Russ Suter
asked on
Group Policies - To enforce or not to enforce
I'm still relatively new to group policies and they don't seem very dependable to me. I can't tell when they roll out and I'm not sure how to effectively use gpupdate. Here are a few specific questions.
1. If I have OUs inside other OUs then they should inherit policies from parent OUs correct?
2. Is linking the policy sufficient or should I enforce the policy also?
3. How do I use gpupdate to ensure the policy changes take effect immediately?
4. Should gpupdate be run on the DC or on the workstations being affected by the policy?
5. Should I use the security filtering? If so, how?
1. If I have OUs inside other OUs then they should inherit policies from parent OUs correct?
2. Is linking the policy sufficient or should I enforce the policy also?
3. How do I use gpupdate to ensure the policy changes take effect immediately?
4. Should gpupdate be run on the DC or on the workstations being affected by the policy?
5. Should I use the security filtering? If so, how?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Some user policies will apply at the next group policy refresh interval (90 mins by default) without you having to do anything at all at the workstation. No reboot, no logoff/on, no gpupdate (/force or not).
BUT.....
Some policies will actually require your to reboot, log in, log off and reboot and log in again before they will be efective.
Dont ask what ones are in what scenario! Its a long list lol