Solved

Dueling GPO's, computer portion not being applied.

Posted on 2010-11-19
4
313 Views
Last Modified: 2012-05-10
Ok so I have a default Domain GPO that's been working perfectly for years now.  I've had an MIS GPO for that long as well, but until yesterday it only contained User components which were applied just fine.

My goal here was to distribute a pair of powershell scripts and matching batch files to initiate them to the members of IT's computers.

So what I did was I added:
Computer Config/Admin template/powershell/Execution Policy Allow All Scripts.
Computer Config/Admin template/Group Policy/Loopback enabled - merge

User Config/Software/Assigned Apps/msxml core 6.0 and quest active roles ad mgmt
User config/Windows Settings/Scripts/Logon/copy-script.bat (which copied the files to a folder on c:)

Now rebooting as a test both of the assigned apps were installed upon logon, but loopback more didnt get applied nor did the execution policy.
Looking at gpresult is worthless, at the top where Computer Config starts, the list of applied gpo's does not include the MIS one, the list of Denied GPO's doesnt either.

Now the Scope of this GPO for Locations are both IT Computers and IT Staff.  One containing our computer accounts, the other our user accounts.. and Security filtering is for Authenticated Users and the GPO is linked in both containers.

On a whim I disabled this one since it was originally created back on Windows 2003 (now all of my DC's are 2008), but the same issues are happening.

Can anyone tell me what I'm doing wrong here?
Also should any subsequent GPO created for a specific OU have loopback enabled so the domain default doesnt get overwritten?
And lastly how can I get that logons cript, which is just a batch file to copy files into the windows/users or windows/system32 folders w/o complaing about permissions?
0
Comment
Question by:Ben Hart
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 10

Expert Comment

by:moon_blue69
ID: 34174208
have you tried RSOP?
0
 
LVL 14

Author Comment

by:Ben Hart
ID: 34174240
By RSOP are you talking about the Group Policy Modelling wizard?
0
 
LVL 10

Expert Comment

by:moon_blue69
ID: 34174279
Resultant Set of Policies - Yes
0
 
LVL 10

Accepted Solution

by:
moon_blue69 earned 500 total points
ID: 34174313
For copying you will have to script it. You can keep ot in the same location where you have kept the script - so that the users can access it if they can read the policy
0

Featured Post

Salesforce Made Easy to Use

On-screen guidance at the moment of need enables you & your employees to focus on the core, you can now boost your adoption rates swiftly and simply with one easy tool.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question