GPO Drive Mapping Issues


Apparently, mapping a drive using group policy and applied to a Windows Vista machine can result in users actually not being able to see their drives properly. While I won’t get into the reasons behind this too deeply, it is inherent in the security model that UAC relies on to function.

UAC breaks each successful logon into a split token with half of that being a standard user token and the other half being an elevated administrator token. When group policy maps drives, these are mapped under the elevated administrator token which results in the lower standard user token user being unable to see these drives as they have been theoretically mapped in a different session. 

Obviously, a simple fix would be to disable UAC, but anyone that is a loyal Slick IT reader knows our feelings on that.

The other solution is not entirely acceptable to me either as it could theoretically allow malware to redirect drive mappings, but for the time being it is the best fix we have.

Simply open regedit from the run line and modify the following registry key:

EnableLinkedConnections =(dword)1

I am not sure whether this problem affects Windows 7 clients, but I would guess that it does given the closeness in the UAC architecture of both Vista and Windows 7. If anyone can confirm this issue exists, please comment below!

Hope this helps!


  1. I can confirm that this is also a problem in Windoes 7.
    I have been using kix scripts to set the regkey for vista machines, but it looks like win7 does not have the access rights to change the registry at login.

    If you set the regkey manually the drives map correctly after next reboot.

  2. Nếu như còn gặp lại.
    Ta sẽ nói những gì
    Lẽ nào nhìn vào mắt
    dịch vụ kế toán trọn gói quận 3
    dịch vụ kế toán trọn gói quận 2
    dịch vụ kế toán thuế trọn gói tại tp hcm
    Trước đây thất thì cảm thấy khủng khiếp lắm
    Giờ còn thất nhiều hơn mà sao vẫn thấy vui vẻ thế


Copyright © 2010 Paul Guenette and Matthew Sleno.