Link to home
Start Free TrialLog in
Avatar of doximagen
doximagenFlag for Afghanistan

asked on

Preventing GPO/login scripts when logging into a trusting forest 2003

I have 2 forest with a 1-way forest trust. I will call them forest A and B.

A trust B

When an individual logs into A, with B credentials there is a 5 min. lag in their logon. Event logs say "GPO aborted....etc"

How can I block the application of policies from B to A?


Avatar of Jay_Jay70
Jay_Jay70
Flag of Australia image

you will have to block both.....the fact is, user B has logon scripts and GPO's applied....you log on with him then you will get them......i don't know of a way in this scenario to do what you are asking but will watch in case someone else has ideas
Avatar of doximagen

ASKER

Isn't there a way to block those GPO's from running accross different forests?
you are calling an account from another forest, if you were able to block the GPO's then you may as well through your security off the top floor
Just to be clear...

I have an account in Forest B...
Forest A Trusts B
I login to Forest A with my Forest B credentials.
I am logging on to a workstation/server that is in Forest A as well.

How exactly do I prevent the GPO's from running when I am logging into the Forest A Server/workstation?
ASKER CERTIFIED SOLUTION
Avatar of Jay_Jay70
Jay_Jay70
Flag of Australia image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial