Folder redirection enforced or disabled based on IP address (subnet)
Posted on 2014-01-18
I have recently made the jump from using ScriptLogic Desktop Authority for our computer policies. I thought moving to GPO's would be better experience that will more directly apply if I ever decide to get a new job.
That having been said, I have successfully configured GPO's that for the most part do what I want. I am working on getting the MS Surface Pro 2 to work for our domain, and applying the created GPOs. Inside our network the GPO works fine, including folder redirection, specifically desktop folder redirection.
The problem comes when I connect the Surface to our network over a VPN connection. Mapped drives, shortcuts, printer setting specified in the GPOs seem to work fine over the VPN. The desktop folder redirection is my problem and seems to crash the Surface. I would like to disable folder redirection if the IP address is coming from a VPN subnet, and enable redirection if the surface has an inside IP address. For example our internal IP address is 10.100.100.x, the VPN subnet is 10.100.102.x.
Can I disable folder redirection when connection is 10.100.102.x and enable when it is 10.100.100.x? I was thinking of creating a site, putting 10.100.102.x in that site and a no folder redirection GPO linked to that site, but it looks like the order GPO's are applied in the domain folder redirection GPO will take precedence. Can I use a WMI filter, since folder redirection doesn't allow item level targeting? Maybe, slow link detection can be used to determine if it should apply folder redirection?
Anyone had any experience configuring Surface Pro 2 with domain and GPO enforcement?