Threads Replies Last Post 20 Pages: 1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  16  17  18  19  20   WMI filter and AD Group I would like use wmi filter to apply Group policy to only members of certain active directory workstations group. I have some basic script which list all members of group, but I do not know how to transport it to wmi filter : On Error Resume Next Set objGroup = GetObject _ ("LDAP://cn=Accountants,ou=Accounting,dc=fabrikam,dc=com") For Each objUser in objGroup.Members Wscript.... 9 16.05.2007 06:31:03 GPO + run outlook prf script I have a outlook PRF file i would like to import onto workstations once users login. the file is for new users when they log into different machines and the file specifies the exchange server and %username% parameters. I thought the best way to do this would be to create a new policy linked to the users OU and set the logon parameter to my BAT file which runs a regedit /s (path to file).... 2 19.05.2007 21:53:47 Check group member ship in custom policy Hello, I have created a custom policy. Now I want to set settings with this policy based on group member ship like you do when you use an Advanced startmenu folder redirection . Does somebody know how to do this? grtz, Karel ... 2 19.05.2007 10:10:30 Automatic Update - Prevent Specific Installs Is there a policy that allows you to specify not to install certain updates? I have a situation where a security update breaks a WEB Application. Aftrer removing it I would like to prevent it from being installed again (on certain machines) until the WEB app is fixed.... 2 18.05.2007 22:56:49 Keep Games off network!! hello everyone. i have users who are downloading souls.exe to their home share and executing to play. the file is standalone exe file. i have created "new path rule" in software restriction policies, as %homepath %souls.exe. security level "disallowed". is this correct or can someone please tell me how to write the path. drive letter is Z drive as their home folder. thanks ... 14 18.05.2007 21:10:12 Vista - Roaming Profiles In our student GPO I have enabled the "Delete cached copies of roaming profiles" setting. In XP with the help of the "User Profile Hive Cleanup Service" the local profile for students is deleted when they log off the computer. In setting up a Vista workstation it appears that this setting does NOT work as the profiles persist on the workstation after logoff. The User Profile Cleanup ... 3 18.05.2007 14:20:00 Setting desktop to auto-arrange via GPO Hi All Kids... Kids... Kids. They make my Desktops a mess. Could somebody please confirm whether or not it is possible to set the Auto-Arrange property (usually done by right-clickin on the Desktop) via GPO. It seems to be a per user setting so even though I set it up when I first did the actual PCs, naturally as the users log on with different accounts this setting gets ignore... 4 18.05.2007 14:11:02 WSUS updates not following schedule Hi there. We have a 2003 domain. Because of our business model, we have several location based OUs, each OU has a unique GPO scheduling WSUS updates on different days. For example, Pittsburgh on Wednesday, Atlanta on Thursday, etc. The GPOs are set to automatically schedule and install at 3 am. When this was originally setup, it worked like a charm. However, we now have workstati... 2 18.05.2007 10:27:01 Network security policy Greetings Using Server 2003 sp1, Clients are using XP Pro sp2 Under "Default Domain security Settings" I am unable to get the following option to work "Network security:Force logoff when logon hours expire". I have setup the logon hours in the users properties. If he tries to log on after the restricted time he can't get on, BUT if he is already logged on, he dosen't get l... 2 18.05.2007 08:11:29 My Docs redirection I am using Group Policy to redirect users my docs. I tried creating a share call UserDocs$ however when trying to redirect the share was not found. Now I have Basic setup to create a folder under the root of UserDocs no ($) and the folders are being created, however, I as the administrator am locked out of the sub folders. I need to take ownership it says. I have set Grant the user e... 1 17.05.2007 22:48:36 Applying permissions to local printers I am looking for a way to apply permissions to a local printer on windows xp pro. Each one of my departments have a print device setup with a nic and IP address on our network. We then create a local TCP/IP printer with the IP address of the printer as the port. By default, only administrators have full rights to the printer. I need to add either a global group or the everyone group to h... 2 17.05.2007 20:51:00 How to specify current computername in WMI filter I want to apply a user-based GPO based on computer group membership using a WMI filter. I have a WMI query to check for group membership except I cannot determine how to specify a variable for the current computername to put in the query. What I need is a way to substitute 'CurrentComputername$' with something like '%computername%$' in the following WMI filter. This obviously easy eno... 3 17.05.2007 19:48:04 policy by group membership? i thought it wasn't possible? At my previous employer a Sys Engineer had given us instructions that anyone not supposed to be on MSN or Windows Messenger needed to have their computer added to a security group. Once added to this group they could no longer run Messenger. Now i didn't think Group Policies could be applied to groups at all, i thought the lowest level was the OU. Can someone tell me how this was poss... 5 17.05.2007 04:39:17 psshutdown How can I use group policy to restart my servers at night with psshutdown? I tried to use task sceduler on each serverbut then every time a password changes I am going to each server to change it. I know I can run psshutdown from one server and reboot multiple remote machines, but is there a way to manage this through a gpo?... 5 16.05.2007 22:38:00 permissions for group policy?? I'm having problems when someone that is not a member of the administrators group tries to logon with their roaming profile. Not everything is loading on the desktop and I'm experiencing permissions issues, such as outlook won't load and access to the quick launch toolbar is restricted. I didn't have this problem earlier, but recently had to recreated active directory. The permiss... 4 16.05.2007 20:23:01 "Adjust memory Quotas for a Process" question... I recently ran into an issue with Windows Vista Ultimate Ed. in which the Windows Firewall, Telephony and Terminal Service services would not start after joining the system to a AD domain. The fix was that I had to configure a GPO to set Computer Configuration/Windows Settings/Security Settings/Local Policies/User Rights Assignment/"Adjust memory quotas for a process" to allow Administ... 1 16.05.2007 18:03:03 Help with GPO I currently have a windows 2003 server with the following OU Tree: .... Domain Workstations |------(GP) Screen Saver |------Newtown Office |------Trust Deptartment |------(GPO) BloombergScr I have a GP called "Screen Saver" that enables a default screen saver on all workstation via User Configuation->Administrative Templ... 4 16.05.2007 17:01:00 Lock default printer Hey! I am looking for a group policy that will dis-allow users from changing default printers. Does this exist? Or is there another method to do this? All users need access to all printers but I am trying to encourage them to use particular printers. Words alone don't seem to work! Cheers Colin... 3 16.05.2007 13:00:02 How to export Gpedit settings on a stand alone PC not in Domain May I know how can I do it? or if there already has some articles talking about it? Thanks for all your attention!!... 4 16.05.2007 09:36:11 Software deployment using dns alias Hi I'm deploying an MSI using GP. It all works fine if i use the Netbios name of the server in the path. However if i use a dns alias to that server it fails. I have enabled the "disableStrictNameChecking " registry key on the server and can i browse to the file using the alias server path. Its almost as like the local system account does not have permissions to query DNS? can an... 4 16.05.2007 08:49:31 Help Vista Home Premium and Policy Editor How do you get GPEDIT (Policy Editor) to install so it will be available in the MMC (Microsoft Manager Console) as a Snap-in. I have expanded the files for GPEDIT and added them to my System32 folder. I have also tried to install the DLL via elevated command promt to the registry but no luck. Tried to run the program from Start and still get "MMC could not create snap-in" error. An... 2 16.05.2007 08:25:40 GPO for only allow specific USB sticks Hello I'm loooking for a solution where I can restrict the access in my network to only one specifig usb stick type (this means the users can only use company distributed usb sticks). Any hints are welcome. Is it possible? Regards, Martin ... 4 15.05.2007 16:56:57 GPO inheritance problem? Hello! I have simple domain with 2 domain servers: SRV1 - which is Operation Master and SRV2 - which is Member Server. Both are Windows 2003 R2. I want to grant to several Domain Users privilege to log to SRV2 using TS. To achieve this I created new Group "Developers". In Domain Controllers OU, I created new OU called "Developers Server". In Group Policy Management console I ... 5 15.05.2007 15:31:29 GPOs cause services to fail We've got a bizarre problem for which we can't find a cause. In various OUs in our domain, computers are starting up and the following services are failing: Automatic Updates Background Intelligent Transfer Service Computer Browser Cryptographic Services DHCP Client Distribuited Link Tracking client Error Reporting Service HID Input Service Seconda... 6 15.05.2007 15:28:32 Default Domain Hi All Does anyone know if it is possible to have XP default to the local domian instead of the local computername using GPO wayne ... 2 15.05.2007 09:11:47 20 Pages: 1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  16  17  18  19  20