Solved

Computer group in Security Filtering of GPO won't work

Posted on 2010-09-01
2
695 Views
Last Modified: 2012-05-10
This is driving me nuts. I have a GPO I want to apply to specific computers. I have created an AD Global group with these computers added as members. I add this group to the security filtering section of the SUS policy I created, removed Authenticated Users and I rebooted my Windows 7 computer and it won't take effect. IF I put the computer object in the AD container where the GPO is linked....it works no problem. The computer objects that I need to move are already in another container with another GPO applied to it which is why I thought a group in Security Filtering would work nicely.
Am I doing something wrong? Your thoughts would be appreciated.

Thanks,
BW
0
Comment
Question by:bwinkworth
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 250 total points
ID: 33581245
The computer object has to be in the OU (or child/sub OU) where that GPO is linked if you want the settings to apply to it.
So since you are using security filtering you can also just link the policy at the domain level and then it will only apply to the members of the group.
SO if you have   OU_A  and OU_B and your computer is in OU_B and the GPO is linked at A (these are not parent/child in this example) then the policy will never apply to the machine regardless of the filter.
 
Thanks
Mike
0
 

Author Closing Comment

by:bwinkworth
ID: 33587927
Thanks a lot Mike!
Now it makes sense. I relinked the policy in the domain area and the security filtering works now.

BW
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Suggested Courses

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question