Windows 2003 R2 with SP2 running terminal server licenses. What we want to do is have Group Policy Computer Configuration settings that apply to all OUs beneath the primary OU. Under the primary OU will be sub-OUs that have unique Computer Configuration settings for the password policy.
When we have the actual computer account under the primary OU, GP with general computer configurations applied at the same level, and password policy computer policy GP at the sub OU is that the sub OU policies will not work. If we move the computer account under one of the sub-OUs then the sub OU policy over-rides the primary computer policy settings.
Is there a way to have the computer account at the primary OU with the general computer configuration GP, and have the sub OU policies for the password policy? If so, please explain how to accomplish this.