[Webinar] Streamline your web hosting managementRegister Today

x
?
Solved

Preventing GPO/login scripts when logging into a trusting forest 2003

Posted on 2006-10-21
5
Medium Priority
?
332 Views
Last Modified: 2010-04-18
I have 2 forest with a 1-way forest trust. I will call them forest A and B.

A trust B

When an individual logs into A, with B credentials there is a 5 min. lag in their logon. Event logs say "GPO aborted....etc"

How can I block the application of policies from B to A?


0
Comment
Question by:doximagen
  • 3
  • 2
5 Comments
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17782817
you will have to block both.....the fact is, user B has logon scripts and GPO's applied....you log on with him then you will get them......i don't know of a way in this scenario to do what you are asking but will watch in case someone else has ideas
0
 

Author Comment

by:doximagen
ID: 17784241
Isn't there a way to block those GPO's from running accross different forests?
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17785420
you are calling an account from another forest, if you were able to block the GPO's then you may as well through your security off the top floor
0
 

Author Comment

by:doximagen
ID: 17787799
Just to be clear...

I have an account in Forest B...
Forest A Trusts B
I login to Forest A with my Forest B credentials.
I am logging on to a workstation/server that is in Forest A as well.

How exactly do I prevent the GPO's from running when I am logging into the Forest A Server/workstation?
0
 
LVL 48

Accepted Solution

by:
Jay_Jay70 earned 500 total points
ID: 17792519
The GPO's are user based NOT computer based then and as i said, i know of no way to make this any different
0

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Organizations create, modify, and maintain huge amounts of data to help their businesses earn money and generally function.  Typically every network user within an organization has a bit of disk space to store in process items and personal files.   …
by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
How can you see what you are working on when you want to see it while you to save a copy? Add a "Save As" icon to the Quick Access Toolbar, or QAT. That way, when you save a copy of a query, form, report, or other object you are modifying, you…
SQL Database Recovery Software repairs the MDF & NDF Files, corrupted due to hardware related issues or software related errors. Provides preview of recovered database objects and allows saving in either MSSQL, CSV, HTML or XLS format. Ensures recov…

612 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question