Solved

Deleted user files reappear with every new session

Posted on 2008-10-11
12
911 Views
Last Modified: 2013-12-23
I have Server A (Windows 2003 sbs) with 28 workstations, A-1 to A-28,
and Server B (Windows 2003 sbs) with 6 workstations, B-1 to B-6.

Similar setup, 2 separate networks, in 2 offices, withing the same company. The server are file and print servers, and Domain Controllers for the network. Users have roaming profiles, with My Documents and Desktop mapped directly to the user share on the server.

Network-A runs great, no problems.
Network-B shows some unusual ehavior: if User-B1 deletes a file from his account, the file disappears as it should. Then User-B1 logs off, logs back on, and the deleted file is back in his account! This happens to all deleted files.

Now I figured there is a problem with ther server, so I decided to eliminate Server-B. I moved all user files from it to Sever-A, removed all workstations B-1 to B-6, and added new workstations to network-A. One server, one network, one love.

To my surprise, the B users, having new workstations, connected to a completely different server, start experiencing the same reappearing-file behavior!.

Not only that, but to really get me confused: same server, the B users experience the strange bahavior, whle the A users have no problems whatsoever.

What gives? Thanks
0
Comment
Question by:Ronino
  • 6
  • 5
12 Comments
 
LVL 5

Expert Comment

by:thecomputerdocs
ID: 22695949
Sounds like a file permissions issue possibly. You may want to go into the permissions of the share and "reapply" them?
Also check for FRS, DNS, and group policies that may be affecting the accounts.
Were these two seperate domains, on two seperate domain controllers?
Did you recreate the new users on the Domain A DC?

0
 
LVL 5

Expert Comment

by:sensored2008
ID: 22696544
not to me! it sounds more like those account are using mandatory profiles
0
 

Author Comment

by:Ronino
ID: 22697023

I checked and double checked permissions. Also, they have no problem modifying files.

Another good one: Mack tried to delete Memo_1.doc, and failed 3 times. Then he decided to just rename it Memo_1_old.doc. Next time he logged in, he had BOTH a Memo_1.doc and a Memo_1_old.doc

These used to be 2 separate domains. Now B users and A users are under the same group... with same group policies. What else can I check for?

Yes, I fully recreated B users on the A domain.

FRS? What does DNS have to do with this?

Mandatory profiles... NTuser.dat still has the *.dat extension, and the user folder name doesn't have any *.man in it (to make it super-mandatory)

Thanks
0
 
LVL 5

Expert Comment

by:thecomputerdocs
ID: 22698056
When you copied the files from server B to server A, did you take ownership of them?
The system doesn't have any kind of third-part file protection loaded on the server or workstations, does it?
0
 

Author Comment

by:Ronino
ID: 22699311
Invastigating further....

It turns out Server A users had local profiles, and GPO set for
Folder Redirection: Basic Redirection
Desktop > \\ServerA\UserFiles\%USERNAME%\Desktop
My Documents >  \\ServerA\UserFiles\%USERNAME%\My Documents

That works for A-Users. Unfortunately B-Users move around offices all the time, so they need roaming profiles.

When I log in as James, I pay attention to 3 folders
(1)> My Documents
(2)> \\ServerA\UserFiles\James\My Documents
(3)> c:\Documents and Settings\James\My Documents

I go to (1), and try to delete Memo_1.doc. It disappears as it should.
It also disappears in (2), on the server, BUT !! it does NOT dissappear in (3) !!

So as soon as I log James off the computer, the locally-stored roaming profile from (3) gets copied on top of the server profile, (2), and puts the deleted file back in the folder.


So I tried to use a new GPO:
User Configuration >
   Administrative Templates >
      System >
          User Profiles >
               Exclude directories in roaming profile:    Enabled    (My Documents; Desktop; )

I figured, this will stop copying those folders back and forth. Whenever James clicks on My Documents on the desktop, anyway, he sees
      \\ServerA\UserFiles\James\My Documents
so there won't be a MyDocuments folder in the locally stored  profile to interfere

Result: Wrong. What this did, it copied My Documents and Desktop down to the workstation when James logged in.
    Then when James logged off, it deleted My Documents and Desktop from
          \\ServerA\UserFiles\James\

So how do I make the local profile stop interfereing with \\ServerA\UserFiles\%USERNAME%\Desktop and Documents???
0
 
LVL 5

Expert Comment

by:thecomputerdocs
ID: 22699392
I have also seen this happen if you have a roaming profile stored on the
server in the same location as a redirected my documents -- both to
\\<ServerName>\%Username% perhaps.

When you delete the desktop icon, it goes away from the desktop and server,
but because the server location is set to sync on logoff, the server sees the
file version in the offline version stored in the user profile directory in
My Documents on the local computer and puts it back on the server location.
Then, the next time you log in, it will see the file back in the server copy
of the desktop folder and push it to the desktop making it reappear.

I have seen this happen a few time in places where they had roaming profiles
working and thought to use some of the features of folder redirection for My
Documents or the like and didn't realize that they were sending them to the
same place. The offline synchronization kicks in a makes a bit of a circular
mess.

The Fix: In the short term, the file will go away if you delete it in both
locations. In the long term, you will need to move folder redirections to a
location outside of the roaming profile.
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 

Author Comment

by:Ronino
ID: 22699484

That is not an option I'm afraid. All A-users (who have local profiles) have no problems whatsoever, and they are more numerous by a factor of 5.

A-users include office management, they would be annoyed in a major way if "I change the computer system when everything is working fine"...

I have to figure out how to exclude MyDocs and Desktop from the profile sync process.
0
 
LVL 5

Accepted Solution

by:
thecomputerdocs earned 450 total points
ID: 22699640
I'm referring to making sure the mydocuments redirection isn't within the same folder as the roaming profile.
Make sure they are kept completely seperate from each other. The GPO will just point to the different locations.
If you are sure they aren't, let's move on and look for any other ideas.
0
 

Author Comment

by:Ronino
ID: 22700643

1. yes, they are in the same folder
2. I thought I won't be able to separate them, because that would affect users in group B

Nevermind, though, I will readjust groups and apply different redirection GPOs to Ausers and Busers. Thanks, I'll get to do that on Tuesday and report back.
0
 
LVL 5

Expert Comment

by:thecomputerdocs
ID: 22701616
ok, good luck....look forward to seeing if it works.
0
 

Author Comment

by:Ronino
ID: 22786754

This is becoming a Terminator-2 style man-vs-machine battle! (including apocalyptic scenes of end users' files having to be restored from offsite backup)

The GPO object that handled all folder redirection... I removed "domain users" from the scope, and added "A-users".

Then I created another GPO object for B-users only, with folder redirection to their new location, "D:\B-group\Docs and Desks redirects."

After multiple login / logout attempts, restarts, gpupdate's and so forth, still no result. Everytime a B-user logged in, he got the same old folder redirect.

When I tried rsop.msc, it even told me that the redirection policy is
my documents > \\server\old-share\%username%\My Documents

but it didn't  tell me which GPO was causing that (GPO = '           ')

(Upon reverting, permissions / ownership hell ensued, but that's another story...)

Ok, how do I fix this GPO / redirect to a separate folder share? Why won't it let me change it? Is it because it's SBS2003 ??
 
any help would be appreciated
0
 

Author Comment

by:Ronino
ID: 22863285
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now