Hi,
We are facing an issue on one of our domains where machines are not all running group policy refreshes at its default interval. I am not seeing the 1501 events logged in the system log, I occasionally see a 1503 on these machines.
We have a scheduled task that triggers when 1501 is written to the event log and on a large number this works fine. I have a bunch (350+ currently) that are not working as expected. They are in a bunch of our different offices across different countries, yet they all have the same problem.
If I run a manual gpupdate on these machines, it refreshes group policy and it also logs the 1501 event into the system event log which in turn triggers our scheduled task to fire.
There are no errors in the Group Policy event log, GP fires when you boot up & when a user logs in. It doesn't matter what user is currently logged in, GP doesnt refresh. We are using the default interval (60min +- 30min).We haven't changed it in
any policy and i've also checked that the registry keys dont exist on affected machines.
I have turned on the GPSvcDebugLogging and reviewed its log, I cant find anything in there. Data is written to that ~within the normal GP refresh interval and there are no errors or warnings that I can find. However we still dont get the event 1501 entry into the system event log, according to Microsoft, the informational entry is: The Group Policy settings for the user were processed successfully. There were no changes detected since the last successful processing of Group Policy.
All of our clients are Windows 7 Enterprise, with the latest updates released running 1 month behind. Users all have a variety of software installed, unlikely that 2 machines are identical but I doubt that its an external piece of software causing the issue,
I would expect its likely to be something internal to windows. We are running a 2008 R2 DFL & FFL, domain controllers in each office, ~50 GPO's but varies as some are dependent on group membership however there are no errors when reviewing a result report.
DCDiag doesn't report any domain errors, sites and services etc is all configured correctly. DNS is working fine. I cant see any errors on the DC's either.
Has anyone seen this issue before? I need to find other things to investigate to fix this issue, has anyone come across this before, has a fix or can suggest some things I can look into, so I can look at solving this.
Thanks