Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

If you move an OU (and all sub OU's) will it loose any info (e.g., gpo's, etc)?

Posted on 2009-04-05
3
Medium Priority
?
321 Views
Last Modified: 2012-05-06
I want to move an OU within Active Directory.  I will be moving the OU higher in the hierarchy.  Will that cause my OU (and sub OU's) to loose anything?
0
Comment
Question by:victor2008
  • 2
3 Comments
 
LVL 18

Accepted Solution

by:
Americom earned 500 total points
ID: 24074345
Yes, it will lose the GPOs linked to the OU and sub OUs. It also could lose some of the permissions that were assigned through delegation or from direct assignment to the OUs. Also, if you have block inhertance of GPO from parent OU or domains level etc, you could lose that as well. When you move to other OU, you could inherited GPO and permisisions in the similar fasion where you intend to move it to.
0
 
LVL 57

Assisted Solution

by:Mike Kline
Mike Kline earned 500 total points
ID: 24074671
The GPOs linked directly to that OU should still be linked to the OU when you move it (just tested it).  Americom is right about the GPOs linked at the parent you will lose those
You can also use Group Policy modeling from GPMC to see what policies will apply to a user or computer that is moved before you move them.  In this case you are moving an OU so not as helpful but something to put out there for the future
More on that here:
http://technet.microsoft.com/en-us/library/cc780305.aspx
 
Thanks
Mike
 
0
 
LVL 18

Expert Comment

by:Americom
ID: 24077001
Good point Mike. The GPOs linked "directly" to the OU should still be linked to the OU as those are GPO links which should follow the OU that was linked to.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
How to deal with a specific error when using the Enable-RemoteMailbox cmdlet to create a mailbox in the cloud-based service, for an existing user in an on-premises Active Directory.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

916 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question