Masking Drives for Terminal server users
I have a Windows server 2003 and using Terminal server option for users. In the GPO I'm masking all local drives because I de not want users to see the c: to h: drives in the explorer. All users loging in a terminal server session have there local worstation drive loged and that works fine.
The probleme is that I'm trying to access a shared folder on the terminal servers h: but since I use the "mask all drives in GPO" it seems that I cannot see the network drive in the explorer of that users terminal session.
Is there a way to fixe that?
Thanks
The probleme is that I'm trying to access a shared folder on the terminal servers h: but since I use the "mask all drives in GPO" it seems that I cannot see the network drive in the explorer of that users terminal session.
Is there a way to fixe that?
Thanks
ASKER
This could work but how and where do I start to create a custom policy that would allow me to hide from a: to h: ?
Is this in registry?
Thanks
Is this in registry?
Thanks
I've built out the custom adm file to hide the specific drives you want I will paste the info in a separate post. Here are the instructions:
Copy the contents of the next post to a text file and rename the file HideDrives.adm
Open group policy or local policy editory (if it only needs to apply to one machine I use gpedit.msc on the local machine)
Under User configuration right click on Administrative Templates and choose Add/Remove Templates
In the Add/Remove Templates window click Add
Copy the HideDrive.adm file to the location shown, select it and click open
Close the Add/Remove Template Window
Expand User>Administrative Templates>MetaFrame Sample Policy>Windows NT>Explorer>Drive Restrictions
Doubleclick on Hide (or show) the selected drives
Enable the policy and from the drop down list select Hide Drives A-H
Good Luck
If you need more info or have problems with this let me know
Crow
Copy the contents of the next post to a text file and rename the file HideDrives.adm
Open group policy or local policy editory (if it only needs to apply to one machine I use gpedit.msc on the local machine)
Under User configuration right click on Administrative Templates and choose Add/Remove Templates
In the Add/Remove Templates window click Add
Copy the HideDrive.adm file to the location shown, select it and click open
Close the Add/Remove Template Window
Expand User>Administrative Templates>MetaFrame Sample Policy>Windows NT>Explorer>Drive Restrictions
Doubleclick on Hide (or show) the selected drives
Enable the policy and from the drop down list select Hide Drives A-H
Good Luck
If you need more info or have problems with this let me know
Crow
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
YES!
Thanks, this works very well. AND you've shown me step by step, thanks you very very much Crow
A+
Thanks, this works very well. AND you've shown me step by step, thanks you very very much Crow
A+
Glad to assist. Remember that you can edit the settings of this file to meet the changing needs of your terminal services enviroment.
Hi
I tried this as well, and it worked out fine. Howeever, it also applies when I log on as an administrator. Does anybody know how to make it apply to regular users only?
Eilif
I tried this as well, and it worked out fine. Howeever, it also applies when I log on as an administrator. Does anybody know how to make it apply to regular users only?
Eilif
hide drives
prevent access
The hide drive setting will still allow a users to access the drive but it won't show up in explorer. The prevent access setting will do just that, prevent access. Which setting are you using?
You can also create a custom administrative template to hide or prevent access to specific drives (not just the ones specified in the original microsoft policies). Check out the following link for more info on the process:
http://ccaheaven.com/files/policy/xample.adm
Let me know if you would like more details or clarification
Crow