[gptalk] Re: Display 'Local' Security Policy Settings - I Must Be Asleep

  • From: "Nelson, Jamie" <Jamie.Nelson@xxxxxxx>
  • To: <gptalk@xxxxxxxxxxxxx>
  • Date: Wed, 22 Oct 2008 13:33:18 -0500

Have you tried running "gpedit.msc" from a command line? That should
open straight to the local policy for the system you run the command on.


Jamie Nelson | Operations Consultant | BI&T Infrastructure-Intel | Devon
Energy Corporation | Work: 405.552.8054 | Mobile: 405.200.8088 |
http://www.dvn.com <http://www.dvn.com/> 


From: gptalk-bounce@xxxxxxxxxxxxx [mailto:gptalk-bounce@xxxxxxxxxxxxx]
On Behalf Of Cruz, Jerome L
Sent: Wednesday, October 22, 2008 12:50 PM
To: gptalk@xxxxxxxxxxxxx
Subject: [gptalk] Display 'Local' Security Policy Settings - I Must Be


I need to display a DC's Local Security Policies settings to do some
comparisons between domains.


When a DC is promoted, the  Administrative Tools folder console choice
named 'Local Security Policy' changes to display 'Domain Controller
Security Policy' and 'Domain Security Policy' (Windows Server 2003 - 64
bit DCs). However, these consoles 'only' display the settings for
policies that are GPO based in the domain. Other policy settings (like
all the ones that are 'local settings') are displayed as 'Not Defined'.


The GPMC reports (both Planning and RSoP) for the DC's show similar
results. I see similar results when running RSoP.msc. Where do I look to
see the "Local Settings" for the DC's? I suppose I could use the
Security Configuration and Analysis snap-in, but I can't believe it'd
take that amount of effort.


Am I really asleep this morning? Am I in the forest and can't see the




Confidentiality Warning: This message and any attachments are intended only for 
the use of the intended recipient(s), are confidential, and may be privileged. 
If you are not the intended recipient, you are hereby notified that any review, 
retransmission, conversion to hard copy, copying, circulation or other use of 
all or any portion of this message and any attachments is strictly prohibited. 
If you are not the intended recipient, please notify the sender immediately by 
return e-mail, and delete this message and any attachments from your system. 

Other related posts: