Solved

How to ignore Domian security policy

Posted on 2003-10-24
3
156 Views
Last Modified: 2010-04-13
Hi,

I have one server that i need to have a different set of policies than the rest of my domain.  How can i set this box ignore the global policy that is in place, and use its own local policy instead.

thanks
Stu
0
Comment
Question by:stuartknox
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 43

Expert Comment

by:JFrederick29
ID: 9613543
If the server is a member server and you want different Account Policies you'll have to remove the server from the domain and configure the server as a "stand alone" server (Do not attach it to the domain).  It will then use its own local security policies.

If the server is a DC, you'll have to create a second domain to setup different Account policies.

If you are not referring to the domain account policy, simply block the inheritance of the group policy in question and create a new one for the server at the OU level.
0
 
LVL 3

Accepted Solution

by:
dshuang5858 earned 125 total points
ID: 9613941
Hi, stuartknox,

Another way you can try is to create an user group which use default policy.

- In the GPO where display your GPO link, you highlight the default policy and click "Properties".  
- Under "Security" Tab, highlight "Authenticated Users" and under Permission, uncheck "Read" and "Apply Group Policy"
- Click "Add" button to add the user group that need to use default policy and submit
- Make sure you highlight the new user group you just added; under Permission, check "Read" and "Apply Group Policy"

This way, you allow certain users to use default policy and rest of others will ignore the Global policy.

Hope this help!

dshuang5858
0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Part One of the two-part Q&A series with MalwareTech.
In this video, viewers will be given step by step instructions on adjusting mouse, pointer and cursor visibility in Microsoft Windows 10. The video seeks to educate those who are struggling with the new Windows 10 Graphical User Interface. Change Cu…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Suggested Courses

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question