Solved

Windows Server 2012 terminal services creating multiple user profiles

Posted on 2014-11-19
12
146 Views
Last Modified: 2015-04-22
Hi

I installed a Multipoint 2012 System in a School and I'm having problems with user profile folders.
I partitioned the single hard disk to C: (protected op sys volume) and E: (user files and folders).
I changed the registry key to create users folders under E:\Users and this initially worked fine.
I log in as User1 and I get a new folder E:\Users\User1 with all the usual folders underneath.

However I now find that randomly when I restart the server and then login as the same user I get a new folder E:\Users\User1.MULTIPOINT-1.000 and this increases over time to E:\Users....001 and so on.

This has the effect that the next time the user logs on he cannot see his documents (they are in the original User1\Documents folder) because the new profile folder has been created.

Help - how do I stop this happening?
0
Comment
Question by:CNC-Guy
  • 7
  • 5
12 Comments
 
LVL 24

Assisted Solution

by:VB ITS
VB ITS earned 500 total points
ID: 40453703
This usually occurs when something has a lock on files within the profile. Are there any errors in the event logs when the user logs in and these folders are created? Download Process Explorer and check the user's profile path for any open handles.

Are you using roaming profiles? If so, try clearing out any .bak keys found in HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\ as this can cause temp profiles to load.
0
 

Author Comment

by:CNC-Guy
ID: 40457480
There are no .BAK entries in the registry.
Not sure whether Multipoint Server uses roaming profiles - how would I check?
0
 
LVL 24

Expert Comment

by:VB ITS
ID: 40457524
My apologies, I just assumed you were using roaming profiles. Check the Profile and Remote Desktop Services Profile tabs in Active Directory Users and Computers to check if accounts are using roaming profiles.

Have you tried downloading Process Explorer to see if there are any open handles in the profile folder that gets duplicated?
0
 

Author Comment

by:CNC-Guy
ID: 40457623
There is no AD as Multipoint 2012 is a standalone system running on Windows 2012 Standard platform with MSTS for the clients.
So I cannot check that.
How else would I check on a W2012 Standard install?
I have PE already and will get back on the system tomorrow.
0
 
LVL 24

Expert Comment

by:VB ITS
ID: 40458836
If you don't use AD then I highly doubt you'll be using roaming profiles. You can check anyway by going to Control Panel > System > Advanced system settings > click the Settings button for User Profiles > look under the Type column, it will either say Local or Roaming.

See how you go with PE, there's probably something holding a lock on one of the files causing the new user profiles to be created.
0
 

Author Comment

by:CNC-Guy
ID: 40459313
I will try it - any idea what I am looking for?
One other question - I have deleted the older profile folders as they are no longer in use.
I would like to rename the latest profiles to just the username again.
How can I do this?
I tried renaming the folder and then changing the registry entries for that folder.
But when I login as that user I get an error.
If I delete the user and the folder then I get the correct user folder back next time I login but there are hundreds of users.
0
6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

 

Author Comment

by:CNC-Guy
ID: 40461510
One thing I have noticed is that the users on the remote desktops only get a "Disconnect" option and not a "Logoff" option. When I check the server the user is logged and "suspended"

Is there a way I can change this so the remote users see a "Logoff" option?
0
 
LVL 24

Accepted Solution

by:
VB ITS earned 500 total points
ID: 40461820
I would like to rename the latest profiles to just the username again.
How can I do this?
I tried renaming the folder and then changing the registry entries for that folder.
What registry entry did you modify? In theory you should be able to just rename the folder in C:\Users\ then modify their corresponding ProfileImagePath key in HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList to match the new path.
One thing I have noticed is that the users on the remote desktops only get a "Disconnect" option and not a "Logoff" option. When I check the server the user is logged and "suspended"

Is there a way I can change this so the remote users see a "Logoff" option?
OK this might explain your issue. Where exactly are you seeing this Disconnect option? To log off properly in 2012, your users need to go to the Start Screen (press the Windows key or move your mouse to the bottom left corner) > left click on your username in the top right corner > then click on Sign out. Here's a screenshot of what it looks like:
2012-RDS-Logoff.pngWhat you might want to consider is implementing some time limits for disconnected sessions. As you don't have AD, the best way to achieve this would be to modify the Local Computer Policy:
Press the Windows + X keys simultaneously > click on Run in the menu that appears in the bottom left corner > type in gpedit.msc > the Local Group Policy Editor window should then appear.
In the Local Group Policy Editor window, expand User Configuration > Administrative Templates > Windows Components > Remote Desktop Services > Remote Desktop Session Host > Session Time Limits
Right click on Set time limit for disconnected sessions > Edit > select Enable > select your desired time limit in the End a disconnected session drop down menu
This setting will automatically end any disconnected sessions running on your server after the time period you selected above.
0
 

Author Comment

by:CNC-Guy
ID: 40464030
OK -the users were clicking the power button and then disconnecting.
However this does not appear to be the problem as I logged off all the users, restarted the MP server and then logged in again as a user and it created a new profile.
This after a clean boot.
Any ideas.

I already changed the MaxDisconnectionTime registry key to 1000 (1 sec) under HKLM/SW/Policies/Ms/Win/ NT/Terminal Services to force a logoff and it did not help.

Thanks
0
 
LVL 24

Expert Comment

by:VB ITS
ID: 40464244
Hmm any warnings/errors in the Event Logs on the 2012 TS when the affected users log on?
0
 

Assisted Solution

by:CNC-Guy
CNC-Guy earned 0 total points
ID: 40582346
I'm back in the UK now and still have the same problem.
I can also reproduce it here and have nailed it down to this:

I disable disk protection on C and create a new user.
Creating the user does not create the ProfileList registry entry.
So when I re-enable disk protection and THEN login as that user the registry ProfileList entry is created in cache. Everything works as it should.
However the next time the server is restarted (every night) the registry is returned back to original state (no entry for that user) but the users documents still exist on drive E:
The user logs in and Windows creates a new registry entry for that user AND, seeing that a profile directory already exists for that user on E drive, it renames the profile entry to username.MULTIPOINT-1 and creates a set of profile folders on E drive under that name.
The user cannot see his old documents as they are in the original folders.

I have fixed this by doing the following:
Disable Disk protection.
Create the user accounts for each student
Login in as each student and accept the Multipoint warning.
Open a Word document and go through the Office intro screens clicking Ask Me Later for updates.
Sign Out from that user.

Now re-enable disk protection and everything works as it should.

Is there any way to log on those users from a script file or PowerShell so that the user ProfileList Entries are created in the registry? There are 40 new students each term - so it's tedious.
0
 

Author Closing Comment

by:CNC-Guy
ID: 40737564
VB_ITS gave me some excellent pointers which helped me find the solution but did not provide a complete solution.
Multipoint 2012 seems to be a minority product with little support.
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Citrix XenApp, Internet Explorer 11 set to Enterprise Mode and using central hosted sites.xml file.
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now