<div>
Domain GPOS will always overide local policy settings aslong as the machine is a member of the domain.<br />
<br />
Also remeber enforce is also authorative.
</div>


Domain GPOS will always overide local policy settings aslong as the machine is a member of the domain.

Also remeber enforce is also authorative.

<div>
<div class="content wysiwyg-content">
1. &nbsp;Are local group policies applied differently than domain group policies in terms of which one takes precedence? &nbsp;It is my understanding that the most specific GPO is takes precedence is that true for both local and domain? &nbsp;<br />
<br />
2. &nbsp;Reading the 70-622 book it states that if I had a domain structure like the one below<br />
<br />
Forest: &nbsp;hq.contoso.com<br />
OU: Accounting, Finance Human Resouces, IT etc<br />
IT OU split into Desktops, Laptops, and Server OUs each with their own GPO<br />
<br />
The order of precedence would be the in the following order<br />
<br />
Local GPO<br />
Default Domain Policy<br />
IT GPO<br />
IT Desktop GPO<br />
<br />
Wouldn't the Local GPO be first then followed by the IT-Desktop GPOs, IT and finally Default Domain Policy...I thought it went most specific to most general. &nbsp;<br />
<br />
A bit confused because on page 107 it says Settings in lower-level GPOs override settings in higher GPOs but then they say domain GPOs override lower GPOs in the very next sentence. &nbsp;<br />
<br />
I am hoping someone out there has a simple way to think of this. &nbsp;THanks<br />
<br />
Aaron <br />

</div>
</div>


1.  Are local group policies applied differently than domain group policies in terms of which one takes precedence?  It is my understanding that the most specific GPO is takes precedence is that true for both local and domain?  

2.  Reading the 70-622 book it states that if I had a domain structure like the one below

Forest:  hq.contoso.com
OU: Accounting, Finance Human Resouces, IT etc
IT OU split into Desktops, Laptops, and Server OUs each with their own GPO

The order of precedence would be the in the following order

Local GPO
Default Domain Policy
IT GPO
IT Desktop GPO

Wouldn't the Local GPO be first then followed by the IT-Desktop GPOs, IT and finally Default Domain Policy...I thought it went most specific to most general.  

A bit confused because on page 107 it says Settings in lower-level GPOs override settings in higher GPOs but then they say domain GPOs override lower GPOs in the very next sentence.  

I am hoping someone out there has a simple way to think of this.  THanks

Aaron 


Active Directory - Group Policy Question

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Windows Vista is an operating system created by Microsoft as the successor to Windows XP. It was intended for PCs, workstations and laptops, and shares the same code base as its successor, Windows 7. New features included an updated graphical user interface (GUI) and visual style dubbed Aero, a new search component called Windows Search, redesigned networking, audio, print and display subsystems, and new multimedia tools. Vista aimed to increase the level of communication between machines on a home network, using peer-to-peer technology to simplify sharing files and media between computers and devices. Windows Vista included version 3.0 of the .NET Framework, allowing software developers to write applications without traditional Windows APIs.