This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 77%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
I haven't been able to get Start Layout GPO to work for laptops that connect over VPN. I've set up my VPN to connect before I logon with my user account but for whatever reason the GPO is still not changing my settings.
I know that I set up my Start Layout file correctly because when I run the Import-StartLayout command with the .xml I've made it makes the changes to my Start Menu and to my Taskbar. I've also been able to make a Local Group Policy and I can see my my Start Menu and Taskbar changing when I log out and log back into my account. I'm fairly certain my GPO is set up correctly because computers that are connected locally to our domain controller and aren't having to connect by VPN are able to update and apply the Start Menu .xml file.
For reference I used the template here as a base for my .xml https://learn.microsoft.com/en-us/windows/configuration/configure-windows-10-taskbar
I also followed this when creating my GPO https://learn.microsoft.com/en-us/windows/configuration/customize-windows-10-start-screens-by-using-group-policy
Bit of a weird one, hoping someone has experience with this.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 68%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELT%3C/text%3E%3C/svg%3E)
Hello @GRattu
In this case, since the policy is applying correctly to on premise computers, I would recommend looking in the next:
B) Network not ready during the synchronous load of policies:
Set the policy to “Always Wait for the Network at Computer Startup and Logon” as Enabled for the VPN computer group
Policy path: "Computer Configuration \ Administrative Templates \ System \ Logon \ Always wait for the network at computer startup and logon"
Reference: https://learn.microsoft.com/en-us/previous-versions/windows/desktop/policy/logon-optimization
Hope this helps with your query,
--
--If the reply is helpful, please Upvote and Accept as answer--
I gave both of those a try and I'm unfortunately still seeing the same behaviour. The Slow Link Detection was not configured by default, I changed that to Disabled anyway. I also set the Always Wait for the Network at Computer Startup and Logon to Enabled.