Solved

Group policy - authenticated users

Posted on 2014-11-30
5
329 Views
Last Modified: 2014-12-03
Hi,
I am applying a group policy & applying the policy to a security group.
I usually uses OU but havent designed the GPMC

My policy only works if I add the authenticated users on top of the security group.
Could somebody explain why?

and
Does Authenticated users means that the policy will apply to every objects in my domain?

Thanks
0
Comment
Question by:defrey
  • 3
5 Comments
 
LVL 53

Expert Comment

by:McKnife
ID: 40473167
You are using security filtering.
Often the error is: people create a security group containing computers while their policy should affect users (or vice versa). Please double check that.
0
 
LVL 17

Accepted Solution

by:
Learnctx earned 500 total points
ID: 40473228
This is a very common problem for loopback GPO's. Microsoft have written an excellent article on how to troubleshoot these: http://blogs.technet.com/b/askds/archive/2013/05/21/back-to-the-loopback-troubleshooting-group-policy-loopback-processing-part-2.aspx. Other than that, if you are applying security or WMI filtering then you need to verify that the user and/or the computer has the relevant rights to view the GPO and apply it. For security filtering make sure that the user and/or the computer is nested in the relevant groups. The fact that you add authenticated users and it then works means that the delegation on the GPO is messed up.
0
 
LVL 1

Author Comment

by:defrey
ID: 40473444
If I had the users to the policy outside the security group, then it is working!
0
 
LVL 53

Expert Comment

by:McKnife
ID: 40473450
defrey, please give details like:
-the configuration I am trying to distribute is in the user configuration section of the policy/computer configuration section of the policy
-the group which I applied as a security filter consists of computer accounts/user accounts
0
 
LVL 53

Expert Comment

by:McKnife
ID: 40480166
What solved it?
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Resolve DNS query failed errors for Exchange
New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now