Solved

Active Directory

Posted on 2011-09-15
8
175 Views
Last Modified: 2012-06-27
Hi Experts Exchange,

When I create new users in AD I need for their User Folder to be created Automatically. I presume that I would need a script for this.

I know you can do this in the profile, but I do not want this to be a manual job everytime a new user is created. I want the user's to be created automatically when they log on for the first time.

Thank you.


Kind regards,

JBond2010
0
Comment
Question by:JBond2010
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
8 Comments
 
LVL 3

Expert Comment

by:Krypton-IT-Solutions
ID: 36543542
Hello, try this link http://support.microsoft.com/kb/816313 at the bottom you'll see ways to automate

Regards
[advertising signature removed - modguy]
0
 
LVL 27

Expert Comment

by:KenMcF
ID: 36543734
It depends on how many users are being created and what your current process is for creating user accounts. If you are creating users manaully which it sounds like I would recommend creating a template user account with all the settings you want. One would be the users home drive, just enter the drive letter you want the user to have and the path enter \\servername\sharename\%username%
by using the %username% variable it will create a folder and assign permissions using ADUC. The when you create a new user just copy the template account and the new account will have their own home folder.
0
 
LVL 15

Author Comment

by:JBond2010
ID: 36543894
@ KenMcF,

Thank you for your comment.

I don't want to use a template. I would be creating a handfull of users on a weekly to monthly basis. So I would prefer to use a script that would automatically create their user when they log-in.
0
DevOps Toolchain Recommendations

Read this Gartner Research Note and discover how your IT organization can automate and optimize DevOps processes using a toolchain architecture.

 
LVL 27

Expert Comment

by:KenMcF
ID: 36543950
You wil not be able to create the home directory when the user logs in, it will be hard to setup the correct permissions within the home drive share so they do not have access to or are abel to gain access to other users folders.
 Look at the link @kryton-IT posted and also look at using xcacls.vbs.
http://support.microsoft.com/kb/825751
0
 
LVL 15

Author Comment

by:JBond2010
ID: 36544326
I know other organisations are able to this, it is possible to do this.
0
 
LVL 27

Expert Comment

by:KenMcF
ID: 36544460
usually the home drive is created and secured on user account creation not first logon of the user. In my option that would be the best way to create them. You can create the users either by script or template account.

If you want to have it created on first logon you would need to have the user run a login script, have the path to the home drive. Not sure if it is a single file server or multiple. Give the users permissions to create folders and change the security permissions on them. You can do this by the links provided or useing something like xcacls in the users login script.
0
 
LVL 15

Accepted Solution

by:
JBond2010 earned 0 total points
ID: 36549011
Not really the answer I'm looking, but thank you for your help.


Kind regards,

JBond2010
0
 
LVL 15

Author Closing Comment

by:JBond2010
ID: 36572251
The comments are welcomed, but didn't provide the solution to the question I posted.
0

Featured Post

The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
In-place Upgrading Dirsync to Azure AD Connect
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question