|By Matt Hester||
|March 31, 2014 11:00 AM EDT||
Whenever the topic of working with desktops in business is brought up, IT Pro’s always want to manage and maintain those desktops. For me the first thing that always come to mind is Group Policy and hopefully does for you as well. Group Policy is one of the primary tools you can quickly leverage to help control your IT infrastructure. What better way to manage our desktops than with a free tool that is built into Active Directory, and has been there since the Windows NT days.
In today’s post I am going to take a look at some of the new features in Windows 8.1 Group Policy as well as some of the new settings you will want to learn to leverage to help manage your desktops. Oh, by the way you can still change the user's desktop background to blue, with blue labels on the shortcuts, or put the logoff command in the log in script, if you are so inclined not that I have ever done that.
Now if you are not familiar with Group Policy I would highly recommend you start here: Group Policy for Beginners The article will help you get familiar with how Group Policy works and how it is configured.
New Settings in Windows 8.1
Windows 8.1 has a lot of new Group Policy settings from controlling the Start Screen to controlling the caching mode of Group Policy and everything in between. So where can you go to learn about all the settings? The best place to start is the Group Policy Settings reference. This is a spreadsheet you can download and has all the group policy settings documented for you to review. It also provides some nice filtering tools. Specifically you can filter for polices that are new to Windows 8.1, by filtering the last column New in 8.1 to True. (Thanks Keith for the tip) You can download the settings reference file here:
The rest of this article will focus on some useful new settings including policy caching and settings to help you control the Start Screen.
Group Policy Caching
New in Windows Server 2012 R2 group policy caching helps speed up your group policy processing when you are in synchronous mode processing. Before I go any further, in Group Policy there are two modes of how policies are processed by the client, synchronous and asynchronous. This mode impacts how fast policy is processed and ultimately when a user sees the login screen.
- Synchronous: at a high level, this processing mode will make sure Group Policy is processed in order and the user will not be presented with the login screen until all the policies have been processed.
- Asynchronous: this processing mode is going to try to get to the login in screen as fast as it can during system start up. Potentially this means you may be able to login while Group Policy is still processing in the background. You may have heard of this setting before as it was known as Fast Logon, which was introduced in Windows XP.
With Policy caching when your system gets the latest version of a policy from the domain controller, it writes that policy to a local store. Then if Group Policy is running in synchronous mode the next time the computer reboots, it reads the most recently downloaded version of the policy from the local store, instead of downloading it from the network. This is especially important if you have a latent connection to the domain controller, for example, with DirectAccess or for computers that are off premises. To configure this you will need to modify the Configure Group Policy Caching policy, and that is found in this location: Computer Configuration\Administrative Templates\
To take a more in detailed look at Group Policy Caching take a look here: Understanding Group Policy Caching in Windows 8.1
Managing the Start Screen
One of the new improvements to Windows 8.1 group policy is the ability to manage the Start Screen. In previous operating systems you also had many ways to control the start menu, desktop layout, and many other settings to help manage your users experience when they logged on. There are two areas we will take a look at in this section. First we will take a look at customizing the start screen layout. Secondly you will see how you can start the users on the desktop instead of the Start Screen.
Customizing the Start Screen begins with building a desktop with the Start Screen layout that meets your corporate requirements. Once that is done then you get to use our friend PowerShell and the Export-StartLayout cmdlet to export your Start Screen layout into an .xml or .bin file. To learn more about the cmdlet take a look here: Export-StartLayout. The PowerShell command would look something like this, if you wanted to save an .xml file to the d: drive.
Export-StartLayout -Path "d:\startlayout.xml" -As XML
Once you have the file created, you will want to place the file in a shared folder on one of servers that your desktops can access, for example you could place the files on share in your DC. Then you will need to configure the Start Screen Layout policy located here: Administrative Templates\Start Menu and Taskbar in either User Configuration or Computer Configuration. This then will allow you to control the layout of the desktops for the users you apply the policy to. For a deeper look and how to set this up as well as configuring this locally take a look here:
Lastly, let’s take a look at how to start your users on the desktop. As I mentioned in my article on the Start Screen, Windows 8.1 for Business- Oh Start menu, how do I miss thee…or do I , my favorite app is the desktop when I am working. My teammate Jennelle showed you how to start on the desktop by hand in her article, Beloved Desktop, Where Art Thou. Now let’s take a look at how easy this is to do with Group Policy.
The policy you will want to set is the Go to the desktop instead of Start when signing in or when all the apps on a screen are closed This policy will start your users right on the desktop when the login. You can find this policy here: User Configuration\Administrative Templates\Start Menu and Taskbar .
This article took a look at just a couple of the new policies settings for Windows 8.1 desktop. However, do not forgot the 1000’s of other policy settings at your fingertips or that you can also use Group Policy to manage your servers as well.
I hope you enjoyed a look at Group Policy and Windows 8.1 and we hope you are enjoying the series, and if you missed any of the Windows 8.1 for business series you can find them here: http://aka.ms/Win814Biz
Data is an unusual currency; it is not restricted by the same transactional limitations as money or people. In fact, the more that you leverage your data across multiple business use cases, the more valuable it becomes to the organization. And the same can be said about the organization’s analytics. In his session at 19th Cloud Expo, Bill Schmarzo, CTO for the Big Data Practice at EMC, will introduce a methodology for capturing, enriching and sharing data (and analytics) across the organizati...
Sep. 24, 2016 09:45 PM EDT Reads: 1,584
DevOps at Cloud Expo, taking place Nov 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 19th Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to wait for long dev...
Sep. 24, 2016 09:30 PM EDT Reads: 3,317
I'm a lonely sensor. I spend all day telling the world how I'm feeling, but none of the other sensors seem to care. I want to be connected. I want to build relationships with other sensors to be more useful for my human. I want my human to understand that when my friends next door are too hot for a while, I'll soon be flaming. And when all my friends go outside without me, I may be left behind. Don't just log my data; use the relationship graph. In his session at @ThingsExpo, Ryan Boyd, Engi...
Sep. 24, 2016 09:15 PM EDT Reads: 1,188
SYS-CON Events announced today that Secure Channels will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. The bedrock of Secure Channels Technology is a uniquely modified and enhanced process based on superencipherment. Superencipherment is the process of encrypting an already encrypted message one or more times, either using the same or a different algorithm.
Sep. 24, 2016 09:00 PM EDT Reads: 1,404
The vision of a connected smart home is becoming reality with the application of integrated wireless technologies in devices and appliances. The use of standardized and TCP/IP networked wireless technologies in line-powered and battery operated sensors and controls has led to the adoption of radios in the 2.4GHz band, including Wi-Fi, BT/BLE and 802.15.4 applied ZigBee and Thread. This is driving the need for robust wireless coexistence for multiple radios to ensure throughput performance and th...
Sep. 24, 2016 08:30 PM EDT Reads: 1,432
The Internet of Things can drive efficiency for airlines and airports. In their session at @ThingsExpo, Shyam Varan Nath, Principal Architect with GE, and Sudip Majumder, senior director of development at Oracle, will discuss the technical details of the connected airline baggage and related social media solutions. These IoT applications will enhance travelers' journey experience and drive efficiency for the airlines and the airports. The session will include a working demo and a technical d...
Sep. 24, 2016 08:00 PM EDT Reads: 1,641
SYS-CON Events announced today the Enterprise IoT Bootcamp, being held November 1-2, 2016, in conjunction with 19th Cloud Expo | @ThingsExpo at the Santa Clara Convention Center in Santa Clara, CA. Combined with real-world scenarios and use cases, the Enterprise IoT Bootcamp is not just based on presentations but with hands-on demos and detailed walkthroughs. We will introduce you to a variety of real world use cases prototyped using Arduino, Raspberry Pi, BeagleBone, Spark, and Intel Edison. Y...
Sep. 24, 2016 07:00 PM EDT Reads: 2,771
Fact is, enterprises have significant legacy voice infrastructure that’s costly to replace with pure IP solutions. How can we bring this analog infrastructure into our shiny new cloud applications? There are proven methods to bind both legacy voice applications and traditional PSTN audio into cloud-based applications and services at a carrier scale. Some of the most successful implementations leverage WebRTC, WebSockets, SIP and other open source technologies. In his session at @ThingsExpo, Da...
Sep. 24, 2016 06:45 PM EDT Reads: 1,466
Traditional on-premises data centers have long been the domain of modern data platforms like Apache Hadoop, meaning companies who build their business on public cloud were challenged to run Big Data processing and analytics at scale. But recent advancements in Hadoop performance, security, and most importantly cloud-native integrations, are giving organizations the ability to truly gain value from all their data. In his session at 19th Cloud Expo, David Tishgart, Director of Product Marketing ...
Sep. 24, 2016 04:30 PM EDT Reads: 1,692
If you’re responsible for an application that depends on the data or functionality of various IoT endpoints – either sensors or devices – your brand reputation depends on the security, reliability, and compliance of its many integrated parts. If your application fails to deliver the expected business results, your customers and partners won't care if that failure stems from the code you developed or from a component that you integrated. What can you do to ensure that the endpoints work as expect...
Sep. 24, 2016 04:30 PM EDT Reads: 1,500
While DevOps promises a better and tighter integration among an organization’s development and operation teams and transforms an application life cycle into a continual deployment, Chef and Azure together provides a speedy, cost-effective and highly scalable vehicle for realizing the business values of this transformation. In his session at @DevOpsSummit at 19th Cloud Expo, Yung Chou, a Technology Evangelist at Microsoft, will present a unique opportunity to witness how Chef and Azure work tog...
Sep. 24, 2016 04:00 PM EDT Reads: 1,537
Information technology is an industry that has always experienced change, and the dramatic change sweeping across the industry today could not be truthfully described as the first time we've seen such widespread change impacting customer investments. However, the rate of the change, and the potential outcomes from today's digital transformation has the distinct potential to separate the industry into two camps: Organizations that see the change coming, embrace it, and successful leverage it; and...
Sep. 24, 2016 03:00 PM EDT Reads: 1,021
SYS-CON Events announced today that China Unicom will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. China United Network Communications Group Co. Ltd ("China Unicom") was officially established in 2009 on the basis of the merger of former China Netcom and former China Unicom. China Unicom mainly operates a full range of telecommunications services including mobile broadband (GSM, WCDMA, LTE F...
Sep. 24, 2016 01:30 PM EDT Reads: 1,672
Enterprise IT has been in the era of Hybrid Cloud for some time now. But it seems most conversations about Hybrid are focused on integrating AWS, Microsoft Azure, or Google ECM into existing on-premises systems. Where is all the Private Cloud? What do technology providers need to do to make their offerings more compelling? How should enterprise IT executives and buyers define their focus, needs, and roadmap, and communicate that clearly to the providers?
Sep. 24, 2016 01:00 PM EDT Reads: 1,480
The Transparent Cloud-computing Consortium (abbreviation: T-Cloud Consortium) will conduct research activities into changes in the computing model as a result of collaboration between "device" and "cloud" and the creation of new value and markets through organic data processing High speed and high quality networks, and dramatic improvements in computer processing capabilities, have greatly changed the nature of applications and made the storing and processing of data on the network commonplace.
Sep. 24, 2016 12:00 PM EDT Reads: 744