Depending on the size of your organization, you could have a few Group Policy Objects (GPO) or you could have many. Sometimes it is very hard to find out why a workstation or server is acting the way it is. I would say that GPOs are the heart of security in a Windows domain environment.
A nice way to view which policies are being applied to the target Workstation/Server is by generating an .html file that shows all GPOs applied. The GPRESULT command displays the Resultant Set of Policy (RSoP) information for a remote user and computer.
Open a Command Prompt and type the following:
GPRESULT /H GPReport.html /f
Now open the file GPReport.html that is present on the desktop. It should look similar to the image below.
I used to only run this command minus creating the report but realized quickly that it was hard to read and find the relevant info I was looking for. Ever since finding this a few years back, I can’t imagine going back to the old way!