Hi Bill, I'm not a server/network person so please bear with me.
We don't want our users to ever go to TCL. There is custom coding in the login paragraph to prevent this. Users get into a customized menu system. We also don't want the users to pick and choose the accounts they access; so, we have been setting them up with the account path in the profile tab, under the home folder, local path. This worked like a charm on Win2000, but ever since we upgraded to Win2003, creating new users resets the permissions to the selected account path as soon as we save the new user with that path as their local path. So the path is not truly to a user profile, but to their "home directory". Since they share directories (we only have so many Universe accounts), we don't want the permissions to be reset. I hope this makes more sense. If there is a better way to do this, please let me know: we've been doing this by rote and are obviously missing a piece of the equation. Thanks! Laure Hansen, City of Redwood City Information Technology 1017 Middlefield Road Redwood City, CA 94063 Tel 650-780-7087 Cell 650-207-3235 Fax 650-556-9204 [EMAIL PROTECTED] -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Bill Haskett Sent: Monday, March 17, 2008 4:21 PM To: u2-users@listserver.u2ug.org Subject: RE: [U2] Windows 2003 server security on new users Laure: Are you saying you set permissions to a UV account (e.g. E:\OurUV\Production). Then, when you create a new user and place this directory in their "profile" tab the permissions change? Why are the roaming user profiles maintained in a UV dbms directory? Doesn't it seem reasonable that the "profile" directory is altered as you describe? I'm wondering if these profiles shouldn't be maintained in another directory like "E:\UVProfiles\%username%". Bill >-----Original Message----- >From: [EMAIL PROTECTED] [mailto:owner-u2- >[EMAIL PROTECTED] On Behalf Of IT-Laure Hansen >Sent: Monday, March 17, 2008 9:59 AM >To: u2-users@listserver.u2ug.org >Subject: [U2] Windows 2003 server security on new users > >Universe 10.2 on Win2003 server SP2 (but was happening before SP2 as >well): our set-up requires that users get created with the path to a >valid Universe account in the user's profile tab. As soon as I do this, >using the admin login on the server, the original permissions on the >account are removed and all that remains are administrator and the new >user. This is not acceptable, as Universe requires wide-open security >(the effect of this is that other users can no longer even log to the >account). > >I've been creating new users after hours because of this, and it's >starting to drive me nuts! > >Does anyone know of a fix, either via change to Windows security >policies, hotfixes etc? > >Thanks, > >Laure Hansen, >City of Redwood City >Information Technology >1017 Middlefield Road >Redwood City, CA 94063 >Tel 650-780-7087 >Cell 650-207-3235 >Fax 650-556-9204 >[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> >------- >u2-users mailing list >u2-users@listserver.u2ug.org >To unsubscribe please visit http://listserver.u2ug.org/ ------- u2-users mailing list u2-users@listserver.u2ug.org To unsubscribe please visit http://listserver.u2ug.org/ ------- u2-users mailing list u2-users@listserver.u2ug.org To unsubscribe please visit http://listserver.u2ug.org/
