Enable EFS --- GPO Problem
- From: "FIMJIM" <gzime.djoka@xxxxxxxxxxxxxxxxxxxxx>
- Date: 27 Jun 2006 09:39:26 -0700
Hi,
I've just configured a Windows server 2003 PKI in the company I'm
working for, unfortunately we are experiencing some difficulties while
trying to put it into production.
Basically, EFS is disabled by the Default Domain Policy GPO, and
another one.
I want to enable EFS on a subset of computers, so I created an OU and
applied a GPO that is supposed to allow users to use EFS on the
machines (XP SP2) located in this OU.
Unfortunately EFS is not enabled on those machines.
Group Policy Management Snap-in is telling me that the "EFS-enabling"
GPO is the last one being applied, but the Group Policy Results tool
shows that one EFS blocking GPO (not the default global policy) is
still winning, even if I enforce the EFS-Enabling GPO !
Is it due to the fact tha the Default Domain Policy is disabling EFS by
default?
Is it due to the fact that 2 GPOs are blocking EFS, while just one (the
last one being applied) is permitting it?
Does it have anything to do with GPOs applied on Domain Controllers?
I'd be happy to share your thoughts on this obscure problem...
Thanks,
Jim
.
- Follow-Ups:
- Re: Enable EFS --- GPO Problem
- From: Steven L Umbach
- Re: Enable EFS --- GPO Problem
- From: Carey Frisch [MVP]
- Re: Enable EFS --- GPO Problem
- Prev by Date: Re: lost cd key
- Next by Date: Re: Enable EFS --- GPO Problem
- Previous by thread: Re: content advisor pop-up
- Next by thread: Re: Enable EFS --- GPO Problem
- Index(es):
Relevant Pages
|
