Sep 17

Do you know who is logged on at 11pm?

Group Policy, Scripting, Windows 2003, Windows XP No Comments »

UserI have created a pair of scripts that log when a user logs on and off to workstaions on a domain.

A basic overview of how the system works is as follows:

  • A share located on an Active Directory server
  • A logon script
  • A logoff script
  • Group Policy to launch the scripts

Setting up the system:

  • Create a directory called AUDIT on a server, as it will only be containing plain text making it a compressed folder is quite beneficial.
  • Create two folders within it, one called Computers and the other called Users. [fig.1]
  • Share this folder as Audit [fig.2]
  • Set the SHARE permissions as Everyone | Full Control [fig.3]
  • Set the NTFS permissions as: [fig.4]
    • Administrators | Full Control
    • CREATOR OWNER | Special Permissions [fig.5]
    • SYSTEM | Full Control
    • Users | Write
  • Compare your NTFS security with this CACLS output.  If it is different check the above steps. [fig.6]
  • Edit Audit_Logon.bat and Audit_Logoff.bat to point to the newly created share on your server.
  • Set-up the GPO to run the scripts for Users when they logon and logoff respectively.

Sit back and watch the text files fill up with nicely audited information.

Jun 07

Using a JPG with a roaming profile

Roaming Profiles, Scripting, VBS, Windows 2003, Windows XP 23 Comments »

Ford Focus 2007 WRCThere is a known issue that if you use a non-BMP wallpaper in a roaming profile using Microsoft Windows, it will not roam with the user.  To resolve this I created a script that when used as a logoff script, it will enable the wallpaper to roam.

MoveJPGWallpaper.vbs

Further to this I would highly recommend that you implement the User Profile Hive Cleanup Service which is a free download from Microsoft.com.  The User Profile Hive Cleanup service helps to ensure user sessions are completely terminated when a user logs off. System processes and applications occasionally maintain connections to registry keys in the user profile after a user logs off. In those cases the user session is prevented from completely ending. This can result in problems when using Roaming User Profiles in a server environment or when using locked profiles as implemented through the Shared Computer Toolkit for Windows XP.

I would also recommend that you use the Microsoft Group Policy Management Console (GPMC) as this will give you a far greater level of control over your GPO’s.

Design by j david macor.com.Original WP Theme & Icons by N.Design Studio
Entries RSS Comments RSS Log in