Book now with code EOY2025
undomiel wrote: » Is this a DFS? Any replication going on? Enable auditing and start watching for when it happens again.
loxleynew wrote: » So I did some tests and audited the deletions. It just comes back as the user deleting them even though I know it's not them. So that only helps me in the fact that it's not the server it's their computers =/ Such a stupid frustrating problem.
blargoe wrote: » That's right. If it's his user account, try to get the host that it came from and make sure it's his computer and not someone else using his logon id, search logon events for his user id and see if any other computers are connecting to the server with his id.
loxleynew wrote: » Well when I tested I had both computers in front of me. Theirs and mine with remote desktop to the server to check logs. I closed outlook and bam everything got deleted. Says came from the user even though all I did was close outlook. I made some new test files and opened outlook and as soon as I closed outlook again, bam files deleted. Maybe it is an outlook problem? I'm not sure if other peoples files get deleted when they close outlook (this has happened to 4-5 people, but they all are semi dumb and never know what they are doing when it happens.) We all do use logon scripts to map drives. Did I understand your question right? Maybe I got it wrong. I was under the assumption that you were thinking that someone was using their account to delete the files which is not the case.
cisco_trooper wrote: » Are they utilizing public folders within Outlook. Any type of resources shared and "mounted" within Outlook, with Outlook set to automatically delete or archive? Don't know if such a thing exists, but it's pretty darn fishy that Outlook closing deletes files if something like this isn't set somewhere.
Use code EOY2025 to receive $250 off your 2025 certification boot camp!
