Solved

I need to exclude a PC from receiving a setting from the default domain policy

Posted on 2014-09-12
6
167 Views
Last Modified: 2014-09-12
There is a setting in the default domain policy that sets the screen saver lock at 10 minutes however, I have one1 PC that needs to be set at 30 minutes. How would I set it up that this one PC gets a different policy setting than the rest?

Thanks
0
Comment
Question by:jfholloway
6 Comments
 
LVL 9

Expert Comment

by:TunerML
ID: 40319571
What version of Windows Server are you running?
0
 

Expert Comment

by:BYRONJACKSON
ID: 40319574
You could deny access to the 10 minute policy on delegation. A deny will ensure that that PC will not receive the policy just be sure to set the object type to computer.   It needs READ to be able to apply the policy.


Another policy for 30 minutes can be set to allow if you need ... just alternate as you require
0
 
LVL 1

Accepted Solution

by:
bts86 earned 500 total points
ID: 40319585
There are probably a dozen ways to do this. How I would go about it is to remove these settings from the default domain policy.

Then create 2 new GPOs, one with the 10 minute setting, one with the 30 minute setting.

Put the 1 PC into a separate OU and apply each of the new policies to the appropriate OU.
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 

Expert Comment

by:BYRONJACKSON
ID: 40319591
0
 

Author Comment

by:jfholloway
ID: 40319711
It is a windows 2003 domain. Unfortunately the admin before me put everything into the default domain policy. There are several dozen policy settings that I would need to move to a new GPO before I can make the 2nd one.
0
 

Author Comment

by:jfholloway
ID: 40319725
Thanks everyone for the help. I removed the screensaver setting from the default policy and created 2 separate ones and applied them accordingly.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The use of stolen credentials is a hot commodity this year allowing threat actors to move laterally within the network in order to avoid breach detection.
Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…
The Task Scheduler is a powerful tool that is built into Windows. It allows you to schedule tasks (actions) on a recurring basis, such as hourly, daily, weekly, monthly, at log on, at startup, on idle, etc. This video Micro Tutorial is a brief intro…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now