I've added an OU under MyBusiness -> SBSComputers called 'Windows Standard' with 'Computers' and 'Users' OUs under that. I did this so I could add restricted groups restrictions to a few test users. I've only put in 3 users/computers under this OU and applied the restricted groups GPO to the 'Windows Standard' OU. It seems to be working in that it takes the local admin account away if they are in that group and if I add them back into the default SBSComputers and SBSUsers it goes back to the way it was. However, I've noticed other users that were never moved from the default SBSComputers are losing their local admin privileges. It's not everyone, just some people. It does not seem like the GPO is being applied when I look at RSOP on their PC. Any ideas what might be going on? I've got three users that have lost privileges since I added this test OU and, of course, one of them is the General Manager.
No announcement yet.
Restricted Groups Scope