Hi there, I am creating my first user lock down policy for Windows 10 clients in a test lab, I must say I'm finding windows 10 terrible to secure with the metro apps and search functions acting like a run command
So far my policy has worked for my standard lockdowns (control panel, run etc) but now I'm trying to block the windows store apps (store policy has worked, despite being windows 10 pro) I have attempted to do this through app locker, by blocking candy crush etc which hasn't worked, despite the policy applying. In addition I've tried to block command prompt, mmc and mstsc which also has not worked.
I have been having issues with the policy applying full stop, whilst now I have some applied it hasn't been refreshing with gpupdate /force , whilst it states it's applied successfully it actually hasn't. I don't know if fast boot is to blame, so I disabled it. And enabled a 60 second wait time as the system boots for group policy sync.
I'm really stuck, when I did server 2008 and windows 7 group policy was instant, and just seemed to work, yet server 2012 r2, windows 10 and check clients seem to just be working horribly, I've never had as many issues with group policy before.
Generally, should u be doing a gpupdate /force on a DC prior to a client as well? I mught be a but rusty on that front
Thanks :-)