RE: Moving existing users to new OU
From: Allen Firouz (AllenFirouz_at_discussions.microsoft.com)
Date: 02/10/05
- Next message: Ray H: "Re: w2k backup dc for win2003dc?"
- Previous message: Sunshine: "RE: Only allow domain users Internet access??"
- In reply to: Fred_B: "Moving existing users to new OU"
- Next in thread: Fred_B: "RE: Moving existing users to new OU"
- Reply: Fred_B: "RE: Moving existing users to new OU"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 10 Feb 2005 05:59:04 -0800
Fred,
OU's are logical containers for administration only! They should not be
causing what you are describing. The most likely cause is that the
permissions on the Roaming Profile folders is not set properly and since the
users' removal from Domain Admin group, they cannot access their profile
(which is why another one is being created and login times are too long).
Check this link for the proper user right settings for RPF's:
http://www.microsoft.com/resources/documentation/WindowsServ/2003/all/deployguide/en-us/Default.asp?url=/resources/documentation/WindowsServ/2003/all/deployguide/en-us/dmebc_dsm_ummq.asp
-Allen Firouz
"Fred_B" wrote:
> Hi,
> Trying to sort out someone elses stuff....
>
> To cut to the chase I've created a new OU for certain users who already
> exist in the default Users group. These users are curiously in both domain
> admins and domain users groups. They do not need to be domain admins.
> I have created a new OU for them, which has a group policy applied to it to
> prevent them switching off screensaver passwords etc nothing overly
> restrictive.
> All users use roaming profiles.
>
> In a test, I've moved some users to the new OU, and at the same time removed
> them from the domain admin group.
>
> When the test users logon, Windows treats them as if they've never logged on
> before. Personal settings such as mapped drives etc are gone, the connect to
> the internet icon pops onto the desktop along with the welcome to windows
> dialog and all of the default shortcuts on the start menu.
>
> I wasn't anticipating anything like this happening!
> All of my test users have been logged on countless times, can anyone tell me
> why this is happening or how to get around this?
>
> Fred
>
>
- Next message: Ray H: "Re: w2k backup dc for win2003dc?"
- Previous message: Sunshine: "RE: Only allow domain users Internet access??"
- In reply to: Fred_B: "Moving existing users to new OU"
- Next in thread: Fred_B: "RE: Moving existing users to new OU"
- Reply: Fred_B: "RE: Moving existing users to new OU"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
