Solved

Map a drive for a user in child domain loggin ginto a computer in parent domain?

Posted on 2016-09-20
3
89 Views
Last Modified: 2016-09-22
Does anyone know the best way I can set up so where a user that's located in a chlid-domain, logs onto a computer in the parent domain (say the "Marketing" OU), that their T-Drive gets mapped to a file share in the same parent domain?

I've tried applying it to an OU but user who logs in from the child domain just doesn't get the drive.
It's a user preference that runs a "replace" action of the T-Drive, preference to map drive with item level targetting if they're in a security group (security group is in the child domain).
0
Comment
Question by:garryshape
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 4

Assisted Solution

by:Felicia King
Felicia King earned 250 total points
ID: 41808604
It sounds like to me you need to detect the local domain of the workstation the user is logging onto as part of the analysis or decision process for whether one T drive or another gets applied. Have you worked in that logic to your logon script?
0
 
LVL 25

Accepted Solution

by:
Coralon earned 250 total points
ID: 41809738
Did you enable the Allow Cross-Forest User Policy and Roaming User Profiles policy?

And where exactly did you set this GPP up at?
Did you put it in the User's OU or the Machine's OU?  

In AD, the machine has to read the policy, and the user session has to apply it.  So, you may end up needing to set the GPP in both places.  

My suggestion would be (if possible) to set the policy at the machine level in the parent domain, and turn on Loopback processing with the Merge option (this is in group policy under the machine level section).  This would give you the best chance for success to do what you want.

Coralon
0
 

Assisted Solution

by:garryshape
garryshape earned 0 total points
ID: 41810771
The following worked:

Parent Domain
Created Universal Security Group for child-domain users to be members of

Parent Domain "Marketing" computers OU:
Created/linked GPO for Computer Loopback set to "merge"
Created/linked GPO Preference to "Replace" mapped drive T, applying only when in scope, item-level-filtering to users that are members of the Universal Security Group.
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This article explains the steps required to use the default Photos screensaver to display branding/corporate images
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question