Technical data
JSC 36381 MARCH 30, 2000
Baseline
4-7
only restriction involves home directory folders: users that have a home directory
may not access the home directories of other users. The S-POCCB reserves the right
to further restrict directory and file access, as conditions warrant.
4.9 Client Security
Client laptops are formatted with the Windows 95 FAT32 file system in a single
partition. The FAT32 partition, designated the C: Drive, is shared out across the
network. Because data security and integrity cannot be guaranteed on client laptops,
important data should be transferred to a folder on the K: network drive (the D: Drive
on the File Server) for periodic backup and possible restoration.
4.10 Logon Scripts
The OPS LAN Windows NT domain utilizes a separate logon script for each user. The
script defines standard network drive mappings and performs other tasks as required
by the Administrator. Logon scripts are batch files located in the NETLOGON share of
the Primary Domain Controller (C:\WINNT\SYSTEM32\REPL\IMPORT\SCRIPTS\).
Scripts can be modified by using any text file editor, such as NOTEPAD.
No persistent connections will be allowed. A persistent connection is defined as
connections that remain from session to session without an explicit "NET USE" in the
login script. All connections should be from a NET USE via the login script.
Each user’s standard logon script consists of two files. The first file (see Table 4-6 USER
LOGON SCRIPT FILE #1), specified in the User Manager for Domain administration
utility, calls a second batch file (see Table 4-7 USER LOGON SCRIPT FILE #2) in
minimized mode. Actual script activity is performed in the second batch file. This
scheme reduces desktop clutter and prevents display of miscellaneous messages during
execution of the logon script files.
@ECHO OFF
REM Execute user’s logon script in a minimized windows
START /MIN \\FSERVER\NETLOGON\<username>_LOGON.BAT
Table 4-6
USER LOGON SCRIPT FILE #1