This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 82%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMF%3C/text%3E%3C/svg%3E)
The learn path https://learn.microsoft.com/en-us/training/modules/implement-group-policy-objects/4-define-domain-based-gpos?source=learn mentions following thing:
The Default Domain Policy GPO is linked to the domain, and it applies to Authenticated Users.
While "Authenticated Users" is capitalized and technically absolutely correct, newcomers would benefit from knowing that "Authenticated Users" is a well-known SID, a special identity group, and that's why it is capitalized.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(70.4, 11%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPM%3C/text%3E%3C/svg%3E)
Hi Maxim Fomin,
I'm following up to see if you've had a chance to review my previous response. If it was helpful, please let me know by accepting the answer and upvoting it. Feel free to reach out if you encounter any issues.
Thank you
Hi Maxim Fomin,
Thank you for reaching out to Microsoft Q & A forum.
The Default Domain Policy GPO applies to "Authenticated Users," which is a well-known Security Identifier (SID) in Active Directory. This group includes all entities that have successfully authenticated to the domain, such as users, computers, and services. Unlike "Domain Users," it covers all authenticated accounts, not just those within the domain. This ensures that policy settings are applied broadly. If more specific targeting is needed, Security Groups or WMI filters can be used.
Please feel free to contact us if you have any additional questions.
If you have found the answer provided to be helpful, please click on the "Accept answer/Upvote" button so that it is useful for other members in the Microsoft Q&A community.
Thank you.