none
Office 2013 GPO Administrative Templates on W2k08R2 RRS feed

Answers

  • Hi,

    the browse method is used for ADM files, not for ADMX/L files. Office 2013 only supplies ADMX/L files.

    Instead, copy the extracted ADMX and ADML files (take care to preserve the language/culture folders/subfolders e.g. en-US) into the PolicyDefinitions folder which is applicable to your environment.

    if you are using local machine PolicyDefinitions (eg you are not using a central store), this would be C:\Windows\PolicyDefinitions


    Don
    (Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
    This helps the community, keeps the forums tidy, and recognises useful contributions. Thanks!)



    • Edited by DonPick Saturday, February 9, 2013 3:03 AM add pic
    • Marked as answer by Marc Lopez Wednesday, February 13, 2013 12:17 PM
    Saturday, February 9, 2013 2:57 AM
  • Hi,

    Have you checked whether the group policy applied to your clients?

    On the client computer, run “gpresult” to display group policy apply status. Or you can use “rsop.msc” mmc to display applied group policy.

    Registry path for group policy “Cached Exchange Mode Sync Settings” is HKEY_CURRENT_USER\software\policies\microsoft\office\15.0\outlook\cached mode!syncwindowsetting

    You may check the registry key on the client, make sure the group policy is applied.

    For more information please refer to following MS articles:

    Office 2013 Administrative Template files (ADMX, ADML) and Office Customization Tool (OCT)
    http://technet.microsoft.com/en-us/library/cc178992.aspx
    Troubleshooting Group Policy Problems
    http://technet.microsoft.com/en-us/library/cc787386(v=WS.10).aspx
    Your Guide to Group Policy Troubleshooting
    http://technet.microsoft.com/en-us/magazine/2007.02.troubleshooting.aspx

    Hope this helps!

    TechNet Subscriber Support

    If you are TechNet Subscription user and have any feedback on our support quality, please send your feedback here.


    Lawrence

    TechNet Community Support

    • Marked as answer by Marc Lopez Wednesday, February 13, 2013 12:17 PM
    Monday, February 11, 2013 9:06 AM
    Moderator
  • Hi,

    To apply a group policy to a user, the user should has “Read” and “Apply Group Policy” (AGP) permission for the Group Policy. So for your scenario, you can filter the scope of Group Policy according to security group membership.

    To filter the scope of Group Policy according to security group membership

    1. Open the Group Policy object whose scope you want to filter.
    2. In the console tree, right-click the icon or name of the Group Policy object, and then click Properties.
    3. Click the Security tab, and then click the security group through which you want to filter this Group Policy object. If you want to change the list of security groups through which to filter this Group Policy object, use the Add and Remove buttons to add or remove security groups.
    4. In the Permissions box for the selected security group, select or clear the appropriate check boxes to set permissions as shown in the following table, and then click OK.

    By default, “Authenticated Users” group has “Read” and “AGP” permission for each GPO, the “Authenticated Users” group include all domain user and domain computer accounts. For your scenario, add these users in to a security group, grant the security group “Read” and “AGP” permission, remove “Authenticated Users” group “Read” or “AGP” permission. Then only the specified security group can apply the GPO.

    For more information please refer to following MS articles:

    Filter the scope of Group Policy according to security group membership
    http://technet.microsoft.com/en-us/library/cc786636(v=WS.10).aspx
    Security filtering using GPMC
    http://technet.microsoft.com/en-us/library/cc781988(v=WS.10).aspx
    Filter using security groups
    http://technet.microsoft.com/en-us/library/cc779291(v=WS.10).aspx

    Hope this helps!

    TechNet Subscriber Support

    If you are TechNet Subscription user and have any feedback on our support quality, please send your feedback here.


    Lawrence

    TechNet Community Support

    • Marked as answer by Marc Lopez Wednesday, February 13, 2013 12:17 PM
    Wednesday, February 13, 2013 4:48 AM
    Moderator

All replies

  • Hi,

    the browse method is used for ADM files, not for ADMX/L files. Office 2013 only supplies ADMX/L files.

    Instead, copy the extracted ADMX and ADML files (take care to preserve the language/culture folders/subfolders e.g. en-US) into the PolicyDefinitions folder which is applicable to your environment.

    if you are using local machine PolicyDefinitions (eg you are not using a central store), this would be C:\Windows\PolicyDefinitions


    Don
    (Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
    This helps the community, keeps the forums tidy, and recognises useful contributions. Thanks!)



    • Edited by DonPick Saturday, February 9, 2013 3:03 AM add pic
    • Marked as answer by Marc Lopez Wednesday, February 13, 2013 12:17 PM
    Saturday, February 9, 2013 2:57 AM
  • Great, that works.

    Just one more question: I copied only Outlk15.admx (and the same from en-us folder) and setup Administrative templates - Microsoft Outlook 2013 - Account settings - Exchange - Cached Exchange mode - Cached Exchange mode setting - Disable----- but users' cached mode is still enabeld. Can you advice?

    Thnx
    Sunday, February 10, 2013 5:43 PM
  • Hi,

    Have you checked whether the group policy applied to your clients?

    On the client computer, run “gpresult” to display group policy apply status. Or you can use “rsop.msc” mmc to display applied group policy.

    Registry path for group policy “Cached Exchange Mode Sync Settings” is HKEY_CURRENT_USER\software\policies\microsoft\office\15.0\outlook\cached mode!syncwindowsetting

    You may check the registry key on the client, make sure the group policy is applied.

    For more information please refer to following MS articles:

    Office 2013 Administrative Template files (ADMX, ADML) and Office Customization Tool (OCT)
    http://technet.microsoft.com/en-us/library/cc178992.aspx
    Troubleshooting Group Policy Problems
    http://technet.microsoft.com/en-us/library/cc787386(v=WS.10).aspx
    Your Guide to Group Policy Troubleshooting
    http://technet.microsoft.com/en-us/magazine/2007.02.troubleshooting.aspx

    Hope this helps!

    TechNet Subscriber Support

    If you are TechNet Subscription user and have any feedback on our support quality, please send your feedback here.


    Lawrence

    TechNet Community Support

    • Marked as answer by Marc Lopez Wednesday, February 13, 2013 12:17 PM
    Monday, February 11, 2013 9:06 AM
    Moderator
  • Uf, I used wrong GPO settings: instead of "Use Cached Exchange Mode for new and existing Outlook profile" I was using wrong "Cached Exchange mode (File | Cached Exchange mode)".

    Can I ask one more question: I have a list (CSV) of problematic users from my AD domain. Users are cross a lot of OUs and sub-OUs. I have CVS list of these users. How can I implement (filter) GPO just for these users? Maybe through Scope or Delegation settings, but I don't know how.

    I promise that is the last question on this thread.

    Thnx.!

    Tuesday, February 12, 2013 1:01 PM
  • Hi,

    To apply a group policy to a user, the user should has “Read” and “Apply Group Policy” (AGP) permission for the Group Policy. So for your scenario, you can filter the scope of Group Policy according to security group membership.

    To filter the scope of Group Policy according to security group membership

    1. Open the Group Policy object whose scope you want to filter.
    2. In the console tree, right-click the icon or name of the Group Policy object, and then click Properties.
    3. Click the Security tab, and then click the security group through which you want to filter this Group Policy object. If you want to change the list of security groups through which to filter this Group Policy object, use the Add and Remove buttons to add or remove security groups.
    4. In the Permissions box for the selected security group, select or clear the appropriate check boxes to set permissions as shown in the following table, and then click OK.

    By default, “Authenticated Users” group has “Read” and “AGP” permission for each GPO, the “Authenticated Users” group include all domain user and domain computer accounts. For your scenario, add these users in to a security group, grant the security group “Read” and “AGP” permission, remove “Authenticated Users” group “Read” or “AGP” permission. Then only the specified security group can apply the GPO.

    For more information please refer to following MS articles:

    Filter the scope of Group Policy according to security group membership
    http://technet.microsoft.com/en-us/library/cc786636(v=WS.10).aspx
    Security filtering using GPMC
    http://technet.microsoft.com/en-us/library/cc781988(v=WS.10).aspx
    Filter using security groups
    http://technet.microsoft.com/en-us/library/cc779291(v=WS.10).aspx

    Hope this helps!

    TechNet Subscriber Support

    If you are TechNet Subscription user and have any feedback on our support quality, please send your feedback here.


    Lawrence

    TechNet Community Support

    • Marked as answer by Marc Lopez Wednesday, February 13, 2013 12:17 PM
    Wednesday, February 13, 2013 4:48 AM
    Moderator
  • That's it, thanks you for all great suggestions.
    EOD :-)
    Wednesday, February 13, 2013 2:05 PM