We are unable to update gpo policy to client system

Question

Dear Support team,

We are unable to update gpo policy to client system getting failed, this clients are located in other location main branch nad sub branch both connected through Firewall Site to Site configuration both are comunicating well but whenever we are applying any GPO policy in client system it's not syncing getting failed.

Answer 1

Hello

Thank you for posting in Q&A forum.

Here are some steps you can try to troubleshoot the issue with your Group Policy Object (GPO) updates failing for clients in different locations connected via a site-to-site VPN:

1. Ensure that the clients can communicate with the domain controllers over the VPN。
2. Ensure that the necessary ports for Active Directory and Group Policy are open on the firewall:

Ports to Check:

• TCP/UDP 135 (RPC)

• TCP 139 (NetBIOS Session Service)

• TCP/UDP 389 (LDAP)

• TCP 445 (SMB)

• TCP 636 (LDAP SSL)

• TCP/UDP 3268-3269 (Global Catalog)

• TCP/UDP 53 (DNS)

3. Check the Event Viewer on the client systems for any Group Policy-related errors。
4. Use the gpresult and rsop.msc tools to diagnose GPO application issues.
5. Ensure that both computer and user authentication are working correctly.

References:

Applying Group Policy troubleshooting guidance - Windows Server ...

Group Policy via vpn connection | Microsoft Community Hub

I hope the information above is helpful.

If you have any questions or concerns, please feel free to let us know.

Best Regards,

Daisy Zhou

============================================

If the Answer is helpful, please click "Accept Answer" and upvote it.