Updating Active Directory Group Policy Objects for Windows Vista
Deleting Local Group Policy Objects
All computers have an LGPO. You cannot delete this top-level policy object. You
can, however, set each policy setting to Not Configured to ensure that no related pol-
icy settings are applied.
While you cannot delete this object, you can delete other LGPOs that you have cre-
ated. When you delete an LGPO, the object and all its related settings are removed
from the computer.
You can delete the Administrators Local Group Object, Non-Administrators Local
Group Object, or User-specific Local Group Object by following these steps:
1. Log on to a computer running Windows Vista with an administrative user
2. Click Start, type
mmc into the Search box, and then press Enter.
3. In the Microsoft Management Console, click File
➝ Add/Remove Snap-in.
4. In the Add or Remove Snap-ins dialog box, click Group Policy Object Editor,
and then click Add.
5. In the Select Group Policy Object dialog box, click Browse.
6. In the Browse for a Group Policy Object dialog box, click the Users tab, as
shown in Figure 26-3.
7. Right-click the name of the policy you want to remove and then select Remove
Group Policy Object.
8. When prompted to confirm, click Yes.
9. Click Cancel three times to exit all open dialog boxes.
10. In the Microsoft Management Console, click File
➝ Exit. If prompted to save the
console, click No.
11. Log off the computer to ensure that the policy object can be removed.
Updating Active Directory Group Policy Objects for
On a Windows Vista computer, you’ll automatically see the Windows Vista policies
as well as the other policies when you work with LGPOs. The same is not true auto-
matically, however, if you try to use the Windows Vista policies in a domain. This is
because Active Directory Group Policy objects must be updated to include Win-
dows Vista policies. A similar update is required to apply any additional policies
defined in service packs or later Windows releases. Once you’ve performed the
update and made any necessary changes, you can perform basic management, such
as policy linking or blocking, using any computer. However, it is recommended that
the actual policy editing be done on a computer running Windows Vista or later.