I have just implemented a WSUS 3.0 server and had a few questions relating to \nGroup policy more of less. All users are administrators of their own PCs, \nthe GP for the domain is configured to look at the WSUS server for updates. \nI have noticed that all users can edit their own local GP policy, if they \ndisable the option in their own local GP will it effect what the domain GP is \nset to? Also I notice that my users are able to go to the Windows update \nwebsite and get updates, like XP sp3, that I didnt approve on the WSUS \nserver? Can i disable users from going to the update site? Or is there a \nsetting I am missing. I am brand new to WSUS so be gentle.\n\nThanks.