Locking desktop icons for windows server 2003 domain with xp clients
Posted on 2005-04-06
I am running server 2003 domain with XP client machines. I am able to restrict users not to change the desktop background through group policy. They can still change the icons add them and delete them on there desktop.
This is what I did not sure if this is right?:
-Logged onto the client machine with the user name, made icons on the desktop which I want.
-Logged onto the same machine as administrator and copied the profile of the user to the server under '\\server\Profiles\mandatory\'username'
-From the same machine I deleted the local user profile.
-On the server under the folder '\\server\Profiles\mandatory\username' I changed the folder 'Desktop' permissions to read only.
-Logged on back to the client machine and it collected its profiles now from the server (which is great), and if I delete any icons and logg back again, I get the same icons back which I want, but the only killing thing is that I have now to delete local profiles from all the client machines in order to make the profiles coming from the server to take effect.
-Moreover if I add a new folder on the desktop and logg off and back to logg on I see the new folder and the icons, also while logging off I get the 'user environment' window saying the profile cannot be copied from c:\......' to '\\server......'.
I know there should be an easier way instead of creating roaming profile and changing the 'Desktop' folder permissions in group policy but its not working? Please help stepwise, its becoming a hectic for me now.