Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Remove terminal services profile path from AD users.  Or, prevent profile path on TS.

Posted on 2009-04-03
6
Medium Priority
?
969 Views
Last Modified: 2013-11-21
How can I blank out (ie, remove) the specified TS profile Path for a several users?

I have ADmodify (2.0), but I get an error if I enable that field and then leave it blank.

Is there a way I can specify that the Terminal Server itself does not use the profile paths?  This would be most helpful as we have other TS's that I would like to use their TS profile on.

Thanks for your help.
0
Comment
Question by:slsmith
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 15

Expert Comment

by:zelron22
ID: 24059059
You should be able to use AD Users and Computers, select the users, get their properties, and blank it that way.

You can also specify TS Roaming Profiles through Group Policy.  If you have terminal servers that you want to apply different policies to, put them in different OU's or different groups, create different policies and apply them to the different OU's or set the permissions to apply to the particular groups.
0
 
LVL 1

Author Comment

by:slsmith
ID: 24059371
I do not want to remove them one at a time in ADUC.

Also, i created a GPO for that TS, but it will not let me leave a blank value in the Terminal Server Profile path.  If I disable the setting, it just picks it up from theirAD user settings, right?  I need to remove the path, not change it to a different value (unless its a blank value)

Thanks.
0
 
LVL 15

Accepted Solution

by:
zelron22 earned 2000 total points
ID: 24059671
My apologies, I thought you could modify the TS Profile path of multiple users with ADUC, but that's limited to the Windows Roaming Profile.

According to the explanation in the TS Profile group policy settings, setting it to disabled forces a local profile to be used (unless otherwise set on the server itself).



0
Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

 
LVL 15

Expert Comment

by:zelron22
ID: 24059742
0
 
LVL 1

Author Comment

by:slsmith
ID: 24077228
I applied the GPO to specify disabled for TS Profile and it had no effect on "blanking out" or effectively disabling the use of TS profiles on this machine.

Sorry for the delay in this response, but I still am seeking a solution to the problem.
0
 
LVL 15

Expert Comment

by:zelron22
ID: 24078160
Did you confirm using GP Results that the policy was being applied correctly?

0

Featured Post

Learn Veeam advantages over legacy backup

Every day, more and more legacy backup customers switch to Veeam. Technologies designed for the client-server era cannot restore any IT service running in the hybrid cloud within seconds. Learn top Veeam advantages over legacy backup and get Veeam for the price of your renewal

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Always backup Domain, SYSVOL etc.using processes according to Microsoft Best Practices. This is meant as a disaster recovery process for small environments that did not implement backup processes and did not run a secondary domain controller that ne…
Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question