Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

group policy problems 2

Status
Not open for further replies.
frank049

frank049

Technical User
Dec 26, 2000
15
GB
I am having problems with win2000 server group policies. I have two groups one locked down and the other group is not heavily locked down for managers.

When I move a user from the lock down list to the managers group it takes the managers group policy. When I then move that person back to the locked down group it still keeps the managers group profile?


 
Sort by date Sort by votes
Not sure what you mean here.
Do you mean you have two group policies which are assigned via membership of two groups?

If so then the first thing to check is the permissions on the policies.

Make sure that the each policy has the read and apply permission for it's respective group. Also check that you have removed the permissions for authenticated users on each policy as otherwise they will be applied irrespective of groups right down the tree.

THe policies settings will overwrite (unless no override is set) in the order they are applied.

Which is LSDOU
Local, Site, Domain, OU - therefore an OU policy will overwrite a domain policy setting (excepting no override)

You should also check using gpresult which policies are being applied - to get a clearer picture of what's going on.

Hope I'm not on completely the wrong track here.

Cheers


 
Upvote 0 Downvote
i see you are someone who is successfully using group policies. Why don't mine work? the policy is applied for the whole domain but is not applies to clients. the same goes for policies created with poledit.exe (save as ntconfig.pol in the NETLOGON dir).
 
Upvote 0 Downvote
Would need a few more details but 99% of the time
- group policies not being applied points to a DNS problem.
You must have DNS set up properly and your clients pointing to this server.

Check this out and post details if it's still not working
:)

I have written a GPO troubleshooting guide which I will get round to posting one day !!

Cheers
 
Upvote 0 Downvote
With regard to my original problem this was resolved by going into the DNS forward look-up and going onto the properties of the site under general their is an opiton called
"Allow dynamic updates?"

This has a drop down menu selected "yes" problem resolved.

Now I just need to reset user profiles.

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

rrmcguire
  • Locked
  • Question
group policy to set dns
Replies
2
Views
443
rrmcguire
rrmcguire
phil3000
  • Locked
  • Question
Screensaver Via Group Policy
Replies
1
Views
297
markdmac
markdmac
cabraun
  • Locked
  • Question
Group Policy Question (Set System Variable)
Replies
2
Views
237
markdmac
markdmac
usrinu
  • Locked
  • Question
applied wallpaper group policy
Replies
1
Views
228
SamBones
SamBones
RdFromK
  • Locked
  • Question
GroupPolicy error 1065 with Windows SBS CSE Policy
Replies
2
Views
447
RdFromK
RdFromK

Part and Inventory Search

Sponsor

Back
Top