Category: At least Windows 2000

This policy setting specifies how often Group Policy is updated on domain controllers while they are running (in the background). The updates specified by this setting occur in addition to updates performed when the system starts. By default Group Policy on the domain controllers is updated every five minutes. If you enable this setting you can specify an update rate from 0 to 64800 minutes (45 days). If you select 0 minutes the domain controller tries to update Group Policy every 7 seconds. However because updates might interfere with users’ work and increase network traffic very short update intervals are not appropriate for most installations. If you disable or do not configure this setting the domain controller updates Group Policy every 5 minutes (the default). To specify that Group Policies for users should never be updated while the computer is in use select the “Turn off background refresh of Group Policy” setting. This setting also lets you specify how much the actual update interval varies. To prevent domain controllers with the same update interval from requesting updates simultaneously the system varies the update interval for each controller by a random number of minutes. The number you type in the random time box sets the upper limit for the range of variance. For example if you type 30 minutes the system selects a variance of 0 to 30 minutes. Typing a large number establishes a broad range and makes it less likely that update requests overlap. However updates might be delayed significantly. Note: This setting is used only when you are establishing policy for a domain site organizational unit (OU) or customized group. If you are establishing policy for a local computer only the system ignores this setting.

This policy setting specifies how often Group Policy for computers is updated while the computer is in use (in the background). This setting specifies a background update rate only for Group Policies in the Computer Configuration folder. In addition to background updates Group Policy for the computer is always updated when the system starts. By default computer Group Policy is updated in the background every 90 minutes with a random offset of 0 to 30 minutes. If you enable this setting you can specify an update rate from 0 to 64800 minutes (45 days). If you select 0 minutes the computer tries to update Group Policy every 7 seconds. However because updates might interfere with users’ work and increase network traffic very short update intervals are not appropriate for most installations. If you disable this setting Group Policy is updated every 90 minutes (the default). To specify that Group Policy should never be updated while the computer is in use select the “Turn off background refresh of Group Policy” policy. The Set Group Policy refresh interval for computers policy also lets you specify how much the actual update interval varies. To prevent clients with the same update interval from requesting updates simultaneously the system varies the update interval for each client by a random number of minutes. The number you type in the random time box sets the upper limit for the range of variance. For example if you type 30 minutes the system selects a variance of 0 to 30 minutes. Typing a large number establishes a broad range and makes it less likely that client requests overlap. However updates might be delayed significantly. This setting establishes the update rate for computer Group Policy. To set an update rate for user policies use the “Set Group Policy refresh interval for users” setting (located in User Configuration -> Administrative Templates -> System -> Group Policy). This setting is only used when the “Turn off background refresh of Group Policy” setting is not enabled. Note: Consider notifying users that their policy is updated periodically so that they recognize the signs of a policy update. When Group Policy is updated the Windows desktop is refreshed; it flickers briefly and closes open menus. Also restrictions imposed by Group Policies such as those that limit the programs users can run might interfere with tasks in progress.

This policy setting defines a slow connection for purposes of applying and updating Group Policy. If the rate at which data is transferred from the domain controller providing a policy update to the computers in this group is slower than the rate specified by this setting the system considers the connection to be slow. The system’s response to a slow policy connection varies among policies. The program implementing the policy can specify the response to a slow link. Also the policy processing settings in this folder lets you override the programs’ specified responses to slow links. If you enable this setting you can in the “Connection speed” box type a decimal number between 0 and 4294967200 indicating a transfer rate in kilobits per second. Any connection slower than this rate is considered to be slow. If you type 0 all connections are considered to be fast. If you disable this setting or do not configure it the system uses the default value of 500 kilobits per second. This setting appears in the Computer Configuration and User Configuration folders. The setting in Computer Configuration defines a slow link for policies in the Computer Configuration folder. The setting in User Configuration defines a slow link for settings in the User Configuration folder. Also see the “Do not detect slow network connections” and related policies in Computer Configuration -> Administrative Templates -> System -> User Profile. Note: If the profile server has IP connectivity the connection speed setting is used. If the profile server does not have IP connectivity the SMB timing is used.

This policy setting prevents Group Policy from being updated while the computer is in use. This policy setting applies to Group Policy for computers users and domain controllers. If you enable this policy setting the system waits until the current user logs off the system before updating the computer and user settings. If you disable or do not configure this policy setting updates can be applied while users are working. The frequency of updates is determined by the “Set Group Policy refresh interval for computers” and “Set Group Policy refresh interval for users” policy settings. Note: If you make changes to this policy setting you must restart your computer for it to take effect.

This policy setting determines when registry policies are updated. This policy setting affects all policies in the Administrative Templates folder and any other policies that store values in the registry. It overrides customized settings that the program implementing a registry policy set when it was installed. If you enable this policy setting you can use the check boxes provided to change the options. If you disable or do not configure this policy setting it has no effect on the system. The “Do not apply during periodic background processing” option prevents the system from updating affected policies in the background while the computer is in use. When background updates are disabled policy changes will not take effect until the next user logon or system restart. The “Process even if the Group Policy objects have not changed” option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they are updated only when changed. However you might want to update unchanged policies such as reapplying a desired policy setting in case a user has changed it.

This policy setting determines when IP security policies are updated. This policy setting affects all policies that use the IP security component of Group Policy such as policies in Computer Configuration -> Windows Settings -> Security Settings -> IP Security Policies on Local Machine. This policy setting overrides customized settings that the program implementing the IP security policy set when it was installed. If you enable this policy setting you can use the check boxes provided to change the options. If you disable or do not configure this policy setting it has no effect on the system. The “Allow processing across a slow network connection” option updates the policies even when the update is being transmitted across a slow network connection such as a telephone line. Updates across slow connections can cause significant delays. The “Do not apply during periodic background processing” option prevents the system from updating affected policies in the background while the computer is in use. When background updates are disabled policy changes will not take effect until the next user logon or system restart. The “Process even if the Group Policy objects have not changed” option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they are updated only when changed. However you might want to update unchanged policies such as reapplying a desired policy setting in case a user has changed it.

This policy setting determines when Internet Explorer Maintenance policies are updated. This policy setting affects all policies that use the Internet Explorer Maintenance component of Group Policy such as those in Windows Settings -> Internet Explorer Maintenance. This policy setting overrides customized settings that the program implementing the Internet Explorer Maintenance policy set when it was installed. If you enable this policy setting you can use the check boxes provided to change the options. If you disable or do not configure this policy setting it has no effect on the system. The “Allow processing across a slow network connection” option updates the policies even when the update is being transmitted across a slow network connection such as a telephone line. Updates across slow connections can cause significant delays. The “Do not apply during periodic background processing” option prevents the system from updating affected policies in the background while the computer is in use. When background updates are disabled policy changes will not take effect until the next user logon or system restart. The “Process even if the Group Policy objects have not changed” option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they are updated only when changed. However you might want to update unchanged policies such as reapplying a desired policy setting in case a user has changed it.