Server 2012 R2 GPO
Posted on 2015-02-05
I have set up a new physical server (Server 2012 R2) as a Hyper-V host and have created several VMs also running Server 2012 R2.
I have been playing with group policy and thought it would be fun (and a good way to learn a bit more about how to use GPO) to personalise each of the servers a bit. I have discovered that I can change the Lock Screen using GPO in the Default Domain Policy with:
Computer Configuration> Policies> Administrative Templates Policy> Control Panel> Personalization, and enabling "Force a specific default lock screen image". ...and it works!
I set it to a specific file that suited the name of the DC (i.e. I have named the DC 'Zeus', and have used a picture of Disney's Zeus character as the lock screen.)
It is all very cool...except I thought ... 'I wonder how I would set the lock screen on the other servers?' ... and while I was pondering this, the next day I had Zeus grinning at me from the lock screen of ALL the servers! Doh! (slaps forehead).
So, I understand what I did wrong, but I can't work out how to set a different lock screen for each server. Is there a way to add a computer (i.e. server) to an OU? I can create a GPO and link it to an OU. If I can somehow put the server in the OU it will work.
Or can I use Item-level Targeting? I've used that for Drive Mapping in Preferences, but I don't think I can do it with Policies.