Justin- I would avoid using file system permission policy to do this. What I've done in the past is just set up folder redirection of Desktop to a read-only share. That usually does the trick without having to manage individual permissions on each profile.
Darren -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Salandra, Justin A. Sent: Thursday, January 20, 2005 10:46 AM To: [EMAIL PROTECTED]; [email protected] Subject: [ActiveDir] File System Permissions in GPO Can I configure a setting within the File System container of the Computer Configuration section of a GPO to utilize %username%\desktop and prohibit write and modify access to the desktop or is there another way to do this that is easier and more effective? Justin A. Salandra MCSE Windows 2000 & 2003 Network and Technology Services Manager Catholic Healthcare System 212.752.7300 - office 917.455.0110 - cell [EMAIL PROTECTED] List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
