|
FWIW:
I have decided to
adopt the following approach:
This is almost identical to
the
process I designed for in-house ADM file updates.
The issues I mentioned are
related to the fact that in the past I have used GP settings which have
subsequently 'disappeared' from the UI, which meant I was no longer able to
control those settings via GPO.
Maybe we have somewhat
differing definitions of '... isn't really that dangerous'
:)
You say the ADM should be
tested before release, but how would you ensure this is done? The rollout of a
SP could be performed by a group outside of the realms of AD itself. Who's to
say the AD guys will be consulted about a client SP rollout, if the
ramifications are not even understood? :) I'd rather be proactive and block
auto
updates, than react to ADM issues. After all, that's why MS exposed this
setting
:))
neil
============================================================================== |
Title: Message
