Top 5 To Try

• How to Start GPO on a 2003 Standard Server
• How to Install a GPO Console on a 2003 Standard Server
• How to Set the Home Page Group Policy on a Windows 2000 Server
• How to Hide Printers & Faxes on a Group Policy Server 2003
• How to Remove Group Policies

Ads by Google

www.bigrock.in

Related Topics

• Windows 2003
• Windows Server Install
• 2003 Server

• Windows Server

more »

How to Manage Group Policy Objects in Windows Server 2003

By OnlineSimRacer, eHow Member

User-Submitted Article

In order to create a GPO we must first make sure that our network has AD enabled so that Security Policies can be deployed, leaving us with the configuration of security specifications that we must manually configure when assigning GPO's to a computer.

Our first steps in order to create a GPO, is to create a custom MM Console to manage Security Policy for our new GPO. Follow these steps indicated below to add a new GPO.

Difficulty: Moderate

Instructions

Things You'll Need:

• Computer access, Windows Server 2003 properly installed and configured correctly, network access, Ehow guide for easy to follow instructions, and patience.

1. 1
   Select Start--> Run, type MMC in the run dialog box and choose OK to open the MMC.
2. 2
   From the Main Menu of the MMC, select File--> Add/Remove Snap-In.
3. 3
   In the Add/Remove Snap-In dialog box, choose Add. The Add Standalone Snap-In is displayed.
4. 4
   Highlight the Group Policy Object Editor Snap-In and choose Add. The Group Policy Wizard is displayed.
5. 5
   The Group Policy Object specifies Local Computer by default. Choose Browse to browse for a Group Policy Object.
6. 6
   The Domains/OU tab is the default showing the current domain. Notice that you can choose the default Domain Policy here and that you have a Create New Policy Object button to the right of the drop-down list of domains. In the Domains/OU tab, click the create New Group Policy Object button. Name the GPO Security Policy GPO. Choose Ok and then choose finish to return to the Add Standalone Snap-In window.
7. 7
   Highlight the Event Viewer in the snap-in and choose Add.
8. 8
   The select computer dialog box appears and Local Computer selected by default. Choose the Another Computer radio button and type the name of the domain controller computer from which you are doing this exercise.
9. 9
   Click Finish then click Close.
10. 10
    In the Add/Remove Snap-In dialog box, notice that the new GPO we created is now listed along with the Event Viewer.
11. 11
    Choose Ok to return to the main console window.
12. 12
    Select File--> Save As.. Save the console as Security Policy GPO in all Users\StartMenu\Programs\Administrative Tools folder and choose Save.
13. 13
    Now you can access this console by selecting Startà Administrative Toolsà Security Policy GPO.
    
    Now that we have installed our new GPO we need to set the appropriate permissions so that our users have ideal settings to certain information that may only be available to his or her department. In order to change the user permissions, we can easily set our settings in order to accommodate for our Security Policy that fits along with the GPO we created. In order set the proper settings please follow the sequence as indicated below to achieve this task.
14. 14
    To access the Security Policy settings we have created for our GPO we need to access the Account Security Policies folder. Click Start--> Administrative Tools--> Security Policy GPO and the MMC Snap-In dialog appears.
15. 15
    Expand Security Policy GPO--> Computer Configurationà Windows Settings--> Security Settings--> Account Policies.
16. 16
    Under the Account Policy GPO Object we can control the settings for passwords, lockouts, local and user audits along with security options that can accessed and edited right from the MMC Console we created above.