none
How to prevent user policy from applying to users logged onto specific machine

    Question

  • I have an application with user settings applied through group policy. I have a test server to test the application which requires different user settings. I can change the settings on the test server but the policy eventually rewrites the settings. Is it possible to prevent the user-based policy settings from applying to a user when logged onto the specific test server? Or, if not, can I make a higher priority user policy that only applies to users when logged onto the test server? Or, will a policy configured on the local machine override the policy from the domain?
    Wednesday, April 6, 2016 3:28 PM

Answers

  • I think I found the answer. Use item-level targeting and filter out that computer name. I will test and post results.
    • Marked as answer by djp64 Wednesday, April 6, 2016 4:49 PM
    Wednesday, April 6, 2016 3:37 PM

All replies

  • I think I found the answer. Use item-level targeting and filter out that computer name. I will test and post results.
    • Marked as answer by djp64 Wednesday, April 6, 2016 4:49 PM
    Wednesday, April 6, 2016 3:37 PM
  • > user-based policy settings from applying to a user when logged onto the
    > specific test server? Or, if not, can I make a higher priority user
    > policy that only applies to users when logged onto the test server? Or,
    > will a policy configured on the local machine override the policy from
    > the domain?
     
    All of this is true - depends on your skills and needs :-) (Except the
    last - local policy will always be overridden by domain GPOs)
     
    ILT - as you already found out.
    Loopback merge with security filtering (loopback merge will apply user
    GPOs in scope of the computer only if the computer has read access to them)
    WMI filter for computer names
    ...
     
    Wednesday, April 6, 2016 4:09 PM