Solved

Various Windows computers logon script to Synology NAS

Posted on 2014-09-04
7
1,202 Views
Last Modified: 2014-10-11
G'day guys,

I have a client (old people's home) who is a not for profit organization. They have a variety of computers that have passed through multiple hands (Windows Vista, 7 and 8.1 Pro)

Now the issue is that I convinced them to put in a NAS for all there critical data and backups. Which setup fine and works great. However when it comes to sharing the data across multiple computers it becomes problematic.

So I made multiple users:

USER 1 - (Admin user gets to see everything, can backup)
USER 2 - (Limited user gets to see just Physio documents)
USER 3 - (Backup only user)

I made multiple documents folders:

Admin Documents, Physio Documents

I thought that I could on each computer set a mapped network drive to the user accounts previously mentioned. This works for some, but if the NAS is off or not contactable the mapped drive would stop working.

Also if multiple users on one system were to access the NAS only the first user permissions apply, unless a restart is provided.

You can imagine what a pain this is. Even logging out doesn't release the access to the NAS.

Another thing is that the Synology Backup requires a specific Admin user to run the backup (makes sense) but then conflicts if the user logging onto the computer is User 2 (Limited Access)

I guess what I'm asking is there a way without using a Server to give each user (Multiple user accounts on one computer) access to the NAS and backup functions?

I'm thinking that the main issue is with the Synology Backup conflicting with the mapped network drive. Seeing that for whatever reason you can't have two user account access to the NAS at any given time.

Also I would like to know what is the Best Practice in this environment to deal with Mapped Network drives and attributing that to Logon scripts in GPO.

regards,

Steven Swarts
TechCare
0
Comment
Question by:sjswarts
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
7 Comments
 
LVL 3

Accepted Solution

by:
MIRSYS earned 500 total points
ID: 40305332
Well I guess you could use a script to map the drive with the correct usernames

net use x: \\yournas\share /user:"username" "password"

save as batch file

Run this file at login , if this is a workgroup computer you can do the following to add a logon script.

Computer Management\System Tools\Local Users and Groups\Users
Right-click the user account that you want, and then click Properties .
On the Profile tab, in Logon script , type the file name and relative path of the script.
0
 
LVL 23

Expert Comment

by:rhandels
ID: 40305428
Even though MIRSYS option is the neatest one wthout a doubt you could also manually create the mappings on all machines using Windows Explorer and just tick the box "Reconnect at logon". This way the connection will be reconnected at logon and credentials will be saved. I also use this at home with my own Synology.
0
 

Author Comment

by:sjswarts
ID: 40305521
@MIRSYS - thanks mate, that is exactly what I'm looking for. Didn't realize the option was there.

@rhandels - I've tried this, but when the network isn't active it doesn't map the network share.

Is there anyway that I can cause the batch file to wait? get it to ping 127.0.0.1 for 10 secs or so? This way if the network hasn't turned on yet I have time.

I did remember reading somewhere that in Group Policy you can put a time limit on the user accounts for logon scripts
0
Resolve Critical IT Incidents Fast

If your data, services or processes become compromised, your organization can suffer damage in just minutes and how fast you communicate during a major IT incident is everything. Learn how to immediately identify incidents & best practices to resolve them quickly and effectively.

 
LVL 23

Expert Comment

by:rhandels
ID: 40305525
<< I've tried this, but when the network isn't active it doesn't map the network share.>>

It's not entirely true. The mapping is being created because it was there in the first place, the only issue is that users can't access it until network is up and running. If a user clicks on the link when network is not there it would ask you if you would like to delete the mapping and that is the biggest issue (seeing users only click yes these days :)).

I believe you have 2 option. Either enable Synchronous login. This means Windows waits until network is active before it logs in (will take more time for the CTRL+ALT+DEL screen to pop up) or just add a WAIT command into the batch file, this should achieve the exact same result. Only issue is how long do you want to wait?? This heavily depends on Computer speed and user's patience to wait a few secs before logging in :)
0
 

Author Comment

by:sjswarts
ID: 40305536
Yes that is exactly the issue. Patience in the IT world is virtually non-existent. Plus nobody after calling IT will admit to clicking yes to the dialogue saying remove network mapping.

Is there a way using GPO to prevent them from having permission to remove it or to even show that pop up? Seems unwise to have that as a default response to someone clicking on it. The best would be to say "This network share is unavailable, please wait till it comes online or contact your IT Admin".

Synchronous login sounds like a good idea, that way they are forced to wait without any interruption that they can make. Not a bad solution.
0
 
LVL 23

Expert Comment

by:rhandels
ID: 40305631
<<Is there a way using GPO to prevent them from having permission to remove it or to even show that pop up? Seems unwise to have that as a default response to someone clicking on it. The best would be to say "This network share is unavailable, please wait till it comes online or contact your IT Admin".>>

For as far as i know, No. Because this is user driven (user creates the mapping) Microsoft assumes that the user knows what to do with it. You could try and remove the disconnect drive mappings setting in a policy but i'm not 100% sure if this does the trick.. Because technically speaking your not clicking the button to disconnect.
0
 

Author Closing Comment

by:sjswarts
ID: 40374752
Appears to work just fine, thank you
0

Featured Post

Forrester Webinar: xMatters Delivers 261% ROI

Guest speaker Dean Davison, Forrester Principal Consultant, explains how a Fortune 500 communication company using xMatters found these results: Achieved a 261% ROI, Experienced $753,280 in net present value benefits over 3 years and Reduced MTTR by 91% for tier 1 incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

As companies replace their old PBX phone systems with Unified IP Communications, many are finding out that legacy applications such as fax do not work well with VoIP. Fortunately, Cloud Faxing provides a cost-effective alternative that works over an…
The business world is becoming increasingly integrated with tech. It’s not just for a select few anymore — but what about if you have a small business? It may be easier than you think to integrate technology into your small business, and it’s likely…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question