This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hi Everyone,
We use FSLogix profile disks for our RDS servers which have been running great for a number of years. Recently we want to start using these for our windows 10 clients.
The issue we have found is that if a brand new user without a profile disk logs into RDS, then later on logs into windows 10 the GPOs for windows 10 don't apply. The same in reverse, where if someone first logs into windows 10, and then RDS, the group policy for RDS doesn't apply.
In testing, we have learnt that it doesn't matter what they are logging into, once they have a profile disk created, future policy changes don't get applied.
One idea I had was to add an exclusion in redirections.xml like this:
<Exclude>AppData\Local\GroupPolicy</Exclude>
but my users take long enough logging in as it is without it taking longer. Maybe some optimizations?
any ideas?
Thanks
Hello
Thank you for your question and reaching out.
I can understand you are facing issue with GPO in RDS environment,
You can Loopback Policy processing. Move the RDS server to a new OU. Link your GPO to this OU. Configure Loopback Policy processing in this GPO to Replace or Merge mode (depending on whether you want to replace the users normal GPO settings with these GPO settings or merge the users normal GPO settings with these settings). I suspect you'll want Merge mode.
Now when a user logs on to the RDS server the User Configuration settings from the GPO linked to this OU will apply in addition to or in replacement of the users normal GPO settings. This way the drive restriction is only effective when logging on to the RDS server and not on their workstations.
------------------------------------------------------------------------------------------------------------------
--If the reply is helpful, please Upvote and Accept as answer--