I have recently deployed Citrix Profile Management 188.8.131.52 on my XenApp 6.5 (Server 2008 R2) host.
The ADM template has been installed on my DC and the appropriate settings have been configured in GPO.
There are 3 shares that have been created for the users profiles.
1. HomeDirs - folder redirection for each users my docs, desktop etc.
2. Profiles - Roaming Profile store
3. CitrixProfiles - Citrix profile settings store
Each of these 3 folders has the following permissions:
* Administrators - full
* Authenticated users - full
* Creator Owner - Full
* System - Full
* Administrators - Full
* Authenticated users - Full
Prior to installing Citrix Profile Management, each user was able to write to the central profile store fine. However after installed CPM, the users session does not write to either the Central profile store, or the new Citrix Profile store.
The user can logon fine initially without error, but when they logoff, the profile is not written back to the profile stores. So when the user tried to login the next time, it still cannot write to the profiles stores. however this time a temp profile is loaded due to the local profile still remaining on the host since the last login attempt. I can blow away the profile and log in without error the next time, however the problem reoccurs again after that.
I am able to browse the UNC path to each of the profile locations without issue. I can also create, delete files & folders. So looks like permissions seem to be OK.
The events that are generated are as follows:
An error occurred while trying to reset security permissions on the registry hive for user 'Username'. Cause: It is likely that there are permission issues with the registry in the default or template profile used to create this Citrix user profile. Action: If appropriate, reset the security permissions on the user's registry hive in the Profile management user store using a third-party utility such as SetAcl.
One of the documents I read suggested copying the default profile from one of the hosts to a network share, then configure the GPO setting to point to this new store. However the same issue occurs.
I initially created the default profile on this host. I created a local user account, configured all of the settings and then copied to the default profile using "Windows Enabler".
The reason I have not used the XML script way is that I don't really want to keep running sysprep on my gold images. You can only run it 3 times in server 2008 r2 before you have to rebuild the image from scratch again.
Over the past few years I have had a few attempts at Citrix Profile Manager over the various versions that have been released, however it never works! Looks like many others feel the same.