Unsaved Default Domain Policy GPO settings applied while GPO editor still open
Posted on 2016-10-20
Had a very strange experience with Server 2012 R2 Group Policy this morning. Last night, I opened the Default Domain Policy in the Group Policy Editor and made a change to Windows Settings\Security Settings\Local Policies\Security Options. I enabled the setting "Network access: Do not allow stroage of passwords and credentials for network authentication", but I did not close the policy editor.
This morning, I received several calls that this setting appeared to be applied throughout the domain. Correct me if I am wrong, but aren't GPO changes supposed to remain uncommitted until the GPO Editor window is closed? Has anyone else seen this phenomenon?