I have a bunch of servers including an 2008R2 Domain Controller, some Terminal Servers and about 60 users all using Windows XP to which i wish to setup GPO's for.
Currently all users have Power User rights manually selected in their XP machines, no GPO's are applied. I'd like to setup some GPO's now but need a little guidance.
1) Is is best to leave all the workstations with manually selected Power Users group?
2) Do i create one OU and GPO for all Workstations and another for say the Terminal Servers?
I wish all users to be able to install printers but no other software etc.