Question about GPO management in Windows 2003 server
Posted on 2006-05-09
I installed the GPO management update a while ago and I need some clarification on what's what in the application/console. When open I have the usual tree-like directory structure on the left-hand side with Group Policy Managemnt at the top, the forest, the domain and the objects beneath it. On the right-hand side, the window is actually split into two windows. At the top is the name of the GPO with 4 tabs beneath it, "Scope,Details, Settings and Delegation" In the top "window" on the right side is displayed the various things that are linked to that GPO. Beneath that is another window with the label, "Security Filtering" and beneath that label it says, "The setings in this GPO can only apply to the following groups, users, and computers" below this is a listing of various users and a add/remove button and a property button. My question is what exactly is the list at the bottom right that was just described? Is the security filtering list the list of people, places and things that this GPO actually applies to? Or is this the list of people places things that have control of the GPO object? I thought it was the list of effected objects that the GPO effects, but when I deleted one of the users, it gave me a weird warning that made it sound like it was the other possibility that I cited above. Sometimes the wording from Microsoft is really difficult for me to understand. Excuse me for being dense.