User Profiles across multiple hosts

Similar Messages

• Synching Profiles across multiple hosts

  Hello All, 
  I hope this question has not been posted already, but I attempted to search and could not find a scenario that matches mine. My company is currently running the following: 
  1 Virtual File Server 
  5 Virtual RDS hosts running Server 2008 
  Users log in using RDP and DNS "round robins" to determine which users go where. The issue is, we have profile data mapping from the Virtual File Server, but we also have profile data being stored on whichever RDS host they are assigned to. This
  means that if a user logs in and is sent to another Virtual RDS host, their recent documents in Office Programs and Outlook autocomplete are all different from the previous session. 
  We are looking at upgrading to Server 2012 R2 and using Hyper-V to recreate what we currently have. How can we make it better? 

  Hi,
  Thank you for posting in Windows Server Forum.
  How is everything going on?
  In addition, please check below articles for more information.
  1. How to configure Roaming Profiles and Folder Redirection
  2. Using Folder Redirection
  3. Managing Roaming User Data Deployment Guide
  Hope it helps!
  Thanks,
  Dharmesh

• Server setup to support user profiles across multiple macs

  I want to do something that I thought would be obvious, but can't figure out how to do.
  Here's the scenario: we have 10 or so macs in our office and 20 employees, many of whom are part time and need to share workstations. Currently, each user is assigned an iMac and he or she works there. What I would like is that a user is set up on our Mac mini server and he or she would have the same environment on any Mac.
  I think the sets would be:
  -setup the users on the server
  -set up each of the macs to get login credentials from the server rather than locally
  -sync or remotely mount the users home directory to the server when the user logs in.
  Seems like it should be pretty simple, but I haven't figured out the easy setup guide for this. This is the basics. Next would be central app management, (ms office, and other tools licensed and installed centrally)
  Thanks for any pointers.

  You are looking for network home folders.  But before going any further, I will caution:
  • Apple has been moving away from this for years
  • You need robust storage and a solid network
  • Understand your throughput and storage requirements
  • Using the Adobe Suite over network home folders is not advisable
  • Doing anything with video over network homes is not advisable
  • Accept the reality that if anything goes wrong, your whole office does not work
  Ok, that being said, the basic steps are:
  1:  Make sure you understand and have internal DNS setup properly
  2:  Create an Open Directory Master (this is required to make network home share)
  3:  Defined a shared folder on faster storage.  When defining the shared folder, check the box to make it available for network home folders.  Choose AFP as the protocol.
  4:  Create your users in the Local Network User container and when defining the account, set the home folder to the network home folder path.  This will automatically create the user's home folder on the server.
  5:  Bind your workstations to the server
  6:  Login using the user's network credentials
  It sounds simple and it generally is.  But, I stress that you test this on a limited scale.  Once again, you need to have a solid 1000Base network.  Ideally, you would have your server link aggregated to 2gig or connected over 10GigE.  It is a simple math problem.  1000 Base on the server divided by 10 Macs means you have an average of 100Base per device.  That is pretty slow.  Also, this is a good time to add servers so you have a server dedicated to nothing but service NetHomes.
  And finally, NetHomes is really a solution for schools where resource sharing is a requirement.  A student in school uses a machine for about 45 minutes.  If there is a problem, teachers are often flexible enough to change direction for 45 minutes.  In business, your users are going to be expecting the system to be up for at least 8 hours per day, every day.  And when it is not, what options do they have to stay busy?
  R-
  Apple Consultants Network
  Apple Professional Services
  Author "Mavericks Server – Foundation Services" :: Exclusively available in Apple's iBooks Store

• Spreading user data across multiple HD's?

  I hope this is the right forum for this. I'm on a Mac Pro 1,1 and recently installed a few extra hard drives to optimize performance for video editing (accoring to recommendations over at another big software company's support docs -- this is not about FCP).
  My goal is to have this general set-up:
  SSD: Boot Drive (OS & Apps) -- already set up
  Disk 2: Editing Project Files, media and exports
  Disk 3: Cache, renders and previews
  Disk 4: Ideally this would be for docs, itunes, photos and anythings non video related.
  The thing is, this advice comes from PC users mainly and the OSX User Folder structure isn't an issue.
  Question: Can the same user folder's contents be spread across multiple HD's? I realize I'll need to physically place a different "house" icon folder in each HD, probably, but can those have different contents? How can I make them all boot on start-up so the disk allocation is pretty much not noticeable?
  Thanks!

  A simple version of what you are trying is to establish a Boot Drive, with only System, Library, Applications, and the hidden unix files. All user files are moved off to a different drive.
  Here are some simple recipes for Moving the "Home" folder"
  Japamac's Blog: Make space for Performance -- Moving the Home Folder
  http://chris.pirillo.com/how-to-move-the-home-folder-in-os-x-and-why/
  You can embellish this basic setup any way you wish, especially putting Movie data on a different drive, and Movie cache data on yet another drive.

• User profiles with multiple login accounts in SharePoint 2010

  Hello,
  Consider the following scenario:
  We have Active Directory that is accessible inside our network. Except the sites, accessible from the corporate network, we are exposing SharePoint sites from the same farm on the internet, using claims based authentication with ADFS 2.0 using the same
  AD instance as in the intranet.
  The problems is that the claims based accounts are not linked to the profiles, that are created for the users by the User Profiles Synchronisation service.
  Is there a way to configure the user profiles so if our users are signing in from internet, to access the same profiles that they have, when accessing the SharePoint sites from intranet?
  (I've searched a lot, I didn't find excat solution. I've found something related to SPCLaims properties and had confugred them to sync with the AD using the "claims" trusted connection, but the problem remains.)
  This is simmilar to allow our users to login using their Facebook, Google, OpenID identity or the identity in our AD. How can this be done?

  SharePoint user profiles are not populated automatically when using claims-based authentication methods. You must create and populate these profiles yourself, typically in code. Users that map to existing accounts when you migrate to claims-based authentication
  will use any existing profile information, but other users and new users will not have profile information. For information about how you can populate user profiles when using claims-based authentication, see "Trusted Identity Providers & User Profile
  Synchronization" at
  http://blogs.msdn.com/b/brporter/archive/2010/07/19/trusted-identity-providers-amp-user-profile-synchronization.aspx.
  The same limitation occurs when using SharePoint Audiences. You cannot use user-based audiences directly unless you create custom code to support this, but you can use property-based audiences that make use of claims values. For information, see "Using Audiences
  with Claims Auth Sites in SharePoint 2010" at
  http://blogs.technet.com/b/speschka/archive/2010/06/12/using-audiences-with-claims-auth-sites-in-sharepoint-2010.aspx.
  From: http://msdn.microsoft.com/en-us/library/hh446523.aspx

• Delete user profiles on multiple computers using ARD

  Hi Everyone,
  I was wondering if there is a way to delete user profiles on all of my remote clients (250+) using ARD.
  Or if anyone knows about a script which can do this and some more.
  This is what I am trying to do:
  I wanted to delete any user profile which exceeds the size of 300 MBs or older than 1 month.
  All of my clients are Intel Macs using newest version of ARD and Leopard.
  Thanks,

  finding folders by size is pretty easy, modification date is a bit harder.
  Here is a script that will list all user folders over 300mb.
  I will leave it to you to test and modify to delete those folders.
  #!/bin/bash
  #list all folders larger than 300MB in /Users
  #will exclude administrator and Shared
  for user in $(ls -1 /Users | grep -v "Shared" | grep -v "administrator")
  do
  homeSize=$(du -sm /Users/$user | cut -d"/" -f1)
  if [[$homeSize -gt 300]]; then
  echo "/Users/$user"
  fi
  done

• User working across multiple domians remotely

  Hi
  I am after some advice.
  I support multiple schools and have a few members of staff that work across all sites. The schools all have their own domain and the users need to access data at both sites. I am wondering how anyone else has allowed staff to do this in the past?
  Is configuring RDS at both sites the best solution for this?
  Thanks in advance
  Shane

  Hi,
  Did you mean that such user has different domain accounts?
  Here is what I know on domain manager:
  Managing Multiple Domains from a Single Hosting Account
  http://blog.cpanel.net/managing-multiple-domains-from-a-single-cpanel-account/
  But I am not very well on Domain related knowledge.
  If above article didn't help, I suggest you contact Windows Server support since they will be more professional in this field.
  http://social.technet.microsoft.com/Forums/en-us/home?forum=winservergen&filter=alltypes&sort=lastpostdesc
  Thanks for your understanding.
  Kate Li
  TechNet Community Support

• Share firefox profile across multiple operating systems.

  I've recently installed windows 8 on a VHD (my main OS is Windows 7) and I was wondering if it was possible to share the same firefox profile on both operating systems. I have the profile manager from [http://ftp://ftp.mozilla.org/pub/mozilla.org/utilities/profilemanager/ ftp://ftp.mozilla.org/pub/mozilla.org/utilities/profilemanager/], but when I tried to make a new profile at the location of my main profile, it instead made a subdirectory under my main profile. Is there anything I can do to share the profile between the two? I could always use sync, but I would like to share my addons, if possible.

  * Your bookmarks and other profile data are stored elsewhere in the Firefox Profile Folder and won't be affected by a reinstall, but make sure that you do not select to remove personal data if you uninstall Firefox.
  * http://kb.mozillazine.org/Profile_folder_-_Firefox
  * http://kb.mozillazine.org/Profile_backup

• User Account Authentication across multiple Solaris servers - Best Practice

  Hi,
  I am new to Solaris admin and would like to know the best practice/setup for authenticating user accounts across multiple solaris servers.
  Currently we have 20 - 30 Solaris 8 & 10 servers which each have their own user accounts setup. I am planning to replace these with a similar number of Solaris 10 servers and would like to centralise the user accounts and their authentication.
  I would be grateful for any suggestions on the best setup and any links to tutorials.
  Thanks
  Jools

  i would suggest LDAP + kerberos, LDAP for name lookups and krb5 for auth. provides secure auth + extensable directory for users and other apps if needed. plus, it provides a decent spring board to add other unix plats into the mix since this will support any unix/linux/bsd plat. you could integrate this design with a windows AD env if you want as well.
  [http://www.sun.com/bigadmin/features/articles/kerberos_s10.jsp] sol + ldap+ AD
  [http://docs.lucidinteractive.ca/index.php/Solaris_LDAP_client_with_OpenLDAP_server] sol + ldap (openldap)
  [http://aput.net/~jheiss/krbldap/howto.html] sol + ldap + krb5
  now these links are all using some diff means, however they should give you some ideas as to whats out there. sol 10 comes with suns ldap server and you can use the krb5 server which comes with it as well. many many diff ways to do this. many many more links out there as welll. these are just a few.

• How to identify a user across multiple pages

  Hi,
  I'm doing a homebanking and I would like to know how to identify a user across multiple pages.
  I have already take a look at HTTPSESSION, but I didn't understand.
  Can someone help me.
  I'm send the servlet Logon.
  import java.io.*;
  import java.sql.*;
  import java.util.Date;
  import java.util.*;
  import javax.servlet.*;
  import javax.servlet.http.*;
  public class Cons_logon extends HttpServlet
       private Connection conexao = null;
       Login1 login1;
       public void init (ServletConfig cfg) throws ServletException
            super.init(cfg);
            try
                 Class.forName("sun.jdbc.odbc.JdbcOdbcDriver");
                 conexao = DriverManager.getConnection("jdbc:odbc:bank");
            catch (Exception e)
                 System.out.println(e.getMessage());
       public void doPost (HttpServletRequest req,
  HttpServletResponse res)
  throws ServletException, IOException
            String Suser, Spassword;
       PrintWriter out;
            res.setContentType("text/html");
  out = res.getWriter();
  String opcao = req.getParameter("log");
  Thanks

  I would recommend using the authentication mechanism that's guaranteed by the servlet spec. If you do that, you can just call
  request.getRemoteUser()
  to get the user name across multiple pages.
  If you want to use your own login scheme, you can create a new session object and map it to a user name somewhere in your app. Or you can just put the name of the user on the session. But the preferred way is to use the default authentication scheme defined by the spec.

• Need a Script for Removing User Profiles in Windows 7

  I am in need of a script that will allow me to remotely delete user profiles from multiple computers. I am an IT Admin over around 15-20 computers that are publicly used by many different people each day, and at least once a month we have to go into each
  computer individually..my computer, properties, profiles and delete them one by one. This is growing very tedious due to manpower and the number of computers we have to do this on. 
  I have absolutely zero knowledge in the scripting department so could somebody point me in the right direction on this? I would like to have a script that i can just run once a month or so and say "delete all profiles from computers x y and z that are
  over a few months old." Is this possible? Thanks in advance!

  Try this link - http://superuser.com/questions/643417/delete-user-profile-from-command-line-windows-7
  https://social.technet.microsoft.com/Forums/scriptcenter/en-US/7663ea51-9f4e-4fd7-9946-e16e65c3ed9d/remove-windows-7-user-profiles-via-powershell-script-initiated-on-logoff?forum=ITCG
  Please 'propose as answer' if it helped you, also 'vote helpful' if you like this reply.

• Invalidation and multiple hosts.....

  Is it possilbe to configure web cache invalidation across multiple hosts?
  Here is our situation:
  1. We have many distinct sites with distinct virtual hosts that are publically available... For example: http://myPublicSite1.foo.com/ and http://myPublicSite2.foo.com/
  2. For purposes of security, all our content managers are forced to access these sites to manage their content via an internal url that is only accessilble on our network... For example: http://myInternal.foo.com/
  Our problem is that when edits are made via the internal url, the external sites are not updated with the most recent content.
  We assume this is because invalidation is host based.
  Any suggestions as to how we can serve up the most recent content on both hosts?
  Thanks in advance for any help offered......

  Hi thanks for your responses...
  We have a single mid-tier set with many access URL's ....
  We have one single "inside URL" which is used for all content management of the many public URLS...
  We have multiple "outside/public" URLs....
  I am double checking our site aliases further, but at first glance all looks to be configured correctly....
  Thanks again for your replies....
  Message was edited by:
  I_LOVE_PORTAL

• Sharing an iTunes Library across multiple user account and a network.

  Sharing an iTunes Music Library across multiple user accounts.
  Hello Everybody!
  Firstly, this was designed to be run in Mac OS X 10.4 Tiger. It will not work with earlier versions of Mac OS X! Sorry.
  Here's a handy tip for keeping your hard drive neat and tidy, it also saves space, what in effect will be done is an iTunes music library will be shared amongst multiple users on the same machine. There are advantages and disadvantages to using this method.
  • Firstly I think it might be worthwhile to state the advantages and disadvantages to using this approach.
  The advantages include:
  - Space will be saved, as no duplicate files will occur.
  - The administrator will be able to have complete control over the content of the iTunes library, this may be useful for restricting the content of the Library; particularly for example if computer is being used at and education institution, business or any other sort of institution where things such as explicit content would be less favorable.
  - The machine will not be slowed by the fact that every user has lots of files.
  The disadvantages to this system include.
  - The fact that the account storing the music will have to be logged in, and iTunes will have to be active in that account.
  - If the account housing the music is not active then nobody can use the iTunes library.
  - There is a certain degree of risk present when an administrator account must be continually active.
  - Fast User Switching must be enabled.
  Overview:
  A central account controls all music on the machine/network, this is achieved by storing iTunes files in a public location as opposed to in the user's directory. In effect the system will give all users across the machine/network access to the same music/files without the possibility of files 'doubling up' because two different users like the same types of music. This approach saves valuable disk space in this regard and may therefore prove to be useful in some situations.
  This is a hearty process to undertake, so only follow this tutorial if you're willing to go all the way to the end of it.
  Process:
  Step 1:
  Firstly, we need to organize the host library, I tidied mine up, removing excess playlists, random files, things like that. this will make thing a bit easier in the later stages of this process.
  Once the library is tidied up, move the entire "iTunes" folder from your Home directory to the "//localhost" directory (The Macintosh HD) and ensure that files are on the same level as the "Applications", "Users", "Library" and "System" directories; this will ensure that the files in the library are available to all users on the machine (this also works for networks)
  Optionally you can set the ownership of the folder to the 'administrator' account (the user who will be hosting the library.), you may also like to set the permissions of 'you can' to "Read & Write" (assuming that you are doing this through the user who will host the library); secondly you should set the "Owner" to the administrator who will be hosting the library and set their "access" to "Read & Write" (this will ensure that the administrator has full access to the folder). The final part of this step involves setting access for the "Others" tab to "Read Only" this will ensure that the other users can view but not modify the contents on the folder.
  Overview:
  So far we have done the following steps:
  1. Organized the host library.
  2. Placed the iTunes directory into a 'public' directory so that other users may use it. (this step is essential if you plan on sharing the library across multiple accounts on the same machine. NOTE: this step is only necessary if you are wanting to share you library across multiple accounts on the same machine, if you simply want to share the music across a network, use the iTunes sharing facility.
  3. set ownership and permissions for the iTunes music folder.
  Step 2:
  Currently the administrator is the only user who can use this library, however we will address this soon. In this step we will enable iTunes music sharing in the administrator's account, this will enable other users to access the files in the library.
  If you are not logged in as the administrator, do so; secondly, open iTunes and select "Preferences" from the "iTunes" menu, now click the "Sharing" tab, if "share my library on my local network" is not checked, the radio buttons below this will now become active, you may choose to share the entire libraries contents, or share only selected content.
  Sharing only selected content may be useful if their is explicit content in the library and minors use the network or machine that the library is connected to.
  If you have selected "share entire library" go to Step 3, if you have selected share "share selected playlists" read on.
  After clicking "share selected playlists" you must then select the playlists that you intend to share across your accounts and network. Once you have finished selecting the playlists, click "OK" to save the settings.
  Overview:
  In this step we:
  1. Enabled iTunes sharing in the administrator's account, now, users on the local network may access the iTunes library, however, users on the same machine may not.
  Step 3:
  Now we will enable users on the same machine to access the library on the machine. This is achieved by logging in as each user, opening iTunes, opening iTunes preferences, and clicking "look for shared music". now all users on the machine may also access the library that the administrator controls.
  This in effect will mean that the user will not need to use their user library, it will be provided to them via a pseudo network connection.
  As a secondary measure, I have chosen to write a generic login script that will move any content from the user's "Music/iTunes/iTunes Music" directory to the trash and then empties the user's trash.
  This is done through the use of an Automator Application: this application does the following actions.
  1. Uses the "Finder" action "Get Specified Finder Items"
  1a. The user's "~/Music/iTunes/iTunes Music" folder
  2. Uses the "Finder" action "Get Folder Contents"
  3. Uses the "Finder" action "Move to Trash"
  4. Uses the "Automator" action "Run AppleScript"
  4a. with the following:
  on run {input, parameters}
  tell application "Finder"
  empty trash
  end tell
  return input
  end run
  IMPORTANT: Once the script is adapted to the user account it must be set as a login item. in order to keep the script out of the way i have placed it in the user's "Library" directory, in "Application Support" under "iTunes".
  Overview:
  Here we:
  1. Enabled iTunes sharing in the user accounts on the host machine, in effect allowing all users of the machine to view a single iTunes library.
  2. (Optional) I have created a login application that will remove any content that has been added to user iTunes libraries, this in effect stops other users of the machine from adding music and files to iTunes.
  Step 4:
  If it is not already enabled, open system preferences and enable Fast User Switching in Accounts Options.
  Summary:
  We have shared a single iTunes library across multiple user account, while still allowing for network sharing. This method is designed to save space on machines, particularly those with smaller hard drives.
  I hope that this hint proves to be helpful and I hope everybody will give me feedback on my process.
  regards,
  Pete.
  iBook G4; 60GB Hard Drive, 512MB RAM, Airport Extreme   Mac OS X (10.4.6)   iWork & iLife '06, Adobe CS2, Final Cut Pro. Anything and Everything!!!

  how to share music between different accounts on a single computer

• How do you share Aperture file across multiple users on same Mac?

  How do you share Aperture file across multiple users on same Mac? Seems this should be a preferences choice.

  When you share your library between users, you may run into permission and ownership problems, if both users are editing the Aperture library and not only reading it. To avoid that, it helps to put the Aperture library onto a separate disk or a separate partion of your hard drive. For s separate partition or disk you can enable the "ignore ownership on this volume" flag. Then all users can access the library as owners of this library.
  You might try to put the aperture library into a shared folder on your mac, but that has caused problems recently, i.e. when the library also contains video files.
  Regards
  Léonie

• How to provision multiple AD Accounts to a single User Profile in OIM

  Hi,
  We are using OIM 11g R2. We have implemented AD Provisioning/Reconciliation using Active Directory 11g Connector.
  The correlation rule for linking AD accounts with OIM during target recon is set as “Email ID”
  We have some business requirement where we want to provision multiple AD Accounts to a single User Profile in OIM.
  Issue we are facing:
  Suppose we have USERID1 in OIM which has email id as USERID1@ XYZ.COM .
  After that we have provisioned sAMAccountName=USERID1 (Email ID as USERID1@ XYZ.COM )& sAMAccountName=USERID2 (Email ID as [email protected]) to the user User Login = USERID1 in OIM.
  Both the AD User accounts can be seen as provisioned.
  After we run the AD Target Recon, the target recon is failing because of “Multiple Process Matches Found” issue.
  Question here is:
  Is it possible to maintain/manage multiple AD Accounts (Same AD is used for all the multiple AD Accounts) to a single OIM profile user ?
  Regards,
  J

  Hi,
  We have seen its working and linking multiple accounts when we have Key field as "User ID" in the Process Defn & RO and the recon matching rule has email ID as the matching rule.
  Please suggest, if we are having the above kind of rule/config...will it not cause any issue?
  Regards,
  J