Windows 2008 R2 Mandatory Profile GPO
hi all,
i trying configure mandatory profiles user logs onto of our windows 2008 r2 servers. have test environment consisting of 2008 r2 dc , few 2008 r2 application servers. process followed this:
on dc created foler on c: drive , called profile, shared profiles$ authenticated users , domain admins full control. set ntfs permissions authenticted users read , domain admins full.
then logged onto 1 of 2008 servers, created local user called mandatory, logged on user, modified desktop , added files desktop, logged off logged on domain admin account. copied local user folder mandatory including hidden files share \\server\profile$\mandatory .
then imported ntuser.dat regedit removed permissions , added authenticated users ( read ) , domain admins (full ) , unloaded hive. rnamed ntuser.dat ntuser.man , renamed mandatory folder mandatory.v2.
now created new gpo , enabled "use mandatory profiles aon rd session host server" , enabled "set path remote desktop services roaming user profile" path of \\server\profile$\mandatory
i linked gpo ou containing windows 2008 r2 servers, quick gpupdate on server logged in. profile not mandatory one. have tried enabling loopback goup policy applying filtering to users , computer account still no mandatory profile applied user logging on. rsop shows gpo processed , applied have made other changes gpo , settings apply. yet mandatory profile doesn't apply. when logged on if go %userprofile% points local cache i.e c:\users\username , can make changes still there when logging off , on again.
am missing obvious?
thanks
hi,
use mandatory profiles on rd session host server
this policy setting allows specify whether remote desktop services uses mandatory profile users connecting remotely rd session host server.
if enable policy setting, remote desktop services uses path specified in set path remote desktop services roaming user profile policy setting root folder mandatory user profile. users connecting remotely rd session host server use same user profile.
note:
for policy setting take effect, must enable , configure set path remote desktop services roaming user profile policy setting.
you can open start, click run, type cmd, press enter, type gpresult /h gpreport.html in terminal server command prompt, can check report whether group policy has been applied .
more information:
profiles
http://technet.microsoft.com/en-us/library/ee791865(ws.10).aspx
manage user profiles remote desktop services
http://technet.microsoft.com/en-us/library/cc742820.aspx
technology changes life……
Windows Server > Remote Desktop Services (Terminal Services)
Comments
Post a Comment