Solved

how to set up a group policy attached to a group or single user

Posted on 2007-03-30
2
209 Views
Last Modified: 2010-04-20
I am trying to figure out how I can attach a group policy to either a user or a group of users within a OU. Specifically, I am setting up remote access using terminal server. I want to create the group policy in the same container as where the users are currently located. domainname.ca.local/local users
Normally, I would create another OU right under local users and call it ts users...
domainname.ca.local/local users/ts users
...but I believe there is a way to do it so that I can use the same OU where the users are located and just add them to a group to take on the group policy. I am running Windows 2003 Standard
Thanks in advance for the help
0
Comment
Question by:johnbowden
2 Comments
 
LVL 30

Accepted Solution

by:
LauraEHunterMVP earned 250 total points
ID: 18824878
You're thinking of security group filtering, wherein you modify the Permissions of a GPO. By default, every GPO has a security entry for "Authenticated Users" of "Allow - Read, Apply Group Policy".  You can either:

[1] Remove the entry for Authenticated users and create an "Allow - Read, Apply Group Policy" entry for only those users who should receive the policy, or

[2] Leave the Authenticated Users entry in place and create a "DENY - Read, Apply Group Policy" entry to exclude a specific subset of users who should NOT receive the policy.

Here's a good tutorial from Mitch Tulloch on how to set this up in the GP Management Console: http://www.windowsnetworking.com/articles_tutorials/Group-Policy-Security-Filtering.html

Hope this helps.

Laura E. Hunter - Microsoft MVP: Windows Server - Networking
0
 

Author Comment

by:johnbowden
ID: 18825037
that's exactly what I'm looking for. Thanks!
0

Join & Write a Comment

Some time ago I faced the need to use a uniform folder structure that spanned across numerous sites of an enterprise to be used as a common repository for the Software packages of the Configuration Manager 2007 infrastructure. Because the procedu…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now