Before our team moved into AGPM, we had working PoSH code that we were able to execute against a GPO policy and the underlying firewall rules. It was basically calling the Get-NetFirewallRule, get-NetFirewallAddressFilter and Set-NetFirewallRule against the policyStore, which consisted of the domain and GPO name. But now, after I successfully Check-Out a controlled GPO policy using the Get-controlledGPO | * | Unlock-ControlledGPO command (which succeeds via PoSH), any updates to the FW rule do not save (using prior code mentioned above). I don’t get any errors. Also go through and publish the controlled GPO, but the new IP addresses being added are not saved. Am I missing some additional step for editing checked out Controlled GPO policies? Just wanted to confirm, I’m not asking for code write up here, but trying to understand how programmatic interaction is different pre-AGPM versus post AGPM controlled GPOs? Thanks a bunch
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.