I have a 2003 Domain Controller and a 2008 Terminal Server. I do not have active directory installed on the terminal server. I am quite new to both group policy and terminal servers, and especially 2008. I want to lock down the terminal server as much as possible. I thought I would try out group policy with something easy - mapping drives. I got it to work once! Well, maybe twice, once for myself, and once for another user. I've been fighting this for about a month. And I figured if this didn't work, nothing else I tried to do would work either. I have followed the instructions in the book "Windows Server 2008 Terminal Services Resource Kit" to create an OU and link policies to that. I've tried different scripts, different securities. Not sure what all I need to list. I ran a gpresult in the cmd prompt, and I've run the result wizard in the group policy management. I didn't see any errors (that I know of) from the cmd prompt. Do I need to add someting to my 2008 server such as lightweight AD or change the schema on the 2003 (it's currently 2000 mixed with no other options)? What I know about the network is what I've learned since I've been with this company - I'm the Office Manager with IT responsiblities. So any books, or links on how to do Group Policy would be greatly appreciated.