Universal Groups - mapping drives

Posted on 2008-10-27
Medium Priority
Last Modified: 2008-11-03
I have a Active Directory forest that I am attempting to map a drive for a couple of Universal groups that are nested within a DL Group.

I have 2 universal groups that are nested within a DL group. The DL group is listed in the login script but does not run. (I know becasue I have a Wscript Echo that should appear when the drive is mapped).

If I add the user directly to the DL group, the drive mapping works but if I remove it, nothing. The user is a member of both universal groups.

What am I missing?
Question by:broberc6
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
LVL 30

Expert Comment

ID: 22812488
What logic are you using to detect group membership within your login script? Not all memberof tests are able to chase nested group memberships.

See the following code listings for examples of group membership tests in login scripts that will test for nested memberships:


Author Comment

ID: 22812674
Below is the script I using for all other working mappings

if InStr(vUserGroups, Lcase("MapXdrive")) Then
WshNetwork.MapNetworkDrive "X:","\\server1\Data\Executive",False
WScript.Echo("Script Ran! ")
End If
LVL 30

Expert Comment

ID: 22812710
Depends on how you are defining vUserGroups. Chances are good that the logic you are using does not test for nested group memberships. See my previous for examples on how to do that.
Get real performance insights from real users

Key features:
- Total Pages Views and Load times
- Top Pages Viewed and Load Times
- Real Time Site Page Build Performance
- Users’ Browser and Platform Performance
- Geographic User Breakdown
- And more


Author Comment

ID: 22813900
This is how it is declared in the login script

Author Comment

ID: 22813902
LVL 30

Accepted Solution

LauraEHunterMVP earned 375 total points
ID: 22813957
Simply searching the contents of the memberOf attribute will not recurse through nested group memberships. Again, see my previous for examples of how to do so.

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
Active Directory can easily get cluttered with unused service, user and computer accounts. In this article, I will show you the way I like to implement ADCleanup..
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Suggested Courses
Course of the Month15 days, 11 hours left to enroll

741 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question