The following procedure shows how you can use security filtering to apply a Group Policy object (GPO) to managed Windows Mobile devices in a security group. You can associate the GPO with one or more predefined security groups. Policy settings associated with the GPO apply to managed devices in organizational units that are linked to the GPO only if those managed devices are members of the specified security groups.
Important: |
---|
If you did not run
ADConfig.exe /
enableGPSecurity during installation, and if you have
removed
Authenticated Usersfrom the Security Filtering list for the
GPO, you must add the SCMDM2008DeviceManagementServers security
group to the list. This makes sure that instances of Mobile Device
Manager Device Management Server will have the necessary
permissions to access the GPO. |
To apply security filtering to a Group Policy object
-
Open the Group Policy Management Console.
-
In the navigation pane, expand Group Policy Objects, and then select the GPO to which you want to apply security filtering.
-
In the details pane, choose the Scopetab.
-
Locate the Security Filteringsection and then choose Add.
-
In the Select User, Computer, or Groupdialog box, type the name of the security group that you want to add to the security filter. Choose OK.