I have a 2008R2 server joined to a SBS11 domain. We had joined it recently after decomissioning a 2003 domain controller.
We lock the terminal server down using a set of policies we normally use however one policy is not applying to the server as this is "Hide these specified drives in my computer" we chose restrict C, we also tried the prevent access to drives from my computer policy and this worked ok?
The policy is in its own OU, and we have enabled the loop back policy setting within the GPO itself. We have applied authenticated users and the computer account itself to security filtering.
When we run GPO results against a user for the termianl server , the policy itself gets applied, the hide drive settings are enabled and are the winning GPO yet the policy does not apply for the user or any user for that matter. Other policy's are getting applied ok for example disable access to control panel.
Scratching my head with this one, bit strange and annoying.
Appreciate your help