I am having trouble getting a GPO to run for a restricted user group.
I have a specific user group called "restricted users"
This group contains users that have been removed from the "Domain Users" group for security reasons
I have created 3 GPO's and linked them to a specific OU for specific machines. I have also removed the Authenticated Users from Security Filter and added the "Restricted Users" Group
THE GPO's do not run unless I add the "restricted users" group to the "Domain Users" group
When I run the GPO Policy Wizzard to see what is happening the names of the GPO show the SIDs rather then GPO name and for "Reason Denied" states Inaccessible
Can anyone show me what i'm doing wrong?