Mark Minasi's Reader Forum
Mark Minasi's Reader Forum
Home | Profile | Register | Active Topics | Active Polls | Members | Search | FAQ | Minasi Forum RSS Feed
Username:
 Password:
Save Password
Forgot your Password?

 All Forums
 HALP! Questions on Windows and Windows Server
 Remote Desktop Services / Terminal Services
 Terminal Server/DC user profile question		  New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

samukange
Welcome Newcomer

14 Posts
Status: offline
Posted - 10/16/2008 :  8:11:47 PM  Show Profile  Reply with Quote
Ok! I know that you should never make your DC a TS but there is only one server so I dont have much choice. I configured the DC and made it a TS and I am able to access it fine with no problem remotely. My issue is the users in my domain will be the same TS users so I am having a problem with configuring the user profiles. I tried to create the TS user profile with a gpo and it was wonderful. There was one application on the desktop and the logoff button (oh btw does anyone know how to remove the printers and faxes from the start menu). Anyway the restriction I put on the TS users ended up transferring to the AD users in the domain. Just want to know the best way to configure both.

samukange
Welcome Newcomer

14 Posts
Status: offline
Posted - 10/17/2008 :  05:12:11 AM  Show Profile  Reply with Quote
Its me again. I came up with a solution and I guess you could say I am cheating a bit. Since I only have about 15 users I elected to created 15 tsusers (i.e. John Doe jdoe and tsJohn Doe tsjdoe) that way I can do what I want with the profile(in the gpo) and not worry about it disturbing the domain profile. Make sense? If anyone can come up with a better solution please advise. Thanks in advance.
Go to Top of Page

ptwilliams
Moderator

United Kingdom
4401 Posts
Status: offline
Posted - 10/17/2008 :  06:57:23 AM  Show Profile  Visit ptwilliams's Homepage  Reply with Quote
TS has a notion of it's own profiles for this specific reason. Look at the TS profile tab in ADUC or modify via code via IADsTSUserEx interface.

However I prefer a different approach:

Utilise mandatory roaming profiles for TS users, i.e. a single mandatory profile located on a file server (or in your case on the DC ) and utilise folder redirection instead of roaming profiles.

Eitherway two user accounts is not the way to go!
Go to Top of Page

samukange
Welcome Newcomer

14 Posts
Status: offline
Posted - 10/21/2008 :  07:17:27 AM  Show Profile  Reply with Quote
How do you do the mandatory profile for the TS users and keep the local users profiles local?
Go to Top of Page

ptwilliams
Moderator

United Kingdom
4401 Posts
Status: offline
Posted - 10/21/2008 :  08:44:54 AM  Show Profile  Visit ptwilliams's Homepage  Reply with Quote
You can configure on an ad-hoc basis through AD Users and Computers (look at the TS tab) or you can configure via a GPO that you apply to the TS (preferable):

Computer Configuration | Policies | Administrative Templates | Windows Components | Terminal Services | Profiles


  • Use mandatory profiles on the terminal server

  • Set path for TS Roaming User Profile




EDIT: Modified the list as I typed the commands wrong
Edited by - ptwilliams on 10/21/2008 08:46:17 AM
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
Mark Minasi's Reader Forum © 2002-2009 Mark Minasi Go To Top Of Page
This page was generated in 0.14 seconds. Snitz Forums 2000