alumwell
asked on
Admin cannot access user profile folder.
Hello,
When we recently created a profile for a user they could login fine however we could not access their folder as admin within the server. If we added admin priviledges to the folder we could access it however the user could then no longer login correctly. Finally if we delete the folder and the user logs in then a new folder appears to which we as admin cannot access yet the user successfully logs in.
Any suggestions what this could be?
Regards, Rob
When we recently created a profile for a user they could login fine however we could not access their folder as admin within the server. If we added admin priviledges to the folder we could access it however the user could then no longer login correctly. Finally if we delete the folder and the user logs in then a new folder appears to which we as admin cannot access yet the user successfully logs in.
Any suggestions what this could be?
Regards, Rob
Hi there,
We're talking romain profiles right? This is by design. The folder is created giving the user sole access to the folder for security reasons. If you take ownership and grant yourself access it wipes all previous permissions.
You can pre-create the folder with the required permissions and that will stop the system creating it with exclusive access to the user.
Tony
We're talking romain profiles right? This is by design. The folder is created giving the user sole access to the folder for security reasons. If you take ownership and grant yourself access it wipes all previous permissions.
You can pre-create the folder with the required permissions and that will stop the system creating it with exclusive access to the user.
Tony
"Finally if we delete the folder and the user logs in then a new folder appears to which we as admin cannot access yet the user successfully logs in. " Are you trying this when the admin logs locally on the server? or through a share?
I would agree, this sounds like a permissions problem... I would guess that there is a share that is preventing the admin for accessing the data through the share. However, if you try to access the data through an admin share (or locally), I think you might have access. i.e. \\servername\d$ instead of \\servername\usershare.
I would agree, this sounds like a permissions problem... I would guess that there is a share that is preventing the admin for accessing the data through the share. However, if you try to access the data through an admin share (or locally), I think you might have access. i.e. \\servername\d$ instead of \\servername\usershare.
romain = roaming (!)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi,
We have found that you cannot pre-create the folder itself. PeakPeak points to the fact that it appears to be the workstations that create the profile folder in which permission would have to be granted there for the admins.
Is there any other solutions else I will accept peakpeaks answer, many thanks.
We have found that you cannot pre-create the folder itself. PeakPeak points to the fact that it appears to be the workstations that create the profile folder in which permission would have to be granted there for the admins.
Is there any other solutions else I will accept peakpeaks answer, many thanks.
You can pre-create the folder in the share if you wish before the profile is created. If the folder already exists the computer will not create one or change permissions.
This will work to grant you access to one folder. If you want to grant yourself access to ALL users folders then use the GPO setting linked above.
I'm not sure that this will afftect existing folders as the permissions are set at creation time.
Tony
This will work to grant you access to one folder. If you want to grant yourself access to ALL users folders then use the GPO setting linked above.
I'm not sure that this will afftect existing folders as the permissions are set at creation time.
Tony
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You should give admin permissions to the root folder and propagate to every subfolder/files beneath it.