Solved

User cannot log on with their roaming profile

Posted on 2008-10-13
4
293 Views
Last Modified: 2008-10-22
Today is the first day back from our autumn break, when staff attempted to log in they were met "Windows cannot locate the server copy of your roaming profile and is attempting to log you on with your local profile. Changes to the profile will not be copied to the server when you logoff. You may receive this error message because of network problems or insufficient security rights. If this problem persists, contact your network administrator."  Access Denied.  It has affected all my users, I checked my firewall "as past issues resided there".  The main thing I noticed was from a computer on my staff network the Kerberos 5 service was sent to the server on my student network.  I presume that this is where the problem lies, but I am not sure where a change could have been made to force my staff users to attempt to authenticate on the student network.  I have searched on line and found issues related to permissions but again most writings had to do with a single user not a subnet.  Any advice would be greatly appreciated.
0
Comment
Question by:ISSit
  • 2
  • 2
4 Comments
 
LVL 18

Expert Comment

by:exx1976
ID: 22715048
Have any changes been made to the location of the profiles?  Copied to a new file server?
0
 

Author Comment

by:ISSit
ID: 22716247
We recently installed a Dell MD3000 storage unit and moved the users profiles over to this unit approx 2.5 weeks ago.  Every thing seemed okay after the move, had to delete the old profile so the users could get a new profile downloaded.  I thought about this being a problem, I took a user and changed his profile location back to the DC (where they were initially), but there was no change to the error message.  The DC has 2008, the MD3000 is attached to a member server with 2003 server, not sure if that is of consequence.
0
 
LVL 18

Expert Comment

by:exx1976
ID: 22717545
Check the ownership of the profile.  The owner needs to be either the LOCAL administrator account of the server that's hosting it, or it needs to be the user who's profile it is.  Use xcacls or subinacl to script this and clean it all up.
0
 

Accepted Solution

by:
ISSit earned 0 total points
ID: 22718583
The users are owners of the profile, for me to review them I have to take ownership.  As I said earlier I changed one user back to the original server, but the system will not even create the folder.
0

Featured Post

How does your email signature look on mobiles?

Do your employees use mobile devices to reply to emails? With mobile becoming increasingly important to the business world, it is in your best interest to make sure that your email signature looks great across all types of devices.

Join & Write a Comment

To effectively work with Diskpart on a Server Core, it is necessary to write some small batch script's, because you can't execute diskpart in a remote powershell session. To get startet, place the Diskpart batch script's into a share on your loca…
Scenario:  You do full backups to a internal hard drive in either product (SBS or Server 2008).  All goes well for a very long time.  One day, backups begin to fail with a message that the disk is full.  Your disk contains many, many more backups th…
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now