Solved

Preventing GPO/login scripts when logging into a trusting forest 2003

Posted on 2006-10-21
5
327 Views
Last Modified: 2010-04-18
I have 2 forest with a 1-way forest trust. I will call them forest A and B.

A trust B

When an individual logs into A, with B credentials there is a 5 min. lag in their logon. Event logs say "GPO aborted....etc"

How can I block the application of policies from B to A?


0
Comment
Question by:doximagen
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17782817
you will have to block both.....the fact is, user B has logon scripts and GPO's applied....you log on with him then you will get them......i don't know of a way in this scenario to do what you are asking but will watch in case someone else has ideas
0
 

Author Comment

by:doximagen
ID: 17784241
Isn't there a way to block those GPO's from running accross different forests?
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17785420
you are calling an account from another forest, if you were able to block the GPO's then you may as well through your security off the top floor
0
 

Author Comment

by:doximagen
ID: 17787799
Just to be clear...

I have an account in Forest B...
Forest A Trusts B
I login to Forest A with my Forest B credentials.
I am logging on to a workstation/server that is in Forest A as well.

How exactly do I prevent the GPO's from running when I am logging into the Forest A Server/workstation?
0
 
LVL 48

Accepted Solution

by:
Jay_Jay70 earned 250 total points
ID: 17792519
The GPO's are user based NOT computer based then and as i said, i know of no way to make this any different
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Add user group members to local Administrators 2 62
Server Login Issue 4 73
Cannot take ownership of a folder 8 91
NTP time source for DC 3 91
by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
by Batuhan Cetin Within the dynamic life of an IT administrator, we hold many information in our minds like user names, passwords, IDs, phone numbers, incomes, service tags, bills and the order from our wives to buy milk when coming back to home.…
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question