Question

simplify employees' computing environment and prevent problems, you link a group policy object (gpo) to the domain that disables the control panel for users. how can you prevent this group policy object from applying to members of the domain admins group?

Answer 1

To prevent a Group Policy Object (GPO) from applying to members of the domain admins group, you can use the Group Policy Management Console (GPMC) to filter the GPO.

Step-by-step explanation:

To prevent a Group Policy Object (GPO) from applying to members of the domain admins group, you can use the Group Policy Management Console (GPMC) to filter the GPO. Here's how:

1. Open the GPMC and navigate to the GPO in question.
2. Right-click on the GPO and select 'Properties'.
3. In the 'Scope' tab of the GPO properties, click on the 'Add' button under 'Security Filtering'.
4. Specify the domain admins group in the 'Enter the object names to select' field, and click 'Check Names' to validate the entry.
5. Click 'OK' to add the domain admins group to the security filtering.
6. Back in the GPMC, make sure to remove the 'Authenticated Users' group from the security filtering.

This way, the GPO will only apply to users who are not members of the domain admins group, effectively preventing the control panel from being disabled for domain admins.