none
GPO Network Overloading

    Question

  • The strangest event happened with two computers that were added to a large GPO I configured.  As a preface, I've tested and deployed the policy in my test environment, and also a couple of computers in our live environment.  The GPO automates and installs the following:

    • Maps Drives and Printers
    • Installs Certificates (for RemoteApp Trusts)
    • Runs PS script for RemoteApps (automates connection for Win 7 PCs)
    • Installs Google Chrome
    • Installs Adobe Reader
    • Installs Anti-Virus
    • Establishes GPO with slow connections (minor setting)
    • Establishes GPO Processing after startup & logon (minor setting)
    • Session Disconnect Time for RDS sessions (minor setting)

    I have used this GPO a few times:  once for a brand new user, 1 existing laptop, and also my test environment.  The problem that occurred was when I tried to apply this GPO to two existing users simultaneously, which caused none of the above to work except for the Drive Mappings.  Even worse, it screwed up their NICs so bad that they couldn't even access the network or Internet anymore.  I tried everything to get them back on the network and nothing worked.  The only thing that worked after a couple hours of troubleshooting was switching their ports on the network switch to another one.

    The logs in the switch are good - nothing says that the 2 ports were down ( I even plugged my laptop in the ports to verify).  I am clueless on to how this all happened?  The only thing that I can think of is that the GPOs overloaded the network/NICs?

    Is this possible?  Or happened to anyone else?

    Any input is much appreciated!  Thanks!

    Tuesday, April 08, 2014 3:12 PM

Answers

  • Hi,

    >>The only thing that I can think of is that the GPOs overloaded the network/NICs?

    I agree with you. This can be the cause. For drive mapping, software installation, and script, these operations all need to access share resources.

    According to me, I won’t choose to deploy three kinds of software at the same time. In my opinion, we can divide our tasks with time sequence. We can also create new GPOs to push our policies and settings.

    Best regards,

    Frank Shen


    Thursday, April 10, 2014 1:46 AM

All replies

  • Hi,

    >>The only thing that I can think of is that the GPOs overloaded the network/NICs?

    I agree with you. This can be the cause. For drive mapping, software installation, and script, these operations all need to access share resources.

    According to me, I won’t choose to deploy three kinds of software at the same time. In my opinion, we can divide our tasks with time sequence. We can also create new GPOs to push our policies and settings.

    Best regards,

    Frank Shen


    Thursday, April 10, 2014 1:46 AM
  • Thanks Frank,

    I'll look into more efficient/timed ways to divide and push out this GPO.

    Thursday, April 10, 2014 11:50 AM