?
Solved

Server 2012 R2 GPO

Posted on 2015-02-05
3
Medium Priority
?
548 Views
Last Modified: 2015-02-05
Hi,
I have set up a new physical server (Server 2012 R2) as a Hyper-V host and have created several VMs also running Server 2012 R2.
I have been playing with group policy and thought it would be fun (and a good way to learn a bit more about how to use GPO) to personalise each of the servers a bit. I have discovered that I can change the Lock Screen using GPO in the Default Domain Policy with:
Computer Configuration> Policies> Administrative Templates Policy> Control Panel> Personalization, and enabling "Force a specific default lock screen image". ...and it works!
I set it to a specific file that suited the name of the DC (i.e. I have named the DC 'Zeus', and have used a picture of Disney's Zeus character as the lock screen.)
It is all very cool...except I thought ... 'I wonder how I would set the lock screen on the other servers?' ... and while I was pondering this, the next day I had Zeus grinning at me from the lock screen of ALL the servers! Doh! (slaps forehead).

So, I understand what I did wrong, but I can't work out how to set a different lock screen for each server. Is there a way to add a computer (i.e. server) to an OU? I can create a GPO and link it to an OU. If I can somehow put the server in the OU it will work.
Or can I use Item-level Targeting? I've used that for Drive Mapping in Preferences, but I don't think I can do it with Policies.

Any thoughts?
Cheers,
Greg
0
Comment
Question by:gregmiller4it
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 53

Accepted Solution

by:
Will Szymkowski earned 2000 total points
ID: 40592727
The quickest way to get account this is using the Security Filtering for this policy. By default Authenticated Users is used (this includeds both users and computers). Remove this and add the computer account to the security filtering for "Zeus". Once you have done this you can do to one of your servers and from gpupdate /force and the screen lock should be removed.

It is a computer based policy and most require to be at least logged off and or reboot. In this case it might not.

Will.
0
 

Author Comment

by:gregmiller4it
ID: 40592743
Excellent...and it was simple too! Thanks heaps. The only extra trick was that I had to tick 'Computer' in the object type list before it found 'Zeus'. So now I have Zeus and Apollo with different lock screens (now I just need to find suitable images for Hermes, Atlas and Kronos). Works a charm, thanks.
Cheers,
Greg
0
 

Author Comment

by:gregmiller4it
ID: 40592745
By the way... 'gpupdate /force' required a logoff
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question