I've been doing some testing on a Windows 10 Education build. After imaging and locking down users via Group Policy i have noticed a security issue when logged on as a standard user. I cannot stop standard users being able to UNC from either the search bar or Windows Explorer to any DFS path. For example \\domain.local\sysvol - Standard users have full access to these files.

Has anyone come across this and what did you do to stop it?

I am stumped.

Thank you