james2k4

Hi all, I need help with restricting software for users on AD environment through GPOs. I basically set policies where it's default to restrict users from launching all applications with additional rules which will allow certain apps to run. The key is user configuration -> windows settings -> security settings -> software restriction policies. Now the problem is the policies work on 1 pc but not on the other. I've checked rsop.msc to see whether the pc got the policies from the server and everything looked good. I can't work out why 1 pc would work with all the policies and the other one wouldn't work with all. Basically 1 pc would not run all apps except the apps in additional rules, and the other one would not run all apps regardless. So this pc is not getting additional rules from the server. Both pc's are patched with service pack 2 (xp pro) and with all windows updates. any thought?