Since it is a domain controller or in the domain controller
container then
the Domain Controller Security Policy is the effective setting
for anything
defined there and you will not be able to edit the Local Group
Policy for
those settings. The "Filtering: Not Applied (Empty)" usually
means that
there are no settings defined in Local Group Policy which I
usually see only
for "user configuration" as "computer configuration" contains
Local Security
Policy which always has settings defined in a default
installation. ---
Steve
>> If the settings are grayed out then most likely a
higher level Group
>> Policy is applying those settings. For domain
controllers what you
>> mention is configured in Domain Controller Security
Policy. You can use
>> gpresult to see what Group Policies/computer
configuration are applying
>> to a computer and for Windows 2003 you can use the
mmc snapin for
>> Resultant Set of Policy as described in the link
below. --- Steve
>>
>>
http://www.windowsnetworking.com/articles_tutorials/Resultant-Set-Policy-Planning-Logging.html
>>
>> "Jack" <
[email protected]> wrote in message
>>
>>>I can't change any settings under the Computer
Configuration/Windows
>>>Settings/Security Settings
>>> in the gpo editor, they appear to be read
only, as they are greyed out.
>>> I'm trying to change the Audit policies.
>>> I'm logged in as Administrator on windows 2003
server.
>>>
>>> any help would be appreciated, thanks jack
>>>
>>>
>>
>>
