What I want to accomplish is to apply policy for Security Group "restricted users" on specific terminal server machine.
1. I have created a Security group "restricted users"
2. I have created OU "terminal servers"
3. I have created GPO "TS restrictions" and linked it to "terminal servers" OU
The policy does not seem to work, unless it is linked to the root of the domain, but then it affects all of the machines in the domain.
When I run GPRESULT /H GPReport.html logged on on the machine as the user that supposed to be restricted by the policy - the report tells me that the policy is in effect - yet I do not see results (in my case for testing I just want to hide local C drive from the users)
What am I doing wrong?