立即与支持人员聊天
与支持团队交流

GPOADmin 5.19 - User Guide

Introducing Quest GPOADmin Configuring GPOADmin Using GPOADmin
Connecting to the Version Control system Navigating the GPOADmin console Search folders Accessing the GPMC extension Configuring user preferences Working with the live environment Working with controlled objects (version control root)
Creating a custom container hierarchy Selecting security, levels of approval, and notification options Viewing the differences between objects Copying/pasting objects Proposing the creation of controlled objects Merging GPOs Restoring an object to a previous version Restoring links to a previous version Managing your links with search and replace Linking GPOs to multiple Scopes of Management Managing compliance issues automatically with remediation rules Validating GPOs Managing GPO revisions with lineage Setting the change window for specific actions Working with registered objects Working with available objects Working with checked out objects Working with objects pending approval and deployment
Checking compliance Editing objects Synchronizing GPOs Exporting and importing
Creating Reports Appendix: Windows PowerShell Commands Appendix: GPOADmin Event Log Appendix: GPOADmin Backup and Recovery Procedures Appendix: Customizing your workflow Appendix: GPOADmin Silent Installation Commands Appendix: Configuring Gmail for Notifications Appendix: Registering GPOADmin for Office 365 Exchange Online Appendix: GPOADmin with SQL Replication About Us

Editing GPOs

Once you have a GPO checked out, you can edit its settings within the Group Policy Editor, create security and WMI filters, and enable/disable computer and user settings.

Because you can only link GPOs to sites, domains, and OUs, setting up security filters helps you to refine the application of GPO settings to a group, user, or computer.

When you check out a GPO, the changes you make are to a copy of the live GPO. The changes that you make do not affect the GPO settings in the enterprise until it is approved and deployed.

2
Click Launch Editor, make the required changes, and close the Group Policy Editor.
4
If required, select the Security tab and click Add, enter or search for the required user, computer, or group, and click OK.
5
Click the Advanced button to select advanced permissions.
7

Removing persistent registry settings

Some GPO settings create registry entries when they are processed. When these settings are removed and the policy is processed, their corresponding registry entries may not be removed from client computers.

GPOADmin notifies you when potentially persistent registry values exist and allows you to remove them.

2
Click the Registry Cleanup button.

Editing Intune objects (Configuration profiles and Compliance policies)

Once you have a Intune objects checked out, you can edit its settings and select the user or device group to receive the profile and policies.

NOTE:  
2
From the Settings tab, click Launch Editor.
4
Select the Assignments tab to include and exclude users and device groups from the selected Intune object.
5
Clicking Add or Remove opens the Azure AD Groups dialog where you can select the required groups. You have the option of locating groups by entering their name in the search bar. Groups that have been previously added display as disabled. For information on assigning groups, refer to Microsoft documentation.
6
Click OK. You now have the option to check in the edited Intune object settings. See Checking in controlled objects for more information.

Editing WMI filters

1
Expand the Version Control Root and the required container. Select the WMI filter you want to edit within the version control container node in which it exists.
4

For information on creating WMI filters, see Creating WMI filters .

相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级