Provide limited Group Policy support on Nano Server
Many security settings and other settings are centrally managed and set via Group Policies in domain environments.
Some core security settings should be managable via Group Policy on Nano Server.
Examples: User Rights, Audit Policies, Security Options, Security Templates, ...
I do not consider DSC a valid solution here, as for most ITPro's it requires too much effort to configure/setup.

2 comments
-
Ryen Kia Zhi Tang [MVP, MCC] commented
I suppose, I have to agree with Jeremy Moskowitz on this. Currently, joining Nano Server to a domain benefit is for authentication and allowing Nano Server to work with other domain members. But if it can also be govern by a light-weight Nano Server group policy administrative template for audit policy or security policy, it will definitely be beneficial for centralized operations management governance. I can't see the need to have all the group policy capabilities because centralized governance can some time be centralized disaster which don't align with Nano Server secure and stable agenda. I will add a vote for some kind of light-weight group policy capabilities though. :)
-
Jeremy Moskowitz, Group Policy MVP commented
As a GP MVP, I think everything should be GP enabled when domain joined.