Desktop Redirection

I'm fed up of the kids storing cr@p on their desktops and bloating their profiles (or not logging off because their profile limit is exceeded) AND I want an easy way to deploy shortcuts to desktops... So I decided to go down the redirection route.

I've created a folder on a server, set the NTFS permissions to everyone:full control, set the share permissions to everyone:read and domain admins:full control, and sorted the GPO to switch it on.

Then on a workstation, ran gpupdate /force /wait:-1 and logged in with a test account excitedly.

It didn't work :( the following appeared in the event log:
Failed to perform redirection of folder Desktop. The new directories for the redirected folder could not be created. The folder is configured to be redirected to <\\argus\userdesktop>, the final expanded path was <\\argus\userdesktop>. The following error occurred:
This security ID may not be assigned as the owner of this object.

I don't want the user to be the owner of the folder... that's the whole :censored: point!!
Where did I go wrong?:rolleyes: apart from getting exited about folder redirection :drunken_smilie:

Why not just lockdown the desktop using gpo
user configaration> admin templates> desktop.
:)

From memory ... go to folder redirection, desktop and in the the desktop properties click the settings tab ... uncheck the grant the user exclusive rights to desktop ... apply .. gpupdate etc
I had this a while ago and think that cured the problem ...

@ Ozzy: That could sort the first problem - the storing of stuff on the desktop I suppose... but I'd still like an easy way to put commonly used shortcuts there right in front of them and a single, central, read-only folder and redirection seemed the best way to me... no?

Quote:

---

Originally Posted by Brpilot99

From memory ... go to folder redirection, desktop and in the the desktop properties click the settings tab ... uncheck the grant the user exclusive rights to desktop ... apply .. gpupdate etc
I had this a while ago and think that cured the problem ...

---

Now this looks promising. Just made the tweak... testing now :D

Quote:

---

Originally Posted by TonyRidal

@ Ozzy: That could sort the first problem - the storing of stuff on the desktop I suppose... but I'd still like an easy way to put commonly used shortcuts there right in front of them and a single, central, read-only folder and redirection seemed the best way to me... no?

---

Redirecting the desktop/s make management sooooooooo easy ... I have 6 user groups with different desktops ... all managed from my server. If I have an msi to distribute I open it with orca and take out the shortcut bit and then send it out. I then make a shortcut and put it into the appropriate groups desktop folder ... all without leaving my office ..

For performance i recommend you use a startup script to sync the a local copy with a network copy, and redirect the startmenu/desktop to this local source. Using robocopy is quick and painless.

Woo Hoo :D yup, that worked :)

Well done !! You can now make the staff think you are doing something majic when you can make icons appear on their desktop without touching the PC or leaving your office (if you have one that is :)!!)

PS if you want to redirect the my documents folder for users you need to uncheck the same box ......

Quote:

---

Originally Posted by Brpilot99

Well done !! You can now make the staff think you are doing something magic when you can make icons appear on their desktop without touching the PC or leaving your office (if you have one that is :)!!)

---

You do know you can do that anyway? Just browse to \\machine\c$\documents and settings\<username>\desktop

Quote:

---

Originally Posted by srochford

You do know you can do that anyway? Just browse to \\machine\c$\documents and settings\<username>\desktop

---

<Cough - unless you are running vista :( I still prefer the "managed" single shared desktop :) far less hassle and for loops

Quote:

---

Originally Posted by TonyRidal

<Cough - unless you are running vista :( I still prefer the "managed" single shared desktop :) far less hassle and for loops

---

OK \\computer\C$\users etc :-)

but I take your point about the managed desktop - it can make life much easier!