What I’d like to do here is to map certain network shares based on whether user is a member of certain AD group. On Group policy management editor there is a setting in “User Configuration\Preferences\Windows Settings\Drive Maps” to drive maps. However, even though the group policy is applied the network share is not connected.
The above setting is available only when checking from GP editor on Server 2008R2, but not when checking from Server 2003. We have mixed environment of 2k3’s and 2k8R2’s. Our primary DC is 2k8R2 and secondary DC is 2k3. Domain functional level is Server 2003. Does this restrict the usage of this certain GP setting?
If not, here’s an explanation what I have done so far:
I’ve created the AD security groups and assigned people in them.
I’ve created the group policy object and created new drive map in User Configuration\Preferences\Windows Settings\Drive Maps. I have used the following settings:
Action: Create (I’ve tried also replace and update with no luck)
Location: \\server\share
Reconnect: Not checked
Label as: Share name
Drive letter: Use: G
Connect as: Not defined
Hide/Show this drive: Show this drive
Hide/Show all drives: No change (tried also Show all drives)
In common tab I checked the Item level targeting and in Targeting Editor window gave the condition: The user is member of the security group OU-NAME\Share-name. In details the radio button is in “User in group” selection and Primary group is unchecked.
I tried removing the item level targeting so the GP should be applied regardless of the AD security group us is in but this didn’t help either.
I have also tried connecting to the network share as well as mapping it manually with the user I’m trying to create the AD map for and both of these work all right.
I have also tried shouting at the computer but that only made the person I share the office with scared 🙂 Any other ideas are welcome…