many problems with roaming, redirected folders, vista, etc...on SBS 2003

Discussion in 'Windows Small Business Server' started by Rickou, Mar 27, 2007.

  1. Rickou

    Rickou Guest

    hi there !

    i have many problems with my SBS 2003 server.

    my network is a small network with only 4 PCs + 1 server
    2 Desktop with XP Pro
    1 Desktop with Vista Pro
    1 Laptop with XP Pro

    i have 5 users.
    4 users can use Desktop or Laptop PC
    1 user use only Desktop under XP Pro

    i have configured all the users with roaming profiles to
    \\ServerName\UsersProfiles$\%username%
    i also make a "basic" redirect folder GPO to redirect "my documents",
    "Desktop", "Application data" to "\\ServerName\UsersProfiles$\"

    with all XP Pro PCs, i have no problems at all.

    but with Vista Pro, the profil directory is created (UserName.V2
    directory), but the redirected folders don't work. then when i logon,
    Vista say it can't load the profile and use the temp profile....etc...

    if user is member of administrators group, then all seem to work, but
    for normal users, it don't work.

    the share and ntfs rights for profile folder is set like MS describe in
    KB (can't found it anymore.... :[email protected] )

    thank for your help...i already spent 3 days on this problem.
     
    Rickou, Mar 27, 2007
    #1
    1. Advertisements

  2. This isn't good - you should keep your profiles, and your user
    data/redirected folders, in two separate places. Don't mix them up.
    For the folder redirection, if you use home directories, redirect My Docs,
    Desktop, App Data, Whatever, to *subfolders* under the user's home
    directory. Or to subfolders under another share you set up on the server.
    Your profiles need to be kept *tiny* if you want them to roam successfully.

    Additionally, roaming profiles are not compatible between OS Versions, so I
    don't know that your Vista user will be able to roam to other PCs, or that
    your XP users will be able to work at the Vista workstation. Personally, I
    like to keep everyone on the same OS version & software load, so the
    computers are pretty interchangeable.

    Also - download and install the User Profile Hive Cleanup service from MS on
    all PCs. I really don't know why this isn't there by default, honestly!
    Actually, I'll bet you do, if you're redirecting all that stuff to the
    profile folder....you just may not have seen the symptoms yet.
    Clean up your folder redirection stuff and then try again & post back with
    any errors (including event log errors)
    I haven't really used Vista much, so I can't say anything more specific
    about it...someone else may chime in.
    I do this:
    Share: Everyone=Full Control
    Profileshare NTFS - Administrators & System = Full Control inherited from
    the parent (the actual, needed NTFS permissions will be corrected & set up
    properly when the user's profile is actually created, which happens
    automatically the first time they log in & out, if
    \\server\profileshare\%username% is specified in their profile path in ADUC
    Also enable the GPO option to grant the Administrators group full control of
    the profile subfolders, as otherwise only the user will have permissions in
    there.
     
    Lanwench [MVP - Exchange], Mar 27, 2007
    #2
    1. Advertisements

  3. Rickou

    Rickou Guest

    Lanwench [MVP - Exchange] a pensé très fort :
    ok, i'll do that in few hours...
    you don't set permission for owner/creator ?? or other groups ?
    i must set it up in GPO or local policy (on server) ?

    thanks
     
    Rickou, Mar 27, 2007
    #3
  4. No....the permissions will be reset anyway, when the profile folder is
    created. What you want to end up with (given the GPO setting below) is user=
    full control and Administrators = full control. Nobody else, nothin'.
    No local policies - I would create a custom GPO linked to the MyBusiness OU,
    and do your custom settings in there. Use GPMC.msc on the server to do this.
    I usually call the GPO something like "Company Desktops" or something that
    makes sense. There are also lots of other things I like to do - that's where
    I prefer to specify my folder redirection, force classic desktop & start
    menu, disable offline files if so desired, blah blah blah.
     
    Lanwench [MVP - Exchange], Mar 27, 2007
    #4
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.