[OpenAFS] Roaming Profiles on AFS

Rodney M Dyer rmdyer@uncc.edu
Fri, 07 Jan 2005 23:58:05 -0500 

Christos,

For further diagnosis of your profile problem it may be necessary to find 
out why Windows is having trouble writing your profile to AFS.  We are 
assuming your token is disappearing, but as Jeffrey Altman suggests it may 
be something wrong with a filename.

To enable user profile diagnosis on Windows the following articles are 
instructive...

http://support.microsoft.com/kb/221833

http://www.jsiinc.com/SUBE/tip2100/rh2185.htm

Or further, search Google for:  "\debug\usermode\userenv.log"

Rodney

Rodney M. Dyer
Windows Systems Programmer
Mosaic Computing Group
William States Lee College of Engineering
University of North Carolina at Charlotte
Email: rmdyer@uncc.edu
Web: http://www.coe.uncc.edu/~rmdyer
Phone: (704)687-3518
Help Desk Line: (704)687-3150
FAX: (704)687-2352
Office:  267 Smith Building


At 08:48 AM 1/6/05, Christos Triantafyllidis wrote:
>Greetings list,
>
>I have a problem storing windows roaming profiles on AFS. i have heimdal 
>kerberos 5 as authentication server, windows 2000 server as authorization 
>server for windows and windows XP as workstations.
>
>I have installed openafs 1.3.77 on workstations, mit kerberos 2.6.5 for 
>windows.
>
>The problem i have is that although i can login normally on computer (it 
>downloads the profile from afs) i can't logoff normally. i get an ACCESS 
>DENIED message (about uploading profile on AFS).
>
>At server i have as profile path "\\afs\all\cell\path\to\profile"
>this path exists and it is empty. i also tried making a drive at windows 
>startup (using "net use") and using as profile path 
>"n:\cell\path\to\profile" but i get the same error.
>
>I found out (by playing with afslogon.dll, thanks Rodney M Dyer) that the 
>at logoff the function IsPathInAfs about my profile path returns FALSE. i 
>thought that this may be the problem so i changed the code of this 
>function to always return TRUE. Still no success.
>
>I'm looking forward an answer,
>
>Christos Triantafyllidis,
>Aristotles University of Thessaloniki, Greece
>Department Of Physics
>
>PS: /afs/cell/path/to/profile has acl record (full access) only for me 
>(user who owns the profile)
>PS2: /afs/cell/path has acl record "list" only for authenticated users
>