Environment
Novell ZENworks 10 Configuration Management Policies
Windows Group Policies
Windows Group Policies
Situation
After applying an updated Windows Group Policy to a device, logged-in users are forced to log out even though the After enforcement, force a re-login on the managed
device, if necessary setting is off/unchecked.
Resolution
This is fixed in version 10.3.4 - see KB 7008244 "ZENworks
Configuration Management 10.3.4 - update information and list of fixes"
which can be found at https://www.novell.com/support
This is fixed in version 11.2 - see KB 7010044 "ZENworks Configuration Management 11.2 - update information and list of fixes" which can be found at https://www.novell.com/support
Workaround: Set After enforcement, force a re-login on the managed device, if necessary off/unchecked on any Roaming Profile Policy that is associated with the same user or device.
This is fixed in version 11.2 - see KB 7010044 "ZENworks Configuration Management 11.2 - update information and list of fixes" which can be found at https://www.novell.com/support
Workaround: Set After enforcement, force a re-login on the managed device, if necessary off/unchecked on any Roaming Profile Policy that is associated with the same user or device.
Additional Information
Steps to duplicate:
- Assign a Roaming Profile Policy and set After enforcement, force a re-login on the managed device, if necessary to 45 seconds
- Assign a Group Policy and set After enforcement, force a re-login on the managed device, if necessary off/unchecked
- Ensure both policies are applied to a user and the device is refreshed
- Log out/in as necessary so the device is in a 'clean' state
- Increment the version of the Group Policy only and refresh the device
- What should happen: The Group Policy gets updated/enforced and the user is left logged in
- What actually happens: The Group Policy gets enforced and the user is prompted that they will be logged out in 45 seconds (i.e. per the Roaming Profile policy)