No, that's a GPO for some update Pre-Deployment systems. It's inherited further up
the OU tree. The Security Filtering on it would prevent our Linux test system from reading
it.
The GPO I'm specifically using for testing is
"{8C43AC42-0B5E-4703-AB0C-E25460C9ED29}". SSSD starts reading that GPO on line
501 of the sanitized log I sent. Again, probably should have mentioned that originally.
That GPO is linked to the Linux server's OU, and the server is the only object in the
OU. It doesn't have any WMI filtering and it's the GPO I've been changing
permissions on during testing.
Thanks,
-Donald