Logo
programming4us
programming4us
programming4us
programming4us
Home
programming4us
XP
programming4us
Windows Vista
programming4us
Windows 7
programming4us
Windows Azure
programming4us
Windows Server
programming4us
Windows Phone
 
Windows Server

Windows Server 2012 Group Policies and Policy Management : GPO Administrative Tasks - Creating and Linking WMI Filters to GPOs

10/23/2013 1:49:00 AM

1. Creating New Domain Group Policies

To create a new domain GPO, follow these steps:

1. Log on to a designated Windows Server 2012 administrative system that has the Group Policy Management Tools installed.

2. Open Windows PowerShell.

3. In the Windows PowerShell window, type import-module GroupPolicy and press Enter.

4. Type New-GPO –Name MyNewGPO and press Enter.

2. Creating and Configuring GPO Links

After a GPO is created and configured, the next step is to link the GPOs to the desired Active Directory containers. To link an existing GPO to an Active Directory container, follow these steps:

1. Log on to a designated Windows Server 2012 administrative system.

2. Open Windows PowerShell, type Import-Module GroupPolicy, and press Enter.

3. For this example, we will link the GPO named MyNewGPO to the OU Local Workstations that is located at the root of the companyabc.com domain by typing in New-GPLink –Name “MyNewGPO” –Target “OU=Local Workstations, DC=companyabc,DC=Com” and then pressing Enter.

4. The PowerShell window returns the results of that command if successful. Close the Windows PowerShell window.

Advanced GPO Link Configuration

After a GPO link is created, it is enabled by default. Each link has its own configuration options, which include link enforcement and the ability to enable and disable the link. To change the default configuration of a GPO link, follow these steps:

1. Log on to a designated Windows Server 2012 administrative system.

2. Open the Group Policy Management Console.

3. Expand the Domains or Sites node to expose the GPO-linked container.

4. If the GPO link is to be enforced, right-click the desired GPO link, and select Enforced to enforce the link.

5. If the GPO link will be changed from enabled to disabled, right-click the desired GPO link and select Link Enabled to check Link (Enabled) or uncheck Link (Disabled).

3. Managing GPO Status

GPO status controls whether the entire GPO is enabled, disabled, or if only the Computer Configuration or User Configuration node is enabled. GPO status is applied to the GPO itself, so all links will be affected by any changes to the GPO status. To view or modify the status of a GPO, follow these steps:

1. Log on to a designated Windows Server 2012 administrative system.

2. Open the Group Policy Management Console.

3. Expand the domain to expose the Group Policy Objects container and expand it.

4. Select the desired GPO and select the Details tab in the right pane.

5. On the Details tab, in the GPO Status drop-down menu, note the current status of the GPO.

6. If the GPO status needs to be changed, click the drop-down arrow and select one of the following options:

• Enabled

• User Configuration Settings Disabled

• Computer Configuration Settings Disabled

• All Settings Disabled

7. After you select the desired GPO status, a confirmation window opens. click OK to complete the status change.

4. Managing GPO Security Filtering

Managing security filtering is one of the best ways to target a specific group of users and computers for GPO application. Security filtering can be set to a specific user, computer, or security group object or a combination of all three object types. To change the security filtering of a GPO from the default of Authenticated Users, follow these steps:

1. Log on to a designated Windows Server 2012 administrative system.

2. Open the Group Policy Management Console.

3. Expand the domain to expose the Group Policy Objects container and expand it.

4. Select the desired GPO and select the Scope tab in the right pane.

5. In the Security Filtering section of the Scope tab, select the Authenticated Users group, and click the Remove button.

6. Click OK in the confirmation dialog box to remove the security group from the GPO security filtering.

7. In the Security Filtering section of the Scope tab, click the Add button to add an Active Directory object to the security filter for the GPO.

8. Type in the name of the user or security group that will be applied to the GPO security filtering, and click OK.

9. If multiple objects need to be added, repeat this process until all the objects are added to the security filter.

10. If a specific computer object needs to be added, in the Select Users and Group window, click the Object Types button, check the Computers object, and click OK. Type the computer object name or browse for the object, and then click OK.

5. Creating and Linking WMI Filters to GPOs

When applying security filtering to a GPO is not granular enough to target a specific set of computers, a WMI filter can be linked to the GPO. For this example, we will create a WMI filter that includes a computer with an OS name of Windows 8. To create the example WMI filter, follow these steps:

1. Log on to a designated Windows Server 2012 administrative system.

2. Open the Group Policy Management Console.

3. Expand the domain and select the WMI Filters container.

4. Right-click the WMI Filters container and select New.

5. In the Name section, type in Windows 8 WMI Filter.

6. In the Description section, type in WMI filter to include only Windows 8 workstations.

7. Click the Add button to create the WMI filter query.

8. In the Query section, type Select * from Win32_OperatingSystem Where (Name LIKE “%Windows 8%”) to show a GPO WMI filter similar to the one shown in Figure 1.

Image

Figure 1. Creating a Windows 8 WMI GPO filter.

9. Click OK to save the query and return to the WMI Filter window.

10. Click Save to create the WMI filter in the domain.

Other -----------------
- Windows Server 2012 Group Policies and Policy Management : GPO Administrative Tasks - Creating and Using Starter GPOs
- Windows Server 2012 Group Policies and Policy Management : GPO Administrative Tasks - Creating a GPO Central Store
- Windows Server 2012 Group Policies and Policy Management : Designing a Group Policy Infrastructure
- Microsoft Lync Server 2013 : Deploying Lync Online - Configuring an Auto Attendant Number
- Microsoft Lync Server 2013 : Deploying Lync Online - Enabling Users for Exchange UM, Configuring a Subscriber Access Number
- Microsoft Lync Server 2013 : Deploying Lync Online - Configuring Lync-to-Phone, Creating a SIP URI Dial Plan
- Microsoft Lync Server 2013 : Deploying Lync Online - Configuring Dial-in Conferencing, Configuring Lync Properties for User Accounts
- Microsoft Lync Server 2013 : Deploying Lync Online - Adding User Accounts in Bulk, Configuring Federation and Public IM
- Microsoft Lync Server 2013 : Deploying Lync Online - Adding User Accounts Using the Online Portal
- Microsoft Lync Server 2013 : Deploying Lync Online - Adding Domains to Lync Online
 
 
Top 10 video Game
-   Heroes Charge - Trio VW + EB + SIL vs WC FD CW EB Com
-   PlanetSide 2 | PS4 Launch Trailer 'Redefining Massive Warfare
-   DRIVECLUB | PS4 All-Action Trailer
-   Wave of Darkness [PC] Early Access Trailer
-   Tony Hawk's Pro Skater 5 | "THPS is Back" Trailer
-   Poly Bridge [PC] Trailer
-   Persona 5 | Leaked Trailer 2 w/ Dancing All Night
-   Evolve [PS4/XOne/PC] Lennox Gameplay Trailer
-   Lexus Slide | Real, rideable hoverboard
-   Gears of War: Ultimate Edition | Teaser Video
-   Rise of Incarnates [PC] Zeus Trailer
-   Heroes Reborn | The Extraordinary Among Us (Preview)
-   Battleborn | E3 2015 Gameplay Demo
-   Fortnite [PC] Mac Showcase Trailer
-   Overwatch [PC] Zarya Gameplay Trailer
Popular tags
Microsoft Access Microsoft Excel Microsoft OneNote Microsoft PowerPoint Microsoft Project Microsoft Visio Microsoft Word Active Directory Biztalk Exchange Server Microsoft LynC Server Microsoft Dynamic Sharepoint Sql Server Windows Server 2008 Windows Server 2012 Windows 7 Windows 8 windows Phone 7 windows Phone 8
programming4us programming4us
 
Popular keywords
HOW TO Swimlane in Visio Visio sort key Pen and Touch Creating groups in Windows Server Raid in Windows Server Exchange 2010 maintenance Exchange server mail enabled groups Debugging Tools Collaborating
programming4us programming4us
PS4 game trailer XBox One game trailer
WiiU game trailer 3ds game trailer
Trailer game
 
programming4us
Heroes Charge
programming4us
Windows Vista
programming4us
Windows 7
programming4us
Windows Azure
programming4us
Windows Server
programming4us
Game Trailer