Re: permissions for group policy??
- From: Myweb <meiweb@xxxxxx>
- Date: Tue, 15 May 2007 21:05:24 +0000 (UTC)
Hello rocketz21,
The problem is after demoting the DC all security information from the "former" user accounts are gone. Even if you recreate the same name etc. the SID is different from the SID that is used on your profiles.
So you have to set in every user profile folder the rights by hand for the recreated username with Full control as a minimum. And then i think theire will still be some problems after this. So try it out. If it not works complete, i think you have to setup a new share for the roaming profiles and configure the users to the new location. Also you have to set the rights for the mailboxes new, add the new user account to the mailserver / usermailbox.
Best regards
Myweb
Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
Last week there was issues with our DNS and a member of our It staff
removed AD from the server (demoted it from being a DC).
By "re-creating" I had to recreate the user names, add permissions to
folders, remove the pc from the domain and re-add it.
This caused many issues and one of those are permission issues. One
of them being if they are not a member of the administrators group,
their roaming profile doesn't load everything. Meaning the wallpaper
is left blank and some icons don't load and outlook won't open among a
few other minor issues that I never had before.
I am wondering if there is a reason for this and what I can to fix
this.
"Myweb" wrote:
Hello rocketz21,
You wrote you have recreated active directory, please give more
details about the recreation. This will be the beginning of your
problem. What have you recreated etc.
Best regards
Myweb
Disclaimer: This posting is provided "AS IS" with no warranties, and
confers
no rights.
I'm having problems when someone that is not a member of the
administrators group tries to logon with their roaming profile.
Not everything is loading on the desktop and I'm experiencing
permissions issues, such as outlook won't load and access to the
quick launch toolbar is restricted.
I didn't have this problem earlier, but recently had to recreated
active directory.
The permissions on the user profiles folder is set to allow domain
users full control on the shared level.
Are there some other permissions within group policy that is
rescricting the desktop??
.
- Follow-Ups:
- Re: permissions for group policy??
- From: rocketz21
- Re: permissions for group policy??
- Prev by Date: Re: Keep Games off network!!
- Next by Date: Re: Software deployment using dns alias
- Previous by thread: Re: permissions for group policy??
- Next by thread: Re: permissions for group policy??
- Index(es):
Relevant Pages
|
