Link to home
Start Free TrialLog in
Avatar of Robing66066
Robing66066

asked on

User Profile Rights

We have an interesting problem.  When a user first has his roaming profile created on the server, a directory is created that the user has ownership over.  The administrator is given no rights whatsoever.  In order to properly manage these folders, we need to add the administrator to the rights list, however, we have no right to do so.  That leaves us with only the choice (as far as we can tell) to take ownership over the folder and then assign rights.  Unfortunately, when we do that, the user can no longer use the folder until we give them rights.   Clearly a bit of a mess.

Can anyone tell me if this is really the way windows 2003 is supposed to work and if so, how do you get around it?
ASKER CERTIFIED SOLUTION
Avatar of Chris Dent
Chris Dent
Flag of United Kingdom of Great Britain and Northern Ireland image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Robing66066
Robing66066

ASKER

Yeah, we noticed the breaking thing.  We'll check out the group policy item.  Is there any way to add a non-administrative group to the rights for the profiles?
Avatar of Robing66066
Robing66066

ASKER

Oh.  Nevermind.  Once we're added as administrators, the non-admin group can be done with a batch file...  Duh.  :)
Avatar of Robing66066
Robing66066

ASKER

Hi.

OK.  That got most of it, but the terminal services user roaming profiles didn't respond to that setting.  Any idea what needs to be done for those?
Avatar of Chris Dent
Chris Dent
Flag of United Kingdom of Great Britain and Northern Ireland image

It's a Computer account based setting, so if you can load rsop.msc on the terminal server and see if the policy has been applied there.

It may be just that the policy isn't touching the terminal server.
Avatar of Robing66066
Robing66066

ASKER

We went directly to the server using group policy edit and changed the setting directly on the terminal server and still no change.
Avatar of Chris Dent
Chris Dent
Flag of United Kingdom of Great Britain and Northern Ireland image

If the Terminal Server is also 2003 try running try running rsop.msc and verify that the policy setting is there and not being overridden. Group Policy always overwrites local, so that would be a good place to start.
Avatar of Robing66066
Robing66066

ASKER

I'm on holiday this week.  I'll check back with you when I get back after.

Thanks.
Avatar of Robing66066
Robing66066

ASKER

Worked fine.  Thanks!
Avatar of Chris Dent
Chris Dent
Flag of United Kingdom of Great Britain and Northern Ireland image

Pleasure :)