I may have gotten myself in a bit of a pickle. I did the GPO and let it update the machines, now when i try to gpudpate i get an error on some of the PC's. A resultant set of policy shows that they do not trust the logon script location (\\domain.com\sysvol\). I added that after, but now I am trying to gpupdate again and it still isnt getting the new gpo. How do I fix this? I have put it in allowed to:
Is this correct? Is there a way to update the machines that do not have this information, if they currently are disallowed to run things from there?