<div>
<div class="content wysiwyg-content">
Hi,<br />
<br />
I have 3 DC's Windows Server Datacenter 2016 and about 80 other servers with a mix of OS's. Windows 2008 R2, 2012, and 2016. I'm configuring a patch managment solution to deploy Windows updates. I'm lookng for the best way to set up my Servers in their OU's and GPO's. I will need an OU for critical and one OU for non-critical servers. <br />
<br />
Should I have all servers with different OS's in one OU with one GPO or should I have separate OU's for each servers OS's? <br />
<br />
What is the best practice? <br />
<br />
thanks!
</div>
</div>


Hi,

I have 3 DC's Windows Server Datacenter 2016 and about 80 other servers with a mix of OS's. Windows 2008 R2, 2012, and 2016. I'm configuring a patch managment solution to deploy Windows updates. I'm lookng for the best way to set up my Servers in their OU's and GPO's. I will need an OU for critical and one OU for non-critical servers. 

Should I have all servers with different OS's in one OU with one GPO or should I have separate OU's for each servers OS's? 

What is the best practice? 

thanks!

Designing Active Directory OU's and GPO's

This topic area includes legacy versions of Windows prior to Windows 2000: Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions including Windows Mobile.

Windows OS

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.