GPO Add the administrators security group to roaming user profile

P

post101

The settings to " add the administrators security group to the roaming user
profile"

When I read the Microsoft explanation it states " this setting adds the
administrator security group to the roaming user profile share"

My question is " The administrator security group" is that the just the
"local" administrator group?

I want to give the administrators access to the user's profile without
having the administrators take ownership of the user's folder.
Because, if the administrators doesn't have access to the user's folder
they can not see the security tab on the user's folder. ( to make sure that
the user has FC and to check the owner of the folder)
I enabled the "add the administrators security group to roaming user
profiles" and the administator profile from the Profile Folder (parent
folder ) was not added to the user's profile.

Any suggestions?
 
D

David Fisher [MSFT]

Hello.

This setting is described in more detail at the following links:
http://www.microsoft.com/technet/tr...r2003/proddocs/deployguide/dmebc_dsm_ummq.asp

and

http://www.microsoft.com/technet/tr...oddocs/entserver/New_Features_And_Changes.asp

Add the Administrator security group to roaming user profiles--This policy
allows an administrator to choose the same behavior as Windows NT version
4.0, and permit the administrators group to have full control of the user's
profile directories. In Windows 2000, the default file permissions for newly
generated roaming profiles are full control, or read and write access for
the user, and no file access for the Administrators group

Best Regards,
David Fisher
Enterprise Platform Support
 
P

post101

Thanks! David
This is exactly what I need.

David Fisher said:
Hello.

This setting is described in more detail at the following links:
http://www.microsoft.com/technet/tr...r2003/proddocs/deployguide/dmebc_dsm_ummq.asp
http://www.microsoft.com/technet/tr...oddocs/entserver/New_Features_And_Changes.asp

Add the Administrator security group to roaming user profiles--This policy
allows an administrator to choose the same behavior as Windows NT version
4.0, and permit the administrators group to have full control of the user's
profile directories. In Windows 2000, the default file permissions for newly
generated roaming profiles are full control, or read and write access for
the user, and no file access for the Administrators group

Best Regards,
David Fisher
Enterprise Platform Support
Click to expand...
 
S

Sasa

What if I had 200 roaming profiles and I wanted to have full access as
domain administrator to them, after these profiles were created
without this policy beeing activated.
 
S

Sasa

You would find someone that tells you, you're a fool. That you could
think before you created 200 accounts and an equal number of roaming
profiles. And somone else would tell you that some Qs don't have an A.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

GPO "add the administrators security group to roaming user profiles 2
GPO question " add the administrators group to roaming user's profilepfo 1
Adding administrators group to roaming profile folder without losing current owner 3
Help desperate profile issue 1
Roaming Profile vs Folder Redirection 1
Windows did not load your roaming profile error message 7
Roaming Profile: User deleted from AD before profile deleted 5
Roaming Profile Folder Redirection Logic.. 9

Top