ADDS and Group Policy Notes - rosepheobieshea/SYS-255-Tech-Journal GitHub Wiki

ADDS and Group Policy

Users+Groups+Computers == Objects == AD

Key words

*OU* - organizational unit, different from folders, policies may be applied to objects within the OU
*SID* - User IDs used to identify the type of account 
	Default SIDs:
		500 = Admin
		501 = Guest
*GPO* - Group policy object, assigned to OUs that contain users or computers
	GPOs are applied to:
		Computers - settings applied before logon screen
		Users - settinfs applied after logon
	Defaults:
		Default domain policy - applied to every object in the domain
		Default domain controllers policy - effects every domain controller (DC) in the domain

AD Hierachy

1. Domain
2. OU (organizational unit)
3. Sub OU
4. Objects

Policies assigned at one level will apply to everything below that level

Group Policy Utils

`gpedit` - edits group policy on a local machine
`gpresult /r` - displays applied group policy objects
`rsop.msc` -