On the Scope tab of the GPO in the GPMC look at the Security Filtering section. The default is to have the policy applied to "Authenticated Users". Probably the easiest option for you is to:
- Create a group and add the 55 users as members. - Remove "Authenticated Users" from the Security Filter. - Add the newly created group to the Security Filter. You could also use the Deny method, but this is generally not recommended as it is harder to troubleshoot. Also, you can achieve everything you need to without using Deny. Tony -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Anthony Crawford Sent: Thursday, 1 June 2006 9:03 a.m. To: [email protected] Subject: [ActiveDir] Deny Read Permissions to Group Policy I have a sub OU with 60 users and I wish to apply a group policy to 55 of the users. I assume the easy way is to deny read permissions to the policy for the handful of employees I do not want the policy to apply to. I have gpmc open and looking under security filtering and can't seem to figure out how to accomplish this. If there is a better method then deny reading of the policy, I'll take the advice. Thanks. Tony List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.activedir.org/ml/threads.aspx This communication, including any attachments, is confidential. If you are not the intended recipient, you should not read it - please contact me immediately, destroy it, and do not copy or use any part of this communication or disclose anything about it. Thank you. Please note that this communication does not designate an information system for the purposes of the Electronic Transactions Act 2002. List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.activedir.org/ml/threads.aspx
