GPOs? Screw it, We’ll do it Live… (Part IV)

We’ve thus far installed and configured AGPM, created our first policy, and at the same time walked ourselves through the approval flow built into AGPM. What happens when we have existing policies though? I’m assuming that if you’re reading this you’re not building GPOs from the ground up (if you are, kudos for implementing good practices up front). This post will cover a few different things:

  1. Importing existing GPOs for management (and discovering a flaw in our existing setup)
  2. Rolling back to a previous version of a policy
  3. Re-syncing policies when they get out of sync

Alright Mr. GPO Manager, let’s get to it!

(more…)

Read More

GPOs? Screw it, We’ll do it Live… (Part III)

In the second part of this series, we walked through the initial considerations, installation, and configuration of the AGPM Server and the AGPM Client (which if I didn’t make it clear before – the client is ONLY required on the machines that will be managing controlled group policies) – in this post we’ll actually put all of that work to “good” use and create some policies. We’re going to do this two separate ways:

the hard way (following the full approval process)

and the easy way (when you’re the judge, jury, and executioner of your GPOs)

(more…)

Read More

GPOs? Screw it, We’ll do it Live… (Part II)

After taking over a year long hiatus on this series (can I even call it a series if there was only one post?), I got a gentle reminder that I should finish what I started (thanks for the reminder @markraldridge). So when we last talked about this we had a brief top-level overview of how AGPM functions and a promise that the next post would cover installation of AGPM and creating/deploying your first controlled policy. First off – I attempted to make all of that into one post but it got excessively long, so this post will focus on installation and configuration of the AGPM components and the next post will talk about creating/deploying your first controlled policy (I promise it won’t be a year between this post and the next one). With that said I guess it’s time for me to take some advice from Shia…

Image result for just do it

(more…)

Read More