Solved

Active Directory (moving a User to another OU) question

Posted on 2004-08-10
4
356 Views
Last Modified: 2010-04-12
Hi. At work we are running active directory. We have about 150 sites and tons and tons of OUs.

We got a new user that transferred from another division. (of course, every division has a separate OU with unique GPOs linked etc)

My boss simply moved his user account from his old job's OU, to our OU.

The problem: The GPO linked to his old OU is still in effect to his user name,even though he's in our OU now.

What can I do to remedy this? Create a new user account for him?
Thanks
0
Comment
Question by:dissolved
  • 2
  • 2
4 Comments
 
LVL 57

Accepted Solution

by:
Pete Long earned 50 total points
ID: 11762512

Moving a user account to a different container within the same domain

http://www.microsoft.com/technet/treeview/default.asp?url=/technet/scriptcenter/scrguide/sas_usr_aznz.asp

then do

XP client

start >run > gpupdate /force

2K client

Start > Run > SECEDIT /REFRESHPOLICY MACHINE_POLICY /ENFORCE  
Start > Run > SECEDIT /REFRESHPOLICY USER_POLICY /ENFORCE
0
 
LVL 9

Expert Comment

by:jdeclue
ID: 11763595
Usually, moving the user and rebooting the machine will take care of any GPO issues, follow PeteLongs recommendation to force the update. Hopefully that is all you need. If that does not solve the problem, read on.

If you have any GPO settings which change File permissions, Registry Permissions, and many registry settings they will not automatically reverse when a user or computer is removed from a GPO.

File and Registry permissions become set locally, they have to be manually changed back, or reversed with a another set of GPO policies .

Many Registry changes done through Administrative Templates set registry settings, these will not reverse unless they are changed manually or a GPO reverses the change.
0
 
LVL 9

Expert Comment

by:jdeclue
ID: 11763630
Oh yeah... don't forget to move his computer if the OU's have computer configurations as well! ;)

J
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 11786893
ThanQ
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Is your company's data protection keeping pace with virtualization? Here are 7 dynamic ways to adapt to rapid breakthroughs in technology.
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now