Hello,
I'm writing this post to get information regarding behavior described below; if it's by design or not.
Test Environment Description
Standalone SCCM server with two Client Settings policies:
Default Client Settings & My Custom Policy.
The first one is not used (not deployed to anyone), the second one is deployed to
Collection A with Client 1 as member.
My Custom Policy is configured to enable Remote Tools with
Permitted Viewers DOMAIN\RCGroup.
Client 1 get the policy: Remote Control is enabled and local ConfigMgr Remote Control Users group is populated with DOMAIN\RCGroup.
Behavior: If I remove manually DOMAIN\RCGroup from ConfigMgr Remote Control Users group on Client 1, then, that group isn't added again (even after
Machine Policy Retrieval and Evaluation Cycle).
But if some changes are made on My Custom Policy at server side, then the group appears again in local ConfigMgr Remote Control Users group after Machine Policy Retrieval and Evaluation Cycle.
Note: This behavior occurs also on Microsoft Virtual Labs (lab name: Managing Clients with Microsoft System Center 2012 R2 Configuration Manager).
Is that described above a normal behavior ? I mean, if I remove members from local ConfigMgr Remote Control Users group manually, then SCCM client doesn't re-add them until I made some changes to client policy on server side....?
Thank you very much.
Bye,