2025-08-06 - Active Directory 6.0 - Creating OU Departments and Users

 Creating OU Departments and Users in Active Directory – A Beginner’s Guide to Real-World Domain Structure

• Spun up Active Directory Users and Computers on Server 2025

• Created a realistic departmental OU structure under TESTLAB.local:

• Accounting

Added first user:

• Name: John Johnston

• Username (UPN): jjohnston@TESTLAB.localPre-2000 login: TESTLAB\jjohnston
• Initial password: Test@1234

• User must change password at next logon: Enabled

• Account was created directly inside the Accounting OU 

Why You Don’t See Users in Group Policy Management

While working in Group Policy Management (GPM), I looked for John Johnston (JJ) but couldn’t find him anywhere. That’s because users and computers don’t actually appear inside GPM like they do in Active Directory Users and Computers (ADUC).

Here’s why:

• In ADUC, you create and organize users and computers inside OUs (like Accounting), which is where JJ lives.

• In GPM, you only create and manage Group Policy Objects (GPOs).

• These GPOs are linked to OUs, not to individual users or computers.

• Any user or computer inside an OU automatically inherits the policies from the linked GPOs.

So, even though JJ isn’t visible inside GPM, he is affected by any GPO linked to the Accounting OU because that’s where his account resides in ADUC.

This separation keeps management efficient:

• ADUC handles object organization

• GPM handles policy deployment

This has been Truncat3d 00000000111100010100110______________end of line