Best way to push Group Policy updates?

We are going to implement Group Policy.  In house is easy.  For our sales reps though, we are not sure if we make changes, how we are going to push those updates out to our reps.  They currently do not connect to the domain at all unless they happen to be in the office for a visit.  We are about to roll out all new laptops to them so the initial Group Policy will be deployed already on the laptops.  Its only the changes that we make after deployment that we are concerned about.  Any ideas or questions welcome.
acco_isAsked:
Who is Participating?
 
slam69Commented:
again unfortunately not, you can get them to log on using dial up networking, but its reliant on the user logging in in teh appropriate manner and wouldnt be a lot different to asking them to log in via vpn to obtain the gpo updates.

i would advise sitting down discussing the best possible gp setup for your laptop users and distribute that as an image so that they shoudlnt need updating, then enforce company policy that within a set number of days of them recieving an email instructing them to connect for an update they do it or face disciplinary.

Aide from that you have little or no options.. sorry bud sometimes its just not possible
0
 
slam69Commented:
without getting the machines to connect to the domain its not possible. Have you thought of using vpn to get them to connect and update that way
0
 
acco_isAuthor Commented:
slam69:
Our only problem is that our reps are not the quickest.  It would have to be something super simple for them or we have no guarantee that they will connect.  I was hoping that would be that last resort.
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
slam69Commented:
well i did network permissioning for barclaycard and often had these scenarios and i never found a way around this other than implicity denying access and allowing where required.

The only way i can think of doing it would be removing the user from domain users and adding the user in directly but then you will click inheritence to follow and they will have access to lots more folders, try adding the permissions in one folder at a time, removing them from domain users group and adding their access in one level at a time, gonna be tricky though i would still want to be denying them rights to teh other folders
0
 
acco_isAuthor Commented:
As a side note....I didn't know if there was a way to force them to have to connect.  i.e. - Unless they connect to our network within every x number of day/weeks/months, their computer or Windows would not function in some way.
Or something that would prevent them from doing what they need until they connect.
0
 
slam69Commented:
apologies i posted reply to wrong question hang on and ill try that again!!
0
 
acco_isAuthor Commented:
Also FYI...they currently have a RAS connection that they can use to replicate in Lotus Notes.  But only a dozen use that as a last resource to replicate.
0
 
Jay_Jay70Commented:
without a connection its not going to happen - its like wanting to receive email without using internet :)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.