Group Policy Patch MS16-072– “Breaks” GP Processing Behavior
One of Microsoft’s latest patches changes the security context of GPO processing for the user policies. This is a new ‘feature’ not a bug, its a new way of securing GPO processing.
You can read Microsoft’s KB on it from KB316622
sdmsoftware has a powershell script to automate the security change for you.
It would be nice if Microsoft gave more of a warning on this change. Instead the patch is released and it can cause GPO’s not to apply as expected because the new requirements for security.
Not what I wanted to be working on today. We will be patching this weekend.
More Stories
How to configuration SMB3 and encryption
We have not enforced SMB3 and encryption, but have now started a SOX review and need data copied between servers...
Windows and SQL editions comparison
Capturing data on the limits of both windows server and SQL based on the edition for quick reference. Comparison of...
Enable passwordless security key sign-in to on-premises resources by using Azure AD
As we transition to Azure AD computers and leave domain joined PCs behind. Most of our data and applications are...
windows update for business and intune
We are having issues with machines not patching even with the Intune policies set. I'm documenting different post I've found...
Enabled the Lock Screen for inactive users
Quick link from Twitter, don’t want to lose the link https://twitter.com/anoopmannur/status/1497256566206181376?s=21 https://www.anoopcnair.com/set-automatic-lock-screen-for-inactive-device-intune/