RE: Checking what GPs are in effect

From: Russell Lavoie (rlavoie_at_ncsoft.com)
Date: 04/08/05

  • Next message: Rodrigo Blanco: "Re: PEAP based 802.1x LAN authentication"
    Date: Fri, 8 Apr 2005 14:45:17 -0500
    To: <Ethys@auchan.Fr>, <Salvador.Manaois@infineon.com>, <thor@hammerofgod.com>, <juandelacruz@gmail.com>, <focus-ms@securityfocus.com>
    
    

    The simple and easy way to check is do the following:

    Start - Help and Support - select option "Use Tools to view your computer information and diagnose problems" - click option "advanced system information" - click option "view group policy settings applied."

    There ya go. Quick and easy.

    Russ Lavoie

    -----Original Message-----
    From: Emmanuel THYS [mailto:ethys@auchan.Fr]
    Sent: Friday, April 08, 2005 10:06 AM
    To: Salvador.Manaois@infineon.com; thor@hammerofgod.com; juandelacruz@gmail.com; focus-ms@securityfocus.com
    Subject: RE: Checking what GPs are in effect

    Another way is to launch a mmc , add the "resultant set of policies" snap-in
    and check parameters sets (assuming XP or 2003)

    Otherwise : If the GP is set to the computer which your users try to connect
    to, you could enable "GP loopback processing"
    (http://www.microsoft.com/resources/documentation/Windows/2000/server/reskit
    /en-us/Default.asp?url=/resources/documentation/Windows/2000/server/reskit/e
    n-us/gp/34.asp)
            So you don't have to assign your drive policy to every possible
    remote desktop user, you just have to assign the policy on machines they can
    connect to and enable loopback processing.
            classic in terminal server environments.

    ET

    -----Message d'origine-----
    De : Salvador.Manaois@infineon.com [mailto:Salvador.Manaois@infineon.com]
    Envoyé : vendredi 8 avril 2005 09:47
    À : thor@hammerofgod.com; juandelacruz@gmail.com; focus-ms@securityfocus.com
    Objet : RE: Checking what GPs are in effect

    NetIQ's Group Policy Administrator can also generate the resultant group
    policies albeit in a more fancy GUI-driven manner. I think it's precursor is
    FullArmor's FAZAM 2000.

    ...badz...

    -----Original Message-----
    From: Thor (Hammer of God) [mailto:thor@hammerofgod.com]
    Sent: Friday, April 08, 2005 2:44 AM
    To: Henry Ortega; focus-ms@securityfocus.com
    Subject: Re: Checking what GPs are in effect

    The "GPRESULT" command gives detailed information regarding applied
    group
    policies on the host system along with helpful summary information.
    Give it
    a shot and see if that provides you with the information you require.
    I'm
    assuming XP clients.

    T

    ------
    *Secure your infrastructure*
    Microsoft Ninjitsu: Securely Deploying MS Technologies
    security training delivered by Timothy Mullen.
    Registration now open for Blackhat Seattle 2005:
    http://www.blackhat.com/html/training-seattle-05/train-bh-sea-05-tm.html

    ----- Original Message -----
    From: "Henry Ortega" <juandelacruz@gmail.com>
    To: <focus-ms@securityfocus.com>
    Sent: Thursday, April 07, 2005 8:52 AM
    Subject: Checking what GPs are in effect

    > Is there a way for me to check what Group Policies
    > are actually in effect? I am testing some policies and
    > do not know for sure if it took effect or not.
    >
    > Sample scenario:
    > Implementing GP for Remote Desktop users to not see
    > any drives. When I log on to that machine, I still see the drives. So

    > I want to make sure if the GP actually tried to take effect but didn't

    > like it for some reason, or the GP didn't even try to be in effect.
    >
    > Any suggestions?
    >
    > ----------------------------------------------------------------------
    > -----
    >
    ------------------------------------------------------------------------

    ---
    >
    >
    > 
    ------------------------------------------------------------------------
    ---
    ------------------------------------------------------------------------
    ---
    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------
    

  • Next message: Rodrigo Blanco: "Re: PEAP based 802.1x LAN authentication"

    Relevant Pages

    • Re: Users "bypassing" Group Policy restrictions
      ... Would persistent local-machine IPSEC policies help you here a little? ... You could use those persistent IPSEC Policies to lock-down communication attempts by those pesky users. ... resources usually mapped by GPs but without any of the ...
      (Focus-Microsoft)
    • RE: Checking what GPs are in effect
      ... Another way is to launch a mmc, add the "resultant set of policies" snap-in ... remote desktop user, you just have to assign the policy on machines they can ... Objet: RE: Checking what GPs are in effect ...
      (Focus-Microsoft)
    • Re: Any experience with Meinberg NTP software on Windows 7?
      ... Since it seems to be being used purely to drive an LED, its timing ... I agree, this is the problem with the Sure Electriconic GPS, basicaly ... GPSDXO and then drives the PPS from that. ... Now about the question about delay. ...
      (comp.protocols.time.ntp)
    • Re: Its on...
      ... But I just drove to the Miller round, which is about 700 miles, ... the French, Italian, Catalan, Dutch, British and German Grand prix. ... the drives in trucks and motorhomes between these races and some ... and the most GPs I've visited in one season is ...
      (rec.motorcycles.racing)
    • Re: Speedometer vs GPS
      ... I have a truck and GPS that are both only several months old, ... What I am also going to be curious to see is how the ETA adjusts itself ... as I do one of my long drives without a break at a higher than average ... predicts you'll go faster the rest of the trip. ...
      (misc.transport.road)