Link to home
Start Free TrialLog in
Avatar of jim3725
jim3725

asked on

gpo not appied

I am unable to apply a gpo that is using a certificate to my default domain pollicy.
I am attaching gpresults and a couple of print screens that show the gpo and scope.
the problem is the default domain polilcy is not being applied to domain users. I have installed the certificate on the dc's but the default domain policy doesn't get applied to them.

gpresult.txt
ScreenShot282.jpg
ScreenShot283.jpg
ASKER CERTIFIED SOLUTION
Avatar of oneitnz
oneitnz
Flag of New Zealand image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Is the "Enforced" option ticked on the default domain policy? This will avoid any inheritance blocking or setting overrides farther down the policy hierarchy. If you do an RSOP on one of the client OU's, do you see the setting applied there?
try applying the policy to "Domain Computers" Security Group and enforce the rule. if for some reasons you do not want to enforce it, create a new domain level GPO and set it with the same settings
Avatar of jim3725
jim3725

ASKER

After I applied this policy to all my  terminal servers locally then the users who were logging into terminal server received the certificate. I also applied it to all my dc's and then all my pc's received the cert as well.
thanks for your assistance.
Avatar of jim3725

ASKER

Since gpo for cerficiate was applied on computers then it had to be installed locally for anyone logging into these computers.