• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 783
  • Last Modified:

Group Policy Preferences - What are we missing

We are currently only using 2003 DCs in one of our environments.  After introducing Server 2012R2 machines we noticed that Group Policy for IE was no longer applying.

We found the problem was that IE10 no longer would use the IEM settings in our GPO, and would only use GPP.  Of course with no 2k8 DCs, we have no GPP settings.


My question is: What other issues could we face by not having GPPs?  Is IE10 the first item to REQUIRE gpp to work properly?  We are working on making a case to management and I figured you all would be a great resource!
0
ServerNotFound
Asked:
ServerNotFound
3 Solutions
 
Joseph MoodyBlogger and wearer of all hats.Commented:
Group policy preferences are not server specific. They are client specific. If your clients have IE10, then you are running windows 7+. If you are running Windows 7, you have preferences.

Setup a Windows 7/8/8.1 machine with RSAT. Use that to edit preferences.

http://deployhappiness.com/internet-explorer-maintenance-replacements/
0
 
Adam BrownSr Solutions ArchitectCommented:
There were some Group Policy settings on 2003 that worked for IE10, but as you've seen those get superseded by Group Policy Preference settings. As far as I know, that's the only thing you'll really run into that does that. Jmoody's recommendation on using a windows 7/8 machine to inject GPP into your existing group policies is also a valid thing to remember.
0
 
Brian PiercePhotographerCommented:
Lots of other stuff is made much easier with GPP - mapping drives, setting printers etc to name but two
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
ServerNotFoundAuthor Commented:
Thank you all.  

Looking at using Admin Templates instead, but don't have the whole process yet.  

I was kinda hoping there would be other good reasons to make the move to GPP, but I think the one area we have (IE10) we likely won't get any traction.
0
 
MaheshArchitectCommented:
GPP can save you from lot of startup \ logon scripts
Your local client computer management such as admin rename, password change, file copying process, new  folder creation, registry modifications, group modifications, map drives, home drives, printers can be mapped with GPP.
Also you can use GPP for item level targeting such as you can filter policies OS wise such as XP, win7
Also you can create schedule tasks, service management.
Also all GPP tasks run under system account of local machine, so you need not to provide explicit permissions to users

http://blogs.technet.com/b/nmercer/archive/2007/11/19/group-policy-preferences.aspx

Mahesh
0
 
Adam BrownSr Solutions ArchitectCommented:
GPP will basically save you a lot of headaches, as mentioned. If you have a Server 2012 DC, there's no reason *not* to utilize them for what they do (mapping drives, setting power profiles, etc), as it is much easier than writing scripts that do the same thing.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Python 3 Fundamentals

This course will teach participants about installing and configuring Python, syntax, importing, statements, types, strings, booleans, files, lists, tuples, comprehensions, functions, and classes.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now