Hello Admin,
am trying to apply Lock Screen GPO but it’s not applying
My Environment Details
• Windows Server 2016 Std
• Windows 10 Pro 64 bit – Version 1709
GPO Settings are
Created Share folder with everyone Read permission
Applied GPO as per your MS instructions, but it’s not applying. "Computer Configuration \ Policies \ Admin Templates \ Control Panel \ Personalization"
I checked registry it’s updated
Can you help me on this
Hi,
1. I didn't find Onedrive ADMX in latest and greatest W10 1809 package.
So I took onedrive.admx (with adml) from freshly installed Windows 10 Enterprise 1809.
In the list of possible "manipulations" there is nothing like in existing SkyDrive admx (from 2013):
"Prevent the usage of Skydrive for file storage":
2. How can I achieve OneDrive complete prevention without any message on end user machines?
We are not planning to use Onedrive in our environment.
Would existing SkyDrive admx do the trick?
Thx.
--- When you hit a wrong note its the next note that makes it good or bad. --- Miles Davis
Hello,
I am trying to crate a GPO with below rules. First one is achieved but facing problem with second,
I tried below to achieve 2nd rule but did not success. My computer is getting logoff as soon as computer get locked.
Thanks in advance :-)
Regards
Bhavesh Khare
Hi,
Try to use gpo to cretae a TS which runs a script when user logins to delete user data from desktop, my documents ect...
The script works fine when running it self.
ts SETTINGS.
General
Triggers
Actions
Condition/Settings/ Common: no changes made
The file does existed in C:\users\ folder
This is the error i get on PC.
The user 'Delete Data - User' preference item in the 'Test Security {xxxxxxxx}' Group Policy object did not apply because it failed with error code '0x80041318 The task XML contains a value which is incorrectly formatted or out of range.' This error was suppressed.
The user 'Delete Data - User' preference item in the 'Test Security {xxxxxx}' Group Policy object did not apply because it failed with error code '0x80041318 The task XML contains a value which is incorrectly formatted or out of range.' This error was suppressed.
SCRIPT:
@echo off
del %userprofile%\Desktop\*.* /s /q
del %userprofile%\My Documents\*.* /s /q
del %userprofile%\Downloads\*.* /s /q
del %userprofile%\Favourites\*.* /s /q
del %userprofile%\My Pictures\*.* /s /q
for /d %%x in (%userprofile%\Desktop\*) do @rd /s /q "%%x"
for /d %%x in (%userprofile%\My Documents\*) do @rd /s /q "%%x"
for /d %%x in (%userprofile%\Downloads\*) do @rd /s /q "%%x"
for /d %%x in (%userprofile%\Favourites\*) do @rd /s /q "%%x"
for /d %%x in (%userprofile%\My Pictures\*) do @rd /s /q "%%x"
Hi,
I am trying to logoff user session through task scheduler settings in user configurations and I have configured idle settings for30 minutes but the issue is user session is signing out in 5 minutes.
General Tab:Thank You in Advance.
Best Regards,
Sugandh Gandham
Sugandh
Hi Experts
I have a separate forest with NO Trust. what I need to export my all GPO settings and import in another separate domain.
Is there a way to achieve it?
Hi All,
I am facing very strange issue while editing Default Domain Policy -> Computer Configuration->Windows Settings->Security Settings->Account Policies-> Password Policy -> Enforce password history
Whenever i try to edit the policies - i am getting the below error.
Forest functional level:
Windows Server 2003
Domain functional level:
Windows Server 2008 R2.
I am a enterprise admin.
Is someone faced this problem already? Please help me to resolve this issue.
raja m
Trying to change Wallpaper with GPO, but background goes from the standard windows background to black. I'm using Windows 2016 Sever.
- I made a GPO for wallpaper change
- Edit the GPO; User Configuration > Policies > Administrative Templates > Desktop > Desktop
- Chose setting Desktop Wallpaper, and entered path, tested both UNC and local path.
- In security filtering of the GPO, I have added the group and chose setting "Read" and "Apply group policy" in security settings.
Anything else I should be doing to get the background to the users computer?
Platform: Windows 10 Pro x64
Domain Functional Level: 2016
I am having an issue with Slow-Link Mode for Offline Files. I have set the below group policy to disabled:
Which means that a folder should never go in to Slow-Link mode while connected to a network share/resource. I only want the share/resource to go to Slow-Link mode (Work Offline / Offline Files) if the share/resource is inaccessible, not with a slow latency/connection.
However I see the following log in the Event Viewer (Applications and Services\Microsoft\Windows\ Offline Files\Operational):
Event ID= 1004
Description: Path \server\share$ transitioned to slow link with latency = 81 and bandwidth = 258888
A folder that is not synchronized for offline use has a grey X on it so when I try to open the folder, it says
I have also tried using the registry editor to add the Key and DWORD value with no success (supposedly only confirmed to apply up to Windows 8).
HKLM:\Software\Policies\Microsoft\Windows\NetCacheSlowLinkEnabled
REG_DWORD = 0
I can manually remove the "Work Offline" flag when I'm in the folder, but I don't want to make users do this, as it should never work offline unless there is NO network connectivity.
The network latency is only for users connected to VPN working from home, so as I understand Windows default value for transitioning to Slow-Link mode is 35ms round-trip latency, and the users go up to 100ms round-trip latency on VPN.
Also, I have made nearly all the same configurations as in this article: https://social.technet.microsoft.com/Forums/windows/en-US/ca9921e5-3fb8-41dd-b46e-eb4cf3f74a2d/on-slow-connections-automatically-work-offline-uncheck?forum=win10itpronetworking
Any suggestions or has anyone configured a similar scenario for Windows 10 environment?
HI
I have around 50 GPOs and I need to merge/Copy all 50 GPOs settings to ONe GPO. Please guide me on this to complete.
Hi,
We have a number of seemingly duplicate GPO's. One policy has both user and computer policies configured, and is linked to a container that has computer objects within it. My first question is, presumably only the computer policies will apply if a user logs into a PC within said container?
Second, why is it possible to configure site-to-zone assignment list as both a computer, and user policy, and if the list is configured in the same GPO (for user, and for computer) - which one wins and under what circumstance? I presume I need to merge the site-to-zone list to either user or computer, not both, but I'm not sure why we have it configured this way in the first place.
Any guidance would be appreciated,
Dave
Hi team,
Its a way to control pen drive via GPO , i need allow only pen drives that provided by my company and block other personal pen drive .
Regards
Thevan Shanmugam
Office 365 ProPlus should allow to configure some settings with Group Policy. I need to deploy the "Real-time collaboration options" > "When working with others, I want to automatically share my changes:" > "Always" to enable real-time collaboration.
I found a registry that deals with "show names on presence flags" but nothing for the respective drop-down menu population
HKCU\Software\Microsoft\Office\16.0\Word\Options\AlwaysShowNamesOnPresenceFlags = 1
Hi,
on domain server 2012 r2 I have configured in:
Computer configuration- Administrative Templates - Windows Components - Remote Desktop Services - Remote Desktop Session Host - Connection - Set rules for remote control of Remote Desktop Services users sessions: "Full Control without user's permission"but If I connect using admin account to any computer it will waiting for user approval and very ofter user deny my incoming connection and I cannot login. My second problem is that if I'm RDP connected to any computer user can login and disconnect my session - how to prevent this using GPO ?
Hi all,
We have different office locations and we map printers based on the IP range of each location.
This works fine up to now. The main problem is that each location has a couple of printers and, based on the floor of each department, I´d like to set a default printer.
Is this possible, as we just managed to map the whole IP-range printers and set a default printer for all the specific location.
Thanks in advance,
Eduardo
Hello
Is there a tool that integrates and that Microsoft recommend in order to manage complexity on Active Directory passwords, what we are trying to achieve is that users dont manage passwords like months of the year, lets say a user in January they use January0512, in february February0515, and so on, with the default complexity password it cant be done.
Thanks
Alejandro,
So, I am sort of filling in at my job as an ad-hock sys-admin until we find a qualified one, and I was asked to clean up/break up some of our GPOs (something I have some experience doing at a previous job, and feel comfortable with).
So I installed rsat on my win7 machine, and when I open a new GPO and go to the Admin Templates section it picks up the fact that we have a central store, but none of the options are there. I get all of the default options, and a few MS Office options that say "(Machine)" after them.
The weird thing is that if I go to edit an old policy (for example a Google Chrome policy), then all of the settings (for only google chrome) are there. Or if I edit the policy for our VDI environment then it will list the VMWare policy folders as if they are there, but missing all others (ex. Google will be missing).
But again, if I go to create a new GPO, I cannot find any of these template settings for Google or VMWare.
I have checked that the templates (~175 of them) are in the central store, and their corresponding adml files are in the en-us folder. All of the folders appear to be named correctly.
Next thought was that this was some weird win7 thing, so I fired up my win10 desktop and got it set up; same behavior.
Super confused. Need help!
Thanks!
Hello Team,
Group Policy processing failed. Windows attempted to read the \\Domain Name \ <g class="gr_ gr_6 gr-alert gr_spell gr_inline_cards gr_run_anim ContextualSpelling" data-gr-id="6" id="6">sysvol</g> \ Domain name \ Policies \ {31B2F340-016D-11D2-945F-00C04FB984F9} \ gpt.ini file from a domain controller and was unsuccessful. Group Policy settings cannot be applied until this event is resolved.
Only happens to Windows 10. Windows 7 and 8 are not affected machines (affected and nonaffected) are able to navigate to the path of the gpt.ini without any issue.
Gpupdate throughs an error with Computer policy update failed. Test file on SYSVOL is getting replicated across all of the DC's
Could anyone suggest what could be the reason behind and the fix?
Regards, Aatif Kungle