Quick answer is yes. IPSec policies themselves are stored per domain, but you can assign different ones to different GPOs.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Hunter, Laura E. Sent: Friday, April 08, 2005 9:56 AM To: [email protected] Subject: [ActiveDir] IPSec and Group Policy Morning all, I'm getting conflicting references on this question from Google, but I imagine someone here can answer definitively in about 5 seconds: Am I able to assign a single common IPSec policy to a domain GPO, but also have separate IPSec configurations for OUs lower in the AD infrastructure, so that boxen in individual OUs can have different IPSec rulesets? Or is IPSec one of those GPO settings like Account Lockouts or Password Policies where you only get one per domain? Thanks! Laura List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
