Why doesn't Group Policy work if I put a local group in the affected OU instead of the actual user account?
- From: "CS" <masssheltie@xxxxxxxxxxx>
- Date: Tue, 27 Jan 2009 14:05:48 -0500
Windows 2003 Server. AD domain. Created an OU so that I can apply a Group
Policy to a collection of users. As per Msoft instructions, I created a
Local Group, and put that local group inside the OU. Created a Global
Group, added users to the Global Group, and then added the Global Group to
this local group. I then created a Group Policy - User Config, and set up
the restrictions. I applied the GP to the OU, and did a GPUPDATE / FORCE.
The result is that this GP doesn't affect the pc where the user above logs
in. If I take the local group out of the OU, and just put the individual
user account into the OU (instead of the local group), the GP works fine
when that user logs into a PC.
Any ideas why this won't work when I use groups to add users to the OU, and
thus to the Global Policy world?
Thanks
CS
.
- Follow-Ups:
- Prev by Date: Win2K8 Activation and Offline Root CA
- Next by Date: Re: Why doesn't Group Policy work if I put a local group in the affected OU instead of the actual user account?
- Previous by thread: Win2K8 Activation and Offline Root CA
- Next by thread: Re: Why doesn't Group Policy work if I put a local group in the affected OU instead of the actual user account?
- Index(es):
Relevant Pages
|
