If your luck to work for such a company you will never forget the feeling when you first walk into one of these massive server rooms for the first time. Thanks for sharing you experience. I am sure the people who are just starting out appreciate it who have not looked after such big networks.
Indeed. Most places you will never 'touch' as many technologies as working for an entire Health Region. (2 data centers, 3 primary sites and 25 or so long term care facilities/clinics and rural hospitals, 5000~ computers and a Hyper V cluster) As hard as it it, you are very accurate in saying its a rare experience. Most large private companies will have you only administrate one small piece :)
Great video with clear and easy explanation. Every time it comes to Loopback processing I had to refresh my memory on Replace and Merge modes. THANK YOU!
The course is not quite finished as yet, are working on certificates at the moment and that will be released next. Good to hear that you like the videos.
Again, I have to extend my thanks to you for relieving me of my frustration and confusion with this, admittedly, perplexing concept. You are doing a terrific job at presenting difficult concepts in an understandable format. Keep up the good work!
The GPOs applied to the computer will replace any GPOs currently in place. With Replace, the GPOs are not gathered into a list so it merely sets the GPO depending on the location specified for the computer.
i know im randomly asking but does someone know a trick to get back into an Instagram account? I was dumb forgot the password. I would love any tips you can offer me
@Jamal Conor i really appreciate your reply. I found the site thru google and Im trying it out now. Seems to take a while so I will get back to you later when my account password hopefully is recovered.
Hi, I would like to thank you for such a great explanation on GP loop back processing. This is the first time I really got it. Thank you very much for such hardworking.
a standing ovation i just subscribed .. I like the way you do your teaching.. Better than cbt nuggets .. :) very appreciated.. you help me solve a issue at work ... :D
there are too much video on this topic about 30 minutes but i'm not able to understand Thank to you finally i understand that hard topic in just 10 minutes cheers!!!!!!
I did chuckle a few times when you stated that no enterprise admin will know the entire AD environment. I was stuck managing NTFS,share and service account for 400 servers, 11 000 users with many attached exch accounts, distribution lists (some security enabled), and ~ 1500 permission groups/roles Somehow was supposed to have time for audits and maintenance too :p On sabbatical for 10 months doing my Sec+ and MCITP Server/Enterprise Admin. Hoping to come back to 3-4 roles hired lol
Could not say why Microsoft did this. The only reason that I can think of is that they did not want conflicting settings between the computer side and computer side. However, with Group Policy Preferences a lot of the settings are double up so in theory it should be possible.
This is an interesting question. I am not sure why Microsoft did it this way. I can assume that they did it this way because they did not want there to be conflicts with user and computer settings.
first time i went to a MSCA training course i realised that i know this mess (GPO and AD structures) it looks like the Windows registry - a total mess of labyrinth like paths. My guess is they just added and added because they where to lazy or unable to sort things in a better way due dependencies (which grow even more over time and thus the messy look also)
Helps to enforce restrictions on computers instead of users sometimes. A computer kiosk at my hospital, for example. You can set strict policies that affect any user on that PC. Non security-related, you could use it to customize desktop/OS for all Payroll computers, regardless of the user, as long as you had the child computer OUs setup. (or lack of enforcement for IT computers) Since you may be using test accounts on an IT computer, where user specific policies would be applied.
Thanks for this video. I have to fix 2 GPO's at my work that are not working. THey are user settings applied through loopback, but they are not working. I didnt know much about loopback group policy. So I have to learn and understand it first to fix it. Hopefully I can now ;)
@@itfreetraining thanks. Would you have any suggestions on what to check for 2 GPO's where lookback processing is applied but is not working? None of the user policies are working and when I issue a gpupdate I get this error: Computer Policy update has completed successfully. User Policy could not be updated successfully. The following errors were encountered:
The processing of Group Policy failed. Windows attempted to read the file \\company.comPolicies\{123456-ABCD-83474-JDFHF-KFHFYEBD78326}\gpt.ini from a domain controller and was not successful. Group Policy settings may not be applied until this event is resolved. This issue may be transient and could be caused by one or more of the following: a) Name Resolution/Network Connectivity to the current domain controller. b) File Replication Service Latency (a file created on another domain controller has not replicated to the current domain controller). c) The Distributed File System (DFS) client has been disabled.
To diagnose the failure, review the event log or run GPRESULT /H GPReport.html from the command line to access information about Group Policy results.
@@PatrickGuerrisi I would check the replication of the domain. Use a tool like replmon. You can download it from here www.microsoft.com/en-au/download/details.aspx?id=30005 Have a look through the event viewer on the computer make sure everything is o.k. Sometimes the computer may need a few restarts before Group Policy will apply correctly. If there are any strange errors in there, have a look they may be causing them. Name resolution problems are generally caused by either DNS or replication problems. So check that you DNS is replicating correctly either through active directory or through DNS replication.
Granted, if you have Role-based permissions setup in your enterprise, and properly use Builtin groups, security filtering can do most of your needs (and of course then you are mostly managing AD directly, instead of the potential of micro-managenemt headaches)
I'm watching through the playlist and is really enjoying the quality of the teaching. However this was the first video where I didn't understand it first time, but had to watch it over and over. It seems the illustration was not so logical to me. I went wrong cause I though you had to view it horisontal. It now makes sense when I see the order procesed vertical. Just some feedback - thanks again for the great work!
Thanks a lot for making this easy to understand, Great job as ever. I've looked through the 70-640 list of videos but there doesn't seem to be any on Certificates, have i missed it or Certificates isn't going to be covered? thanks.
If your luck to work for such a company you will never forget the feeling when you first walk into one of these massive server rooms for the first time. Thanks for sharing you experience. I am sure the people who are just starting out appreciate it who have not looked after such big networks.
After 7 years still usefull. Congratulations!! it is the best and clearest explanation that I have seen and thanks for your videos.
Glad it was helpful!
This video is still paying dividens. Thank you so much!
Glad it was helpful!
Thanks for your comments on this video. They are excellent and very accurate. I am sure those that read them will benefit.
Indeed. Most places you will never 'touch' as many technologies as working for an entire Health Region. (2 data centers, 3 primary sites and 25 or so long term care facilities/clinics and rural hospitals, 5000~ computers and a Hyper V cluster)
As hard as it it, you are very accurate in saying its a rare experience. Most large private companies will have you only administrate one small piece :)
Years after finished my exams, ran into this...very good explanation! Thanks
We're glad you enjoyed it! You're welcome and thanks for watching.
Great video with clear and easy explanation. Every time it comes to Loopback processing I had to refresh my memory on Replace and Merge modes. THANK YOU!
The course is not quite finished as yet, are working on certificates at the moment and that will be released next. Good to hear that you like the videos.
Ive been to a few sites to understand loopback policy, but this video finally sank in!! Excellent post.
Thanks so much! We're so glad you enjoyed it.
Again, I have to extend my thanks to you for relieving me of my frustration and confusion with this, admittedly, perplexing concept. You are doing a terrific job at presenting difficult concepts in an understandable format. Keep up the good work!
+gpehlev You're very welcome. We're glad you found our videos so useful.
The GPOs applied to the computer will replace any GPOs currently in place. With Replace, the GPOs are not gathered into a list so it merely sets the GPO depending on the location specified for the computer.
i know im randomly asking but does someone know a trick to get back into an Instagram account?
I was dumb forgot the password. I would love any tips you can offer me
@Angelo Fernando Instablaster :)
@Jamal Conor i really appreciate your reply. I found the site thru google and Im trying it out now.
Seems to take a while so I will get back to you later when my account password hopefully is recovered.
So glad I discovered this video and channel. Got my 70-685 exam coming up, and these videos are extremely helpful.
We're glad to hear that our videos were useful! Feel free to ask any questions!
Hi, I would like to thank you for such a great explanation on GP loop back processing. This is the first time I really got it. Thank you very much for such hardworking.
a standing ovation i just subscribed .. I like the way you do your teaching.. Better than cbt nuggets .. :) very appreciated.. you help me solve a issue at work ... :D
Thanks very much. Thanks for the sub and glad to hear the video was useful at your work.
This is just great. This topic was very hard to comprehend, but now i fully understand how it works. All in just 11 minutes. Thank you very much :)
Thanks for you feedback. We will redo the video for Server 2012. I believe adding some additional animations will make it easier to understand.
there are too much video on this topic about 30 minutes but i'm not able to understand
Thank to you finally i understand that hard topic in just 10 minutes cheers!!!!!!
Thanks very much. Glad we could help.
Excellent explanation, easily understood in one go.
Thanks, glad we could help.
I did chuckle a few times when you stated that no enterprise admin will know the entire AD environment. I was stuck managing NTFS,share and service account for 400 servers, 11 000 users with many attached exch accounts, distribution lists (some security enabled), and ~ 1500 permission groups/roles
Somehow was supposed to have time for audits and maintenance too :p
On sabbatical for 10 months doing my Sec+ and MCITP Server/Enterprise Admin.
Hoping to come back to 3-4 roles hired lol
Could not say why Microsoft did this. The only reason that I can think of is that they did not want conflicting settings between the computer side and computer side. However, with Group Policy Preferences a lot of the settings are double up so in theory it should be possible.
thanks it free training i was confused a lot in this concept glad you were the only one who solved this issue. thanks once again
You're most welcome!
Nice job on this video. A very common need in larger envs and you did a great job with the details. Cheers
You really made it easy to understand, thank you Sir! Appreciate very much what you do.
You have the best videos for networking!!!!!!!!!! But plzzzz increase the volume as your voice is not much audible. Otherwise great videos.
Thanks very much!
Could not have said it better myself. :)
Thank you very much for these videos it helped me a lot to understand the topics. you really doing a great job.
This is an interesting question. I am not sure why Microsoft did it this way. I can assume that they did it this way because they did not want there to be conflicts with user and computer settings.
first time i went to a MSCA training course i realised that i know this mess (GPO and AD structures) it looks like the Windows registry - a total mess of labyrinth like paths. My guess is they just added and added because they where to lazy or unable to sort things in a better way due dependencies (which grow even more over time and thus the messy look also)
Which part do not understand? Perhaps we can help.
No problem. Hope I explained it well. I have a habit of jumping around a bit when writing :)
Thanks very much. Glad we could help.
Good refresher on Loopback Processing.
+Paul Melgoza Thanks, we're glad you found our video helpful
thank you, that is exactly what i needed to help understand loopback processing!
You're most welcome! We're happy our videos were able to help you better understand. :)
Helps to enforce restrictions on computers instead of users sometimes.
A computer kiosk at my hospital, for example. You can set strict policies that affect any user on that PC.
Non security-related, you could use it to customize desktop/OS for all Payroll computers, regardless of the user, as long as you had the child computer OUs setup.
(or lack of enforcement for IT computers) Since you may be using test accounts on an IT computer, where user specific policies would be applied.
Thank You very Much for the great explanation. Awesome Video!!!
+Kevin Purnomo You're most welcome! Thanks for the great comment!
Pretty good explanation of this very hard topic
Thanks very much.
Amazing. The way you explain is amazing. I am subscribed to your channel...
Thank you very much!
Thanks very much.
Hi Thanks for the great share . are you guys not making videos for 2016 and 2019 server / AD infrastructure
Thanks for this video. I have to fix 2 GPO's at my work that are not working. THey are user settings applied through loopback, but they are not working. I didnt know much about loopback group policy. So I have to learn and understand it first to fix it. Hopefully I can now ;)
Best of luck. Hopefully this helps. You can always use RSOP to test your results.
@@itfreetraining thanks. Would you have any suggestions on what to check for 2 GPO's where lookback processing is applied but is not working? None of the user policies are working and when I issue a gpupdate I get this error: Computer Policy update has completed successfully.
User Policy could not be updated successfully. The following errors were encountered:
The processing of Group Policy failed. Windows attempted to read the file \\company.comPolicies\{123456-ABCD-83474-JDFHF-KFHFYEBD78326}\gpt.ini from a domain controller and was not successful. Group Policy settings may not be applied until this event is resolved. This issue may be transient and could be caused by one or more of the following:
a) Name Resolution/Network Connectivity to the current domain controller.
b) File Replication Service Latency (a file created on another domain controller has not replicated to the current domain controller).
c) The Distributed File System (DFS) client has been disabled.
To diagnose the failure, review the event log or run GPRESULT /H GPReport.html from the command line to access information about Group Policy results.
@@PatrickGuerrisi I would check the replication of the domain. Use a tool like replmon. You can download it from here www.microsoft.com/en-au/download/details.aspx?id=30005
Have a look through the event viewer on the computer make sure everything is o.k. Sometimes the computer may need a few restarts before Group Policy will apply correctly. If there are any strange errors in there, have a look they may be causing them.
Name resolution problems are generally caused by either DNS or replication problems. So check that you DNS is replicating correctly either through active directory or through DNS replication.
Granted, if you have Role-based permissions setup in your enterprise, and properly use Builtin groups, security filtering can do most of your needs (and of course then you are mostly managing AD directly, instead of the potential of micro-managenemt headaches)
thank you thank you thank you! I finally understand group policy loopback processing!!! :)
We're very happy our videos were able to help you! Thanks for watching ITFreeTraining.
I'm watching through the playlist and is really enjoying the quality of the teaching. However this was the first video where I didn't understand it first time, but had to watch it over and over. It seems the illustration was not so logical to me. I went wrong cause I though you had to view it horisontal. It now makes sense when I see the order procesed vertical. Just some feedback - thanks again for the great work!
This is an awesome video! It helped me so much! Thank you!
PP Duval You're welcome. Glad it helped
I love that the video is 11:11 minutes/seconds long
Thank you.
Awesome. Thank you so much.
Thanks!!! I FINALLY got it!
I enjoyed this video, thanks!
You're most welcome!
Thank you. Good explanation.
Thanks very much.
Top video, explains this very well and very clearly, excellent :)
Very well done!
Thanks very much.
Thank you, this helped me alot!!!
You're welcome. Glad this helped
Thank you so much Sir ! Can you please make a video on server 2016 and 2019 pleade thank you so much !
very good video.
Great video!
thank you!
good stuff
Thanks
Thanks for watching.
What is merge mode?
he explained that though..
Thanks a lot for making this easy to understand, Great job as ever. I've looked through the 70-640 list of videos but there doesn't seem to be any on Certificates, have i missed it or Certificates isn't going to be covered? thanks.
Thanks very much.
Great video!