Using GPO with domain users (loopback) to apply only to Machine objects...

Posted on 2012-09-10
Last Modified: 2013-03-27
We are in an environment where we have 10 user experience policies being applied in 10 different locations.  Domain users (dynamic local) logon and need to only get 1 of those 10 user experience policies based on the workstation they login to.  We have tried to use GPO Loopback Processing with both merge/replace, yet it appears only the very first user experience policy (in the list of GPOs) gets applied.  

*Note, we had same result with merge and replace.  To my knowledge, shouldn't replace have at least applied the computer policy and discarded the user policies?  

Experts, I'd love to have your insite on this very confusing issue.

FYI, we are using Windows Server 2008 R2 with Windows 7 Enterprise on the desktops.

Thank You
Question by:jmardis08
    LVL 39

    Accepted Solution

    Have you considered using GPO Security Filtering to apply only that particular policy to those users/workstations ?


    Author Comment

    We are currently using GPO Security Filtering for "Domain Users" and Computer Objects that are in a role group.
    LVL 16

    Expert Comment

    What exactly are in these GPO's. I have previously had issues with loopback processing. If you can explain what some of the gpo settings are, we can at least see if there's any kind of workaround or configurations we can change.

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Join & Write a Comment

    Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
    The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
    This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

    733 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    25 Experts available now in Live!

    Get 1:1 Help Now