I edited the Default Domain Policy in GPO but want to exclude the Domain Controller (same server with the with the GPO and Active Directory on it).
After some research I found a few ways to exclude computers but non seem to work.
I have already:
1) Added the actual server to the security tab and checked off Deny to Apply Group Policy as well as Read -- This had no effect
2) I then added the groups Domain Controllers and Enterprise Exchange Servers ( the only 2 security groups AD says the server is a member of) with the same 2 Deny options checked off -- Again no effect on the server.
Of course I issued the gpupdate/force after each change, loggged off and back on again.
HOW do I exclude the server from the GPO????