Server 2016 Windows Update disabled?
I have Windows 2016 and 2019 Servers. All in in the same OU and getting the same Group Policy. This is confirmed via gpresult. I am using GP to disable Automatic Updates. This looks to be working in 2019: But with Server 2016, it says this: Should I expect these servers to update?
Admin account Lockout
Hi All - I have been asked to implement password chages ppoicy at a site we support. During this process I also setup account lockout policy after 5 invalid attempts The option Allow Administrator Account lockout was enabled and now when trying to login I have the message - The referenced account is currently locked out and may not be logged onto. We have only used the correct password to logon - but this still has happened and waiting 30mins does not sort this issue. Also, I have no other Administrator account for this Domain Server. Does anyone have any suggestions on dealing with this ? The Policy has the following settings - Account Lockout Duration 30mins Account Lockout Threshold 5 Invalid logon attemps Allow Administrator Lockout Enabled Reset Account loclout Counter after 30minsRecycle Bin GPO settings not working/implemented in Windows Server 2022.
Hi, folks. I leverage the following three settings under User/Administrative Templates/Windows Components/File Explorer to effectively disable the Recycle Bin and force prompting for deletions on all Windows Server hosts, yet on Windows Server 2022, they are having no effect. The description for each setting contains no hints as to whether they've been deliberately omitted from Windows Server 2022 (most likely) or this is just some kind of bug/accidental omission. I ran a cross-check using the local group policy editor on a Server 2022 host as I haven't specifically updated the domain templates to Server 2022, but it's the same outcome. Does anyone have any insight as to whether these settings have been dropped as of Server 2022/Windows 11? Cheers, Lain
Group Policy to allow specific users to install specific software without admin privileges
I am a newly system administrator for an organization and I am trying to create a Group Policy that will allow specific users to download and use certain software like LogMeIn123 without having to use admin privileges. We don't want to give full admin rights, but only for this specific instance. I have done some research, but I am not sure the best way to set this up. The problem is our IT team consists of 3 members total and cannot be everywhere at once and this would be beneficial in key times. I have seen some people recommend using a login script, but I am not sure how to do that. I have also seen some people recommend using a third-party tool which is out of the questions for our organization. I am also open to other ways and ideas of having preforming this. Can anyone please provide me with some instructions on how to set this up? Thanks in advance for your help! Additional information: I am using Windows Server 2012R2. I have a list of the specific users that I want to allow to install LogMeIn123. I have the LogMeIn123 installation file located on a network server.
Configure RPC packet level privacy setting for incoming connections not show in group policy
Hi, it's about the group policy setting in windows server 2022, I have downloadedWindows Server 2022 Security Baseline.zip fromhttps://www.microsoft.com/en-us/download/details.aspx?id=55319Microsoft Security Compliance Toolkit 1.0 and importedSecGuide.adml andSecGuide.admx. I can see the MS Security Guide folder in local group policy editor, but there is no setting for "Configure RPC packet level privacy setting for incoming connections", I also try to find from All Settings, there is no such setting. Could you advice how to config it to let it show in the group policy editor or GPO. Thanks.setting GP Link failure
I'm trying to connect several group policies to their OU via Powershell the command used is New-GPLink -Name $line.Displayname -Target $line.Target -LinkEnabled $LinkEnable -Order $line.Order where the viariables are read from a csv file The command fails with the following error New-GPLink : A referral was returned from the server. At D:\Scripts\LinkGPO.ps1:17 char:1 + New-GPLink -Name $line.Displayname -Target $line.Target -LinkEnabled ... + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (:) [New-GPLink], DirectoryServicesCOMException + FullyQualifiedErrorId : System.DirectoryServices.DirectoryServicesCOMException,Microsoft.GroupPolicy.Commands.NewGPLinkCommand I also tried the same command with the explicit path and names but it fails as well connecting it via the Group Policy Management works indeed any help ?
