# Create the Windows AD GPO

#### Step 1:&#x20;

* Log in to your domain controller and open the Group Policy Management Editor.
* Go to Computer **Configuration** > **Windows Settings** > **Security Settings** > **Local Policies** > **Security Options**.

![](/files/49r4E3AEYZWCG9hfWTFv)

* Select **Network access: Restrict clients allowed to make remote calls to SAM**.

![](/files/SQf5nsctQ1uOlN38aAQx)

#### Step 2:&#x20;

* Check the checkbox for **Define this policy setting**.&#x20;
* Select **Edit Security**.

![](/files/BLaLhrcBtmYqJMADms8m)

{% hint style="info" %}
By default, administrators will have the Remote Access setting set to allow. You can choose to edit this setting according to your organization's security policies, but for the purpose of this document, follow the steps below.
{% endhint %}

* Select the domain joined service account you created for Epiphany.
* Select **OK**.&#x20;

![](/files/xd32cjhGLS5EnYA5bDVr)

![](/files/h7IiH3IrACzkKidParDM)

#### Step 3:&#x20;

* The security descriptor field will  have the new settings populated. Select **Apply.**

![](/files/0JAWuU4YYeLuI8e3Tdmg)

#### Step 4:&#x20;

* You can verify the new settings that are displayed on the first **Group Policy Management Editor** window shown in the prior steps.

![](/files/vByiRyJQRgs5Y1Y0t0pM)

For further reading please refer to the Microsoft article in the [**supplemental resources**](#supplemental-resources).


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.reveald.com/technical-documentation/data-sources-early-access/windows-ad-legacy-version/create-the-windows-ad-gpo.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.