We have a farm of Terminal Servers that use local Group Policy settings to
set TS Roaming Profiles and TS User Home Directory to File Shares on a
On the File Server I have setup two directories
(Shared and Read + Change permissions to "Everyone" as recommended by MS)
When the users logon to the TS their profile and home directories get
created in the above mentioned shares automatically.
However the directories created for the user's profile have different
permissions from the home directories created for user.
The profiles have the correct permission, but the home directories Don't.
All users can read/write in any user's Home Directory.
This is a happening because the individual directories are inheriting
permissions from the top level directories. This is a very puzzling because
user directories created by SYSTEM SHOULD NOT inherit any permissions from
the parent directories.
Has anyone else seen this issue? How can we remedy the permissions problem?
Note: The profiles directories don't inherit the permissions only the home
directories. However both are created by the SYSTEM.
Arizona State University