Group Policy Question

Posted on 2008-10-16
Medium Priority
Last Modified: 2010-03-17
AD USers and Computers:
1. Created OU called Circulation
2.moved 5 users from Users to Circulation OU
3.opened GP Management
4.created policy linked to Circulation OU

Question: Security filtering has Authenticated users. Do I remove that entry? Do I have to add the 5 users from Circulation OU there?

Whats the point of moving those 5 users into the Circulation OU if i have to add them to the policy security filtering anyway? Seems so redundant.
Question by:zen_68
LVL 70

Accepted Solution

KCTS earned 1000 total points
ID: 22731998
The fact that "authenticated users" is in there means that be default it applies to all the members of the OU. LEAVE IT ALONE. Security filtering should only be used in extreme cases and as a last resort where you want to prevent some members in an OU from getting a policy and there is no other option available.

Author Comment

ID: 22732560
KCTS, thank you. That makes perfect sense now. I imagine I will see you here (EE) again.

Featured Post

Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

High user turnover can cause old/redundant user data to consume valuable space. UserResourceCleanup was developed to address this by automatically deleting user folders when the user account is deleted.
The Windows Firewall provides an important layer of protection and a rich interface to configure it. Unfortunately, it lacks item level filtering. This article details my process of implementing firewall-as-code to reduce GPO bloat.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

622 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question