Link to home
Start Free TrialLog in
Avatar of andlemir
andlemir

asked on

GPO policy settings which trumps which?

Hey Experts,
Quick question regarding the GPO tree.  If, for example, I have a OU tree with the following policies, which one beats out the other?

Domain.local
   |
   |_domain policy
   |
   |____Users (OU)
                    |
                    |__another domain policy

To further the example for clarification, if I set the idle time for a TS session under the "domain policy" to be 10 minutes, and then go to the "another domain policy" and I want that OU group to have a different idle time of 20 minutes, is it safe to say that the policy most closely linked to the OU will win out with the users in that group having 20 minutes?  Or will the "domain policy" trump the "another domain policy"?

I'm assuming that the "another domain policy" is the last and final policy applied after the "domain policy".  Am I correct?
Avatar of EfrenM
EfrenM
Flag of United States of America image
the policies will work backwards, and apply the parent unless you disable that feature then you can ignore the parent policy
ASKER CERTIFIED SOLUTION
Avatar of ISWSIMBX
ISWSIMBX
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Avatar of Mike Kline
Mike Kline
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of andlemir
andlemir

ASKER

Thank you experts!  I will keep the LSDOU in mind from now on.  Thanks ISW and MKL