What is the purpose of Security Filters and how are they used? (NETIQKB846)

  • 7700846
  • 02-Feb-2007
  • 16-Aug-2007

Resolution

goal
What is the purpose of Security Filters and how are they used?

fact
NetIQ Group Policy Administrator 2.0

fact
NetIQ Group Policy Administrator 3.0

fact
NetIQ Group Policy Administrator 4.x

fact
NetIQ Group Policy Administrator 5.0

fix
Security Filters perform the following two functions:

  • Filter the scope of a GPO
  • Delegate administration of a Group Policy

To filter the scope of a GPO, please perform the following steps:

  1. Select a GPO in the GP Repository.
  2. Right-click the GPO and select Properties.
  3. Select the Security tab. There are six access permissions that can be configured:
    • Full Control
    • Read
    • Write
    • Create All Child Objects
    • Delete All Child Objects
    • Apply

Allow explicitly permits the user or group to perform the function.

Deny explicitly prevents users or groups from performing said function.

NOTE: No permission (neither Allow nor Deny are checked) is an implicit Allow or Deny.

To delegate the administration of a GPO perform the following steps:

  1. Select a GPO node, right-click on it and select Adjust Filters.
  2. Then choose from the list of users/computers and groups from any OU or container in the domain. There will be three filters that you can modify:
    • View GPO settings
    • Receive GPO settings
    • Edit GPO settings


Additional Information

Formerly known as NETIQKB846