I'm setting up a user accounts system for a small org and need some help.

I'm on an IT placement and I've been tasked with redoing the student account system for a charity org. Note that I'm very low on experience in this area.

The aim is for students to be able to log in with their own account, and have access to the same files as they would on any other computer in the building (roaming profile essentially), but I also want all these files to be stored in their own specific folder, which would be the only accessible folder on that account. So I would be hiding the basic Documents, Downloads folders etc. The charity org is a place that helps students with special needs so the one folder is all that the students would use.

By today, at least, I need to demonstrate at least one student account being able to log into different machines and retrieve their files from the same one folder.

My current plan of action, which I need to know whether would work or not, is to find a Group Policy object that allows exclusion of the group of users from being able to see a specified folder. In this way I would leave just the one shared folder visible. From there I'm not sure how I would set up roaming user profiles so that it would work with that one folder.

As you can probably tell, this isn't a confident area for me!

I would appreciate scrutiny of my current plan of doing this or advice to help me reach the goal that I'm after. At the very least I'd be looking for that goal in italics so that I don't irritate my boss. Thanks in advance! Let me know if any more info is needed/

Submitted September 29, 2017 at 02:12PM by FPTN http://ift.tt/2yxiVaW