question

Hi @OchenAo-0382 ,

Can you please create a Test OU under your Domain OU, Please Link your computer-based GPO to that test OU and move your machine under Test OU and please verify the GPO with (rsop. msc) from your machine and see if the GPO is working,(This is for testing only)

Go back to your previous and follow below.

if it works please don't remove the Authentication users from the security filter, you make everyone a read-only please refer below. you can add your security based Group to the security filter

https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/assign-security-group-filters-to-the-gpo

if my suggestion helps, please mark this blog as an acceptable answer. please let me know if you have any questions.

Thanks & Regards,
Sarat

You may already did that but, does the computer has rebooted since it has been added to the Global security group ?

Hi, that's my current setup now. A test OU with a single computer, works with Authenticated Users (the default, already tried that). The problem is when i configure security filtering. it works when i add the computer account. The thing here in focus is the Security group.
So, all in all, we have this:

Authenticated Users - Working
Security Group - Not Working
Explicit Computer Account - Working.

Question: Does the Security Group also need to be under the Scope of Management of the GPO?
My answer, at the moment, is a No but I will defer that to the experts.

In the GPO, under delegation tab... validate that the global security group has Allow "Apply Group Policy"... Look the the Advanced Tab

Hello Ochen,

Do Follow up on the thread discussed in the below link, that will definitely help you out with the issue further.

https://docs.microsoft.com/en-us/answers/questions/120736/gpos-not-applied-ad-group-issue.html

Hope this answers all your queries, if not please do repost back.
If an Answer is helpful, please click "Accept Answer" and upvote it : )

Regards,