jim3725
asked on
gpo not appied
I am unable to apply a gpo that is using a certificate to my default domain pollicy.
I am attaching gpresults and a couple of print screens that show the gpo and scope.
the problem is the default domain polilcy is not being applied to domain users. I have installed the certificate on the dc's but the default domain policy doesn't get applied to them.
gpresult.txt
ScreenShot282.jpg
ScreenShot283.jpg
I am attaching gpresults and a couple of print screens that show the gpo and scope.
the problem is the default domain polilcy is not being applied to domain users. I have installed the certificate on the dc's but the default domain policy doesn't get applied to them.
gpresult.txt
ScreenShot282.jpg
ScreenShot283.jpg
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Is the "Enforced" option ticked on the default domain policy? This will avoid any inheritance blocking or setting overrides farther down the policy hierarchy. If you do an RSOP on one of the client OU's, do you see the setting applied there?
try applying the policy to "Domain Computers" Security Group and enforce the rule. if for some reasons you do not want to enforce it, create a new domain level GPO and set it with the same settings
ASKER
After I applied this policy to all my terminal servers locally then the users who were logging into terminal server received the certificate. I also applied it to all my dc's and then all my pc's received the cert as well.
thanks for your assistance.
thanks for your assistance.
ASKER
Since gpo for cerficiate was applied on computers then it had to be installed locally for anyone logging into these computers.