Group Policy

https://learn.microsoft.com/en-us/training/modules/implement-group-policy-objects/

What is Group Policy?

Group Policy is a framework in Windows operating systems with components that reside in AD DS, on domain controllers, and on each Windows Server and client. By using these components, you can manage configuration in an AD DS domain. You define Group Policy settings within a GPO. A GPO is an object that contains one or more policy settings that apply to one or more configuration settings for a user or a computer.

Scope a GPO

You can use several methods to manage the scope of domain-based GPOs. The first is the GPO link. In AD DS, you can link GPOs to:

  • Sites

  • Domains

  • OUs

GPO processing order

The GPOs that apply to a user, computer, or both don't apply all at once. GPOs apply in a particular order. Conflicting settings that process later might overwrite settings that process first.

Group Policy follows the following hierarchical processing order:

  1. Local GPOs.

  2. Site-linked GPOs.

  3. Domain-linked GPOs.

  4. OU-linked GPOs.

  5. Child OU-linked GPOs.

Some Examples

  • Changing background Image

  • Installing Chrome on clients

  • Lock Taskbar

  • Disable Task Manager

  • Disable USB

PreviousDNSNextGP Background

Last updated