Apply a GPO to a group

Introduction

In this article, I will explain how to apply a Group Policy (GPO) to an Active Directory group that contains multiple users.

The tutorial also applies in case you want to apply the policy to a particular user.

Prerequisites

  • Have created the Active Directory group
  • Having created the strategy
  • The policy must be correctly placed either at the root of the domain or at the OUs where the users are, not the group.

Apply a strategy to a group

The first step, from the 1 Scope tab of the policy in the Security Filtering 2 section, is to remove the Authenticated Users object to add the 3 group to which the GPO is ‘applied.
gpo groupe

Now you have to add read rights to the policy to the Authenticated Users object, go to the Delegation tab 1 and click Add 2 .

Select / Add the object Authenticated Users 1 and click OK 2 .
Add object

Choose the Read permission 1 and click OK 2 .
Read

The Authenticated Users object is added with read permission on the policy.

Conclusion

Prior to the MS16-072 update, it was not necessary to add the Authenticated Users object with Read permission on Group Policies, it was sufficient to add the group in the security filtering.



Related Posts


GPO: Installing the FusionInventory Agent
Introduction Following the many messages I can see on the forum concerning the installation of the Agent FusionInventory, I will explain how I have been doing for several years. In this article, I'll explain how to install the FusionInventory agent u

GPO: Make users administrator of their post
Presentation In this tutorial, we are going to have how to set up a GPO to make the admin domain users of their post. The goal is to add the Domain Users group in the Administrators 1 group of the user station. The Domain Admins group is already a me

GPO: disable access to previous versions
Introduction In this tutorial, I'll explain how to disable access to previous versions by GPO from client computers. Although convenient, this feature in case of user error can do some damage. As a reminder, in normal operation, access to previous ve

Leave a Comment