the computer
settings

No, I don't think so; I do this myself and don't have any restrictions when
I log into my TS boxes. However, even if that were true, the TS profile path
is a user thing. :-)



"Ziad K. Chafi" wrote:

You do not need to use WMI filters, you can just use security
filtering, try doing the following plz:
1- You should be using Group Policy Managemnt, if you don't have it
just google for gpmc.msi, dounload it and install it
2- Open GPMC and select the Group Policy Link that you desire
3- On the right pane select the Deligation Tab
4- Press the Advanced Button
5- Click add to add a the Administrator account or any account that
you like 6- make sure that the user that you selected is highlited
7- Scroll down to "Apply Group Policy" and check the Deny checkbox.
This should solve it.

Let me know...
--
Ziad K. Chafi
CompTIA A+, CompTIA N+, MCP, MCDST, MCAS: S, MCSE: S, MCDBA, MCTS,
MCT


"Si" wrote:

Against our Citrix/Terminal Server OU is a GPO that sets the path
for terminal services profile under the computer settings section.

The problem is our administrator account picks up this setting and
uses a TS profile. I dont want the admin to use this profile.

Is it possible to write a WMI filter to not apply the GPO if it is
the administrator who is loggging on?

Or if anybody has any better suggestions?????



.

Relevant Pages

  • Re: Would like to lockdown public computer
    ... If you use the guest account be ... Learn to use Group Policy. ... > protect the cmos settings as it is easy to reboot a computer from a floppy ... > the mandatory profile on the local computer and then have the users ...
    (microsoft.public.win2000.security)
  • Re: SBS control settings on PC
    ... You want to know how to create standard personal settings for all the ... you are unable to create such a profile for all ... settings by using group policy. ... Microsoft CSS Online Newsgroup Support ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS control settings on PC
    ... by setting up personal settings (you can see this small popup windows at the ... minimum settings should i configure on the server using group policy? ... that is to go through to all PCs to set up default profile there. ... Microsoft CSS Online Newsgroup Support ...
    (microsoft.public.windows.server.sbs)
  • Re: activating firewall using GPO for windows XP clients
    ... Configuration Using Group Policy Settings ... A new set of Computer Configuration Group Policy Windows Firewall settings allow a network administrator to configure Windows Firewall operational modes, excepted traffic, and other settings using a Group Policy object. ... The domain profile is the set of Windows Firewall settings that are needed when the computer is connected to the network that contains the domain controllers of the organization. ...
    (microsoft.public.windows.group_policy)
  • Re: One Administrator account unable to access Network settings
    ... When you configure Group Policy on a workgroup computer by default the settings apply ... account is still an administrator account. ...
    (microsoft.public.win2000.group_policy)