Can't apply a GPO

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

I have a SBS domain that i am unable to apply a GPO.
Because it is new, there are no other GPO's in place.

From within ADUC i have created a new OU within the domain, placed the groups i want in it, selected read and apply group policy settings, linked it and used a gpupdate/force from the server and the client but with no joy..

Can anyone suggest anything as to why this policy doesn't work?

 

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

could be anything. these are not computer settings being applied to users, or vice versa, right?!
[edit] what does the resultant set of policy say about your policy?

 

You're fired...

 

damn

 

D,

I have tried User and Computer configuration and neither apply...
The resultant is zilch.....
Could it be due to another service that isn't functioning correctly on the server? ie DNS, DHCP?

 

Boyce,

Can you tell us exactly what settings you are trying to apply with the GPO? Also are the client PC's XP or W2K?

 

Si,

I tried one enablement from Computer config (admin templates....Internet Control Panel....Disable the security page) and one from admin config (admin templates....control panel...prevent access to the control panel)
oh, all clients are XP

thanks

 

Spark,

It isn't picking up the GP; the gpresult command presents the time from when i forced an update from the client (i assume) with an applied from = N/A
Could it be a DNS/DHCP issue? SBS is not dealing with DHCP, the ADSL box is at the moment!

Simon

 

I agree totally with that Sparky.

Bear in mind Boycie that more than just name resolution goes on with local DNS requests. There are SRV records in DNS which tell the clients information like which IP belongs to a domain controller. Without those SRV records the client is clueless. Clearly your router would not support those AD SRV records, so it is vitally important to use a DNS server for internal DNS requests that does.

 

Thanks to everyone for their input

Spark- no, it is a *real* domain, not a virtual one.

Would it be better to insert another Nic in the SBS box, (one for the ADSL gateway and one to the hub for the clients) and bridge the two together or leave the it as it is (network cable from SBS to hub... hub to ADSL box and clients) and configure SBS for DHCP?

Si

 

Is your SBS box a standard or premium edition? If the later, then it comes with ISA, which is an excellent product IMHO but to function properly ie as a firewall, it *needs* two NICs.

I also think you should run DHCP from your server too. It is far more configurable than those plastic cheap ADSL router boxes, and it is after-all what you are studying.

 

Pete,

It is the standard edition.
Yes, i agree. The network is about to by teared down (as we are moving to bigger premises and therefore more users and a complete new network) hence the *shoddyness*

What time is it where you are Pete?

Si

 

Great advice Sparky, thanks. Myself and JonnyMX are planning as much as we can at the moment but it is proving quite hard because we haven't had any confirmed figures and expectations from the people paying the money.
We will have around 50 users and will be using an outside IT company to implement MS CRM.

Regards

Simon

 

It was 6:40pm when I posted that Si, now it is 7am, been up since 5am watching the football <yawn>

 

Whats the song? *you football crazy, you football mad.....*

enjoy the rest of the cup, pete