How To Exclude Individual Users Or Computers From A Group Policy Object

How To Exclude Individual Users Or Computers From A Group Policy Object

In our Active Directory infrastructure some time we may need to exclude particular User/Computer or any security group from a group policy.

This is the common question among Administrators and I have seen the same questions in many of the forums.

So in this topic will see about the Step-By-Step Guide to Exclude (Deny) Group Policy Object (GPO) for Certain User/Computer or Security Group.

Also Read:

1. Log in to a server with administrator privileges.

2. Open the Group policy mmc with server manager > tools > group policy management

 

How To Exclude Individual Users Or Computers From A Group Policy Object

 

3.  Then expand the tree and Select the group policy in which you would like to exclude users or group.

How To Exclude Individual Users Or Computers From A Group Policy Object

In this demo i am going to use the GP called Test1

 

4. Click on the selected GPO and on the right hand panel it will list the settings. Click on delegation tab.

 

How To Exclude Individual Users Or Computers From A Group Policy Object

5. Then click on the Advanced button

How To Exclude Individual Users Or Computers From A Group Policy Object

 

6. In this window, click on add to add the user or the group that you like to exclude

How To Exclude Individual Users Or Computers From A Group Policy Object

 

How To Exclude Individual Users Or Computers From A Group Policy Object

 

7.  Then in the permission list, you can see by default it has Read permission.

Leave it same and scroll down the list to select permission called Apply group policy. Then click on deny permission.

 

How-To-Exclude-Individual-Users-Or-Computers-From-A-Group-Policy-Object

8. Then click on OK to apply the changes. In warning message click on Yes. Now we successfully exclude Bala from the Test1 GPO.

How To Exclude Individual Users Or Computers From A Group Policy Object

How To Exclude Individual Users Or Computers From A Group Policy Object

Hope this Tutorials helps you guys.. Don’t Forget to Like..!! Share..!! and Comment ..!!

Related Article:

 

Check Also

Complete GPUpdate Commands

Learn The Difference Between Gpupdate and Gpupdate [Force, Sync, Logoff, Boot, Target, Wait ]: Complete GPUpdate Commands

Group Policy plays a very important role in the Active Directory Infrastructure and as a …

Leave a Reply

Your email address will not be published. Required fields are marked *