How to configure domain so that the limited domain users loose their data and settings when they logs off...??

Thanks ve3ofa, KCTS and SHIELD1 !

Hi KCTS !

You see, I explored the site link that you gave for Deepfreeze. But I can't buy any product like this because right now my department has some financial bars.

Second thing, you told me about mandatory profile for the user. You know my case. I have four labs and suppose in lab no. 1 I have 30 PCs, so if I create one user account named lab1user and make it roaming, then how to make it mandatory ? (I know that we need to rename one file user.dat to user.man, please tell me if I am right or wrong)

I have made roaming profile but not mandatory profile. Once I changed the user.dat to user.man but it didn't work. I don't know why ?

And one thing more...if all the 30 students will use this single account on differnet differnent PCs and logon simulteneously then there will be no problem and once again...How to make a mandatory profile ?

And as SHIELD1 suggested, there are some goup policies, I will check them. If you have some advises here in Group Policy then plese give.

Regards,

Hemant

Thanks for your suggestions !

Let me do this exercise...I will let you know what I did but here, tomorrow and day after tomorrow, we have non-working days (Saturday and Sunday). So please continue your support.

Regards,

Hemant

Thanks again for your suggestions !

I am exploring the utilities like SteadyState and Deepfreeze. Meanwhile, I tried to create a mandatory profile but I completely failed. In my question, I had also asked how to create mandatory profiles ?

Please see, what I did...

1. On domain controller (192.168.5.1), I created a user named: acuser
2. Again on domain controller, I created a folder for storing roaming profiles named: roaming. I gave read and write permission on this folder to domain users.
3. Then in the Active Directory Users and Computers, I went in the properties of acuser and in profile path I gave //192.168.5.1/roaming/acuser
4. Then I made an organizational unit and put the acuser and a computer named AC-PC001 in that OU.
5. Then I went in the properties of that OU and created a new group policy named: Roaming Profile.
6. Then I edited this GPO. I went in User Configurations--->Windows Settings--->Folder Redirections and then in Desktop and My Documents, I redirected them to //192.168.5.1/roaming

Now when I use computer AC-PC001 and log on as acuser, then I can clearly notice that my My Documents and Desktop folders are roaming and no longer exists on the local PC. They are on the server. Means Folder Redirection is OK

Now when I again logged on from client PC AC-PC001, I found that there is the local profile for this user and in that profile there is the file ntuser.dat

On AC-PC001, the file path is C:\Documents and Settings\acuser\ntuser.dat
and
On RDC domain controllder in Roaming Profile of acuser the file path is ( \\192.168.5.1\roaming\acuser\ntuser.dat ), so I changed this filename on RDC to ntuser.man

BUT...whenever I logoff or I will log off from the client PC then in the logoff synchronization, the local file ntuser.dat will again replace the file ntuser.man in roaming profile. And if I change some settings on desktop of client machine while logging from acuser, those changes are replicated to domain controller profile and again reflect to the client machine. I don't want that the desktop wallpaper or any changes that I make should reflect in the roaming profile. Then what is the use of mandatory profile !!!!!!!!!!


Now please tell me where I am wrong. Where I made mistakes ?

Regards,

Hemant