Remove Group Policy from machine no longer on domain

I have a strange one here.  A user has a notebook that used to belong to a domain.  A very restrictive Group Policy had been applied (no local drive access, context menus, run dialogue, task manager, control panel).  User was given the opportunity to buy the machine when they left their previous company.  Machine had not been removed from that domain on exit.  One of my technicians helped this user out by changing the local Administrator password, logging on as the local Administrator, and removing the machine from the old domain.  The group policy still appears to be in place however and applies to every account other than the local Administrator (even other members of the local Administrators group).  An attempt to join this machine to another domain had no effect on the existing policy.  The system is running XP SP2.


Note:  This is an actual problem that I ran into a couple of years ago.  I did not have much opportunity to deal with it at the time so after some basic troubleshooting I took an image of the HD and reinstalled.  I have the time now so I've applied that image to a similar image and have turned it into a lab case.  I have to admit that I am as stumped today as I was then.
LVL 7
CharliePete00Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

James ClintonSenior System Support EngineerCommented:
Did you try deleting

documents and settings/default user
documents and settings/all users

these will store .pol .dat and other info relating to the old group policy and will then apply them to new accounts created

only thing i can think of...

james

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Cyclops3590Sr Software EngineerCommented:
have you tried running the mmc and look at the resultant set of policy.  It should show what you have on your machine under the current user and tell you where the policy is coming from.
also, doubt it'll work, but have you tried
gpupdate /force
that's suppose to reapply all of the group policies even the ones that haven't changed.
austinpctechCommented:
I believe this should accomplish what you are trying to do.

http://support.microsoft.com/default.aspx?scid=kb;en-us;313222
Become a CompTIA Certified Healthcare IT Tech

This course will help prep you to earn the CompTIA Healthcare IT Technician certification showing that you have the knowledge and skills needed to succeed in installing, managing, and troubleshooting IT systems in medical and clinical settings.

imagnlCommented:
Still no luck. I have tried deleting the user folders but I cant delete All Users. Says it is a windows folder and cant be deleted.

I have tried running the script in the msft article to no avail as well.
JeffMCCCommented:
I'm back now.  The user took the laptop with them for few days and I just got my hands back on it.

I have removed/re-added the machine to the domain.  Deleted the users profile on the machine and domain and let it rebuild.  Checked the resultant policies and it looks as if the correct policy is being applied.  The following are show in the resulatant policy.
 Allow or Disallow use of the offline files feature - enabled
Prohibit user configuration of offline files - disabled
Remove ' Make avaialable offline' - disabled
Prevent use of Offline Files folder - disabled.

I am at a loss as what to check next.

NHChatsCommented:
HowTo: Reset Security Settings Back to the Defaults
http://support.microsoft.com/default.aspx?scid=kb;en-us;313222&Product=winxp

This should help you, it explains using the default setup security template to re-apply the default security settings.

-NH

It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows XP

From novice to tech pro — start learning today.