We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Course Of The Month
5 days, 13 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Why does windows group computer policy run every logon
Posted on 2012-12-26
I am trying to understand policy application for our windows 2008 r2 AD .
Why does the a computer policy run every time at startup when nothing changes in that policy? The default policy has password item, and a default banner item, that doesnt change. Yet it takes a full minute to process it everytime someone logs in.
Wouldn't it be more efficient if it didn't apply at startup if it didnt change , that would save all kinds of time. Is there a way to do this?
2) Does your computer have to read every policy even if nothing is configured, How do I make it so it doesn't read my local policy. Won't this save time.
3)When you apply a group policy, does your workstation retain that policy even if logged off the network. For example will my laptop retain those settings?
Why does the a computer policy run every time at startup when nothing changes in that policy? The default policy has password item, and a default banner item, that doesnt change. Yet it takes a full minute to process it everytime someone logs in.
Wouldn't it be more efficient if it didn't apply at startup if it didnt change , that would save all kinds of time. Is there a way to do this?
2) Does your computer have to read every policy even if nothing is configured, How do I make it so it doesn't read my local policy. Won't this save time.
3)When you apply a group policy, does your workstation retain that policy even if logged off the network. For example will my laptop retain those settings?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2
4 Comments
Active today
Hi.
1+2) First, you should make clear how you measured that minute it obviously takes. Did you enable GPO logging and you evaluated some log (which, how?)? Or did it just take a minute from password+[enter] to the desktop?
Fact is, by default policies will not process if they haven't changed and we will find out why that's not the case with you.
3)Yes, the settings will retain even when offline.
1+2) First, you should make clear how you measured that minute it obviously takes. Did you enable GPO logging and you evaluated some log (which, how?)? Or did it just take a minute from password+[enter] to the desktop?
Fact is, by default policies will not process if they haven't changed and we will find out why that's not the case with you.
3)Yes, the settings will retain even when offline.
I believe its a minute to run the computer portion of all the policies, because I ran gpresult. When I read the applied time of the computer settings was 1 minute less than the applied time of the user settings.
Default policy was the only thing the computer section ran, and I did change not the default policy.
This occured when I restart computer.
Default policy was the only thing the computer section ran, and I did change not the default policy.
This occured when I restart computer.
Active today
What exact info of gpresult shows a minute difference? Anyway, that is no way to judge the situation. You should disable all policies (user- and computer-) and restart your computer to see if it's faster, then.
Please refer to these links.
http://www.youtube.com/watch?v=nmc-saJC6jA
http://www.windowsitpro.com/article/windows-server-20082/new-active-directory-features-in-windows-server-2008-r2
Second for the question you asked you can find the answer on ask-leo.com
http://ask-leo.com/windows.html
Hope it works for you.
http://www.youtube.com/watch?v=nmc-saJC6jA
http://www.windowsitpro.com/article/windows-server-20082/new-active-directory-features-in-windows-server-2008-r2
Second for the question you asked you can find the answer on ask-leo.com
http://ask-leo.com/windows.html
Hope it works for you.
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s
ManageEngine
webinar, where attendees received a comprehensive look at the ma…
Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention.
Multiple USB devices need t…
Are you ready to implement Active Directory best practices without reading 300+ pages?
You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…
Suggested Courses
Course of the Month5 days, 13 hours left to enroll
707 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.