I have a mobile lab of MacBook Pro's running OS X 10.7.4 that are being used in a K-8 school. They are running the Golden Triangle (AD accounts with OD for MDX). For their Junior High each student has their own AD account and we are using Network home folders so they can use any of the Mac's and still access their stuff. Seems to be working well. The lower grades are using class logons so the entire class logons with the same account. These are also AD accounts with Network Home Folders. We are running in to issues with applications not opening. Specifically Safari and Google Chrome so far. The application will bounce but then doesn't open. I tracked the issue down to plist files in ~/Library/Application Support/... If I delete them then it works but after a bit they become corrupt again and won't open. My thought is that having 20+ machines all accessing the same folder is what is corrupting the files. So I started looking for an alternative and I created a script that will allow me to create symbolic links to redirect only parts of the home folder (Desktop, Documents, Downloads...) leaving the Library and other folders local on the Macs. The issue is that the only way I know to get this to run is to put it in as a login hook. Which if I do that then it will run for ALL users that logon and I don't want that. Is there a way to have it only run for certain user accounts? Or is there a way to create a script that does a check if a user is part of an AD group and only continues if they are?
Or is there a different solution all together?