Summary
Microsoft Windows allows users to define GPOs (Group Policy Objects) in a domain environment. GPO is used by many network administrators to restrict 
the permissions of users.

By using the RunAs functionality of Windows it is possible to bypass user GPO settings completely.



Details
By using the run as or the runas /noprofile commands it is possible to bypass user GPO settings completely.

Example:
1. Set up a domain with strict security settings. e.g. Software restrictions policies, hide local drives, remove "run", disable cmd.exe and so on.

2. Log on to an XP computer in that domain - make a link to cmd.exe - select "run as" on that link.
3. Logon with another user in the same domain - with the same restrictions - you'll see that the GPO's will not be loaded for that user.