I'm moving forward with a change request on implementing AGPM in our 2008 Domain. Although it's not perfect, it's definately a step in the right direction in regards to Group Policy management.
So, over the course of a week, I've gotten pretty much up to speed on using the new MMC additions on AGPM. It sounds like in our org, that we're going to be able to use a single licensed VM for the AGPM server installation, and not be able to have any redundancy in the equation.
For a disaster scenario, I'm wondering what would happen if the AGPM server exploded? - And there was no way in bringing it back to life, or we need to create an emergency style group policy in a pinch on a remote DC somewhere?
For the second scenario, I understand that as long as you have rights to create policies, that the AGPM server would then just move those into the "uncontrolled' portion, but my primary worries are definately the first scenario on the "controled" policies. Should the server die a horrible death, what happens to the polices that are managed by AGPM?
Is there a backout way to return to the way things are currently running, where Group Policy is pretty much a free-for-all as long as the rights are there?
Any information that anybody has on this topic, if anybody has had the opportunity to play with the new Group Policy stuff from MS, your ideas would be very appreciated here.