Announcement

Collapse
No announcement yet.

Hunting down GPO

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Hunting down GPO

    Hi.

    I've recently started working as the IT manager for a small company. The last guy has been gone for about 8 months and I really have no idea how he set everything up.

    Going through the Group Policy Management Console, I can see some old GPOs, but none of them are enforced and only 1-2 are even linked. However, when you log into a machine for the first time, it still maps (some) drives and has sets up the proxy to use the old server. Since we don't use a proxy or that server, they wind up internetless until I help them. Not a big deal, but I want to know why its happening. Is there any way to figure out how these settings are being applied?

    I want to enact new drive mappings and other GPOs, but I don't want to start doing that until I find the source of the old ones.

  • #2
    Re: Hunting down GPO

    Enforced doesn't mean they don't apply.
    What I would do is first delete all GPO's which are not linked after backing them up (you never no )
    Then I would make a printout from all linked GPO's (so including the GPO's which are enforced ) and read the printouts.
    After that I would start cleaning
    With GPMC you can easily see what is applied. Remember LSDOU (Local, Site, Domain, OU) which is the order how GPO's are applied
    Marcel
    Technical Consultant
    Netherlands
    http://www.phetios.com
    http://blog.nessus.nl

    MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
    "No matter how secure, there is always the human factor."

    "Enjoy life today, tomorrow may never come."
    "If you're going through hell, keep going. ~Winston Churchill"

    Comment


    • #3
      Re: Hunting down GPO

      Check the ones that are linked to see what the apply then have a look at a user account and see if it has a batch or vbs file it runs at logon.

      When a user logs on you can also run gpresult and view what policies are being applied.
      There are also similar tools at the bottom of the gpmc you can play with.
      cheers
      Andy

      Please read this before you post:


      Quis custodiet ipsos custodes?

      Comment


      • #4
        Re: Hunting down GPO

        Pardon my noobery... So what does enforced mean then?
        Originally posted by Dumber View Post
        Enforced doesn't mean they don't apply.
        What I would do is first delete all GPO's which are not linked after backing them up (you never no )
        Then I would make a printout from all linked GPO's (so including the GPO's which are enforced ) and read the printouts.
        After that I would start cleaning
        With GPMC you can easily see what is applied. Remember LSDOU (Local, Site, Domain, OU) which is the order how GPO's are applied

        That is awesome. That's pretty much what I was looking for. Now it's just a matter of... knowing what I'm doing.
        Originally posted by AndyJG247 View Post
        Check the ones that are linked to see what the apply then have a look at a user account and see if it has a batch or vbs file it runs at logon.

        When a user logs on you can also run gpresult and view what policies are being applied.
        There are also similar tools at the bottom of the gpmc you can play with.


        I like knowing where to find smart people. <3 Any tip, tools or suggested reading materials? I don't know much about AD, but I know how to learn.

        Comment


        • #5
          Re: Hunting down GPO

          Google, like you said is great.

          A few links:
          http://www.tech-faq.com/group-policy.shtml
          http://www.tech-faq.com/troubleshoot...p-policy.shtml
          http://en.wikipedia.org/wiki/Group_Policy

          and the main Microsoft start page
          http://technet.microsoft.com/en-us/w...y/default.aspx

          Bear in mind it is very powerful so if you are uncertain build a test VM environment and play around in there.
          cheers
          Andy

          Please read this before you post:


          Quis custodiet ipsos custodes?

          Comment


          • #6
            Re: Hunting down GPO

            also with gpresult rsop.msc is also useful to tell u additional information about the policies.
            Please remember to award reputation points if you have received good advice.
            I do tend to think 'outside the box' so others may not always share the same views.

            MCITP -W7,
            MCSA+Messaging, CCENT, ICND2 slowly getting around to.

            Comment


            • #7
              Re: Hunting down GPO

              gpresult, gpresult /v, rsop.msc will find it for you.
              VCP on vSphere (4), MCITP:EA/DBA, MCTS:Blahblah

              Comment

              Working...
              X