Share via


Checklist: Create, Edit, and Deploy a GPO

In an environment where multiple people make changes to Group Policy objects (GPOs), an AGPM Administrator (Full Control) delegates permission to Editors, Approvers, and Reviewers, either as groups or as individuals. The following is a typical GPO development process for an Editor and an Approver.

Task Reference

Editor requests the creation of a new GPO or an Approver creates a new GPO.

Request the Creation of a New Controlled GPO

Create a New Controlled GPO

Approver approves the creation of the GPO if it was requested by an Editor.

Approve or Reject a Pending Action

Editor checks out a copy of the GPO from the archive, so no one else can modify the GPO. Editor makes changes to the GPO, and then checks the modified GPO into the archive.

Edit a GPO Offline

Editor requests deployment of the GPO to the production environment.

Request Deployment of a GPO

Reviewers, such as Approvers or Editors, analyze the GPO.

Performing Reviewer Tasks

Approver approves and deploys the GPO to the production environment or rejects the GPO.

Approve or Reject a Pending Action