Solved

Conflict between Windows Server 2003 SBS Folder Redirection, and roaming profiles

Posted on 2008-10-27
3
689 Views
Last Modified: 2010-04-21
I have Server-A (Windows 2003 SBS, file and print server and Domain Controller for the network

With 28 workstations, A-1 to A-28. Each A-user has its own workstation, with local profile, with My Documents and Desktop redirected to the user share on the server through a GPO redirection. These users (Group-A) are set up as domain power users.

I then add 6 workstations, B-1 to B-6.

Similar setup, but for 10 B-Users, who have ROAMING profiles. Otherwise, same setup, My Documents and Desktop redirected to the user share on the server through a GPO redirection.

A-users don't have any problems, all is good.

B-users shows some unusual behavior: if User-B1 deletes a file from his account, the file disappears as it should. Then User-B1 logs off, logs back on, and the deleted file is back in his account! This happens to all deleted files.


     It turns out, when B-user James logs in, his profile (including documents and desktop) are copied locally.
     Then when James deletes my_doc_1.doc from what he sees as "My documents", he actually deletes
 \\ServerA\UserFiles\James\My Documents\my_doc_1.doc
     And then when James logs off, his local copy of the profile is copied back to the server, INCLUDING my_doc_1.doc. Thus, when he logs back on, he sees the file back in place - he is never able to delete files!
     Very frustrating!


     I was told to to move folder redirections to a location outside of the roaming profile. So I took the folder redirection GPO (which points to "\\ServerA\UserFiles\%username%\"), and I changed the scope from "Domain users" to "A-group".
     Then I created another redirection GPO, applied it to "B-group" only, and set the redirection to "\\ServerA\UserFiles-B\%username%\".


     Did gpupdate /force, restarts, multiple logon / logoff, cycles. To no avail. Every time I login as James, I still get sent to  \\ServerA\UserFiles\James\My Documents\ (the old redirection folder).
     
     When I tried rsop.msc, it even told me that the redirection policy is
my documents > \\ServerA\UserFiles\James\My Documents.
     But it didn't  tell me which GPO was causing that (GPO = '           ')

     How can I change this mapping?

0
Comment
Question by:Ronino
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 31

Accepted Solution

by:
Henrik Johansson earned 500 total points
ID: 22822186
Sounds like the issue that when using folder redirection to move data and original folder contains files, folder redirection policy will fail/rollback if target folder/share doesn't have correct permissions.
User shall have full control on both share and NTFS.

http://technet.microsoft.com/en-us/library/cc775853.aspx
0
 

Author Comment

by:Ronino
ID: 22863268
This question was posted in conjunction with

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/2003_Server/Q_23807085.html

Thank you for your help, henjoh09, it was a permissions problem indeed.

It also turns out the redirection GPO takes quite a while (hours) to propagate, despite several system reboots and gpudate / force
0
 

Author Closing Comment

by:Ronino
ID: 31510267
Thank you - that was it.
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question