Locking down RDS 2012 - GPO Policy Not Applying - Mixed 2003R2/2012R2 environment
Posted on 2014-12-29
Have a mixed Server 2003 R2 Standard (DC) - Server 2012R2 Standard (DC) and 2012R2 Standard Member server running RDS. Server 2003 primary role holder.
Trying to get a policy to take hold on login to the 2012 RDS server, that is not working. Only policy getting applied is the "Default Domain Policy". All users are logging in successfully, issue is GPO not getting applied.
Have an AD OU setup for "RDS External" users with the respected users in this OU - "RDS Lockdown GPO policy" linked to the "RDS External Users" OU - Security filtering set at "TS1" (comp acct) and "RDS External Users" security group. Link Enabled, not Enforced.
It's a fairly simple network, so not any multiple or nested GPO's being applied.
GPRESULT showing policy being applied from my 2012-R2 DC, but only policy being applied is default domain policy. I've done the gpupdate /force multiple times.
Not sure what add'l info may be needed for an assist on this - but hitting the wall on how to get this issue resolved... -thx