cross forest logon script (different then usual)
hi,
we in proces of building hosted environment 1 of our customers. in environment there account forest (forest a) , resource forest (forest b) in wil host sharepoint, exchange , terminal server (to host client side applications, server side remain in forest a). resource forest trusting account forest (one way outgoing forest trust, selective authentication enabled)
now exchange , sharepoint fine , working expected (untill :) ). terminal servers start running problems. since logon accounts in forest thats settings homedir , profiledir being stored. since want them connect profiles , home directories in forest b figured fix using ts profile , ts homedir settings. way if logon localy still own profile dir , such located in forest a and if logon on resource terminal servers they'll different profile , homedir located in forest b.
hope still makes sense :). real issue, logon script. setting stored in forest a. using allow cross-forest user policy , roaming user profiles option should able have logon processor run when logon. want our own logon processor run , build desktop, not theirs.
so in situation possible have accounts in forest loging on terminal servers in forest b , somehow having logon processor forest b run (and way handeling icon's, share's, printers, policies etc. etc.)
i hope situation clear. if not please feel free ask clarification. has solution or can isn't going work.
thx efforts.
loopback group policy enforce logon script defined in gpo linked ou in the domain b computer accounts domain users log on - seems want accomplish.
hth
marcin
Windows Server > Directory Services
Comments
Post a Comment