Microsoft Group Policy Objects (GPOs) are a core part of the Microsoft Active Directory® platform. In fact, when GPOs were introduced, they were a significant step-up to the core functionality that directory services provided. So, what exactly are GPOs? They’re scripts and templates that execute policies and tasks on Microsoft Windows platforms. While GPO is a brand-name functionality component provided only by Microsoft, executing policies and tasks on devices is a generic concept known to every IT admin. As a result, IT organizations have been looking for a cross-platform Microsoft GPO replacement.
LDAP and Active Directory Took Flight in the 1990s
The last generation of directory services was introduced in the mid-to-late 1990s with the introduction of two major solutions: LDAP and Active Directory. LDAP was introduced in the mid-1990s as the open source directory protocol. It was meant to simplify and ease the burden of directory services. A few years later Microsoft based their Active Directory solution in part on the LDAP protocol, although the solution has since evolved to be primarily based on Kerberos. The user directory was designed to enable IT admins to connect their users with the IT resources they needed to perform their jobs, including systems, applications, and the network itself. Along with the domain controller, AD became the core single sign-on solution for Windows networks.
The Solo Journey of Microsoft Windows
As part of being an identity provider, Microsoft added in a curious capability: management of Windows devices. The idea was to give IT admins the ability to execute scripts and tasks at boot-up or on shutdown. The notion was likely based in part on the legacy DOS boot process. The concept of executing tasks on the Windows machines became known as Group Policy Objects. Microsoft Group Policy Objects included activities such as mapping network drives, enabling screen lock, disabling guest accounts, adding password complexity, and thousands of other tasks for Windows machines.
Now Boarding: The Microsoft GPO Replacement Known as DaaS
The challenge for IT admins in modern organizations is that GPOs may not be an accessible or sufficient solution. Today’s IT (Read more...)
*** This is a Security Bloggers Network syndicated blog from Blog – JumpCloud authored by Greg Keller. Read the original post at: https://jumpcloud.com/blog/microsoft-group-policy-object-gpo-replacement/