Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)
COURSE of the MONTH
14 days, 18 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Why does windows group computer policy run every logon
Posted on 2012-12-26
I am trying to understand policy application for our windows 2008 r2 AD .
Why does the a computer policy run every time at startup when nothing changes in that policy? The default policy has password item, and a default banner item, that doesnt change. Yet it takes a full minute to process it everytime someone logs in.
Wouldn't it be more efficient if it didn't apply at startup if it didnt change , that would save all kinds of time. Is there a way to do this?
2) Does your computer have to read every policy even if nothing is configured, How do I make it so it doesn't read my local policy. Won't this save time.
3)When you apply a group policy, does your workstation retain that policy even if logged off the network. For example will my laptop retain those settings?
Why does the a computer policy run every time at startup when nothing changes in that policy? The default policy has password item, and a default banner item, that doesnt change. Yet it takes a full minute to process it everytime someone logs in.
Wouldn't it be more efficient if it didn't apply at startup if it didnt change , that would save all kinds of time. Is there a way to do this?
2) Does your computer have to read every policy even if nothing is configured, How do I make it so it doesn't read my local policy. Won't this save time.
3)When you apply a group policy, does your workstation retain that policy even if logged off the network. For example will my laptop retain those settings?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2
4 Comments
Active today
Hi.
1+2) First, you should make clear how you measured that minute it obviously takes. Did you enable GPO logging and you evaluated some log (which, how?)? Or did it just take a minute from password+[enter] to the desktop?
Fact is, by default policies will not process if they haven't changed and we will find out why that's not the case with you.
3)Yes, the settings will retain even when offline.
1+2) First, you should make clear how you measured that minute it obviously takes. Did you enable GPO logging and you evaluated some log (which, how?)? Or did it just take a minute from password+[enter] to the desktop?
Fact is, by default policies will not process if they haven't changed and we will find out why that's not the case with you.
3)Yes, the settings will retain even when offline.
I believe its a minute to run the computer portion of all the policies, because I ran gpresult. When I read the applied time of the computer settings was 1 minute less than the applied time of the user settings.
Default policy was the only thing the computer section ran, and I did change not the default policy.
This occured when I restart computer.
Default policy was the only thing the computer section ran, and I did change not the default policy.
This occured when I restart computer.
Active today
What exact info of gpresult shows a minute difference? Anyway, that is no way to judge the situation. You should disable all policies (user- and computer-) and restart your computer to see if it's faster, then.
Please refer to these links.
http://www.youtube.com/watch?v=nmc-saJC6jA
http://www.windowsitpro.com/article/windows-server-20082/new-active-directory-features-in-windows-server-2008-r2
Second for the question you asked you can find the answer on ask-leo.com
http://ask-leo.com/windows.html
Hope it works for you.
http://www.youtube.com/watch?v=nmc-saJC6jA
http://www.windowsitpro.com/article/windows-server-20082/new-active-directory-features-in-windows-server-2008-r2
Second for the question you asked you can find the answer on ask-leo.com
http://ask-leo.com/windows.html
Hope it works for you.
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP, Windows Server…
- Ransomware
- Experts Exchange
- Windows XP
- Windows OS
- Windows Server 2008
- Windows Server 2003, Security
Let's recap what we learned from yesterday's Skyport Systems webinar.
- Ransomware
- Experts Exchange
- Skyport Systems
- Active Directory
- Security
- *privileged credentials
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job.
The first step is to acquire the necessary licen…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention.
Multiple USB devices need t…
Suggested Courses
Course of the Month14 days, 18 hours left to enroll
771 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.