Hi all, In the company I work for we have several remote branch offices that connect to our domain via VPN. Each office has several shared folders on their PCs that they use to work collaboratively within their office. The folders should only be accessible to the staff in that office, and so NTFS permissions have been set to only allow access to a global security domain group of which their user accounts are all members. This works fine when the computers are connected to the VPN, however when they are working offline (which is often) the authentication fails, as I assume the resource is unable to authenticate the user with a Domain Controller. We need to somehow cache the authentication so that the shared folders are still accessible while off the VPN/Domain. So far, I've tried: 1. setting all the users up individually on the NTFS permissions thus bypassing the need to check group membership, which made no difference. 2. creating a local group and adding the domain user accounts to the group, and adding to NTFS permissions. Still fails. 3. I have also tried setting the GPO setting "Network access: Do not allow storage of passwords and credentials for network authentication: Disabled", which also made no difference. I have noticed that the only time credential caching works is if every user has previously logged onto the computer that holds the shared folder. When they then access that computer over the network it can authenticate them. This is unworkable as I don't want to have to tell all staff to log onto every computer every time their password changes. Please tell me there is a way to cache the authentication that is required, as I don't want to have shares open to Everyone, or to have to set up local accounts on all the PCs workgroup stylee!

Hi, After checking your issue, I suggest asking Windows Server Forum for further help: http://social.technet.microsoft.com/Forums/en-US/category/windowsserver The reason why we recommend posting appropriately is you will get the most qualified pool of respondents, and other partners who read the forums regularly can either share their knowledge or learn from your interaction with us. Thank you for your understanding. Regards, Leo HuangPlease remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

Hi. I think Offline Files could help you with this problem. I suggest you take a look at this excellent post by the Windows Small Business Server Team: http://blogs.technet.com/b/sbs/archive/2010/03/15/work-smarter-with-offline-files-and-shadow-copy.aspx