This is a test
- English
- ePUB (mobile friendly)
- Available on iOS & Android
eBook - ePub
Book details
Book preview
Table of contents
Citations
About This Book
Get up to speed on the latest Group Policy tools, features, and best practices
Group Policy, Fundamentals, Security, and the Managed Desktop, 3rd Edition help s you streamline Windows and Windows Server management using the latest Group Policy tools and techniques. This updated edition covers Windows 10 and Windows Server vNext, bringing you up to speed on all the newest settings, features, and best practices. Microsoft Group Policy MVP Jeremy Moskowitz teaches you the major categories of Group Policy, essential troubleshooting techniques, and how to manage your Windows desktops.
This is your complete guide to the latest Group Policy features and functions for all modern Windows clients and servers, helping you manage more efficiently and effectively.
- Perform true desktop and server management with the Group Policy Preferences, ADMX files, and additional add-ons
- Use every feature of the GPMC and become a top-notch administrator
- Troubleshoot Group Policy using tools, enhanced logs, Resource Kit utilities, and third-party tools
- Manage printers, drive maps, restrict hardware, and configure Internet Explorer
- Deploy software to your desktops, set up roaming profiles, and configure Offline Files for all your Windows clientsâand manage it all with Group Policy settings
- Secure your desktops and servers with AppLocker, Windows Firewall with Advanced Security, and the Security Configuration Manager
This is your comprehensive resource to staying current, with expert tips, techniques, and insight.
Frequently asked questions
At the moment all of our mobile-responsive ePub books are available to download via the app. Most of our PDFs are also available to download and we're working on making the final remaining ones downloadable now. Learn more here.
Both plans give you full access to the library and all of Perlegoâs features. The only differences are the price and subscription period: With the annual plan youâll save around 30% compared to 12 months on the monthly plan.
We are an online textbook subscription service, where you can get access to an entire online library for less than the price of a single book per month. With over 1 million books across 1000+ topics, weâve got you covered! Learn more here.
Look out for the read-aloud symbol on your next book to see if you can listen to it. The read-aloud tool reads text aloud for you, highlighting the text as it is being read. You can pause it, speed it up and slow it down. Learn more here.
Yes, you can access Group Policy by Jeremy Moskowitz in PDF and/or ePUB format, as well as other popular books in Computer Science & Computer Networking. We have over one million books available in our catalogue for you to explore.
Information
Chapter 1
Group Policy Essentials
In this chapter, youâll get your feet wet with the concept that is Group Policy. Youâll start to understand conceptually what Group Policy is and how itâs created, applied, and modified, and youâll go through some practical examples to get at the basics.
The best news is that the essentials of Group Policy are the same in all versions of Windows 2000 on. So as I stated in the introduction, if youâve got Windows XP, Windows 7, Windows 8, Windows 10âwhateverâyouâre golden.
Learn the basics here, and youâre set up on a great path.
Thatâs because Group Policy isnât a server-driven technology. As youâll learn in depth a little later, the magic of Group Policy happens (mostly) on the client (target) machine. And when we say âclient,â we mean anything that can âreceiveâ Group Policy directives: Windows 8, Windows XP, or even the server operating systems such as Windows Server 2016 or Windows Server 2008 R2; theyâre all âclientsâ too.
So, if your Active Directory Domain Controllers are a mixture of Windows Server 2008, Windows Server 2012, and/or Windows Server 2016, nothing much changes. And it doesnât matter if your domain is in Mixed, Native, or another modeâthe Group Policy engine works exactly the same in all of them.
There are occasional odds and ends you get with upgraded domain types. When the domain mode is Windows 2003 or later schema, youâll get something neat called WMI filters (described in Chapter 4, âAdvanced Group Policy Processingâ). Also note that in a Windows 2008 Functional mode domain level or later, the replication of the file-based part of a Group Policy Object (GPO) can be enhanced to use distributed file system (DFS) replication instead of system volume (SYSVOL) replication.
Regardless of what your server architecture is, I encourage you to work through the examples in this chapter.
So, letâs get started and talk about the essentials.
Getting Ready to Use This Book
This book is full of examples. And to help you work through them, Iâm going to suggest a sample test lab for you to create. Itâs pretty simple really, but in its simplicity weâll be able to work through dozens of real-world examples to see how things work.
Here are the computers you need to set up and what I suggest you name them (if you want to work through the examples with me in the book):
- DC01.corp.com This is your Active Directory Domain Controller. It can be any type of Domain Controller (DC). For this book, Iâll assume youâve loaded Windows Server 2016 and later on this computer and that youâll create a test domain called Corp.com.
- In real life you would have multiple Domain Controllers in the domain. But here in the test lab, itâll be okay if you just have one.
- Iâll refer to this machine as DC01 in the book. Weâll also use DC01 as a file server and software distribution server and for a lot of other roles we really shouldnât. Thatâs so you can work through lots of examples without bringing up lots of servers. Bringing up a modern DC requires the use of Server Manager. Check out the sidebar âBringing Up a Windows Server as a Domain Controllerâ if you need a little guidance.
- Win10.corp.com This is some userâs Windows 10 machine and itâs joined to the domain Corp.com. Iâll refer to this machine as WIN10 in the book. Sometimes itâll be a Sales computer, other times a Marketing computer, and other times a Nursing computer. To use this machine as such, just move the computer account around in Active Directory when the time comes. Youâll see what I mean.
- Win10management.corp.com This machine belongs to youâthe IT pro who runs the show. You could manage Active Directory from anywhere on your network, but youâre going to do it from here. This is the machine youâll use to run the tools you need to manage both Active Directory and Group Policy. Iâll refer to this machine as WIN10MANAGEMENT. As the name implies, youâll run Windows 10 from this machine. Note that you arenât âforcedâ or ârequiredâ to use a Windows 10 machine as your management machineâbut youâll be able to âmanage it allâ if you do.
You can see a suggested test lab setup in Figure 1-1.
Note that from time to time I might refer to some machine that isnât here in the suggested test lab, just to illustrate a point. However, this is the minimum configuration youâll need to get the most out the book.
To save space in the book, weâre going to assume youâre using a Windows 10 machine as your management machine. You can also use a Windows 8 or 7 management machine as well and be able to work through pretty much everything in the book, barring a few new things that got born in Windows 8.1 and are still present on a Windows 10 management machine. If youâre forced by some draconian corporate edict to use a Windows Vista or Windows XP (or earlier) machine as a management machine, youâll have to refer to previous editions of the book to get the skinny about using them.
Figure 1-1: Hereâs the configuration youâll need for the test lab in this book. Note that the Domain Controller can be 2000 or above, but Windows Server 2016 is preferred to allow you to work through all the examples in this book.
For working through this book, you can build your test lab with real machines or with virtual hardware. Personally, I use VMware Workstation (a pay tool) for my testing. However, Microsoftâs Hyper-V is a perfectly decent choice as well. Indeed, Hyper-V is now available built into Windows 8 and later. So, you could bring up a whole test lab to learn Windows 10âon your Windows 10 box! What a mindblower! Hereâs an (older) overview of Windows 8âs Hyper-V if you care to use it: http://tinyurl.com/3r99nr9. Note there are also other alternatives, such as Parallels Desktop and VMware Fusion ...
Table of contents
- Cover
- Titlepage
- Copyright
- Credits
- Dedication
- Acknowledgments
- About the Author
- About The Contributors
- Introduction
- Chapter 1: Group Policy Essentials
- Chapter 2: Managing Group Policy with the GPMC and via PowerShell
- Chapter 3: Group Policy Processing Behavior Essentials
- Chapter 4: Advanced Group Policy Processing
- Chapter 5: Group Policy Preferences
- Chapter 6: Managing Applications and Settings Using Group Policy
- Chapter 7: Troubleshooting Group Policy
- Chapter 8: Implementing Security with Group Policy
- Chapter 9: Profiles: Local, Roaming, and Mandatory
- Chapter 10: The Managed Desktop, Part 1: Redirected Folders, Offline Files, and the Synchronization Manager
- Chapter 11: The Managed Desktop, Part 2:Software Deployment via Group Policy
- Chapter 12: Finishing Touches with Group Policy: Scripts, Internet Explorer, Hardware Control, Printer Deployment, Local Admin Password Control
- Appendix A: Scripting Group Policy Operations with Windows PowerShell
- Appendix B: Group Policy and VDI
- Appendix C: Advanced Group Policy Management
- Appendix D: Security Compliance Manager
- Appendix E: Microsoft Intune and PolicyPak Cloud
- End-User License Agreement