LinkBack URL
About LinkBacksHow does everyone do a group policy audit? I feel a spring clean coming on. The current GPOs have been added to over time and generally messed about with so I want a bit more control, so a full audit is in order I reckon, get rid of duplicates etc.
How does everyone do a group policy audit? I feel a spring clean coming on. The current GPOs have been added to over time and generally messed about with so I want a bit more control, so a full audit is in order I reckon, get rid of duplicates etc.
If you open GPMC, navigate to Group Policy Objects, highlight a policy then select the Settings tab. This allows you to view a report of the settings in the GPO.
Sometimes you may find re-creating GPOs from scratch, performing all tests required, then swapping the GPOs and deleting the old ones is just as quick.
caffrey (5th February 2013)
That's what I was thinking, just redo them from scratch, maybe print everything out and see what's being applied then start a set of new ones based on that - I believe there's some utils somewhere for listing gpos not in use.
If you find such a utility that will list unused GPO's I would be very interested, I need to do the same thing as we've got GPO's that have been in place for over 10 years and I am very dubious as to whether or not they are actually doing anything...
The first method is to visually inspect what's linked in each OU. If you try and delete a GPO in use, GPMC will prompt you before deleting.
bunch of scripts here Group Policy Management Console Scripting Samples (Windows)
gpmc - not used them or really looked into it
also powershell
http://technet.microsoft.com/en-us/l.../ee461027.aspx
Last edited by caffrey; 5th February 2013 at 11:06 AM.
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
