Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Management
and
Lesson
10
Implementation Strategy
Skills Matrix
Technology Skill
Objective Domain
Objective #
Scope
Allows administrators to view the locations
to which the policy is linked.
In addition, security filtering using
permissions and WMI are available for
viewing, editing, or creating. When a WMI
filter is applied to the policy, it appears in
the list with an Open button that allows
filter modification.
If a WMI filter is not applied to the policy,
the button will allow a new filter to be
created or linked to the GPO.
Scope
Detail
Allows the GPO to be enabled or
disabled.
It also displays read-only information
that includes the owner, GUID,
creation date, and last modification
date.
Detail
Settings
When this tab is activated, an HTML
report is generated that allows
administrators to view GPO settings that
do not have the original default values.
Links on the right side of the report allow
detailed information to be displayed or
hidden.
Right-clicking within this view allows
administrators to print or save the report.
Settings
Delegation
Like the previously discussed
Delegation tab for a container object,
this tab lists the users and groups
that have access to this GPO and the
permissions that apply to them. The
Advanced button allows access to
the Security tab to directly view the
GPOs ACL.
Summary
Application of group policies can be filtered
by using Block Policy Inheritance, No
Override, permissions, and WMI filters.
WMI filters allow administrative control over
group policy implementation based on
criteria defined in the filter.
After evaluation, all filter criteria must return
a value of true for the policy to be applied.
Any criteria that return a value of false after
evaluation will prevent the policy from being
applied.
Summary
Only one WMI filter can be applied to
each GPO.
GPMC can be used to manage all
aspects of Group Policy, including the
following: creation, linking, editing,
reporting, modeling, backup, restore,
copying, importing, and scripting.
Determining effective group policies
can be accomplished using RSoP,
GPMC, or GPResult.
Summary
RSoP is an MMC snap-in that has two
modes: Planning and Logging.
Planning mode allows administrators
to simulate policy settings prior to
their deployment.
Logging mode reports on the results
of existing policies.
Summary
Delegating administrative control of
Group Policy management tasks is an
important feature when planning a
decentralized administrative
approach.
GPMC is a comprehensive tool that
simplifies delegation of all aspects of
Group Policy management.