?
Solved

Server 2003 + TS + DC

Posted on 2009-05-17
2
Medium Priority
?
251 Views
Last Modified: 2013-11-21
windows 2003 server with AD installed and Terminal Services installed for a test.

under AD, ive got a new OU called clients and then beneath that a company name and beneath that users AKA

FOREST
  --Clients
    -- testcomp
       --  bob
       --  john

ive applied a new GPO to 'testcomp' and its there under GPMC, but when a user logs on via RDP/TERMSERV its not applied, the server applies its normal default domain policy, but not the testcomp GPO

if i move the testcomp GPO to the FOREST level its applied when the client logs on, but not down the chain.

gpupdate /force and gpresult used to test thus far.    

any ideas to get this applying as well as the default one.
0
Comment
Question by:VoneServs
2 Comments
 
LVL 1

Accepted Solution

by:
brock_hensley earned 2000 total points
ID: 24406726
Hello,

http://www.unitek.com/training/citrix/blog/?p=21

Edit the Default Domain Policy GPO.

Expand Computer Configuration > Policies > Administrative Templates > System > Group
Policy

It's called "User Group Policy loopback processing mode".

Set it to Enabled.

Chose either Merge or Replace you can read the difference, Replace forces domain GPO over
user settings.

GPUpdate /force

User settings take effect immediately, computer settings requires reboot.

Hope this helps!
0
 

Author Comment

by:VoneServs
ID: 24406927
i had it set to replace there and didnt work, i just tried merge and bingo that it!

cheers for that
0

Featured Post

Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Understanding the various editions available is vital when you decide to purchase Windows Server 2012. You need to have a basic understanding of the features and limitations in each edition in order to make a well-informed decision that best suits …
It’s time for spooky stories and consuming way too much sugar, including the many treats we’ve whipped for you in the world of tech. Check it out!
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

612 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question