Welcome to Sign in | Join | Help
in
Home Blog Forums

The Lazy Admin

Restoring Windows 2003 Group Policies

Sponsor

So you set up the Default Domain Policy (or Domain Controllers) and now its hit the fan and you need to get back to the defaults fast! There is a workaround for Windows 2000, but in Windows Server 2003 we can use Dcgpofix which is located in %systemroot%\Repair directory.

There are a few prerequisites we need to clear first:

  • must be run on a 2003 server
  • must be run with Enterprise Administrator privlidges

With that out of the way run the following from a command prompt:

dcgpofix [/ignoreschema][/target: {domain | dc | both}]

  • /ignoreschema Dcgpofix.exe will determine the Active Directory schema version number to ensure it is compatible with Dcgpofix. If the versions are not compatible, Dcgpofix.exe will not run. I do not recommend using this switch.
  • /target - this specifies the policy to be restored, the default is both

As an example, if we want to restore the Default Domain Controller Policy we would run the following command:

dcgpofix /target:dc A few settings will not be overwritten, these include RIS, EFS and Security settings. However, Software Installation, IE Maintenance, scripts, admin templates and folder redirection settings will be restored to default.

 





Published Monday, May 02, 2005 8:52 AM by rodney.buike
Filed under:

Comments

No Comments
Anonymous comments are disabled

This Blog

Powered By

 

Syndication

Sponsors

 
 
Get a free 5GB e-mail account @isalazyadmin.com

Affiliates

Canadian IT Professionals

Canadian IT Managers

Certifications & Awards


All postings are provided "AS IS" with no warranties, and confer no rights.
Microsoft product screen shot(s) reprinted with permission from Microsoft Corporation.
Copyright TheLazyAdmin Inc. All Rights Reserved 2004-2008