Re: Separate profiles from Virtual Terminal Server

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: "Lanwench [MVP - Exchange]" <lanwench@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Wed, 3 Jan 2007 18:32:24 -0500

In news:6FCAF914-6BFA-40C2-98FF-9E1B82FEF814@xxxxxxxxxxxxx,
Ronnie <Ronnie@xxxxxxxxxxxxxxxxxxxxxxxxx> typed:

If encryption is allowed on a folder in a user's redirected My
Documents folder, and there is no CA in the domain, there isn't, am I
correct in saying the public key pair is being generated by the
Terminal Server? If so, is the private key being stored in the
user's profile?

Woud the user be able to decrypt their data if :
-there is no key recovery agent and their profile becomes corrupt?
-the server which generates the key pair is destroyed?

Should I just tell my boss to drop the encryption option for this
project? ;) ??

Possibly, but I'm not an EFS expert by any means. You might try in an AD
group as terminal services isn't really going to be related here. Be vewy
vewy careful with EFS, or any encryption stuff, of course.

Thanks, big time, in advance,

"Lanwench [MVP - Exchange]" wrote:

In news:09CE961A-BC5B-41CB-B677-4CD11C672E95@xxxxxxxxxxxxx,
Ronnie <Ronnie@xxxxxxxxxxxxxxxxxxxxxxxxx> typed:

Hi, what in your opinion is the most reliable automated way to store
terminal server user profile contents on a remote file server with
all machines in a 2K3 functional level forest? I am working to
capture 100% of the profile's contents.

.Roaming Profile?
.Folder Redirection via GPO policies?
.Scripting?
.Other??

Thanks

A TS profile path in the user's ADUC properties that points to
another server (e.g., \\fileserver\tsprofiles$\%username%) combined
with folder redirection for My Documents (and possibly also
Application Data and Desktop) to the users' home directories (e.g.,
\\fileserver\users\%username%\mydocuments etc) would work. That's
all they really need.

Prev by Date: Re: Fail to run VB application on Terminal Server
Next by Date: Re: Third Party App Not Printing
Previous by thread: Re: Desktop Publishing
Next by thread: RDP 6 will save user name and passwords for Windows2003/XP TS connections but not for Windows 2000 TS Server connection
Index(es):
- Date
- Thread

Relevant Pages

Re: Newbie with a smallbiz2000 installation, check my config?
... > Windows creates a profile path under Documents & Settings. ... > a folder with that name already exists (maybe a local user with the ... > server, open the properties for this folder, and ensure that you have ... > you redirect key folders from a user's profile to a location on your ...
(microsoft.public.backoffice.smallbiz2000)
Re: Newbie with a smallbiz2000 installation, check my config?
... profile path under Documents & Settings. ... It first tries to create a folder ... folders from a user's profile to a location on your server. ... Chad A. Gross - SBS MVP ...
(microsoft.public.backoffice.smallbiz2000)
RE: need to migrate a older win 2003 srvr sbs to newer one
... as I assume I should reading upon Windows Server 2003 inside out book. ... there are three method to move the SBS 2k3 to new ... Also check the path of the public folder database ... Another way is to create a local profile, ...
(microsoft.public.windows.server.migration)
Re: Windows Server 2003 Service Pack 1 will not install
... Microsoft CSS Online Newsgroup Support ... Open Server Management. ... <of the public folder database files. ... <domain to the new SBS 2003 installation, way is to create a local profile, ...
(microsoft.public.windows.server.sbs)
RE: Third Request - Exchange will not install
... if you want to move the Windows Small Business Server ... Also check the path of the public folder database ... Another way is to create a local profile, ...
(microsoft.public.windows.server.sbs)