Click here to close now.


Related Topics: Microsoft Cloud, Java IoT, Linux Containers, Containers Expo Blog, Silverlight, @CloudExpo

Microsoft Cloud: Blog Post

Working with the Windows 8.1 Interface

Windows 8.1 for Business: Remember Our Good Friend Group Policy

imageHopefully you never forgot Group Policy!

Whenever the topic of working with desktops in business is brought up, IT Pro’s always want to manage and maintain those desktops.  For me the first thing that always come to mind is Group Policy and hopefully does for you as well.  Group Policy is one of the primary tools you can quickly leverage to help control your IT infrastructure.    What better way to manage our desktops than with a free tool that is built into Active Directory, and has been there since the Windows NT days.

In today’s post I am going to take a look at some of the new features in Windows 8.1 Group Policy as well as some of the new settings you will want to learn to leverage to help manage your desktops.  Oh, by the way you can still change the user's desktop background to blue, with blue labels on the shortcuts, or put the logoff command in the log in script, if you are so inclined not that I have ever done that.

Now if you are not familiar with Group Policy I would highly recommend you start here:  Group Policy for Beginners The article will help you get familiar with how Group Policy works and how it is configured.

New Settings in Windows 8.1

imageWindows 8.1 has a lot of new Group Policy settings from controlling the Start Screen to controlling the caching mode of Group Policy and everything in between.  So where can you go to learn about all the settings?  The best place to start is the Group Policy Settings reference.  This is a spreadsheet you can download and has all the group policy settings documented for you to review. It also provides some nice filtering tools.  Specifically you can filter for polices that are new to Windows 8.1, by filtering the last column New in 8.1 to True. (Thanks Keith for the tip)  You can download the settings reference file here:

Group Policy Settings Reference for Windows and Windows Server

The rest of this article will focus on some useful new settings including policy caching and settings to help you control the Start Screen.

Group Policy Caching

New in Windows Server 2012 R2  group policy caching helps speed up your group policy processing when you are in synchronous mode processing.  Before I go any further, in Group Policy there are two modes of how policies are processed by the client, synchronous and asynchronous.  This mode impacts how fast policy is processed and ultimately when a user sees the login screen.

  • Synchronous: at a high level, this processing mode will make sure Group Policy is processed in order and the user will not be presented with the login screen until all the policies have been processed.
  • Asynchronous: this processing mode is going to try to get to the login in screen as fast as it can during system start up.  Potentially this means you may be able to login while Group Policy is still processing in the background.  You may have heard of this setting before as it was known as Fast Logon, which was introduced in Windows XP.

With Policy caching when your system gets the latest version of a policy from the imagedomain controller, it writes that policy to a local store. Then if Group Policy is running in synchronous mode the next time the computer reboots, it reads the most recently downloaded version of the policy from the local store, instead of downloading it from the network. This is especially important if you have a latent connection to the domain controller, for example, with DirectAccess or for computers that are off premises. To configure this you will need to modify the Configure Group Policy Caching policy, and that is found in this location: Computer Configuration\Administrative Templates\

System\Group Policy\

To take a more in detailed look at Group Policy Caching take a look here: Understanding Group Policy Caching in Windows 8.1

Managing the Start Screen

One of the new improvements to Windows 8.1 group policy is the ability to manage the Start Screen.  In previous operating systems you also had many ways to control the start menu, desktop layout, and many other settings to help manage your users experience when they logged on.   There are two areas we will take a look at in this section. First we will take a look at customizing the start screen layout.  Secondly you will see how you can start the users on the desktop instead of the Start Screen.

imageCustomizing the Start Screen begins with building a desktop with the Start Screen layout that meets your corporate requirements.  Once that is done then you get to use our friend PowerShell and the Export-StartLayout cmdlet to export your Start Screen layout into an .xml or .bin file.  To learn more about the cmdlet take a look here: Export-StartLayout.  The PowerShell command would look something like this, if you wanted to save an .xml file to the d: drive.

Export-StartLayout -Path "d:\startlayout.xml" -As XML

Once you have the file created, you will want to place the file in a shared folder on one of servers that your desktops can access, for example you could place the files on share in your DC.  Then you will need to configure the Start Screen Layout policy located here: Administrative Templates\Start Menu and Taskbar in either User Configuration or Computer Configuration.  This then will allow you to control the layout of the desktops for the users you apply the policy to.  For a deeper look and how to set this up as well as configuring this locally take a look here:

Customize Windows 8.1 Start Screens by Using Group Policy

Lastly, let’s take a look at how to start your users on the desktop.  As I mentioned in my article on the Start imageScreen, Windows 8.1 for Business- Oh Start menu, how do I miss thee…or do I , my favorite app is the desktop when I am working.  My teammate Jennelle showed you how to start on the desktop by hand in her article, Beloved Desktop, Where Art Thou.  Now let’s take a look at how easy this is to do with Group Policy.

The policy you will want to set is the Go to the desktop instead of Start when signing in or when all the apps on a screen are closed This policy will start your users right on the desktop when the login.  You can find this policy here:  User Configuration\Administrative Templates\Start Menu and Taskbar .

This article took a look at  just a couple of the new policies settings for Windows 8.1 desktop.  However, do not forgot the 1000’s of other policy settings at your fingertips or that you can also use Group Policy to manage your servers as well.

I hope you enjoyed a look at Group Policy and Windows 8.1 and we hope you are enjoying the series, and if you missed any of the Windows 8.1 for business series you can find them here:

More Stories By Matt Hester

Matt Hester is a Senior Information Technology Professional Evangelist for Microsoft. Matt has been involved in the IT Pro community for over 20 years. Matt is a skilled and experienced evangelist presenting to audiences nationally and internationally. Prior to joining Microsoft Matt was a highly successful Microsoft Certified Trainer for over 8 years. After joining Microsoft, Matt has continued to be heavily involved in IT Pro community as an IT Pro Evangelist. In his role at Microsoft Matt has presented to audiences in excess of 5000 and as small as 10. Matt has written 4 articles for TechNet magazine. In addition Matt has published 3 books:

You can contact Matt off his blog at

Latest Stories
SYS-CON Events announced today that Secure Infrastructure & Services will exhibit at SYS-CON's 17th International Cloud Expo®, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. Secure Infrastructure & Services (SIAS) is a managed services provider of cloud computing solutions for the IBM Power Systems market. The company helps mid-market firms built on IBM hardware platforms to deploy new levels of reliable and cost-effective computing and hig...
When it comes to IoT in the enterprise, namely the commercial building and hospitality markets, a benefit not getting the attention it deserves is energy efficiency, and IoT’s direct impact on a cleaner, greener environment when installed in smart buildings. Until now clean technology was offered piecemeal and led with point solutions that require significant systems integration to orchestrate and deploy. There didn't exist a 'top down' approach that can manage and monitor the way a Smart Buildi...
In his session at @ThingsExpo, Tony Shan, Chief Architect at CTS, will explore the synergy of Big Data and IoT. First he will take a closer look at the Internet of Things and Big Data individually, in terms of what, which, why, where, when, who, how and how much. Then he will explore the relationship between IoT and Big Data. Specifically, he will drill down to how the 4Vs aspects intersect with IoT: Volume, Variety, Velocity and Value. In turn, Tony will analyze how the key components of IoT ...
SYS-CON Events announced today that IBM Cloud Data Services has been named “Bronze Sponsor” of SYS-CON's 17th Cloud Expo, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. IBM Cloud Data Services offers a portfolio of integrated, best-of-breed cloud data services for developers focused on mobile computing and analytics use cases.
Today, we are in the middle of a paradigm shift as we move from managing applications on VMs and containers to embracing everything that the cloud and XaaS (Everything as a Service) has to offer. In his session at 17th Cloud Expo, Kevin Hoffman, Advisory Solutions Architect at Pivotal Cloud Foundry, will provide an overview of 12-factor apps and migrating enterprise apps to the cloud. Kevin Hoffman is an Advisory Solutions Architect for Pivotal Cloud Foundry, and has spent the past 20 years b...
While testing is often ignored when it comes to DevOps - it could be the most important aspect of achieving true DevOps success. Without rethinking automated testing from the ground-up, the entire DevOps productivity gain cannot be realized. Large tech companies build their own rapid test automation that runs in minutes across functional, performance, security and other tests. In his session at DevOps Summit, Kevin Surace, CEO of Appvance, will discuss how we learn from these real-world succe...
DevOps has often been described in terms of CAMS: Culture, Automation, Measuring, Sharing. While we’ve seen a lot of focus on the “A” and even on the “M”, there are very few examples of why the “C" is equally important in the DevOps equation. In her session at @DevOps Summit, Lori MacVittie, of F5 Networks, will explore HTTP/1 and HTTP/2 along with Microservices to illustrate why a collaborative culture between Dev, Ops, and the Network is critical to ensuring success.
SYS-CON Events announced today that has been named a "Bronze Sponsor" of SYS-CON's @DevOpsSummit Silicon Valley, which will take place November 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. provides open-source software ELK turned into a log analytics platform that is simple, infinitely- scalable, highly available, and secure.
DevOps delivers remarkable results. But does it help all of IT? Can traditional ‘mode 1’ IT benefit as much as innovative ‘mode 2’? How about the rest of your business? Or have you just shifted your bottleneck? And if so, what can you do about it? Improving dev and ops is necessary, but not sufficient. It often just shifts the burden sideways (e.g., to PMs, SQA, InfoSec, DBAs, NOC, etc.), upstream (to the PMO, Controller, Business Liaison, etc.), or downstream (to TechPubs, Service Desk, Traini...
The enterprise is being consumerized, and the consumer is being enterprised. Moore's Law does not matter anymore, the future belongs to business virtualization powered by invisible service architecture, powered by hyperscale and hyperconvergence, and facilitated by vertical streaming and horizontal scaling and consolidation. Both buyers and sellers want instant results, and from paperwork to paperless to mindless is the ultimate goal for any seamless transaction. The sweetest sweet spot in innov...
Mobile messaging has been a popular communication channel for more than 20 years. Finnish engineer Matti Makkonen invented the idea for SMS (Short Message Service) in 1984, making his vision a reality on December 3, 1992 by sending the first message ("Happy Christmas") from a PC to a cell phone. Since then, the technology has evolved immensely, from both a technology standpoint, and in our everyday uses for it. Originally used for person-to-person (P2P) communication, i.e., Sally sends a text...
SYS-CON Events announced today that ProfitBricks, the provider of painless cloud infrastructure, will exhibit at SYS-CON's 17th International Cloud Expo®, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. ProfitBricks is the IaaS provider that offers a painless cloud experience for all IT users, with no learning curve. ProfitBricks boasts flexible cloud servers and networking, an integrated Data Center Designer tool for visual control over the...
“The Internet of Things transforms the way organizations leverage machine data and gain insights from it,” noted Splunk’s CTO Snehal Antani, as Splunk announced accelerated momentum in Industrial Data and the IoT. The trend is driven by Splunk’s continued investment in its products and partner ecosystem as well as the creativity of customers and the flexibility to deploy Splunk IoT solutions as software, cloud services or in a hybrid environment. Customers are using Splunk® solutions to collect ...
SYS-CON Events announced today that Alert Logic, the leading provider of Security-as-a-Service solutions for the cloud, has been named “Bronze Sponsor” of SYS-CON's 17th International Cloud Expo® and DevOps Summit 2015 Silicon Valley, which will take place November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. Alert Logic provides Security-as-a-Service for on-premises, cloud, and hybrid IT infrastructures, delivering deep security insight and continuous protection for cust...
Organizations already struggle with the simple collection of data resulting from the proliferation of IoT, lacking the right infrastructure to manage it. They can't only rely on the cloud to collect and utilize this data because many applications still require dedicated infrastructure for security, redundancy, performance, etc. In his session at 17th Cloud Expo, Emil Sayegh, CEO of Codero Hosting, will discuss how in order to resolve the inherent issues, companies need to combine dedicated a...