accomodating policy - Gpupdate vpn not updating

03-Sep-2019

As the local restriction policy defaults to Disallowed, this has the very undesirable effect of locking the user out of every application they are not currently running (Word, Excel etc), and if they reboot, is also prevented from running which then means they get logged off straight away.

These spreadsheets list the policy settings for computer and user configurations

If you are like me you probably had a bash script with Ps Exec from Sysinternals, a Power Shell script that created a process with WMI or use Invoke-Command with Power Shell remoting.

As you can see there are many ways to achieve this but the simplest I have found using command line using Invoke-GPUpdate.

To configure the Windows Firewall we start first by creating all the Starter GPOs from the Group Policy Management console expanding the domain, selecting Starters GPOs and clicking on Create Starter GPOs Folder.

