Linking A Gpo

By Author: Mike Jones
Total Articles: 256
Comment this article

By default, a new GPO is linked to the site, domain, or OU that was selected in the MCITP Certification when it was created, as described earlier in this lesson in the procedure "Creating a GPO." Therefore its settings apply to that site, domain, or OU. However, if you want to link a GPO to additional sites, domains, or OUs, you must use the Group Policy tab in the Properties dialog box for the site, domain, or OU.
To link a GPO to a site, domain, or OU, complete the following steps:
1.Open the Active Directory Users And Computers console to link a GPO to a domain or OU, or open the Active Directory Sites And Services console to link a
GPO to a site.
2.In the console, right-click the site, domain, or OU to which the GPO should be linked. Click Properties, and then click the Group Policy tab.
3.In the Properties dialog box for the object, in the Group Policy tab, click Add.
4.In the Add A Group Policy Object Link dialog box, shown in 70-680 Exam, click,the All tab, click the desired GPO, and then click OK.
...
... To remove a GPO link, complete the following steps:
1.Open the Active Directory Users And Computers console to unlink a GPO from a domain or OU, or open the Active Directory Sites And Services console to unlink
a GPO from a site.
2.In the console, right-click the site, domain, or OU from which the GPO should be unlinked. Click Properties, and then click the Group Policy tab.
3.In the Properties dialog box for the object, in the Group Policy tab, select the GPO that you want to unlink, and then click Delete.
In the Delete dialog box, shown in Figure 10-20, click Remove The Link From The List. The GPO remains in Active Directory but is no longer linked.
Sharon realizes that three users in the Claims OU should not lie receiving the Required_Set GPO, but she wants everyone else in the entire company, including other users in the Claims OU, to receive that policy. What are her options?
The most likely solution is for Sharon to create a group for those who shouldn't receive the policy. She can then add specific users to that group and configure the group so that Apply Group Policy is denied. Her other options include moving the user accounts to another container that doesn't receive the GPO or configuring each user account so that each is denied the ability to apply that GPO.
The correct answer is f. You use the No Override exception to ensure that none of a GPO's settings free it certification can be overridden by any other GPO during the processing of group policies. No Override can only be applied directly to a GPO link.