?
Solved

Group policy not applying on terminal server.

Posted on 2011-09-06
3
Medium Priority
?
691 Views
Last Modified: 2012-05-12
Greetings!

We have a Server 2008 R2 terminal server that I am trying to get group policy loop-back processing to successfully work.

I have created a GPO in the terminal server's OU (it is the only computer in the OU) and enabled loop-back processing in "replace" mode.

I have had success with some settings, such as start menu settings, but no luck with Internet Explorer security settings. I have sites listed in the site-to-zone assignment list and customized trusted site zone settings that do not apply.
0
Comment
Question by:IT-Jesse
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 24

Accepted Solution

by:
Awinish earned 2000 total points
ID: 36490304
There are no of hotfixes released for windows 7/2008 R2 & make sure all are applied. Also, windows 2008 R2 SP1 has almost 800 fixes. If you see below posted link, you will find no of GPO related hotfix has been released.

I presume, when GPO is set via windows 2008 R2, it is applied to 64 bit IE bit not on 32 bit IE.
http://www.grouppolicy.biz/2010/07/the-complete-list-of-group-policy-hotfixs-in-windows-72008-r2-service-pack-1/


Regards
________________________________________
Awinish Vishwakarma
MY BLOG:  http://awinish.wordpress.com
0
 

Author Comment

by:IT-Jesse
ID: 36490439
Hello Awinish,

Both the DCs and the RDS server are Server 2008 R2 SP1 with all current updates installed.

The RDS server is in its own OU. The OU has inheritance blocked. There are two GPOs in this OU, one just for deployed printers, and one for user settings. The user settings GPO has loop-back processing enabled.

In the user settings GPO, the site to zone assignment list is enabled in the user configuration side of the GPO. When I log in as a user, nothing is displayed in the trusted sites list.

If i run RSOP.msc, I can see the Site to Zone Assignment List is how I set it, but it just dosent apply in Internet Options. rsop on RDS Server
0
 

Author Closing Comment

by:IT-Jesse
ID: 37030598
Thanks for the help!
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Always backup Domain, SYSVOL etc.using processes according to Microsoft Best Practices. This is meant as a disaster recovery process for small environments that did not implement backup processes and did not run a secondary domain controller that ne…
Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…
Suggested Courses

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question