We are running a Windows XP based Server 2003 domain.
Some of our users are using a single mandatory domain with both serveral user accounts each of which are used by several users.
The issue we are having is that when we need to make changes we have to make sure everyone user is logged off, then make the changes, reset the Ntuser file to .man and get them to log back on. The is , to say the least a bit of a pain when you have 20 users logged on with three accounts on 20 PCs on 4 floors.
Especially when, after 3 days, one person who hasn't logged off then logs off, and their old Ntuser file overwrites the new one (despite it being supposedly read only)
We just had a situation where someone dropped 10.5 Gig of songs on the desktop, somehow it got saved in the supposedly mandatory profile and then the users were effectively unable to log on (at least for about 6 hours while the new profile loaded)! Is there any way of either forcing log off for all users with that profile, or forcing any changes made to remain unchangeable? Without a third party product ideally (unless it's free).
Oh, and also deleting the local copy (we had a situation where it seemed a wireless laptop with a weak signal seemingly was unable to load a server copy, booted itself with a cached copy of the profile then overwrote the new profile when the user logged off).
The easiest way so far is to copy the profile, make the changes then start pointing the user accounts at it.