Group Policy Infrastructure
Group Policy is a feature of Windows that enables you to manage change and configuration for users and computers from a central point of administration. Group policies are designed to simplify and centralize the configuration and management of Windows systems. There are two types of policy settings user and computer. The policy settings in the computer settings can be used to configure file system permissions, user password policies, and network configurations and so on.
The user configuration settings can be used to manage desktop environments for example a standard corporate desktop. Every computer has a single Local GPO that is always processed regardless of whether the computer is part of a domain or is a stand-alone computer. The Local GPO can not be blocked by domain-based GPOs. But, settings in domain GPOs always take precedence since they are processed after the Local GPO. Prior to Windows Vista you could only have one local policy but Vista and Windows 2008 supports multiple local group policies for user accounts.