Re: privilege timeout
From: Doug Frisk (PublicNews_at_removeme.fazwak.com)
Date: 12/29/04
- Next message: RHS: "Re: removing non-existent DC with NTDSUtil"
- Previous message: Desmond Lee: "RE: Swapping Out Domain Controllers"
- In reply to: Chris: "privilege timeout"
- Next in thread: Ryan Hanisco: "Re: privilege timeout"
- Reply: Ryan Hanisco: "Re: privilege timeout"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 29 Dec 2004 13:10:52 -0600
"Chris" <Chris@discussions.microsoft.com> wrote in message
news:FF2890B6-A2A3-4D7A-9419-C48EFA35B647@microsoft.com...
>I am trying to configure a handful of Windows file servers to timeout user
> connections (like mapped drives) after a certain amount of idle time and
> make
> the user reauthenticate after that time is up. This is trying to mitigate
> the
> problem where a user authenticates to a sensitive file server and then
> walks
> away from the computer. I do not want to have their computer
> automatically
> lock itself...I just want that session to the sensitive file server to
> timeout and require reauthentication.
I see no point in what you're attempting to accomplish. You can tweak the
TCP parameters to cause the TCP session to time out, but when someone
*anyone* sits down at the client and attempts to access that timed out
session, the client will transparently reconnect using the same credentials
it had.
Yes, *at the server* the client will be re-authenticated, but at the client
the cached credential information is still there.
- Next message: RHS: "Re: removing non-existent DC with NTDSUtil"
- Previous message: Desmond Lee: "RE: Swapping Out Domain Controllers"
- In reply to: Chris: "privilege timeout"
- Next in thread: Ryan Hanisco: "Re: privilege timeout"
- Reply: Ryan Hanisco: "Re: privilege timeout"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
