Solved

GPO's without Links but Still Filtered to Authenticated Users

Posted on 2006-06-26
2
341 Views
Last Modified: 2010-04-18
OK I think this is a simple one.

Just started a new job and am managing 3 servers.  Am documenting all the GPO's so I know what is supposed to be happening on the servers and its clients.

I noticed several GPO's that are not linked to any OUs, but under the Security Filtering Section they are set to be applied to the "Authenticated Users" group.  I ran RSOP on my client while logged on as administrator, and don't see that any of these non-linked GPOs are being applied.  Is that normal?

Is there any reason to have GPO's that have no active links but are filtered to authenticated users?  Should these GPO's be being applied to all authenticated users?  The GPOs contain both Computer and User settings.  I'm just trying to figure out why the previous Administrator set these up.

ckangas7
0
Comment
Question by:ckangas7
2 Comments
 
LVL 51

Accepted Solution

by:
Netman66 earned 125 total points
ID: 16988511
Yes, that's normal.  

GPMC is kind of misleading.  The "filtering" you see siimply means that the Authenticated Users group will get the policy if it was linked.

It's very possible the last Admin simply unlinked them if they didn't do what he wanted.  You should be safely able to delete these.

0
 

Author Comment

by:ckangas7
ID: 17002425
Yep, that's what I thought, but just wanted to make sure before I started deleting things.  Thanks.
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Preface Having the need * to contact many different companies with different infrastructures * do remote maintenance in their network required us to implement a more flexible routing solution. As RAS, PPTP, L2TP and VPN Client connections are no…
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question