Luxtech
asked on
Group policy not applying to users in OUs.
I have done some searches on this and found nothing on the site so far which answers this particular question, sorry if I missed it.
I have a newly installed AD on a 2003 enterpirse server. I have created serveral OUs in the AD and want to apply a windows firewall policy to them. Now I created the policy and it doesnt work when applied dirrectly to the OU, however if I apply the same policy to the top of the ad, domain.local container, it works fine. This does not make any sence to me. There are no other policys as I removed the default ones and yet policys set on OUs wont work but do work when set at the top of the hierarchy tree.
I might be missing something obviouse but any help would be appreciated!
Thanks
Michael
I have a newly installed AD on a 2003 enterpirse server. I have created serveral OUs in the AD and want to apply a windows firewall policy to them. Now I created the policy and it doesnt work when applied dirrectly to the OU, however if I apply the same policy to the top of the ad, domain.local container, it works fine. This does not make any sence to me. There are no other policys as I removed the default ones and yet policys set on OUs wont work but do work when set at the top of the hierarchy tree.
I might be missing something obviouse but any help would be appreciated!
Thanks
Michael
ASKER
I have ran gpupdate and when the policy is applied to the domain.local object in AD it works. When it is applied to the OU in which the user is situated it doesnt work. Firewall policy also applys without a restart :).
I need to associate the policy with the OU not the domain object in the AD as I want different GPs on different OUs.
Thanks
I need to associate the policy with the OU not the domain object in the AD as I want different GPs on different OUs.
Thanks
are you by any chance trying to apply GPO's to the Users or Compyters OU in AD?
ASKER
No I have created seperate OUs which I have moved my relevant users into.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Simply,
a firewall setting is for computers, your title says apply GPO to users. you cannot apply a firewall setting to users, it is a computer setting.
take another look at which section of hte GPO you made the setting change in.
Good Luck,
a firewall setting is for computers, your title says apply GPO to users. you cannot apply a firewall setting to users, it is a computer setting.
take another look at which section of hte GPO you made the setting change in.
Good Luck,
ASKER
Of course. Thanks new it was something stupid :)
when you apply the group policy, if you look in the event viewer is there any errors?
try a gpupdate /force and with a firewall policy you will need a restart