The best way would be to use Group Policy Management Console (GPMC), but it
only works from WinXP/2003 and needs dotNet Framework. With GPMC you can use
Group Policy Reporting functionality and check Resultant Set of Policy of
computers in your domain.
However, be aware that some policies may be applied to users and some to
computers.
Of course, there may be some commercial products on the market. I've heard
of FAZAM, but I haven't used it.
Dusko Savatovic
joeroc_501 said:
I would like to export the current security settings that are currenlty
applied to my win2000 box. This box contains settings that are applied via
domain GPO's. What is the sdb file that contains the current settings
applied, both local and domain? I viewed the secedit.sdb but that only
shows what the local policy is but is much different then what is currenlty
applied to the box via the domain gpo's. any ideas?