mmacgregor
Visitor.
1535 views

Vista roaming profile issue

Forgive me if this one has already been covered, but I'm struggling to find the fix....

My setup:
ZEN 10.2.0 Server / Vista SP1 client
Roaming profile policy configured to use homespace on NetWare 6.5 server.
Workstation-associated DLU policy - working fine
"Allow Roaming User Profile Paths to non-Windows server" set to "On" in Novell Client 2 (version IR1a)

My problem:
User logs in first time, roaming profile is created successfully.
User logs out, profile saved to <homedir>\Windows NT 6.0 Workstation Profile.V2
User tries to log in again, but is summarily logged out. Timestamp NTUSER.DAT on network profile is updated.

My hypothesis:
What I'm guessing is that the dynamic user is getting created the second time round with a new SID, Vista is complaining this isn't the the one in the roaming profile.

I can see an allusion to the problem in the Policy Management Reference at the top of 2.6 ("Because of the security settings in Microsoft Vista, administrators must manually add the appropriate security rights"), but I can't figure out which registry security settings I need to hack to get this to work.

Can anyone give me any pointers? Many thanks in advance.

Matthew
Labels (2)
0 Likes
2 Replies
Anonymous_User Absent Member.
Absent Member.

Re: Vista roaming profile issue

Well, does it work OK for Non-DLU Users?
Does it work if you disable "Volatile DLU" in which case the account is
never deleted and a new SID would not be created.

I'm just tossing stuff out there because I dont know why it's not working.

--
Craig Wilson - MCNE, MCSE, CCNA
Novell Knowledge Partner

Novell does not officially monitor these forums.

Suggestions/Opinions/Statements made by me are solely my own.
These thoughts may not be shared by either Novell or any rational human.


"mmacgregor" <mmacgregor@no-mx.forums.novell.com> wrote in message
news:mmacgregor.40f47g@no-mx.forums.novell.com...
>
> Forgive me if this one has already been covered, but I'm struggling to
> find the fix....
>
> My setup:
> ZEN 10.2.0 Server / Vista SP1 client
> Roaming profile policy configured to use homespace on NetWare 6.5
> server.
> Workstation-associated DLU policy - working fine
> "Allow Roaming User Profile Paths to non-Windows server" set to "On" in
> Novell Client 2 (version IR1a)
>
> My problem:
> User logs in first time, roaming profile is created successfully.
> User logs out, profile saved to <homedir>\Windows NT 6.0 Workstation
> Profile.V2
> User tries to log in again, but is summarily logged out. Timestamp
> NTUSER.DAT on network profile is updated.
>
> My hypothesis:
> What I'm guessing is that the dynamic user is getting created the
> second time round with a new SID, Vista is complaining this isn't the
> the one in the roaming profile.
>
> I can see an allusion to the problem in the Policy Management Reference
> at the top of 2.6 ("Because of the security settings in Microsoft Vista,
> administrators must manually add the appropriate security rights"), but
> I can't figure out which registry security settings I need to hack to
> get this to work.
>
> Can anyone give me any pointers? Many thanks in advance.
>
> Matthew
>
>
> --
> mmacgregor
> ------------------------------------------------------------------------
> mmacgregor's Profile: http://forums.novell.com/member.php?userid=795
> View this thread: http://forums.novell.com/showthread.php?t=390093
>



0 Likes
mmacgregor
Visitor.

Re: Vista roaming profile issue

Thanks for your reply.

Non-DLU and NV users work fine, as expected. As long as you only ever use one PC of course. Soon as you switch to another machine, you get a new SID...

What also works is giving EVERYONE Full Control to HKCU when you first log in. I guess I could maybe create a bundle to do this, but surely there's a prettier way?

I've not setup any Windows group policy yet. I can't remember if there's anything in there to control the behaviour.

Matthew
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.