This is causing so much pain one of our customers has windows server 2008r2 acting as 3 citrix servers however we are getting an awful lot of temporary profiles even after removing the security identifiers they seem to eventually reoccur. All users log in with roaming profiles.
Can you expand on what you mean with "fter removing the security identifiers". Thanks
Yes the S-ID's from the profile list. Sometimes we find after deleting a corrupt profile from the windows explorer directory this is not enough as loading back in will re-corrupt the profile unless its matching S-ID is removed.
Do you mean you're removing the reg keys under
some may poo-poo this - but add users to the group 'Domain Guests' - they will no longer create profiles when they logon..
Can't do that because changes have to be saved on logoff
Do your users have a seperate profile logging onto these 2008 servers as they would to say their desktop device?
Are you using environment variables?
No they log on with the same roaming profile for everything and yes we are using environment variables.
Hope that helps.
I would personally try creating them a seperate profile for testing, if profiles are becoming corrupt, you don't want to chance them screwing up the normal desktop logon.
In AD set their profile path to \\share\user%osver%
On the profile share create another profile for 1 of the problem users as a test as usernameRDS.V2
on the server under environment variables create a new variable for osver with a value of RDS