Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Removing Internet Security Settings from group policy which has the 'Reset All zones to default level' disabled.

Posted on 2013-11-28
2
Medium Priority
?
864 Views
Last Modified: 2014-01-15
Got myself in a pickle here...
We applied a policy change to take security settings away from users, unfortunately this was applied to the default domain policy.
The policy has been modified to remove these settings but the settings have 'tatooed' on to the machines on the network.
I have read the way forward is to set the security settings on the server the way you want and then import them into the group policy you want or to use the 'Reset all zones to default level' button but I cannot change the security settings on the server since it too is affected by the lock on security controls.

I am thinking I need to join a new Dc to the domain which won't be tatooed and use it to modify this setting?  I wondered if there is another way before I explored this path.
wonk013.jpg
0
Comment
Question by:dgloveruk
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 53

Accepted Solution

by:
Will Szymkowski earned 2000 total points
ID: 39684570
Do this from a Windows 7 Client. Install the RSAT on a Win7 client and manage your policies this way. Change the settings on there and then apply the policy.

Make sure that your win7 machine does not have this policy applied to it, you can block inheritance or keep the PC in the computers container.

RSAT download - http://www.microsoft.com/en-ca/download/details.aspx?id=7887

Will.
0
 

Author Comment

by:dgloveruk
ID: 39705762
Thanks, managed to to fix this doing what you've said.
Regards,
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

609 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question