asked on
Delete Internet Explorer temporary internet files on terminal server
I need to automate the routine removal of temporary internet files from every local user profile on a terminal server, preferably using the GPO option, "Empty temporary internet files folder when browser is closed".
I have created a GPO and linked it to the Terminal Server OU (where the terminal server computer account resides). I have tried enabling the user configuration setting and loopback processing on the GPO, and have also tried enabling the computer configuration setting. I have verified through gpresult on the terminal server that the policy is being applied, but it is not deleting the files. Screenshot attached.
Terminal server is running Windows Server 2008 R2 and IE 9. I have tested this GPO on other non-terminal server servers (also Server 2008 R2 with IE9), and the GPO works as long as only ONE user is logged into that server at a time. If I log in more than one administrator user on the other servers and open multiple IE sessions, then the policy does not successfully delete the files when the browser is closed in either one or both remote desktop sessions.
I suspect there may be an inherent flaw in this policy whereby it does not work on terminal servers, where multiple users are logged in and multple IE sessions are constantly running. I have not verifed this theory yet by logging in outside business hours when no other users are logged in to see if the GPO works with only one user logged in.
Any ideas?
Thank you,
Jeff
GPO.png
I have created a GPO and linked it to the Terminal Server OU (where the terminal server computer account resides). I have tried enabling the user configuration setting and loopback processing on the GPO, and have also tried enabling the computer configuration setting. I have verified through gpresult on the terminal server that the policy is being applied, but it is not deleting the files. Screenshot attached.
Terminal server is running Windows Server 2008 R2 and IE 9. I have tested this GPO on other non-terminal server servers (also Server 2008 R2 with IE9), and the GPO works as long as only ONE user is logged into that server at a time. If I log in more than one administrator user on the other servers and open multiple IE sessions, then the policy does not successfully delete the files when the browser is closed in either one or both remote desktop sessions.
I suspect there may be an inherent flaw in this policy whereby it does not work on terminal servers, where multiple users are logged in and multple IE sessions are constantly running. I have not verifed this theory yet by logging in outside business hours when no other users are logged in to see if the GPO works with only one user logged in.
Any ideas?
Thank you,
Jeff
GPO.png
IT AdministrationWeb BrowsersMicrosoft Server OSServer Hardware
Last Comment
garner-it
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Thank you all for your comments and proposed solutions.
o TommyBoy: The logon/logoff script looks promising and I will look into that further.
o FlyFishing: I will consider limiting the TIF size via GPO. It's already set at 250MB for each user, which I guess is the default (not sure where that setting is coming from), but I've found several users that had TIF folders of 5+GB so I'm not sure how effective that setting is.
o Joharder: I will look into the folder-based GPO policy.
o Spaperov: I didn't realize the "Delete browsing history" setting has the ability to delete temporary internet files, as I thought it was only for clearing the web site history list. Reading the policy description, it indicates it does also allow control of deleting temporary internet files, so I will look into this as an option as well.
Between these 4 options, I'm bound to get something working!
Thanks again!
Jeff
o TommyBoy: The logon/logoff script looks promising and I will look into that further.
o FlyFishing: I will consider limiting the TIF size via GPO. It's already set at 250MB for each user, which I guess is the default (not sure where that setting is coming from), but I've found several users that had TIF folders of 5+GB so I'm not sure how effective that setting is.
o Joharder: I will look into the folder-based GPO policy.
o Spaperov: I didn't realize the "Delete browsing history" setting has the ability to delete temporary internet files, as I thought it was only for clearing the web site history list. Reading the policy description, it indicates it does also allow control of deleting temporary internet files, so I will look into this as an option as well.
Between these 4 options, I'm bound to get something working!
Thanks again!
Jeff
http://technet.microsoft.com/en-us/ie/bb219517.aspx