- On the ms-technet site there is a best practice article about profiles
/ homedirs, check that first. You need to set special permissions on the
folders;
- Check your policies to set add the administrators-group to roaming
profiles;
- Disable the ability to use offline folders on the profiles directory /
share.
Grtz,,
Michel
------------------------------
*Van:* thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] *Namens
*hboogz
*Verzonden:* maandag 13 november 2006 16 <javascript:void(0)>:19
*Aan:* thin@xxxxxxxxxxxxx
*Onderwerp:* [THIN] Re: Home Folder ownership
Hey Guys,
I'm having an issue with a newly created CPS 4.0 box with new profiles and
Home directories using Folder redirection.
i hav created two shares for TSPROFILES$ and TSUSERS$
However, i keep getting access denied when trying to access a users "My
Documents" settings.
I've created the share permissions of the root path to allow everyone.
The NTFS permissions have my group and the user as full control and i've
disabled inheriting permissions from the parent folder.
I'm sure the above script can help me, but i'm not sure where and when i
would execute it ? every login ? once a night ? once ?
i could use some help on this one.
Thanks,
On 10/10/06, *Jim Kenzig http://ThinHelp.com* <jkenzig@xxxxxxxxx> wrote:
We have all sorts of problems in office apps if they aren't in our 2003
domain.
Here are a couple script files for you.
First create a script to pull out your users names from your profile
directory. Of course all of this hedges on that all of your users have
logged on at least once and have a profile. Otherwise it is useless.
Lets call it getusers.cmd
@Echo Off
Dir /B F:\Profiles >F:\users.txt
This assumes your profiles folder is on drive F: Edit to your drive and
profiles dir. It outputs the users to a file called users.txt
Next create a simple yes answer text file called Yes.txt just put the
letter Y in the file and save it in your root directory where you saved the
users.txt file.
Finally here is your script to set permissions. Lets call it
set_perms_users.cmd
For /F %%1 in (F:\users.txt) do xcacls F:\Users\%%1 /T /C /G
administrators:F %userdomain%\%%1:CO System:F <yes.txt
This assumes that your users files are in F:\users change that to your
users directory. It gives the user full priveleges on all their files and
adds the administrators group so you can manage them.
You can do the same for your profiles with a set_perms_profiles.cmd that
just changes the directory to your profiles directory.
For /F %%1 in (F:\users.txt) do xcacls F:\profiles\%%1 /T /C /G
administrators:F %userdomain%\%%1:CO System:F < yes.txt
Change the F:\ to your drive and profiles directory.
Hope this helps.
Jim Kenzig
*Evan Mann <emann@>* wrote:
I direct profiles and home folders to separate places, thus the only
thing in a users home folder is the \windows folder and any personal
documents they place there.
With this being the case, is it necessary for the user to be the owner of
their folder? I have it both ways and I have not had any problems. FYI, I
will never redirect app data, desktop, or start menu into the home folder.
I do have the profiles folders setup where the user is the owner, as
everything I read said this is necessary.
Jim Kenzig <web%20at%20kenzig.com>
Microsoft MVP - Terminal
Services<https://mvp.support.microsoft.com/profile=23AEC72D-4582-47DE-8516-85D400AD929A>
Citrix Technology Professional <http://www.citrix.com>
Provision Networks VIP <http://www.provisionnetworks.com/vipprogram.aspx>
CEO The Kenzig Group
http://www.kenzig.com
Blog: http://www.techblink.com
Terminal Services Downloads: http://www.thinhelp.com
<https://mvp.support.microsoft.com/profile=23AEC72D-4582-47DE-8516-85D400AD929A>
--
HBooGz:\>
