Solved

Group policy - authenticated users

Posted on 2014-11-30
5
357 Views
Last Modified: 2014-12-03
Hi,
I am applying a group policy & applying the policy to a security group.
I usually uses OU but havent designed the GPMC

My policy only works if I add the authenticated users on top of the security group.
Could somebody explain why?

and
Does Authenticated users means that the policy will apply to every objects in my domain?

Thanks
0
Comment
Question by:defrey
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
5 Comments
 
LVL 55

Expert Comment

by:McKnife
ID: 40473167
You are using security filtering.
Often the error is: people create a security group containing computers while their policy should affect users (or vice versa). Please double check that.
0
 
LVL 17

Accepted Solution

by:
Learnctx earned 500 total points
ID: 40473228
This is a very common problem for loopback GPO's. Microsoft have written an excellent article on how to troubleshoot these: http://blogs.technet.com/b/askds/archive/2013/05/21/back-to-the-loopback-troubleshooting-group-policy-loopback-processing-part-2.aspx. Other than that, if you are applying security or WMI filtering then you need to verify that the user and/or the computer has the relevant rights to view the GPO and apply it. For security filtering make sure that the user and/or the computer is nested in the relevant groups. The fact that you add authenticated users and it then works means that the delegation on the GPO is messed up.
0
 
LVL 1

Author Comment

by:defrey
ID: 40473444
If I had the users to the policy outside the security group, then it is working!
0
 
LVL 55

Expert Comment

by:McKnife
ID: 40473450
defrey, please give details like:
-the configuration I am trying to distribute is in the user configuration section of the policy/computer configuration section of the policy
-the group which I applied as a security filter consists of computer accounts/user accounts
0
 
LVL 55

Expert Comment

by:McKnife
ID: 40480166
What solved it?
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question