Applying Group Policies to Devices Through Security Filtering

2/9/2009

The following procedure shows how you can use security filtering to apply a Group Policy object (GPO) to managed Windows Mobile devices in a security group. You can associate the GPO with one or more predefined security groups. Policy settings associated with the GPO apply to managed devices in organizational units that are linked to the GPO only if those managed devices are members of the specified security groups.

Important

If you did not run ADConfig.exe /enableGPSecurity during installation, and if you have removed Authenticated Users from the Security Filtering list for the GPO, you must add the SCMDMDeviceManagementServers security group to the list. This makes sure that instances of Mobile Device Manager Device Management Server will have the necessary permissions to access the GPO.

To apply security filtering to a Group Policy object

  1. Open the Group Policy Management Console.

  2. In the navigation pane, expand Group Policy Objects, and then select the GPO to which you want to apply security filtering.

  3. In the details pane, choose the Scope tab.

  4. Locate the Security Filtering section and then choose Add.

  5. In the Select User, Computer, or Group dialog box, type the name of the security group that you want to add to the security filter. Choose OK.

See Also

Other Resources