GPO Firewall rule is not over-ruling local firewall policy


  • I have a new environment with SCOM - I have some File and Printer rules that need to be enabled to clear the SCOM Alerts.

    The GPO rules I have created apply to ALL profiles.  The servers I am working on have local rules that apply to Domain and Private. these rules are disabled.

    I have set the GPO rules to enabled, Domain and Private - this creates a new rule alongside the local disabled rule.

    The GPO Rules create new rules alongside the local rules.

    If I enable or delete the local rule the SCOM alarm goes green. The GPO rule seems to only have an effect if the local rule is deleted.

    Is there a setting I am missing to make the GPO rules overwrite or enable the local rules?

    I'm guessing this behavior exists for when the server is disjoined from the domain.

    I have about 40 servers that have this issue.  I would like some feedback about how best to proceed

    Thursday, December 8, 2016 1:56 PM

All replies