Best Practices
Use Group Policy to secure Windows 2000 and Windows XP computers. Because GPOs are dynamic and are refreshed frequently, they are an excellent method of ensuring a base or additional level of security on your network.
Administrators who manage Group Policy can easily compromise the security of your network by maliciously or accidentally deploying security templates or security-related settings that weaken or remove the base security of Windows 2000 and Windows XP computers.
Use these methods of altering the default behavior of Group Policy only when required and when no reasonable design workarounds exist. Using these options will greatly increase the difficulty of troubleshooting Group Policy, and the resulting confusion could lead to the misapplication of Group Policy.