Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Group policy - authenticated users

Posted on 2014-11-30
5
Medium Priority
?
366 Views
Last Modified: 2014-12-03
Hi,
I am applying a group policy & applying the policy to a security group.
I usually uses OU but havent designed the GPMC

My policy only works if I add the authenticated users on top of the security group.
Could somebody explain why?

and
Does Authenticated users means that the policy will apply to every objects in my domain?

Thanks
0
Comment
Question by:defrey
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
5 Comments
 
LVL 56

Expert Comment

by:McKnife
ID: 40473167
You are using security filtering.
Often the error is: people create a security group containing computers while their policy should affect users (or vice versa). Please double check that.
0
 
LVL 17

Accepted Solution

by:
Learnctx earned 1500 total points
ID: 40473228
This is a very common problem for loopback GPO's. Microsoft have written an excellent article on how to troubleshoot these: http://blogs.technet.com/b/askds/archive/2013/05/21/back-to-the-loopback-troubleshooting-group-policy-loopback-processing-part-2.aspx. Other than that, if you are applying security or WMI filtering then you need to verify that the user and/or the computer has the relevant rights to view the GPO and apply it. For security filtering make sure that the user and/or the computer is nested in the relevant groups. The fact that you add authenticated users and it then works means that the delegation on the GPO is messed up.
0
 
LVL 1

Author Comment

by:defrey
ID: 40473444
If I had the users to the policy outside the security group, then it is working!
0
 
LVL 56

Expert Comment

by:McKnife
ID: 40473450
defrey, please give details like:
-the configuration I am trying to distribute is in the user configuration section of the policy/computer configuration section of the policy
-the group which I applied as a security filter consists of computer accounts/user accounts
0
 
LVL 56

Expert Comment

by:McKnife
ID: 40480166
What solved it?
0

Featured Post

Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Microsoft Office 365 is a subscriptions based service which includes services like Exchange Online and Skype for business Online. These services integrate with Microsoft's online version of Active Directory called Azure Active Directory.
A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

704 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question