You are correct, somehow the Authenticated Users was added to the Delegation tab, unless it was inherited, but I doubt that. Does it say No under the inherited column?
Not sure what you mean by this: "And does this mean that the groups defined in the Security Filtering section will effectively be overridden? " Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.com The Guardian Life Insurance Company of America www.guardianlife.com From: James Rankin <kz2...@googlemail.com> To: "NT System Admin Issues" <ntsysadmin@lyris.sunbelt-software.com> Date: 11/14/2012 07:11 AM Subject: GPO issue I have noticed that some GPOs in use here are Security Filtered to certain AD groups, and Authenticated Users has been removed from the default Security Filter. This is all very normal and good. However, switching to the Delegation tab of the GPO, I see Authenticated Users listed with Read permission - but not with the "(from Security Filtering)" suffix. This means that someone has specifically added Authenticated Users to the Delegation tab, I think? And does this mean that the groups defined in the Security Filtering section will effectively be overridden? I just want to check I am correct before I go complaining :-) I created a test GPO and it seems to indicate that I am correct, but I like to double-check first Cheers, -- James Rankin Technical Consultant (ACA, CCA, MCTS) http://appsensebigot.blogspot.co.uk ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ----------------------------------------- This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
<<image/jpeg>>
