Group Policy

I have a group policy that disables "Enable native XMLHTTP support" for all the servers in one OU, I am adding a 2008 R2 Ent x64 server to that OU, but this server needs it enabled.

This server needs to be in this OU, any solution?
nourbenAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Rant32Connect With a Mentor Commented:
To recap:

1) Create and configure the policy that will override the setting. Don't link it yet.
2) Create a Global security group "Enable native XMLHTTP" or something. Add the server to that group.
3) Open the policy's properties
4) Disable the User portion of the policy with the checkbox (I assume it's a computer setting). Then hit tab Security.
5) Remove the Authenticated Users group from the list.
6) Add the security group you just created and grant the Apply Policy permission
7) Link the GPO to the OU
8) Make sure the overriding policy is listed first (Link Order 1)
0
 
JuliancitoConnect With a Mentor Commented:
Create Anather OU inside that OU, put the Server there, create a GPU for that OU with Enable native XMLHTTP support"
0
 
Justin SmithConnect With a Mentor Sr. System EngineerCommented:
you could modify the permissions on the GPO and put an explicit DENY for that server.
0
 
Justin SmithSr. System EngineerCommented:
only if that the XML is the the only setting on the GPO ;)
0
 
Rant32Commented:
Agreed, creating a sub-OU enables you to override the setting.

If you reallyreallyreally can't move the computer object to another OU, I would wonder what created that dependency. The only thing I can think of is that some automation/scripts is dependent on the LDAP path of the server. Nasty.

If you really must use this OU, you can also create a higher ranking GPO for that OU, and configure GPO security such that only the x64 server has the "Apply policy" permission. The higher ranking setting will win, but only for that server.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.