Solved

Some Clients not picking up a Change in Group Policy

Posted on 2011-09-08
10
1,236 Views
Last Modified: 2012-05-12
Hi,

I have made some changes to the Default Domain Group Policy and half of the Servers and Clients in the Domain have picked up the Changes but the other half are still using the previous settings. I have tried doing a Gpupdate /force on the machines but still not getting anywhere.

0
Comment
Question by:Contigo1
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 4
10 Comments
 
LVL 12

Expert Comment

by:josika
ID: 36502718
What policy setting did you change/configure?  Is the OS that the changes are not applying to common?  Meaning, are they all Windows 2003 that have not accepted the changes?
0
 
LVL 1

Author Comment

by:Contigo1
ID: 36502848
No they are a mixture of 2003 and 2008R2 and I have changed the Windows update settings to point to our new WSUS server. The Servers that are not picking up the changes are still pointing to the old WSUS server which is now offline.
0
 
LVL 12

Expert Comment

by:josika
ID: 36503154
Do you have group policy inheritance blocked on the OUs where the affected servers lie?  Have you set any security or WMI filtering on the Default Domain Policy?
0
What Is Transaction Monitoring and who needs it?

Synthetic Transaction Monitoring that you need for the day to day, which ensures your business website keeps running optimally, and that there is no downtime to impact your customer experience.

 
LVL 1

Author Comment

by:Contigo1
ID: 36503408
There is no WMI Filtering and Inheritance is not blocked to theOU's. The Servers are all in the Computers OU in AD. I have not set any Security on the Domain Policy either
0
 
LVL 12

Expert Comment

by:josika
ID: 36503488
Anything in the Event Viewer on the affected computers after running 'gpupdate /force'?
0
 
LVL 1

Author Comment

by:Contigo1
ID: 36503533
Nope the only thing I found the refers to Group Policy is and event that says:

Security policy in the Group policy objects has been applied successfully.
0
 
LVL 12

Expert Comment

by:josika
ID: 36504386
I would run RSOP on the servers and make sure the servers are seeing the policies.

Is it possible the WSUS server configuration is set in the local group policy on the servers?

Also, I would move the servers out of the default Computers container and into another OU.
0
 
LVL 1

Author Comment

by:Contigo1
ID: 36508742
I have looked at the local policy and everything is set to not configured. I have also done an RSOP and it is saying it is picking up the old settings still. How do I check what Policy it is getting the settings from? Also Could it be a problem with the version number?
0
 
LVL 1

Accepted Solution

by:
Contigo1 earned 0 total points
ID: 36536140
The problem was that the File Replication Service was not working which was meaning the AD and the Sysvol where getting out of sync. So when I made changes to the group policy it was not being replicated throughout the Domain. I solved this by what is listed in this articlehttp://support.microsoft.com/kb/290762

I then left the FRS service to get back into Sync. When It was back in sync I still couldnt get it to make the changes I needed so I changed all the upodate settings back to not configured in the GPO and then left it to sync back up with all the machines. Once this was done I changed all the update settings back to the required settings.
0
 
LVL 1

Author Closing Comment

by:Contigo1
ID: 36558745
This is what solved my problem
0

Featured Post

Comparison of Amazon Drive, Google Drive, OneDrive

What is Best for Backup: Amazon Drive, Google Drive or MS OneDrive? In this free whitepaper we look at their performance, pricing, and platform availability to help you decide which cloud drive is right for your situation. Download and read the results of our testing for free!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How many times a day do you open, acknowledge, or close an IT incident? What’s your process? Do you have a process depending on the incident, systems involved, and other factors? New Relic Alerts gives you options for how you interact with notifica…
Let’s face it: one of the reasons your organization chose a SaaS solution (whether Microsoft Dynamics 365, Netsuite or SAP) is that it is subscription-based. The upkeep is done. Or so you think.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

690 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question