GPO Filtering

Handian Sudianto 5,706 Reputation points
2023-07-14T03:49:20.8266667+00:00

Hello,

I create GPO for WSUS and want to test for some servers, so i put some server name to security filtering

User's image

but this GPO why not applied to those server?

User's image

Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
5,775 questions
0 comments No comments
{count} votes

Accepted answer
  1. Limitless Technology 44,506 Reputation points
    2023-07-14T17:48:46.8633333+00:00

    Hello there,

    If Group Policy Objects (GPOs) are not being applied to specific servers, there are several potential reasons and troubleshooting steps you can take:

    Check Group Policy scope and targeting: Ensure that the GPO is linked to the correct organizational unit (OU) that contains the servers in question. Double-check the scope and targeting settings to confirm that the GPO is intended to apply to the servers.

    Confirm Group Policy inheritance: Verify that there are no conflicting GPOs with higher precedence that might override the settings in the GPO you want to apply to the servers. Use the Group Policy Management console to review the inheritance hierarchy and ensure that no conflicting policies are being applied.

    Check security filtering: Review the security filtering settings of the GPO. Ensure that the servers in question are included in the security filtering scope of the GPO. By default, GPOs apply to the "Authenticated Users" group, but if you have customized the filtering, ensure the servers are included.

    Validate Group Policy permissions: Check the permissions on the GPO and ensure that the servers have the necessary read and apply group policy permissions. By default, the "Domain Computers" group should have these permissions, but double-check that no explicit deny permissions are blocking the GPO application.

    Verify network connectivity: Ensure that the servers have proper network connectivity to the domain controllers and can communicate with the domain. Check DNS settings on the servers to ensure they can resolve domain-related resources.

    Restart the servers: In some cases, a simple restart of the servers can resolve GPO application issues. Restarting the servers will trigger a Group Policy update process, which may allow the GPO to be applied correctly.

    I used AI provided by ChatGPT to formulate part of this response. I have verified that the information is accurate before sharing it with you.

    Hope this resolves your Query !!

    --If the reply is helpful, please Upvote and Accept it as an answer–

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.