I have a SQL 2012 GPO policy that has a couple of groups to allow 'Logon as a Service'. I created another GPO, that was also configured to let a user account (service account) to 'Logon as a service'. When I ran a GPUPDATE /FORCE I could not see the new GPO had been applied to the local securtity policy to allow a user account to logon as a service. Therefore I changed the precedance order and I can now see the user account but the GPO for SQL 2012 accounts had gone from the Local Security policy to 'Logon as a service'.
How can I have 2 GPOs that allow certain accounts logon as a service without overwriting each other ?