dbrs_helpdesk
asked on
Issue with GP WMI filters
Hello,
I am having an issue with WMI with a GP. The GP is working properly but when I add the WMI filter it doesn't work. This filter is suppose to remove offline files feature from desktop computers.
This is the code for the WMI filter
select * from Win32_SystemEnclosure where ChassisTypes = 1 or ChassisTypes = 2 or ChassisTypes = 3 or ChassisTypes = 4 or ChassisTypes = 5 or ChassisTypes = 6 or ChassisTypes = 7 or ChassisTypes = 13 or ChassisTypes = 15 or ChassisTypes = 16 or ChassisTypes = 17
The GP setting is
Do not automatically make redirect folders available offline.
This is under user settings.
The end result is if you are a laptop ignore this GP.
I am having an issue with WMI with a GP. The GP is working properly but when I add the WMI filter it doesn't work. This filter is suppose to remove offline files feature from desktop computers.
This is the code for the WMI filter
select * from Win32_SystemEnclosure where ChassisTypes = 1 or ChassisTypes = 2 or ChassisTypes = 3 or ChassisTypes = 4 or ChassisTypes = 5 or ChassisTypes = 6 or ChassisTypes = 7 or ChassisTypes = 13 or ChassisTypes = 15 or ChassisTypes = 16 or ChassisTypes = 17
The GP setting is
Do not automatically make redirect folders available offline.
This is under user settings.
The end result is if you are a laptop ignore this GP.
I guess this is not exactly what you want to hear, but what about slightly different approach? Very simple solution:
1. Link the redirection policy to entire domain or OU you need.
2. Create new security group called "Desktops"
3. Remove "read and apply" permissions to this group on GPO
1. Link the redirection policy to entire domain or OU you need.
2. Create new security group called "Desktops"
3. Remove "read and apply" permissions to this group on GPO
ASKER
Do you have to add the computers to the desktops security group?
ASKER
I have applied the GP for all laptops in their respective OU's. When I run a gpresult, the group policy does not show up in the list. I have forced replication and I have ran on the test workstation a gpupdate /force. Tthe final thing I have looked at was GPMC and the policy inheritance. It shows that this policy number 1 instead of the last one of the list. I don't know if that is correct.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I found out that when I keep authenticated users, it works for both users and computers. Since our ad structure separates workstations and laptops I will deploy the GP to the proper OU.
Thanks for all your help.
Thanks for all your help.
ASKER
My WMI filter looks like this now
elect * from Win32_SystemEnclosure where ChassisTypes = 15
Open in new window