Ray Zuchowski
asked on
Active Directory Mapped Network Drive User Storage
Question 1: OK so i set up Active Directory on a Windows 2003 Server with no issue however, i want to have multiple network drives linked to a user's account. As of right now i have one drive mapped when a user logs on to the PC. Pretty much the goal is to have these mapped drives follow the user at any pc they log into. I noticed you are only able to map one drive to a user in the user setup section ... How do i add multiple drives?
Question 2: I want each user to have a personal mapped drive for storage that is limited to 10 gigs that they only have access to. So far what i did was created a folder titled User Storage folder on the servers C: drive and shared that. Then i created sub folders in that directory with the users name. However im having security issues on it. I set the Main folder User Storage Folder to be accessed by the users group as a read only and then on the users personal folder i gave full control to their specfic folder. My goal was to have all the users in the users group be able to see all the users folders on the network however only have access to their particular folder. So if John Smith tried adding Mike Jones folder it wouldnt give him access. I was able to accomplish this but once the folder is mapped to that user they cant add or delete anything from their folder.So the real question i guess here is how do i fix the security issue and number 2 how do i limit their personal folder to only use 10 gigs of storage?
Thanks,
Ray
Question 2: I want each user to have a personal mapped drive for storage that is limited to 10 gigs that they only have access to. So far what i did was created a folder titled User Storage folder on the servers C: drive and shared that. Then i created sub folders in that directory with the users name. However im having security issues on it. I set the Main folder User Storage Folder to be accessed by the users group as a read only and then on the users personal folder i gave full control to their specfic folder. My goal was to have all the users in the users group be able to see all the users folders on the network however only have access to their particular folder. So if John Smith tried adding Mike Jones folder it wouldnt give him access. I was able to accomplish this but once the folder is mapped to that user they cant add or delete anything from their folder.So the real question i guess here is how do i fix the security issue and number 2 how do i limit their personal folder to only use 10 gigs of storage?
Thanks,
Ray
ASKER
How do i create a logon script and after its created where do i put it?
You can create a VBS script call it xxxx.vbs, then create a logon GPO to launch it Here is a sample script.
'For drive mappings with VBS:
Option Explicit
Dim oNet, oExec, wshShell, sUserName, sUserDomain, oAcct, sGroup, GroupObj, objShell
Set oNet = CreateObject("WScript.Netw
Set WshShell = WScript.CreateObject("WScr
oExec = wshShell.Run ("net use * /delete /y",0,TRUE)
sUserName = oNet.UserName
sUserDomain = oNet.UserDomain
Set oAcct = GetObject("WinNT://" & sUserDomain & "/" & sUserName)
ON ERROR RESUME NEXT
For Each GroupObj In oAcct.Groups
Select Case GroupObj.Name
Case "Domain Users"
oNet.MapNetworkDrive "H:" , "\\ServerName\ShareName$"
Case "Domain Admins"
oNet.MapNetworkDrive "I:" , "\\ServerName\ShareName$"
Case Else
End Select
Next
You can put this script in the \\domain\netlogon
'For drive mappings with VBS:
Option Explicit
Dim oNet, oExec, wshShell, sUserName, sUserDomain, oAcct, sGroup, GroupObj, objShell
Set oNet = CreateObject("WScript.Netw
Set WshShell = WScript.CreateObject("WScr
oExec = wshShell.Run ("net use * /delete /y",0,TRUE)
sUserName = oNet.UserName
sUserDomain = oNet.UserDomain
Set oAcct = GetObject("WinNT://" & sUserDomain & "/" & sUserName)
ON ERROR RESUME NEXT
For Each GroupObj In oAcct.Groups
Select Case GroupObj.Name
Case "Domain Users"
oNet.MapNetworkDrive "H:" , "\\ServerName\ShareName$"
Case "Domain Admins"
oNet.MapNetworkDrive "I:" , "\\ServerName\ShareName$"
Case Else
End Select
Next
You can put this script in the \\domain\netlogon
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
In that script... Can you bold what values in their i have to change? Thanks
ASKER
I actually fixed the issue with the security.. I set permissions to everyone so they can see all the folders however if they click on another users folder to map it... it asks for the admin user name and password. So they cant get into it.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Now is this a generic script where its applied to the users group or do i just link the script to each individual user?
ASKER
Option Explicit
Dim oNet, oExec, wshShell, sUserName, sUserDomain, oAcct, sGroup, GroupObj, objShell
Set oNet = CreateObject("WScript.Netw
Set WshShell = WScript.CreateObject("WScr
oExec = wshShell.Run ("net use * /delete /y",0,TRUE)
sUserName = oNet.UserName
sUserDomain = oNet.UserDomain
Set oAcct = GetObject("WinNT://" & sUserDomain & "/" & sUserName)
ON ERROR RESUME NEXT
For Each GroupObj In oAcct.Groups
Select Case GroupObj.Name
Case "Domain Users"
oNet.MapNetworkDrive "U:" , "\\DPS210\User Folders\rzuchowski$"
oNet.MapNetworkDrive "S:" , "\\DPS005\OEM Drive O (Programs)$"
Case Else
Next
End Select
Ok here is what i did the script for the user group but i cant get it to work... What am i doing wrong?
Dim oNet, oExec, wshShell, sUserName, sUserDomain, oAcct, sGroup, GroupObj, objShell
Set oNet = CreateObject("WScript.Netw
Set WshShell = WScript.CreateObject("WScr
oExec = wshShell.Run ("net use * /delete /y",0,TRUE)
sUserName = oNet.UserName
sUserDomain = oNet.UserDomain
Set oAcct = GetObject("WinNT://" & sUserDomain & "/" & sUserName)
ON ERROR RESUME NEXT
For Each GroupObj In oAcct.Groups
Select Case GroupObj.Name
Case "Domain Users"
oNet.MapNetworkDrive "U:" , "\\DPS210\User Folders\rzuchowski$"
oNet.MapNetworkDrive "S:" , "\\DPS005\OEM Drive O (Programs)$"
Case Else
Next
End Select
Ok here is what i did the script for the user group but i cant get it to work... What am i doing wrong?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I dont have the money sign in the share name like the folder is just rzuchowski . Do i need the money sign after it and if i do why?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Alright so i got everything working thanks to you however... The user shared portion of it for the U: Drive... How do i make this generic.. for example i need the U drive to map to everyones logon name. So for me mine is rzuchowski but say i need one for John Smith... What do i put in the script to make it generic? Also how do i limit the users folders to only be able to use 10 gigs of space ?
ASKER
oNet.MapNetworkDrive "U:" , "\\DPS210\User Folders\rzuchowski" <----- thats whats in script now but if i log on as another user their folder wont come up cause only my folder is in the script how do i make this generic for the U: Drive?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I tried doing it through the domain account properties and the share will now show up for some reason.
ASKER
Can you have the domain account properties set while having a script in place?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Hi SirusComputers,
Try this
1º - Create a batch file (like this) :
@ECHO OFF
NET USE U: \\yourservername\%username
Save in SYSVOL (eg. \\domain\sysvol\domain\Pol
945F-00C04FB984F9}\User\Sc
2º - Assign full control to your users.
http://www.microsoft.com/windowsxp/using/networking/security/permissions.
mspx
3º - Add this batch to logon script
http://www.computerperformance.co.uk/Logon/logon_script_assign.htm
Try this
1º - Create a batch file (like this) :
@ECHO OFF
NET USE U: \\yourservername\%username
Save in SYSVOL (eg. \\domain\sysvol\domain\Pol
945F-00C04FB984F9}\User\Sc
2º - Assign full control to your users.
http://www.microsoft.com/windowsxp/using/networking/security/permissions.
mspx
3º - Add this batch to logon script
http://www.computerperformance.co.uk/Logon/logon_script_assign.htm
ASKER
I got everything working thanks guys. I read an article the other day about using FSRM but i dont have R2 installed. To install R2 im guessing id have to buy R2 and upgrade or does it have to be a new install? Also If you guess were installing a new server and you had to pick between 2003 r2 and server 2008 what would you go with? An if you pick 2008 is it any better... are things harder ?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
sorry, Igonre my previous comment
Q2, you can set the root folder for all user to List on NTFS(Security) and leave Full on Share. Then restrict the individual user with Change on NTFS