Nitzan

Nitzan

If this prod is rocking, don’t come a-knocking

Opening Group Policy Management Editor from the Command Line

less than 1 minute read

Yesterday I wanted to open the Group Policy editor (or “Group Policy Management Editor”) for a specific GP object through PowerShell, but there is no “Edit-GPO” cmdlet. I quickly checked from the task manager how the GPMC opens the editor, and made my own:

function Edit-GPO([guid]$guid){
$domain = Get-ADDomain
# Operate on PDC to help consistency
$server=$domain.PDCEmulator
$PoliciesPath=("CN=Policies,"+$domain.SystemsContainer)
$GPPath= "LDAP://{0}/CN={1},{2}" -f $server,$guid,$PoliciesPath
#$GPPath
gpme.msc "/GPOBJECT:`"$GPPath`""
}

My function binds to the PDC for the same reason the GPMC does - it helps consistency. If you don’t like it, you can modify the $server variable to point at something else.
For example, this is how you open the gpme for the default domain policy:

Get-GPO 'Default Domain Policy' | %{Edit-GPO $_.Id}

And this is how you open it for every GP with user settings enabled:

Get-GPO -All | ?{$_.GpoStatus -band ([Microsoft.GroupPolicy.GpoStatus]::ComputerSettingsDisabled)} | %{Edit-GPO $_.Id}

You May Also Enjoy

Java SMPP helper

6 minute read

One of my projects involves communicating over SMS with cellular-connected IoT devices. The company already has a working infastructure for sending and recie...

Adding shortcuts to your search engine

3 minute read

I really like DuckDuckGo’s bangs, which basically directs your query elsewhere if you prefix it with !something. You could search the London zoo in gmaps by ...

Bridging Switcher’s UDP over OpenWRT

1 minute read

Seems like I’m doing this setup once every 3 years, then forget about it until the next time it breaks. I hope this is the last time I’m rediscovering this.

Invalid number: Nov

5 minute read

One of my current projects is migrating a big Java project from Java 8 to a supported version. Since we’re doing small, stable steps, we started with Java 11...