How to not apply GPO's to RDS Server

So I have a client who has 2 locations. At one of those locations we have a Windows 2012 R2 RDS Server.  The users for Location 1 will connect into the RDS Server in the case of Location 1 being offline.  Location 1 users have 4 group policies that are applied to them.  What I want is to make it so 1 or 2 of them are not applied when the users logs into the RDS Server.  I tried Adding the RDS Server to a security group and then giving the security group DENY permissions in the delegations of the GPO's I want not to run, but that doesn't seem to be working.

What I'm looking to do is not run the Printer Share policy because some users hang at that stage when logging into the RDS server.
LVL 9
MikeIT ManagerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Aaron TomoskySD-WAN SimplifiedCommented:
You can block inheritance and then reapply the ones you want
0
Dirk KotteSECommented:
mostly we configure user-gpo-loopback-mode to "replace" at the terminalserver OU.
so user policies are applied only, if they bound to the terminalserver-ou also.
0
SandeshdubeySenior Server EngineerCommented:
You can create GPO template to disable the policy and apply security filtering (create group and add users to this group and add group in security filtering) and then apply GPO to terminal server. You need to apply the loopback policy in replace mode so that the policy of top level domain is not applied to users.

Security Filtering and Group Policy
http://adisfun.blogspot.in/2009/04/security-filtering-and-group-policy.html

Loopback processing of Group Policy, explained.
http://kudratsapaev.blogspot.in/2009/07/loopback-processing-of-group-policy.html
http://blogs.technet.com/b/askds/archive/2013/02/08/circle-back-to-loopback.aspx
0
nappy_dThere are a 1000 ways to skin the technology cat.Commented:
You can also create a security group, place user or machine objects into the group. Add the group to the gpo and set the security for the groups to deny apply.
0
Henrik JohanssonSystems engineerCommented:
Enable loopback processing in replace mode on the RDS computer and link each GPO with the user configuration settings you want to apply at RDS-logon to the OU containing RDS computer object.
Loopback processing makes it possibly to link GPO containing user configuration settings to an OU containing computer objects.
The normal case when not enabling loopback processing, GPO with user configuration settings need to be linked to OU-structure with user objects.

https://technet.microsoft.com/en-us/library/cc978513.aspx
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Server OS

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.