After reacl and cutover of an ODJ workstation where the user was using OneDrive which creates a local copy of its contents automatically, we noticed that OneDrive local directory did not repermission.
OneDrive is autodiscovering the legacy account and a symptom of that is that all office applications stopped working.
Should ADPro have repermissioned the local OneDrive folder that was automatically created by OneDrive in the legacy domain prior to cutting over the device. If so, what would have cause it to not repermission it and why did it not error out in ADPro?
After deleting the directory and signing in to OneDrive with the target credentials the OneDrive recreated the folder and everything worked fine after, but the client does not see this as a viable solution and is requesting a resolve using the ADPro application with urgency.
After a workstation is cutover from the source Active Directory to the target. The OneDrive for business Client reports, that the folder does not exist. This is because the mapped target use is not in the ACL of the reparse point. The following error will display when the OneDrive Client starts after the cutover:
Popup error: “We couldn’t find your ‘
Make sure this folder still exists in this location and click “Tray again,” or click “Setup OneDrive” to setup your ‘
When the OneDrive For Business Client has the Files On Demand setting Enabled, the folder displayed within Windows Explorer is a Windows Reparse Point, which the Active Directory Pro will not re-ACL.
Within the Active Directory Pro Re-ACL Results file, will show that the OneDrive folder was skipped because it is Reparse Folder. The following entry in the Results file will be logged:
If security tab on the OneDrive Reparse point is checked, the source user will be present, but the mapped target account will not be.
Whilst a workstation is going through the migration process (Re-ACL and Cutover), it is recommended that the OneDrive Client have the Files on Demand setting be disabled, in order to allow the workstation to Re-ACL the OneDrive Folder correctly.
There are three methods for disabling this feature:
Note: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\OneDrive key made not present and will have to be created, along with the DWORD Value.
The setting will only become active, after a workstation reboot.
Once the setting has applied the OneDrive Folder the Active Directory Pro Agent will be able to Re-ACL the OneDrive folder:
Enabling Files On Demand
Once the workstation has been successfully migrated into the target domain, the OneDrive for Business Files on Demand feature can be enabled on the workstation.
If Group policies have been used to disable the Files on Demand feature, either configure a GPO in the target domain that enables the feature and apply this GPO to the workstations.
If the registry method has been used, set the registry value as follows:
Note: The setting will only become active, after a workstation reboot.
© 2021 Quest Software Inc. ALL RIGHTS RESERVED. Feedback Conditions d’utilisation Confidentialité