Re: privilege timeout

From: Ryan Hanisco (rhanisco_at_flagshipis.com)
Date: 12/29/04

Next message: Steven Dytiuk: "Group Policy Errors"
Previous message: RHS: "Re: What to do after seizing FSMO Role?"
In reply to: Doug Frisk: "Re: privilege timeout"
Next in thread: Roger Abell: "Re: privilege timeout"
Messages sorted by: [ date ] [ thread ]

Date: Wed, 29 Dec 2004 16:34:23 -0600

What you are trying to do is duplicate the functionality of a security or
document management system. You can't expect the OS to do absolutely
everything. You'll either need to write a program or invest in a DMS.

-- 
Ryan Hanisco
MCSE, MCDBA
Flagship Integration Services
"Doug Frisk" <PublicNews@removeme.fazwak.com> wrote in message
news:%23B5keod7EHA.1292@TK2MSFTNGP10.phx.gbl...
> "Chris" <Chris@discussions.microsoft.com> wrote in message
> news:FF2890B6-A2A3-4D7A-9419-C48EFA35B647@microsoft.com...
> >I am trying to configure a handful of Windows file servers to timeout
user
> > connections (like mapped drives) after a certain amount of idle time and
> > make
> > the user reauthenticate after that time is up. This is trying to
mitigate
> > the
> > problem where a user authenticates to a sensitive file server and then
> > walks
> > away from the computer.  I do not want to have their computer
> > automatically
> > lock itself...I just want that session to the sensitive file server to
> > timeout and require reauthentication.
>
> I see no point in what you're attempting to accomplish.  You can tweak the
> TCP parameters to cause the TCP session to time out, but when someone
> *anyone* sits down at the client and attempts to access that timed out
> session, the client will transparently reconnect using the same
credentials
> it had.
>
> Yes, *at the server* the client will be re-authenticated, but at the
client
> the cached credential information is still there.
>
>
>

Next message: Steven Dytiuk: "Group Policy Errors"
Previous message: RHS: "Re: What to do after seizing FSMO Role?"
In reply to: Doug Frisk: "Re: privilege timeout"
Next in thread: Roger Abell: "Re: privilege timeout"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

Re: privilege timeout
... >> problem where a user authenticates to a sensitive file server and then ... >> lock itself...I just want that session to the sensitive file server to ... > *anyone* sits down at the client and attempts to access that timed out ... > the cached credential information is still there. ...
(microsoft.public.win2000.security)
Re: privilege timeout
... >I am trying to configure a handful of Windows file servers to timeout user ... > problem where a user authenticates to a sensitive file server and then ... TCP parameters to cause the TCP session to time out, ... the client will transparently reconnect using the same credentials ...
(microsoft.public.win2000.active_directory)
Re: privilege timeout
... >I am trying to configure a handful of Windows file servers to timeout user ... > problem where a user authenticates to a sensitive file server and then ... TCP parameters to cause the TCP session to time out, ... the client will transparently reconnect using the same credentials ...
(microsoft.public.win2000.security)
Re: [PHP] Re: a question on session ID and security
... hash key" to the client when it doesn't need it? ... But by doing that you're exposing how your app validates the authentication key, leaving it open to being transferred to another machine. ... tutorial on PHP session security is helpful. ...
(php.general)
RE: ISA 2004 Firewall client
... The green arrow only shows up when the client needs to initiate a ... firewall session. ... Part 3: I want to explain How the logs and sessions work: ... Collect the ISA firewall client configuration information ...
(microsoft.public.windows.server.sbs)