Solved

GPO Printer Question

Posted on 2016-07-30
5
28 Views
Last Modified: 2016-08-01
Do you have to share a printer to distribute it via GPO?
0
Comment
Question by:LockDown32
  • 3
  • 2
5 Comments
 
LVL 40

Accepted Solution

by:
Adam Brown earned 500 total points
ID: 41736155
Yes. If the printer isn't shared, it can't be accessed remotely in any way. If you remove the option to share the printer, the checkmark for listing it in AD isn't usable.
0
 
LVL 15

Author Comment

by:LockDown32
ID: 41736483
So if you have to, as always, share it before deploying it via GPO what is to keep others from installing it on their computers even if you don't want them to?
0
 
LVL 40

Expert Comment

by:Adam Brown
ID: 41737606
Modify the permissions on the share to limit access. You can deploy the GPO and limit the GPO to only apply to specific groups. Those groups can then be added to the share so they are the only users that can install the printer.
0
 
LVL 15

Author Comment

by:LockDown32
ID: 41737619
So of you don't give any access on the share they won't be able to drop it down on their computers?
0
 
LVL 40

Expert Comment

by:Adam Brown
ID: 41737624
If they don't have permission to access the share, they either won't be able to install the printer, or it won't show up (If access based enumeration is enabled).
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article outlines the process to identify and resolve account lockout in an Active Directory environment.
This article explains the steps required to use the default Photos screensaver to display branding/corporate images
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question