{"id":46266,"date":"2020-05-25T15:00:00","date_gmt":"2020-05-25T21:00:00","guid":{"rendered":"https:\/\/jumpcloud.com\/?p=46266"},"modified":"2020-05-21T16:59:44","modified_gmt":"2020-05-21T22:59:44","slug":"set-gpos-remote-laptops","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops","title":{"rendered":"Set GPOs on Remote Laptops"},"content":{"rendered":"\n<p>Group policy objects (GPOs) are key tools in an IT admin\u2019s toolkit, allowing them to efficiently configure their system fleets for security and performance. Traditionally, GPOs are leveraged using the on-premises directory service Active Directory\u00ae (AD), administering to systems that are also on-prem. With a global shift to a remote work model, however, many IT departments find it more difficult to set GPOs on remote laptops using AD. A cloud directory service can be used to set GPO-like Policies on all remote Windows, macOS, and Linux systems.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">The Power of Policies<\/h2>\n\n\n\n<p>In a world where many resources and users exist outside of the traditional IT domain, admins need to be proactive about protecting their users\u2019 devices to ensure that they remain secure \u2014 regardless of where they are or what resources they leverage. By focusing on user systems first, admins essentially create a gateway that provides user access to other resources, as well as a first line of defense for those resources. Using system policies like GPOs, admins can pre-configure their system fleets for success and security.<\/p>\n\n\n\n<p>System policies are used to set system settings without having to physically access the machine. With them, admins can enable settings like logon window enforcement, screen lock, full disk encryption (FDE), etc. on their systems. As a practice, system policies are highly effective for promoting security, allowing admins to take precautionary measures that limit a user to the least possible amount of system access and control they need to do their work.<\/p>\n\n\n\n<p>With much of the world switching to a fully remote work model, however, IT organizations need their GPOs to be extensible and provide similar capabilities across all operating systems. Unfortunately, traditional methods for implementing GPOs, like using AD, have their limitations.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Using AD to Set GPOs on Remote Laptops<\/h2>\n\n\n\n<p>Admins running Windows Server 2012 or newer can use Group Policy Management Console to set GPOs on remote Windows laptops. The method doesn\u2019t work with versions of Windows Server older than 2012, but it applies to many popular Windows OS versions, including 7 and 10.<\/p>\n\n\n\n<p>Admins running older versions of Windows Server will need to script GPOs through PowerShell in order to set them on remote laptops. This method applies to nearly all Windows Server and OS versions but requires the admin to have a working understanding of PowerShell commands.<\/p>\n\n\n\n<p>Regardless of the method, IT departments will need their remote end users to leverage a VPN&nbsp; to securely access the on-prem network in order for the GPOs to be applied. Although a mainstay in remote resource access, VPNs can be technically challenging to set up from an admin\u2019s perspective and difficult to operate as an end user. If either are done improperly, bad actors can leverage the VPN to penetrate an organization\u2019s infrastructure.<\/p>\n\n\n\n<p>IT organizations opting to use the methods above need to ensure that their VPNs are properly set up and secured. Check out <a href=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/JumpCloudRemoteTip_VPNs-1.pdf\">this infographic<\/a> for our top tips on how to do so.<\/p>\n\n\n\n<p>In addition to potential problems that can arise from VPN usage, neither method natively applies to OSs outside of the Windows domain \u2014 namely macOS<sup>\u00ae<\/sup> and Linux<sup>\u00ae<\/sup>. Although Windows is still the most popular OS in the world, Mac and Linux are <a href=\"https:\/\/gs.statcounter.com\/os-market-share\/desktop\/worldwide\/#monthly-200901-202001\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\">rapidly growing in popularity<\/a>. As organizations prioritize positive employee experience while they\u2019re working from home, IT departments need to be able to manage GPOs on all systems \u2014 regardless of operating system or location.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Using a Cloud Directory Service to Set GPOs on Remote Laptops<\/h2>\n\n\n\n<p><a href=\"https:\/\/jumpcloud.com\/blog\/policies-secure-remote-systems\">JumpCloud<sup>\u00ae<\/sup> Policies<\/a> are GPO analogues that can be applied to virtually any remote laptop, controlling key security configurations on Mac, Windows, and Linux systems. By leveraging Policies, IT admins can remotely configure all of their system fleets using the cloud \u2014 no VPN required.<br>You can try Policies and the <a href=\"https:\/\/jumpcloud.com\/product\">rest of the JumpCloud product<\/a> out for yourself absolutely free. Just <a href=\"https:\/\/console.jumpcloud.com\/signup\">sign up for Directory-as-a-Service<sup>\u00ae<\/sup><\/a> and get started with ten free users today.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>With a global shift to a remote work model, IT admins need to set GPOs or something similar on all remote laptops. Find out how here.<\/p>\n","protected":false},"author":70,"featured_media":46269,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"categories":[23,2337],"tags":[],"collection":[2778],"platform":[],"funnel_stage":[3016],"coauthors":[],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.9 (Yoast SEO v22.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Set GPOs on Remote Laptops - JumpCloud<\/title>\n<meta name=\"description\" content=\"With a global shift to a remote work model, IT admins need to set GPOs or something similar on all remote laptops. Find out how here.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Set GPOs on Remote Laptops\" \/>\n<meta property=\"og:description\" content=\"With a global shift to a remote work model, IT admins need to set GPOs or something similar on all remote laptops. Find out how here.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:published_time\" content=\"2020-05-25T21:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-05-21T22:59:44+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-gpos-remote-laptops.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"780\" \/>\n\t<meta property=\"og:image:height\" content=\"520\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Zach DeMeyer\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Zach DeMeyer\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#article\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops\"},\"author\":{\"name\":\"Zach DeMeyer\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/5b2c563fb7404910e9be96e7d4e7828d\"},\"headline\":\"Set GPOs on Remote Laptops\",\"datePublished\":\"2020-05-25T21:00:00+00:00\",\"dateModified\":\"2020-05-21T22:59:44+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops\"},\"wordCount\":657,\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-gpos-remote-laptops.jpg\",\"articleSection\":[\"Best Practices\",\"Remote Work\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops\",\"url\":\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops\",\"name\":\"Set GPOs on Remote Laptops - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-gpos-remote-laptops.jpg\",\"datePublished\":\"2020-05-25T21:00:00+00:00\",\"dateModified\":\"2020-05-21T22:59:44+00:00\",\"description\":\"With a global shift to a remote work model, IT admins need to set GPOs or something similar on all remote laptops. Find out how here.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-gpos-remote-laptops.jpg\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-gpos-remote-laptops.jpg\",\"width\":780,\"height\":520},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Set GPOs on Remote Laptops\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/5b2c563fb7404910e9be96e7d4e7828d\",\"name\":\"Zach DeMeyer\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/d1d6602d927eb5a16b1dfd4ba6b4c219\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/2145e4e676784129043e5eec7c4e41e6?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/2145e4e676784129043e5eec7c4e41e6?s=96&d=mm&r=g\",\"caption\":\"Zach DeMeyer\"},\"description\":\"Zach is a Product Marketing Specialist at JumpCloud with a degree in Mechanical Engineering from the Colorado School of Mines. He loves being on the cutting edge of new technology, and when he's not working, he enjoys all things outdoors, music, and soccer.\",\"sameAs\":[\"http:\/\/www.jumpcloud.com\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Set GPOs on Remote Laptops - JumpCloud","description":"With a global shift to a remote work model, IT admins need to set GPOs or something similar on all remote laptops. Find out how here.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops","og_locale":"en_US","og_type":"article","og_title":"Set GPOs on Remote Laptops","og_description":"With a global shift to a remote work model, IT admins need to set GPOs or something similar on all remote laptops. Find out how here.","og_url":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops","og_site_name":"JumpCloud","article_published_time":"2020-05-25T21:00:00+00:00","article_modified_time":"2020-05-21T22:59:44+00:00","og_image":[{"width":780,"height":520,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-gpos-remote-laptops.jpg","type":"image\/jpeg"}],"author":"Zach DeMeyer","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Zach DeMeyer","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#article","isPartOf":{"@id":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops"},"author":{"name":"Zach DeMeyer","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/5b2c563fb7404910e9be96e7d4e7828d"},"headline":"Set GPOs on Remote Laptops","datePublished":"2020-05-25T21:00:00+00:00","dateModified":"2020-05-21T22:59:44+00:00","mainEntityOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops"},"wordCount":657,"publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-gpos-remote-laptops.jpg","articleSection":["Best Practices","Remote Work"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops","url":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops","name":"Set GPOs on Remote Laptops - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-gpos-remote-laptops.jpg","datePublished":"2020-05-25T21:00:00+00:00","dateModified":"2020-05-21T22:59:44+00:00","description":"With a global shift to a remote work model, IT admins need to set GPOs or something similar on all remote laptops. Find out how here.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-gpos-remote-laptops.jpg","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-gpos-remote-laptops.jpg","width":780,"height":520},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/blog\/set-gpos-remote-laptops#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Set GPOs on Remote Laptops"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/5b2c563fb7404910e9be96e7d4e7828d","name":"Zach DeMeyer","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/d1d6602d927eb5a16b1dfd4ba6b4c219","url":"https:\/\/secure.gravatar.com\/avatar\/2145e4e676784129043e5eec7c4e41e6?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/2145e4e676784129043e5eec7c4e41e6?s=96&d=mm&r=g","caption":"Zach DeMeyer"},"description":"Zach is a Product Marketing Specialist at JumpCloud with a degree in Mechanical Engineering from the Colorado School of Mines. He loves being on the cutting edge of new technology, and when he's not working, he enjoys all things outdoors, music, and soccer.","sameAs":["http:\/\/www.jumpcloud.com"]}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/46266"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/70"}],"replies":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/comments?post=46266"}],"version-history":[{"count":2,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/46266\/revisions"}],"predecessor-version":[{"id":46288,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/46266\/revisions\/46288"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media\/46269"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=46266"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/categories?post=46266"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/tags?post=46266"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/collection?post=46266"},{"taxonomy":"platform","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/platform?post=46266"},{"taxonomy":"funnel_stage","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/funnel_stage?post=46266"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=46266"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}