Login script not running across computer objects in different domains

I have two domains across different forest they have a two way trust built and working.

The issue is computerA in DomainA running a script from a DC\netlogon in DomainA for a userA in DomainA works just fine.

If I though use the same userA and log into computerB in DomainB into the DomainA domain the login script does not execute.

I have seen a reference for being able to access via security DC\Netlogin for DomainA but when I'm in the OS the userA can successfully open this shared location.  I can even at that point manually execute the script successfully.

logon scripts are stored in the AD object of the user and we do not use GPO to execute the scripts.

Any ideas why this is not working properly?

July 1st, 2013 5:38pm

Hi,

As Meinolf mentioned, you can use gpo to achieve this.

Please check this article:

Create System Startup / Shutdown and User Logon / Logoff Scripts

http://technet.microsoft.com/en-us/magazine/dd630947.aspx

http://www.memphis.edu/itd/accounts/activedirectory/docs/ad-gpo-logonscripts.php

Regards.

July 2nd, 2013 5:18am

Do you just type the script name into the "Logon Script:" (scriptPath) field or do you have the UNC path to the script in there? Could it be that when userA logs into computerB in DomainB into the DomainA domain, it's looking for the script in the netlogon share in the wrong domain (instead of looking at \\DomainA\netogon it's using \\DomainB\netogon)? As Meinolf and Vivian have said above using group policy and enabling cross-forest user policy would get around this since that would use the UNC path to sysvol in the background.

Mark.

Free Windows Admin Tool Kit Click here and download it now
July 2nd, 2013 11:25am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics