Solved

Applying GPO to OU to map network Drive

Posted on 2006-07-18
10
732 Views
Last Modified: 2009-01-29
I am setting up a terminal server (2003) to give access to an accounting application to a group called TS ACCT. I have created a batch file named mapn.bat which states "net use n: \\server\share\". The policy is not applying. I linked it to the specific OU and it is not blocking inheritance. Security Filtering is to the TS ACCT Group, and they have the delegated rights to read and apply GPO. Any ideas?????
0
Comment
Question by:Trihimbulus
  • 4
  • 3
  • 2
  • +1
10 Comments
 
LVL 6

Expert Comment

by:glennbrown2
Comment Utility
where in GP have you set the batch file to apply...a login script?

what info do you get when running rsop.msc from the start/run box when a user is logged in
0
 
LVL 5

Expert Comment

by:mkdonohue
Comment Utility
Use a VB Script to map the drive, not a bat file.

Something like this:

Dim net
set net = Wscript.CreateObject("Wscript.Network")
net.MapNetworkDrive "N:", "\\server\share",T


Save that to a file called mapndrive.vbs in your netlogon share. Map your GPO's login script to that VBS.

This sets a "non persistent" share - meaning it runs each time they login, if they are off the network, the mapping won't appear.
0
 
LVL 51

Accepted Solution

by:
Netman66 earned 500 total points
Comment Utility
Firstly, this isn't correct:  net use n: \\server\share\

It should be:  net use n: \\server\share

Next, make sure it's set user User Configuration and is a Logon Script.

Finally, all User Accounts must be in the OU or sub-OU where the GPO is linked.

0
 
LVL 5

Expert Comment

by:mkdonohue
Comment Utility
One thing I forgot about the .vbs

Add the following line to the beginning:

On Error Resume Next

That will make errors invisible to your clients, for example if they already have manually mapped that drive letter to something else.

I like .vbs because you have more control than the batch files.
0
 
LVL 51

Expert Comment

by:Netman66
Comment Utility
I debate that, but it's personal preference I guess!

There isn't much I can't accomplish in a batch file that can be done with VBS - and I've used both.

I find vbs files way longer to write for simple operations.

0
Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

 

Author Comment

by:Trihimbulus
Comment Utility
Netman66- I have created a group for the people logging into the Terminal Server and this group is in the Container. Will this work?
0
 
LVL 51

Expert Comment

by:Netman66
Comment Utility
Do you just want this to apply to people logging into the TS? and only when they log into the TS?

If so, the way this is done is to put the TS into it's own OU, create the GPO on this OU and enable Loopback processing.

If your TS is not a Domain Controller or File server and only runs TS then this will work.

But to answer your question, GPOs only apply to User and Computer objects not to Groups.

0
 

Author Comment

by:Trihimbulus
Comment Utility
"Do you just want this to apply to people logging into the TS? and only when they log into the TS?
If so, the way this is done is to put the TS into it's own OU, create the GPO on this OU and enable Loopback processing."

Thanks I did this and everything seems to work. I placed the users in the same Container and seems to work. In terminal services Configuration, I specified to run a certain program at logon. The problem now is that the Program does start (meaning the mapped drive batch file does work) BUT the taskbar never displays. I disabled the program from starting (just to test setup) and the taskbar does show. Any ideas? Maybe I need to specifiy time paramaters somewhere (ie. start in 10 seconds of logon???)

0
 
LVL 51

Expert Comment

by:Netman66
Comment Utility
You could delay it from starting, yes.  Is the taskbar simply hidden under the window?

0
 

Author Comment

by:Trihimbulus
Comment Utility
Actually I need to start a new question Thanks for answering my original!
0

Featured Post

Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

Join & Write a Comment

Preface Having the need * to contact many different companies with different infrastructures * do remote maintenance in their network required us to implement a more flexible routing solution. As RAS, PPTP, L2TP and VPN Client connections are no…
I guess it is not common knowledge to most Wintel engineers/administrators: If you have an SNMP-based monitoring system in your environment (and it's common to have SNMP or Syslog) it's reasonably easy to enable monitoring of the Windows Event logs,…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now