 |
Windows 7: Group Policy - Apply to a Specific User or Group
Group Policy - Apply to a Specific User or Group How to Apply Local Group Policies to a Specific User or Group in Vista and Windows 7
Published 18 Mar 2011
|  Published by | | |
Featured Tutorial | | | How to Apply Local Group Policies to a Specific User or Group in Vista and Windows 7
 Information This will show you how to apply local group policies to only a specific user or group instead of all users in Vista, Windows 7, and Windows 8.
You must be logged in as an administrator to be able to do this tutorial.
 Note Special thanks to TrigZ for pointing this out in his post here.  Warning The Local Group Policy Editor will only be available in the Windows 7 Professional, Ultimate, and Enterprise editions, and in the Vista Business, Ultimate, and Enterprise editions.
Here's How:1. Open the Start Menu, then type mmc.exe in the search box and press Enter.
NOTE: In Windows 8, you could press Windows+R keys to open the Run dialog, then type mmc.exe, and click/tap on OK instead.
2. If prompted by UAC, then click on Yes (Windows 7/8) or Continue (Vista).
3. In the MMC Console window, click on File (Menu bar) and Add/Remove Snap-in. (see screenshot below)
4. In the left pane, select Group Policy Object Editor, and click on the Add button. (see screenshot below)
5. Click on the Browse button. (see screenshot below)
6. Click on the Users tab, select an available user account (ex: Test) or a group from the list that you want to only have group policy applied to, and click on OK. (see screenshot and table below) Note The other names ( Test and User-name) listed are user accounts on my computer. You will have your own user account names listed instead. | Group Name | Description |
|---|
| Administrator | Name of Built-in Administrator account user | | HomeGroupUser$ | All HomeGroup Users group | | Administrators | All Users in the administrators group | | Non-Administrators | All users except administrators group |
7. Click on the Finish button. (see screenshot below)
8. Click on OK. (see screenshot below)
9. In the MMC Console window, click on File (Menu bar) and Save As. (see screenshot below)
10. Select to save to your Desktop, type in a name (ex: Test_Group_Policy) that you would like to have for this "specific" group policy MSC file, then click on the Save button. (see screenshot below)
NOTE: You can use any name you like, but it would make it easier for you to know what user (ex: Test) or group this "specific" group policy MMC console was for later if you included the user or group name.
11. Move the MSC file (ex: Test_Group_Policy.msc) for the specific user or group to where you would to keep it saved at. (see screenshot below)
NOTE: You can also Pin to Taskbar or Pin to Start Menu this MSC file.
12. Whenever you open this MSC file (ex: Test_Group_Policy.msc), you will be able to apply group policies to only this specific user (ex: Test) or group. (see screenshot below)
13. Repeat the above steps if you wish to create a new MSC group policy file for a different specific user or group.
That's it,
Shawn
| | | Need more help? Try searching our extensive help and support site.
Loading | |
29 Aug 2011
|
| |
|
Hi,
I am trying to manage some users via a group. I made a group and added some users to it. Thus far no problem.
After that in MMC I wanted to add a module to the editor as discribed above. After clicking on the Brows button I did not see my new Group! Only all users and the Group Administrators and the group all nonadministrators.
What do I have to do to see my own new Group? Or is this not possible this way?
Windows 7 Pro 64 bit
Hope you can help me.
Ruud Amesz
Last edited by ruudamesz; 29 Aug 2011 at 10:25 AM..
Reason: I made some typig errors.
| My System Specs |
| System Manufacturer/Model Number Dell Vostro 260 ST
OS Windows 7 Pro 64 bit
Memory 4Gb
|
29 Aug 2011
|
| |
|
Hello Ruud, and welcome to Seven Forums.
It appears that new custom groups are not available to be selected for this. 
You could create one per specific user of the group, or use Local Security Policy in Local Policies -> User Rights Assignment to add and set for a custom new group. | | My System Specs | | Computer type PC/Desktop
System Manufacturer/Model Number Self built custom
OS 64-bit Windows 7 Ultimate SP1 & Windows 8 Enterprise
CPU Intel i7-3930K 3.2 Ghz (O/C 4 Ghz)
Motherboard ASRock X79 Extreme11
Memory 32 GB (8GBx4) G.SKILL DDR3 Quad PC3-19200 2400MHz
Graphics Card Sapphire HD5870 Eyefinity 6 2GB
Sound Card SB Recon 3Di Integrated Chip
Monitor(s) Displays 3x 27" Asus VE278Q
Screen Resolution 1920x1080
Keyboard Logitech Cordless Desktop MX 5500 Revolution
Mouse Logitech Cordless Desktop MX 5500 Revolution
PSU OCZ Series Gold OCZZ1000M 1000W
Case Thermaltake Level 10 GT Snow Edition
Cooling Corsair Hydro H100
Hard Drives 256GB OCZ Vector
160GB OCZ RevoDrive X2
2 x 1TB Samsung HDD HD154UI SATA
Internet Speed 50 Mb/s Download and 2 Mb/s Upload
Other Info Microsoft LifeCam Cinema
Lite-On iHBS212 12x BD Writer
Samsung CLX-3175FW Printer
Netgear WNDR3800 Router
Motorola SBG6580 Cable Modem
2x APC Back-UPS XS 1500
|
02 Sep 2011
|
| |
|
group policy editor
um yeah i read through the steps did 1 by 1 then i got stopped bc i dont have group policy editor in the scroll list to choose from so im stumped | | My System Specs | | System Manufacturer/Model Number gateway/nv53
OS windows 7 at 64 bit
CPU 2100mhz
Motherboard gateway sjv50tr
Memory ddr2 4096 bytes
Graphics Card ati mobility radeon hd 4200 series
Sound Card high definiton audio device
Monitor(s) Displays i have a laptop
PSU 19VOLTS
Case laptop
Cooling DONT KNOW HOW TO FIND WHAT KIND OF COOLING FAN I HAVE
Hard Drives WDC WD5000BEVT-22AORTO ATA DEVICE
|
02 Sep 2011
|
| |
|
Hello Grinreaper,
What edition of Windows 7 do you have?
The Windows 7 Starter, Home Basic, and Home Premium editions do not have the Local Group Policy Editor available in them. | | My System Specs | | Computer type PC/Desktop
System Manufacturer/Model Number Self built custom
OS 64-bit Windows 7 Ultimate SP1 & Windows 8 Enterprise
CPU Intel i7-3930K 3.2 Ghz (O/C 4 Ghz)
Motherboard ASRock X79 Extreme11
Memory 32 GB (8GBx4) G.SKILL DDR3 Quad PC3-19200 2400MHz
Graphics Card Sapphire HD5870 Eyefinity 6 2GB
Sound Card SB Recon 3Di Integrated Chip
Monitor(s) Displays 3x 27" Asus VE278Q
Screen Resolution 1920x1080
Keyboard Logitech Cordless Desktop MX 5500 Revolution
Mouse Logitech Cordless Desktop MX 5500 Revolution
PSU OCZ Series Gold OCZZ1000M 1000W
Case Thermaltake Level 10 GT Snow Edition
Cooling Corsair Hydro H100
Hard Drives 256GB OCZ Vector
160GB OCZ RevoDrive X2
2 x 1TB Samsung HDD HD154UI SATA
Internet Speed 50 Mb/s Download and 2 Mb/s Upload
Other Info Microsoft LifeCam Cinema
Lite-On iHBS212 12x BD Writer
Samsung CLX-3175FW Printer
Netgear WNDR3800 Router
Motorola SBG6580 Cable Modem
2x APC Back-UPS XS 1500
|
12 Jan 2012
|
| |
|
Exporting the policy settings
How do you export the settings once you have created the changes?
Thanks
JAy | | My System Specs | | |
12 Jan 2012
|
| |
|
Hello Jay, and welcome to Seven Forums.
The MSC file at the end of the tutorial is basically the export of your settings and shortcut all in one for that specific user or group.
If you would like a .txt file listing of a setting, then you could select and right click on a policy in the left pane, and click on Export. This will export only what you see in the middle pane for the selected policy though. For a list of all settings, select the All Settings option in the left pane instead.
Hope this helps,
Shawn | | My System Specs | | Computer type PC/Desktop
System Manufacturer/Model Number Self built custom
OS 64-bit Windows 7 Ultimate SP1 & Windows 8 Enterprise
CPU Intel i7-3930K 3.2 Ghz (O/C 4 Ghz)
Motherboard ASRock X79 Extreme11
Memory 32 GB (8GBx4) G.SKILL DDR3 Quad PC3-19200 2400MHz
Graphics Card Sapphire HD5870 Eyefinity 6 2GB
Sound Card SB Recon 3Di Integrated Chip
Monitor(s) Displays 3x 27" Asus VE278Q
Screen Resolution 1920x1080
Keyboard Logitech Cordless Desktop MX 5500 Revolution
Mouse Logitech Cordless Desktop MX 5500 Revolution
PSU OCZ Series Gold OCZZ1000M 1000W
Case Thermaltake Level 10 GT Snow Edition
Cooling Corsair Hydro H100
Hard Drives 256GB OCZ Vector
160GB OCZ RevoDrive X2
2 x 1TB Samsung HDD HD154UI SATA
Internet Speed 50 Mb/s Download and 2 Mb/s Upload
Other Info Microsoft LifeCam Cinema
Lite-On iHBS212 12x BD Writer
Samsung CLX-3175FW Printer
Netgear WNDR3800 Router
Motorola SBG6580 Cable Modem
2x APC Back-UPS XS 1500
|
12 Jan 2012
|
| |
|
Can I import them on a different machine?
Thanks
Jay | | My System Specs | | |
12 Jan 2012
|
| |
|
Jay,
I haven't tried it, but it would have to be for a specific group and not user. If you wanted to give it a try, you could see if copying the MSC file at the end of the tutorial to another machine to see if it works or not with the same policy settings set.
Please let us know how it went. | | My System Specs | | Computer type PC/Desktop
System Manufacturer/Model Number Self built custom
OS 64-bit Windows 7 Ultimate SP1 & Windows 8 Enterprise
CPU Intel i7-3930K 3.2 Ghz (O/C 4 Ghz)
Motherboard ASRock X79 Extreme11
Memory 32 GB (8GBx4) G.SKILL DDR3 Quad PC3-19200 2400MHz
Graphics Card Sapphire HD5870 Eyefinity 6 2GB
Sound Card SB Recon 3Di Integrated Chip
Monitor(s) Displays 3x 27" Asus VE278Q
Screen Resolution 1920x1080
Keyboard Logitech Cordless Desktop MX 5500 Revolution
Mouse Logitech Cordless Desktop MX 5500 Revolution
PSU OCZ Series Gold OCZZ1000M 1000W
Case Thermaltake Level 10 GT Snow Edition
Cooling Corsair Hydro H100
Hard Drives 256GB OCZ Vector
160GB OCZ RevoDrive X2
2 x 1TB Samsung HDD HD154UI SATA
Internet Speed 50 Mb/s Download and 2 Mb/s Upload
Other Info Microsoft LifeCam Cinema
Lite-On iHBS212 12x BD Writer
Samsung CLX-3175FW Printer
Netgear WNDR3800 Router
Motorola SBG6580 Cable Modem
2x APC Back-UPS XS 1500
|
31 Jan 2012
|
| |
|
Apply to Startup folder?
HI,
I'm trying to lock down some public use PCs for a library so they only access the Internet. I've created an MMC file(?) based on the instructions above, for one specific user/profile on my PC and I saved it, but I am stuck at step #10 - I don't understand how to APPLY it - and it sounds like it is only applied if I RUN it, correct? So, my question is, can I send it to startup and will doing so automatically apply it/run it every time that user profile is logged in?
Or can I make a change in the registry to make these settings stick permanently and ONLY for THIS SPECIFIC USER (Not for the Admin profile)?
I am new to all of this and somewhat overwhelmed by some of the options available for managing a Windows 7 user profile. Most of what I've been reading I have never heard of before and I am afraid of changing anything for fear that I won't be able to undo it or understand how to describe it if I need help!
I will say I need some way to be able to log out of this profile and switch to the Admin profile if/when I need to fix anything, test, apply updates manually, etc.
Thanks! | | My System Specs | | OS Windows 7 Professional 64-bit
Group Policy - Apply to a Specific User or Group problems? All times are GMT -5. The time now is 01:30 AM. |  |
Group Policy for specific users 
