Re: Need to force logoff for one user only at night
- From: "Jorge Silva" <jorgesilva_pt@xxxxxxxxxxx>
- Date: Wed, 22 Aug 2007 23:29:28 +0100
Okay, I already add you.
--
I hope that the information above helps you.
Have a Nice day.
Jorge Silva
MCSE, MVP Directory Services
"Mathieu CHATEAU" <gollum123@xxxxxxx> wrote in message
news:OHbR7pQ5HHA.3400@xxxxxxxxxxxxxxxxxxxxxxx
ok!
ps: I sent you a mail, hope it's not in your spam folders (on the email
you use for this newsgroups) !
--
Cordialement,
Mathieu CHATEAU
http://lordoftheping.blogspot.com
"Jorge Silva" <jorgesilva_pt@xxxxxxxxxxx> wrote in message
news:OQteBnQ5HHA.5424@xxxxxxxxxxxxxxxxxxxxxxx
It doesn't logout the users.
The client SMB sessions with servers are disconnected when the client's
logon hours expire, however client session is allowed to be maintained
after the client's logon hours have expired.
;)
--
I hope that the information above helps you.
Have a Nice day.
Jorge Silva
MCSE, MVP Directory Services
"Mathieu CHATEAU" <gollum123@xxxxxxx> wrote in message
news:O2ruXjQ5HHA.4712@xxxxxxxxxxxxxxxxxxxxxxx
i thought this GPO parameter would do it:
Network Security: Force logoff when logon hours expire
--
Cordialement,
Mathieu CHATEAU
http://lordoftheping.blogspot.com
"Jorge Silva" <jorgesilva_pt@xxxxxxxxxxx> wrote in message
news:eGdeUhQ5HHA.3900@xxxxxxxxxxxxxxxxxxxxxxx
Yep, but logon expire won't log out the users.
--
I hope that the information above helps you.
Have a Nice day.
Jorge Silva
MCSE, MVP Directory Services
"Mathieu CHATEAU" <gollum123@xxxxxxx> wrote in message
news:uOJ8HcQ5HHA.5796@xxxxxxxxxxxxxxxxxxxxxxx
that's why the logon expire may be more accurate than searching where
it logged on..depending number of workstation and moving of people !
--
Cordialement,
Mathieu CHATEAU
http://lordoftheping.blogspot.com
"Jorge Silva" <jorgesilva_pt@xxxxxxxxxxx> wrote in message
news:uGh6zLQ5HHA.5424@xxxxxxxxxxxxxxxxxxxxxxx
With psloggedon you should find them.
The problem is that you do not maintain a constant connection to the
directory, you send credentials to a DC, you get Kerberos tickets and
you are off and on your
own, AD don't care if you are there or not. If you need access to
another resource you send your TGT to the DC and it sends you a
service ticket for the resource. That's why you can't use ADUC and
just click something like connect to this user.
If you suspend or hibernate or unplug yourself from the network there
is no way to know that from the DC side. You can enable auditing of
authentications to see who is authenticating but that doesn't tell
you anything about current state.
However there are some tools that may give you some statistics, but
they're not 100% reliable:
http://www.rlmueller.net/Logon5.htm
View and Limit connections to Workstations
Limit Login Attempts With LimitLogin
http://www.microsoft.com/technet/technetmag/issues/2005/05/UtilitySpo...
Limiting a user's concurrent connections in Windows Server 2003,
Windows
2000, and Windows NT 4.0
http://support.microsoft.com/kb/237282
You can use PsLoggedOn from MS Sysinternals to check which machine a
given user is logged on.
PsLoggedOn -l Jorge
Will return something like
Domain\Jorge logged onto Wkst01 locally.
--
I hope that the information above helps you.
Have a Nice day.
Jorge Silva
MCSE, MVP Directory Services
"Mathieu CHATEAU" <gollum123@xxxxxxx> wrote in message
news:OU0WNHQ5HHA.1148@xxxxxxxxxxxxxxxxxxxxxxx
You need to know where the bad guy is logged on ;)
--
Cordialement,
Mathieu CHATEAU
http://lordoftheping.blogspot.com
"Jorge Silva" <jorgesilva_pt@xxxxxxxxxxx> wrote in message
news:eQ0IYCQ5HHA.5360@xxxxxxxxxxxxxxxxxxxxxxx
Hi
Check
http://www.microsoft.com/technet/sysinternals/utilities/psshutdown.mspx
http://www.jsifaq.com/SF/Tips/Tip.aspx?id=8526
--
I hope that the information above helps you.
Have a Nice day.
Jorge Silva
MCSE, MVP Directory Services
"Rob" <robbergstrom@xxxxxxx> wrote in message
news:u89thJP5HHA.3900@xxxxxxxxxxxxxxxxxxxxxxx
I can only find how to force all users out with group policy and to
enforce logon hours.
I need to boot someone off the server every night at 6pm when they
are still in the db I need them out of....
Is there a way?
Thanks
Rob
.
- References:
- Need to force logoff for one user only at night
- From: Rob
- Re: Need to force logoff for one user only at night
- From: Jorge Silva
- Re: Need to force logoff for one user only at night
- From: Mathieu CHATEAU
- Re: Need to force logoff for one user only at night
- From: Jorge Silva
- Re: Need to force logoff for one user only at night
- From: Mathieu CHATEAU
- Re: Need to force logoff for one user only at night
- From: Jorge Silva
- Re: Need to force logoff for one user only at night
- From: Mathieu CHATEAU
- Re: Need to force logoff for one user only at night
- From: Jorge Silva
- Re: Need to force logoff for one user only at night
- From: Mathieu CHATEAU
- Need to force logoff for one user only at night
- Prev by Date: Re: Need to force logoff for one user only at night
- Next by Date: How can I read the account lockout threshold from c#?
- Previous by thread: Re: Need to force logoff for one user only at night
- Next by thread: Re: LDAP Connection String
- Index(es):
Relevant Pages
|
Loading
