How can I apply a GPO to an OU full of computers but only have it run on a few specific computers?
Posted on 2008-06-25
I have an OU at the root of AD that is full of computers and SUB OU's that also contain other computers. I need to apply a GPO to all of these computers that will run a script. However I dont want every computer to actually run it. Only a certain group of computers can run this GPO script. I want to create a group, put the computers in the group then apply the permissions to that group to run the gpo. Now other computers in the OU or SUB OU should be affected by this. I also have another OU on the root that contains all of my users. I have tried this so far and ran an RSOP and do not see the policy getting applied to my test pc. The test pc is in the group and has had gpupdate /force ran on it. I appreciate any help. Thanks.