English Deutsch Français Italiano Español Português 繁體中文 Bahasa Indonesia Tiếng Việt ภาษาไทย
All categories

Im applying a new group policy to modify internet explorer security zones to allow 2 local intranet sites access. I am applying this to all domain and users. When I look at GPRESULT it says they were not applied because they were filtered out. Any clues? Thanks!

2007-03-13 05:16:37 · 2 answers · asked by Charles 3 in Computers & Internet Computer Networking

2 answers

Yep.
1. Group policy processing order. You're applying this at the domain level, I assume (since it applies to all domain users). However, if you have any group policies configured at the OU level, they'll take precedence. The order of precedence is: local, site, domain, OU. The latest group policy applied takes precedence, so a GP applied at the OU level will overwrite one written at the domain level.
2. Also group policy processing order. You may have more than one policy applied at the domain level (Small Business Server has what, half a dozen by default?) 2003 also applies these in order. If you have an allow in GP #1, and a deny in GP 3... it's a "deny" every time. Check to make sure your edited domain GP is the last one processed.

2007-03-13 11:30:41 · answer #1 · answered by antirion 5 · 0 0

Is there a "deny" policy in place elsewhere? Because that will override an allow policy.

2007-03-13 12:23:28 · answer #2 · answered by Country 4 · 0 0

fedest.com, questions and answers