Using GPO with domain users (loopback) to apply only to Machine objects...

Posted on 2012-09-10
Medium Priority
Last Modified: 2013-03-27
We are in an environment where we have 10 user experience policies being applied in 10 different locations.  Domain users (dynamic local) logon and need to only get 1 of those 10 user experience policies based on the workstation they login to.  We have tried to use GPO Loopback Processing with both merge/replace, yet it appears only the very first user experience policy (in the list of GPOs) gets applied.  

*Note, we had same result with merge and replace.  To my knowledge, shouldn't replace have at least applied the computer policy and discarded the user policies?  

Experts, I'd love to have your insite on this very confusing issue.

FYI, we are using Windows Server 2008 R2 with Windows 7 Enterprise on the desktops.

Thank You
Question by:jmardis08
LVL 39

Accepted Solution

Krzysztof Pytko earned 2000 total points
ID: 38384096
Have you considered using GPO Security Filtering to apply only that particular policy to those users/workstations ?


Author Comment

ID: 38384245
We are currently using GPO Security Filtering for "Domain Users" and Computer Objects that are in a role group.
LVL 16

Expert Comment

ID: 38423258
What exactly are in these GPO's. I have previously had issues with loopback processing. If you can explain what some of the gpo settings are, we can at least see if there's any kind of workaround or configurations we can change.

Featured Post

Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A new hacking trick has emerged leveraging your own helpdesk or support ticketing tools as an easy way to distribute malware.
It’s time for spooky stories and consuming way too much sugar, including the many treats we’ve whipped for you in the world of tech. Check it out!
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question