Detections
Analytics

Unlinked, Disabled or Orphan GPO

low

Language:

Description

Having too many unlinked, disabled, or orphan GPOs can lead to administrative errors and decrease the Active Directory performance.

Solution

To obtain a clear view of the security parameters currently in effect on the directory infrastructure, it is advisable to rationalize the number of unlinked or disabled group policy objects (GPOs). Having too many GPOs can cause several issues:

  • Reactivating previously disabled GPOs can override security parameters that were already in place.
  • Relinking an old GPO by mistake can redefine security parameters, which can cause confusion and inconsistencies.
  • Unlinking a GPO by mistake can create security vulnerabilities.

See Also

Group Policy Planning and Deployment Guide

Indicator Details

Name: Unlinked, Disabled or Orphan GPO

Codename: C-GPOLICY-DISABLED-UNLINKED

Severity: Low