The following procedure shows how you can use security filtering to apply a Group Policy object to selected managed Windows Mobile devices. You can associate the GPO with one or more predefined security groups. Policy settings associated with the GPO apply to managed devices in organization units that are linked to the GPO only if those managed devices are members of the specified security groups.

If you did not run ADConfig /GPSecurityduring installation, and if you have removed Authenticated Usersfrom the Security Filtering list for the GPO, you must add the SCMDM2008DeviceManagementServers security group to the list. This makes sure that instances of Mobile Device Manager (MDM) Device Management Server will have the necessary permissions to access the GPO.

To apply security filtering to a Group Policy object

  1. Open the Group Policy Management Console.

  2. In the navigation pane, expand Group Policy Objects, and then select the GPO to which you want to apply security filtering.

  3. In the details pane, choose the Scopetab.

  4. Locate the Security Filteringsection and then choose Add.

  5. In the Select User, Computer, or Groupdialog box, type the name of the security group that you want to add to the security filter. Choose OK.

See Also

Other Resources