You could either place the servers in a different OU (probably the best
solution) or you could use the ACL on the policy itself to Deny Read & Apply
Policy to those computer accounts.
I'd go with a separate server OU though.
HTH
Ken
Ask a Question
Want to reply to this thread or ask your own question?
You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.