<div>
Found that these legacy Group Policy settings were causing the issues in Win 8 and Win 10. &nbsp;Removed and life is good.
</div>


Found that these legacy Group Policy settings were causing the issues in Win 8 and Win 10.  Removed and life is good.

<div>
<div class="content wysiwyg-content">
I am having some issues with Windows 8 and Windows 10 on my domain. &nbsp;The domain level is 2008 R2. &nbsp;My question is in the default domain policy I have in the Computer - File System section permissions set for both %programfiles% and %systemroot%. &nbsp;I do not know why these are set and feel they may be legacy left overs since this domain started as a 2000 domain and has been upgraded to every version until this one. &nbsp;See attached to see what permissions are set. &nbsp; I think having this set is stripping off newer permissions windows 8 and 10 are using for these folders. &nbsp; Does anyone else have these specifed? &nbsp;And obviously without knowing my domain, do you feel it would be safe to take these out of the default domain policy?<br />
<br />
Thanks<br />
<a href="https://filedb.experts-exchange.com/incoming/2015/08_w35/931533/systemroot.JPG" target="_blank" class="file-inline" title="systemroot.JPG (49 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>systemroot.JPG</a>
</div>
</div>


systemroot.JPG

I am having some issues with Windows 8 and Windows 10 on my domain.  The domain level is 2008 R2.  My question is in the default domain policy I have in the Computer - File System section permissions set for both %programfiles% and %systemroot%.  I do not know why these are set and feel they may be legacy left overs since this domain started as a 2000 domain and has been upgraded to every version until this one.  See attached to see what permissions are set.   I think having this set is stripping off newer permissions windows 8 and 10 are using for these folders.   Does anyone else have these specifed?  And obviously without knowing my domain, do you feel it would be safe to take these out of the default domain policy?

Thanks

Default Domain Policy Permissions

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

IT Administration is the processes and best practices for programming and development, and incorporates methodologies for managing activities and projects. Common methodologies include waterfall, prototyping, iterative and incremental development, spiral development, rapid application development, extreme programming and various types of agile methodology. The life-cycle "model" is a more general term for a category of methodologies, and a software development "process" a more specific term to refer to a specific process chosen by a specific organization.

IT Administration

Windows Server 2008 and Windows Server 2008 R2, based on the Microsoft Vista codebase, is the last 32-bit server operating system released by Microsoft. It has a number of versions, including including Foundation, Standard, Enterprise, Datacenter, Web, HPC Server, Itanium and Storage; new features included server core installation and Hyper-V.