How to Locate Roaming Users

Two strategies offer many possibilities

In environments in which you have roaming users—that is, users who don't use the same computer every day—an important piece of information you might need to know is the machines that these users are logged on to. You need to know this information before you can remotely troubleshoot a problem (e.g., missing registry keys, missing environment variables) on a roaming user's computer.

By default, you can gather roaming users' machine information by filtering the Security logs on your domain controllers (DCs). However, this solution is time-consuming and potentially error prone, especially if you have two or more large Security logs. Instead, you can use one of two strategies to acquire this information. If you don't have too many computers on the network, you can simply poll each computer for the logged-on user. Alternatively, you can have users advertise the machines they're logged on to. By advertising I mean that the users can write to a central repository the name of the machine that they're logged on to. The advertising can be part of roaming users' logon script. Let's look at how you can implement both of these strategies and look at their advantages and disadvantages. . . .

I've integrated the loguser.vbs module into our login script, but I'm trying to find an easy way to display the information on a Web page. Given the user's full name, I'm trying to execute an LDAP query to retrieve the computer name via objUser.Get("wWWHomePage"). This results in a rather cryptic error message: "The Active Directory datatype cannot be converted to/from a native DS datatype." This value is just a string value, so I don't understand why it's returning this error. If anyone has a hint or solution, I'd greatly appreciate it.

Mike Koch October 02, 2003

On the top of page four (Web article), Steve says that the "wwwHomePage" and "url" fields are not read-only for users. I find that this is not the case. Are you sure these fields aren't read-only? I have a very vanilla install of AD and mine are read-only. I like the idea of using AD to store these settings and would like to use it instead of SQL or something like that. Is there anything I can do?

FeroCeles October 16, 2003

Great idea to store the Computername in the wwwHomePage attrib. I am making the addition to my logon script now. A quicker why to quickly bind to the user is use the ADSystemInfo object.
Simply: 
Set WshADS = CreateObject("ADSystemInfo") 
Set objUser = GetObject("LDAP://" & _ <DD>WshADS.UserName)

This works with Win2K and higher. I have read that it is supposed to work on Win95 and NT if the AD Extension Client is installed, but I haven't had any luck.

Thanks again for a cool trick.

Tony Colgrove November 05, 2003

why am i unable to view the entire post ???

killavirus October 15, 2008 (Article Rating:

)

You must log on before posting a comment.

If you don't have a username & password, please register now.