RE: Roaming Profiles and Synchronization

Hi,

Welcome to our SBS newsgroup.

It seems you want to get some suggestions on offline caching and folder
redirection also roaming profiles.

Generally speaking, roaming profiles is different with folder redirections.
We configure roaming profiles primary for the use of user who will often
use many clients computer on SBS domain, while folder redirections if
mainly for management of user's personal documents more easily, the roaming
profiles will cover all the user's profiles include the outlook setting and
other personal setting. I know you are worry that if you enable offline
caching in roaming profiles while disable the offline caching of folder
redirection if the files that belong to both profiles and documents. As I
know, there might be some problem if you configure both setting, you can
refer to my suggestions below:

Here are the Share and NTFS Permissions needed on the File Server Shares:

NOTE: The $ symbol should be used to hide the existance of the share
User Home Share Configuration:
-------------------------------------------------
Here are the Share and NTFS Permissions needed for Home Directories:
a. The Share permissions (Sharing Tab): Share Named: <HOME>$
Administrators: Full Control
System: Full Control
Authenticated Users: Full Control
b. Offline file caching of the Teachers share needs to be turned on. On
the
Sharing Tab, click on the "Offline Settings", then select "Only the files
and programs that users specify will be available offline".
Click OK
c. NTFS Folder Permissions (Security Tab): Turn off inheritance on the
Folder named <HOME>, and copy the permissions. (Uncheck "Allow inheritable
permissions to propagate to this object")
Administrators: Full Control
System: Full Control
Creator Owner: Full Control
Authenticated Users: Read & Execute, List Folder Contents, Read
d. On the NTFS Folder Permissions Click the Advanced Button. Then
highlight
Authenticated Users, Select View/Edit
e. On the Permissions Entry for <HOME>, the Apply onto change to: "This
folder only"
f. Click OK
g. Click OK again.

----------------------------------------------------------------------------
--------
------------------------------------------------------------------

Roaming Profile Share and NTFS Permissions:
------------------------------------------------------------------------
a. The Share permissions (Sharing Tab): Share Named: <PROFILE>$
Administrators: Full Control
System: Full Control
Authenticated Users: Full Control
b. Offline file caching of the <Profile> share needs to be turned off. On
the
Sharing Tab, click on the "Offline Settings", then select "Files or
programs from the share will not be available offline".
Click OK
c. NTFS Folder Permissions (Security Tab): Turn off inheritance on the
Folder named <PROFILE>, and copy the permissions. (Uncheck "Allow
inheritable permissions to propagate to this object")
Administrators: Full Control
System: Full Control
Creator Owner: Full Control
Authenticated Users: Modify,Read & Execute, List Folder Contents, Read,
Write
d. On the NTFS Folder Permissions Click the Advanced Button. Then
highlight
Authenticated Users, Select View/Edit
e. On the Permissions Entry for <PROFILE>, the Apply onto change to: "This
folder only"
f. Click OK
g. Click OK again.

----------------------------------------------------------------------------
--------
------------------------------------------------------------------

Folder Redirection Share and NTFS Permissions: (In Best Case scenarios this
should be the users Home Directory with a Directory for each Folder that is
Redirected.
But in case this is not here are the permissions needed)
----------------------------------------------------------------------------
a. The Share permissions (Sharing Tab): Share Named: <FOLDER_REDIR>$
Administrators: Full Control
System: Full Control
Authenticated Users: Full Control
b. Offline file caching of the <FOLDER_REDIR>$ share needs to be turned
on. On the
Sharing Tab, click on the "Offline Settings", then select "Only the files
and programs that users specify will be available offline".
Click OK
c. NTFS Folder Permissions (Security Tab): Turn off inheritance on the
Folder named <FOLDER_REDIR>, and copy the permissions. (Uncheck "Allow
inheritable permissions to propagate to this object")
Administrators: Full Control
System: Full Control
Creator Owner: Full Control
Authenticated Users: Read & Execute, List Folder Contents, Read
d. On the NTFS Folder Permissions Click the Advanced Button. Then
highlight
Authenticated Users, Select View/Edit
e. On the Permissions Entry for <FOLDER_REDIR>, the Apply onto change to:
"This folder only"
f. Click OK
g. Click OK again.

h. In the Group Policy Management Console, we need to edited the <Group
Policy> and changed Folder Redirection for:
Application Data = \\<ServerName>\<FOLDER_REDIR>$\%UserName%\Application
Data
Desktop = \\<ServerName>\<FOLDER_REDIR>$\%UserName%\Desktop
My Documents = \\<ServerName>\<FOLDER_REDIR>$\%UserName%\My Documents
Start Menu = \\<ServerName>\<FOLDER_REDIR>$\%UserName%\Start Menu
On each Folder Redirection we went into the Settings Tab, and unchecked:
"Grant the user exclusive rights to"

At your convenience, I would like to give you some documents:

294887 How to check user profiles on a Windows XP-based computer
http://support.microsoft.com/?id=294887

269378 Differences in the User Profiles in Windows
http://support.microsoft.com/?id=269378

310746 Configuration of the My Documents folder
http://support.microsoft.com/?id=310746


Hope the above information help you understanding it more clearly, if you
have any further concerns, please let me know. I will be here waiting for
your updates.




Best regards,

Charles Yang (MSFT)

Microsoft CSS Online Newsgroup Support

Get Secure! - www.microsoft.com/security

======================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx

When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.

Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.

For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Any input or comments in this thread are highly appreciated.
======================================================
This posting is provided "AS IS" with no warranties, and confers no rights.


=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================

This posting is provided "AS IS" with no warranties, and confers no rights.

.