I am looking for ideas/direction on how to accomplish this in Group Policy.
This is for a terminal Server. We need this to take effect on current and future users.
1 – When a user logs into the TS box, they will only be able to view their “My Documents”. I don’t want them to be able to browse the local drives. (or maybe not to be able to open/delete any files that are not in their “My Documents”)
2 – We need to share a few local folders. Users will have access to a folder/s depending on their department.
I know this is 2 different questions but was thinking that if we restrict too much in the first part, it might affect the way the 2nd one is accomplished.
My other option is to just restrict users to only their departments shared folder and a folder that only the user/owner can access. This folder would have to be created when their profile is created.