Customizing FastTrack Logon FastTrack Logon consists of one exe file (FTLogon.exe) and one ini file (FTLogon.ini). What FastTrack Logon does is more or less just to synchronize files from your "ServerDir" to your "ClientDir" and execute the scripts. The reason why the synchronization happens is that doing this will save bandwidth, instead of running a fairly large exe (fsh.exe) directly off a network server every time someone logs on. With FastTrack Logon, you only transfer about 50kb of data from your domain controller plus any changes in the binary folder any time a user logs on. Another advantage is that this repository folder that is replicated to the clients, can be used for additional files without further deployment. This could for instance be files for SmartDock. FTLogon.ini configures FTLogon.exe and looks like this by default:

"PreLogonScript" refers to a script that is executed before the explorer starts and "PostLogonScript" refers to a script that is executed after explorer starts. Both are relative to the "ServerDir" location. It is a good idea to use the prelogon script, because you know for sure that the user cannot "disturb" anything you might do here, like locking files you want to backup, opening programs that disturb installations, etc. Observe that you can overrule the ability to start the logon script synchronously with group policies, so be sure you don't actively turn off the "Run logon scripts synchronously" setting in your group policies.

The "ServerDir" is a repository folder for anything you want to synchronize to all clients. The directory is by default relative to the FTLogon.exe location, but can be set to any network folder. You can put anything you like in this directory, including files that are not at all related to FastTrack. If you upgrade the FastTrack Scripting Host version, you can just overwrite the fsh.exe in the ServerDir and it will automatically be update on all clients, as users log on. You can also make subfolders and everything you delete, will be remove from the clients as well. FastTrack Logon will also associate fsh files with the FSH.Exe, so you don't need to specify fsh.exe in the shortcuts you may create for the user, which ensures that you can move your client directory without have problems with shortcuts.

ClientDir is the location on the local disk, where server files are synchronized to and executed from. The files are by default located under the common application data in a path that includes the SID (security identifier) of the current user. The reason why the SID is included in the path is that if a user is deleted from the Active Directory and created again, the user has the same user name, but a different SID. And under common application data, only the owner/creator of files and administrators can change files; thus there has to be a directory for each unique SID in the domain for the client files to be updatable. In other words, under the common application data directory, users can read each others files, but not change each others files.

If you have User Account Control (UAC) disabled in your group policies, you might prefer the path [LocalAppData]\FastTrack, which will put the files in the user's profile instead. But if UAC is enabled, it is not possible to elevate to an administrator in scripts, because UAC will not allow the elevated user to read from the executing user's profile, regardless that the elevated user is domain admin.

Remember that the logon script runs in the users' context, so the user has to have write access to the defined client directory. Do not hard-code the client path, as it will not be the same on different operating systems (see this article for explanation of client paths). You can use these variables for client directories that will be replaced at runtime with actual values:
EngineExe refers to the FSH.exe to execute - if you prefer the exe to be located deeper under the fshbin folder, you can prefix it with an additional path.

Enabling the "Debug" setting will run the scripts with the /D option and let you debug through the logon script and enabling the "StopOnTerminalServices" setting will disable the logon script execution, when FastTrack Logon is executed inside a Remote Desktop Services session.

When "StopOnError" is false, the scripts are executed with the /IE option and all runtime errors are ignored. This setting is recommended to set to false in production environments and then log the error with the errorhandler.fsh script instead. This way the user will never see error messages from script executions.