When you use “Net Use” to map drives in the login script to Microsoft shares only, it passes Username, not Domain/Username. This presents an issue to users/establishments who do not join an Active Directory domain but are members of workgroups with accounts in AD.

I noticed that on the PDC/BDC’s this was not an issue, as it would check the username against AD. However, member servers would check locally then stop.


In the login script where you would have

#net use u: \\server\share 

you need to change it to:

#net use u: \\server\share /USER:Domain\%LOGIN_NAME

This prefixes your domain name to any requests for services, and the member server then checks your authentication against the domain.

I hope this helps others, as this simple fix took me a while to muster!


  • Windows 2000/XP
  • Novell Client 4.91sp2/4.91sp3
  • Windows 2000 AD domain
0 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 5 (0 votes, average: 0.00 out of 5)
You need to be a registered member to rate this post.

Disclaimer: As with everything else at NetIQ Cool Solutions, this content is definitely not supported by NetIQ, so Customer Support will not be able to help you if it has any adverse effect on your environment.  It just worked for at least one person, and perhaps it will be useful for you too.  Be sure to test in a non-production environment.

Leave a Reply

No Comments
Nov 29, 2006
12:00 am
Active Directory Authentication Automation Cloud Computing Cloud Security Configuration Customizing Data Breach DirXML Drivers End User Management Identity Manager Importing-Exporting / ICE/ LDIF Intelligent Workload Management IT Security Knowledge Depot LDAP Monitoring Open Enterprise Server Passwords Reporting Secure Access Supported Troubleshooting Workflow