Solved

GPO on Win 2008 to delete a file from all users

Posted on 2014-01-30
8
394 Views
Last Modified: 2014-01-31
Good Afternoon,

I would like to create a GPO to delete a file from all users desktops in our domain. I've noticed there was a way to delete a shortcut but this does not appear to work for executable files.  Any help would be appreciated.  

Thanks,
RD.
0
Comment
Question by:BadToro
  • 4
  • 3
8 Comments
 
LVL 9

Expert Comment

by:Zenvenky
ID: 39821436
Interesting GPO. Yes, you can do it if you are using Server 2008 and above as Domain Controller. Create GPO and edit it, and go to Computer Configuration, then select Preferences, then select Files and give the path from where you want to delete file. If you want to do this for specific user then go with User configuration and Preferences.


Hope this helps.
0
 
LVL 4

Expert Comment

by:jprlopes
ID: 39821447
There is no native way to delete files with GPO.

You can use a GPO with a script, and will be that script that will delete the file...
0
 

Author Comment

by:BadToro
ID: 39821454
Here's what I've tried so far:

User Configuration\Preferences\Windows Settings\Files - I then created a new file, set the action to delete and entered  "%userprofile%\desktop\filename" in the delete files section.

My checked items under the common tab are :

Run in logged-on user's security context
Apply once and do not re apply
0
 
LVL 9

Expert Comment

by:Zenvenky
ID: 39821528
Settings look good, it should work. If it doesn't work then I would suggest you to turn off firewall and ask user to restart workstation. If not you create a test machine environment and check the same.
0
Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

 

Author Comment

by:BadToro
ID: 39821530
Ok, So I've tried editing the GPO using the computer configuration Preferences\Windows Settings\Files  then the path.  On the computer side, when I force the gpupdate, I get the error below:

The computer 'filename' preference item in the '{Policy Name}' Group Policy did not apply because it failed with error code '0x80070002 The system cannot find the file specified.' This error was suppressed.
0
 

Author Comment

by:BadToro
ID: 39821539
Other GPOs were applied.  In essence, I'm deleting an old executable file and placing the updated version of that file.

I new file is creating, but the old file isn't being deleted.
0
 
LVL 9

Accepted Solution

by:
Zenvenky earned 500 total points
ID: 39821829
Error 0x80070002 occurs due to incomplete security permissions. Mostly System / Authenticated Users / Creator Owner are not there on the folder on which you are trying to apply GPO.
0
 

Author Comment

by:BadToro
ID: 39825027
Thanks for the help.  I used another machine and user to test and it worked fine, will troubleshoot permissions on my test pc.

RD
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, we will see the basic design consideration while designing a Multi-tenant web application in a simple manner. Though, many frameworks are available in the market to develop a multi - tenant application, but do they provide data, cod…
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now