Windows 2000 Group Policy
I've applied a domain wide policy for a corporate wallpaper for all users. That works fine. However, I would like to deny this policy when users log in to the terminal services server. I've tried to add the TS computer to the security of the GPO and deny the apply group policy permission, but it doesn't work. If I deny my user the same permission and log on, it works, but for some reason it wont deny for the computer account. Is there something that I'm missing?
Thanks!
Thanks!
To enable a GPO on a computer account, the Computer Object must be in the container which the GPO is being applied... or the GPO must be applied to the container where the computer resides..
FE
FE
Tried your suggestion by creating an OU for the terminal services server computer and applying the GPO there, while denying the apply group policy permission for that computer. However, the same thing occurs, and the policy is still applied when I log into the terminal server.
Any thoughts?
Any thoughts?
I am missing something here also... must be the afternoon doldrums creeping up on me.. Did you try creating a separate policy for that container that did not include the wallpaper, and try actually applying it to the computer account..?? Instead of Deny..??
Thanks oBdA.. Just not thinking in TS mode today...!! Was hoping someone else would join in the fun here... :)
Thanks for using Experts Exchange.
Please provide your email to receive a sample view!
*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.