[THIN] Re: SV: Active Directory GPO and Citrix

Also, loopback works well because you can replace user permissions, or
merge them with existing GPOs.  A word of caution though, make sure you
filter the GPO out by security group or everyone on the machine,
including yourself, will get the policy.  We go one step further and
create separate containers for our admin-only servers and normal
application/desktop servers for one more level of separation.

 

-Joel

 

________________________________

From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On
Behalf Of Matthew Shrewsbury
Sent: Wednesday, June 30, 2004 8:03 AM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: SV: Active Directory GPO and Citrix

 

Perfect!! Now why can't Microsoft explain it in that clear of English?
Thank very much for your explanation. 

 

Matthew Shrewsbury

Network Administrator

 

-----Original Message-----
From: Svein Arild Haugum [mailto:svein@xxxxxxxxxxxxxx] 
Sent: Wednesday, June 30, 2004 8:54 AM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] SV: Active Directory GPO and Citrix

 

Use the loopback policy.

 

Using this on the Termialserver computers OU will cause all users
logging on to them, to resolve the User Configuration from this OU.

This way, setting a User setting here, will only apply for a user login
into a Terminal Server.

 

Mvh 
Svein Arild 

 

 -----Opprinnelig melding-----
Fra: Matthew Shrewsbury [mailto:MShrewsbury@xxxxxxxxxxxxxxx]
Sendt: 30. juni 2004 14:48
Til: thin@xxxxxxxxxxxxx
Emne: [THIN] Active Directory GPO and Citrix

I am getting ready to deploy a new Citrix farm and want to have a locked
down Citrix environment using AD GPOs. However I also have a large
number of fat Win2k and XP clients. How do I setup the GPOs so that they
only apply when a user logs into Citrix. Do I use the "Loopback" GPO
object and if so can someone give me a little info on how the loopback
works?

 

Thanks for any advice / suggestions.

 

Matthew Shrewsbury

Network Administrator

Other related posts: