Within our organization we use a Cymphonix Network Composer to filter http, https, and ftp traffic by acting as a proxy device.
We have a Cymphonix Security Group within Active Directory that most users are members of. We have a GPO linked to the Cymphonix Security Group that enables Proxy Settings in Internet Options.
The problem I am having is that some of our IT Staff are part of the Cymphonix Security Group and those IT users can login to servers which then enables Proxy settings on our servers. This is a bad thing for us because some of our internal communications are http and ftp.
Our servers are in a "Servers" OU that has "Block Inheritance" checked already. The Cymphonix GPO is listed at the Domain Level and when I look at the Domain (abc.net) in Group Policy Management on the Group Policy Inheritance tab the Cymphonix GPO is listed last as Precedence 5.
How can I block this Cymphonix GPO from enabling proxy settings on our servers?