We have a client which is running Windows 2008 R2 Active Directory, has abou 15 OU's and we are pushing proxy settings from the default group policy. Currently, the group policy is being deployed to every single user in the AD domain. The client never had remote users before and now has about 4 people (in different OU's) that need to be able to access the internet while offsite. These users currently use windows VPN and if they can connect to VPN then they can get to the internet (slow because it is pushed through the tunnel). In some cases, the WiFi network they are connected to will require them to go to their landing page and logon to the WiFi network before accessing the interent. Places like McDonalds and Hilton Hotels will have this requirement as an example.
What i am trying to do is remove the proxy settings for these 4 users and i am trying to do this with leaving them in their OU's but not removing the proxy setting from other users within the same OU. I am looking for suggestions on how to handle this. It will be ok if these 4 users do not have the proxy settings at all.