We have 7 internal Windows 2008 R2 DC's and one remote DC hosted at partner site. User run a application which is web based and hosted by the partner site and authenticated by the remote DC which does have its own AD Site. The problem we are still is that user are stating that logins are taking a long time and believe this is do to group policy since mapped driver and aother setting are trying to be applied but are failing.
How can I block the processing of GP's if user are authenticated by this remote DC? Also the application / vendor does not support ADFS... :-(
Also I work in a very large environment and have 100 GP's that could be causing a problem here..
Maybe create a WMI filter that would work like: "if authenticate DC is like ...... do not appy GP"