How to Enable GPO Loopback Processing

GPO loopback processing is a mechanism that allows user policy to takes effect only on certain computers. Normally, user policy is linked to the user OU and will be applied regardless of which computer the user is signed in. However in this case, user policy is linked to the computer OU and will not takes […]

Hide Control Panel Items using Group Policy

The previous article already discussed about completely disable control panel access on a managed Windows computer to harden the security of computer settings. However, this restriction could give bad experience to the end users. Sometimes access to control panel is required for troubleshooting basic problems, but users won’t be able to do that without access […]

Map Network Drive Using Item Level Targeting

The previous article has already covered about creating Group Policy to map network drive. As result of default behavior of Group Policy, drive mapping will appear for all users under the OU where the policy is linked. A more strict control is required in such case where each users must receive different drive mappings based […]

Applying WMI Filter to Group Policy

WMI or Windows Management Instrumentation is a set of standards from Microsoft that provides user with information status of a Windows machine. Information obtained from WMI can be used to create a condition where a specific action or setting may apply, including Group Policy object. Applying WMI filter to Group Policy allows controlling the scope […]

How to Change the Default Lock Screen Image using GPO

Windows 10 comes with lock screen image that can be customized in control panel. Just like wallpaper, there is a centralized way to control the lock screen image which is using Group Policy. In a managed domain like corporate environment, they typically would want to show company-branded image or a disclaimer on the computer lock […]

Block USB or Removable Devices using Group Policy

There are reasons why USB or removable device usage typically banned in an organization. The common reason is for sanity, as we know that these devices can be the media of virus and malware to spread. There is also security reason, as sometimes people can put confidential data in these devices, which could easily be […]

How to Enable WinRM via Group Policy

WinRM or Windows Remote Management is a service that allows execution of queries and commands on a Windows computer remotely from another Windows computer in the network. Just like SSH or Remote Terminal on other OS, WinRM is an extremely useful tool for administrator on a managed domain environment. By default WinRM is enabled on […]
Page 1 of 512345