Active directory GPO inheritance
Dear All,
I have a GPO on domain level for setting default home page ,which is applied to all OU's,i want to change the default home page for some OU's, even after i apply a new GPO on the child OU the default domian level GPO i getting applied,how do i stop this and apply only the GPO which is applied on child OU.
Regards
I have a GPO on domain level for setting default home page ,which is applied to all OU's,i want to change the default home page for some OU's, even after i apply a new GPO on the child OU the default domian level GPO i getting applied,how do i stop this and apply only the GPO which is applied on child OU.
Regards
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You will need to check the precedence of the GPOs under the inheritance tab in GPMC if they are at the same level.
Normally GPOs apply in this order: site, domain, OU and child OU. As a result, your GPO applied at the child OU level should overwrite the settings. From what you are saying, however, it sounds like this isn't happening.
Have you tried to enforce the GPO at the child OU?
If you don't want any of the settings from the default domain GPO, you could block inheritance from GPMC.
This might give you a better idea: https://technet.microsoft.com/en-gb/library/hh147307(v=ws.10).aspx
Normally GPOs apply in this order: site, domain, OU and child OU. As a result, your GPO applied at the child OU level should overwrite the settings. From what you are saying, however, it sounds like this isn't happening.
Have you tried to enforce the GPO at the child OU?
If you don't want any of the settings from the default domain GPO, you could block inheritance from GPMC.
This might give you a better idea: https://technet.microsoft.com/en-gb/library/hh147307(v=ws.10).aspx
ASKER
There are lot of other GPO's that are needed which are also applied on domian level ,if i block inheritance i will not get the other policies.
There are two ways you can go about this.
1. Block inheritance and link all the GPOs that are required directly to the child OU. Take care of the precedence order.
2. Enforce the GPO containing your default homepage settings.
Try both methods on a test OU with a test user and see which one works better for you.
1. Block inheritance and link all the GPOs that are required directly to the child OU. Take care of the precedence order.
2. Enforce the GPO containing your default homepage settings.
Try both methods on a test OU with a test user and see which one works better for you.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
thanks for helping i blocked inheritance and applied all the required GPO's except the home page and create a new GPO for the home page
ASKER