Please show us a snapshot of the GPP you are using. >>> James Rankin <[email protected]> 3/17/2010 5:44 AM >>> Actually the shortcut is pointing to Notepad, for testing purposes, on the local machine. I am using the %systemdrive% variable in it, but no UNC stuff.
It's a replace I'm doing. On 16 March 2010 21:41, James Hill <[email protected]> wrote: Just to clarify, you are creating a shortcut on the users desktop that is pointing to something on a server share? Are you using a unc path? Also are you doing a create, update or replace? From: James Rankin [mailto:[email protected]] Sent: Wednesday, 17 March 2010 1:06 AM To: NT System Admin Issues Subject: Group Policy Preferences context Does anyone know what user context Group Policy Preferences execute in? I have a GPO to apply desktop shortcuts to a redirected area, and it fails unless the Users group has Change access. I have been testing it with Administrators, System and the actual user themselves added to the ACL, but unless I explicitly grant Users Change permission, the Group Policy application fails with an "Access Denied" message. This is a Windows 2008 R2 domain, user logging on to a 2008 R1 terminal server, and the redirection is going to a share on a 2003 FAP server. TIA, JRR -- "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the machine wrong figures, will the right answers come out?' I am not able rightly to apprehend the kind of confusion of ideas that could provoke such a question." -- "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the machine wrong figures, will the right answers come out?' I am not able rightly to apprehend the kind of confusion of ideas that could provoke such a question." Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
