Solved

Adding site to local intranet security.

Posted on 2016-07-18
4
48 Views
Last Modified: 2016-07-19
I am trying the below to add a few sites to the local intranet of my IE browser in a GPO and apply it to an OU that contains a Windows 2012 RDS server.   After login as a user and run GPUpdate /force, I open up IE>internet options>local intranet>site>advanced, I do not see the sites I added in GPO.  If someone sees something missing, please advise.  Thanks...


Edit User Configuration/Polices/Windows settings/Internet Explorer Maintenance/Security
Double click Security Zones and Content Ratings
Chose Import the current security zones and privacy settings
Click Continue, then click Modify Settings.
In the Internet Properties windows chose Security tab, then click Local intranet, click Sites to add a few sites.
0
Comment
Question by:nav2567
  • 2
4 Comments
 
LVL 28

Expert Comment

by:Michael Pfister
ID: 41718991
Better use : User Configuration -> Administrative Templates -> Windows Components -> Internet Explorer -> Internet Control Panel -> Security Page

Enable the “Site to Zone Assignment List” and edit the list, see

https://blogs.msdn.microsoft.com/microsoft_press/2014/04/14/from-the-mvps-setting-internet-explorer-trusted-site-settings-via-group-policy-object-in-windows-server-2012-r2/
0
 

Author Comment

by:nav2567
ID: 41719184
Thanks.

Just tried User Configuration -> Administrative Templates -> Windows Components -> Internet Explorer -> Internet Control Panel -> Security Page-> Enable the “Site to Zone Assignment List” and add the site.  

I still do not see the added link being shown in IE>internet options>local intranet>site>advanced from the RDS server's IE option.
0
 
LVL 28

Accepted Solution

by:
Michael Pfister earned 500 total points
ID: 41719213
Are you able to run a RSOP (rsop.msc) on the RDS system as the user that should get the GPO applied?
Or use GPMC to run a remote RSOP and verifiy the GPO and its settings get applied.
0
 
LVL 42

Expert Comment

by:kevinhsieh
ID: 41719316
This is expected behavior.  If you want to apply user settings to a computer OU,  you need to enable group policy loopback processing.

http://kudratsapaev.blogspot.com/2009/07/loopback-processing-of-group-policy.html
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Synchronize a new Active Directory domain with an existing Office 365 tenant
This script can help you clean up your user profile database by comparing profiles to Active Directory users in a particular OU, and removing the profiles that don't match.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

939 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now