This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(140.8, 66%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECO%3C/text%3E%3C/svg%3E)
Could someone please help with an issue that we seem to be having more and more often?
We have clients with Windows Server 2019 & 2022 domain controller joined devices, and a Group Policy setup to push out for the device to lock after a certain time (think its 900 seconds which is 15mins).
However, we want to exclude one or more devices from getting this group policy and setting them to never lock.
It seems very troublesome to first exclude the device from the group policy of the Domain Controller, and then secondly set locally on the device to never lock or have a high lock time (e.g 8-9 hours).
Any suggestions please guys?
and a Group Policy setup to push out for the device to lock after a certain time
Might try moving the computer accounts to an OU and only apply the GPO to that OU.
--please don't forget to upvote and Accept as answer if the reply is helpful--
Hi Dave,
Thanks for your suggestion. It seems after excluding the device from the GPO that the difficult part is locally on the excluded device, changing the lock time back or to a different time. Are there multiple places this needs to be done? Other than the standard Control Panel locations for lock time and screen saver etc. As it seems once the device has had the GPO applied, no matter what we do it keeps locking to that set time.
Might try
gpupdate /force /boot
--please don't forget to upvote and Accept as answer if the reply is helpful--
This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Just checking if there's any progress or updates?
--please don't forget to upvote and Accept as answer if the reply is helpful--