If I understand GPO is applied at LSDOU level (Local, Site, Domain, OU )
Well, let 's say we have many OUs that have users and groups inside
I need to deploy software to certain users that are members of the Company Communication Committee. So I will create a security group named CCC
from AD console , then I can choose any OU and create/Link GPO to it , then I will specify the software settings in GPMC for the software.
My question is does it matter to which OU I need t link my GPO, since I will have to do the WMI filtering anyway for CCC Group ?
Or should I create a new OU for instance and name it CCC and put the CCC group in it and apply the GPO then add the CCC group to the WMI filtering of the CCC ?
Any clarification on this ?