Your network contains an Active Directory domain named contoso.com.
You deploy several servers that have the Remote Desktop Session Host role service installed.
You have two organizational units (OUs). The OUs are configured as shown in the following table.
GPO1 contains the Folder Redirection settings for all of the users.
You need to recommend a solution to prevent the sales users’ folders from being redirected when the users log
on to a Remote Desktop session.
What should you include in the recommendation?
A.
From GPO2, set the loopback processing mode.
B.
Apply a WMI filter to GP02.
C.
Configure security filtering for GPO1.
D.
From GPO1, set the loopback processing mode.
Explanation:
http://support.microsoft.com/kb/231287
So basically, we enable loopback processing on the GPO that governs the RDP Session Host. Loopback processing will nullify the user settings, so folder redirection won’t apply.
http://serverfault.com/questions/370761/how-to-deny-folder-redirection-for-rdp-to-server
Confirmed full here by MS:
“Why is this configuration important to me?
Use this configuration if you have users in your domain whose folders are redirected through policy, but you don’t want that redirect to occur when users log on through Terminal Services.
You need to enable this policy setting using the Replace mode on GPO linked to OU, where the Terminal Server’s computer accounts are (without folder redirection enabled). When users log on to Terminal Servers, the policy folder redirection is not applied. ”
http://social.technet.microsoft.com/wiki/contents/articles/2548.windows-server-understand-user-group-policy-loopback-processing-mode.aspx