Custom NTFS permissions on roaming profiles?
- From: "Marcus Fredriksson" <nospam@xxxxxxxxxx>
- Date: Tue, 11 Apr 2006 13:48:51 +0200
Hello all,
We are managing a large Windows 2003 server environment with Terminal
Servers that store the users' roaming (mandatory) profiles on a file share
on the network. According to
http://technet2.microsoft.com/WindowsServer/en/Library/20b15453-f7c9-4cf0-9131-78924af776551033.mspx,
the default file permissions for a users' roaming profile folder is Full
Control for the user and Local system and nothing else. We have also through
a GPO enabled the "Add the Administrators security group to roaming user
profiles" setting to grant Administrators permissions on the user folders.
So far, so good, but now as the environment grows large, we need our
Terminal Server guys to have permissions on the roaming profiles to be able
to troubleshoot end user problems. We do not want to add the Terminal Server
administrators to the Administrators group on the file servers, but instead
add another group to the ACL of the roaming profile folders.
My question: Is there a way to pre-define which permissions gets set on
newly created roaming profile user folders? If not, what problems could we
run into if we add this extra group to the roaming profile folders
afterwards?
Thanks,
Marcus
--
The views and opinions expressed above are strictly
those of the author(s). The content of this message has
not been reviewed nor approved by any entity whatsoever.
.
- Follow-Ups:
- Re: Custom NTFS permissions on roaming profiles?
- From: Steven L Umbach
- Re: Custom NTFS permissions on roaming profiles?
- Prev by Date: Re: GPO not picking up computer settings
- Next by Date: deny login to member servers
- Previous by thread: Re: Windows 2003 scheduled tasks
- Next by thread: Re: Custom NTFS permissions on roaming profiles?
- Index(es):
Relevant Pages
|
Loading
