Comments on: Limiting users to one concurrent login in Active Directory

By: jlees

jlees — Tue, 04 Mar 2008 15:19:20 +0000

This is an awesome solution to the posting. Another tool that people seem to have been raving about was userlock.

By: amigus

amigus — Tue, 27 Sep 2005 15:09:28 +0000

If all you’re worried about is an audit trail why bother? Having a good authentication scheme, audit policy and signed usage agreement stating users should not share passwords and that they are responsible for the actions performed using their accounts, you have an audit trail that would stand up in a court of law or a board room.

By: spadasoe

spadasoe — Tue, 27 Sep 2005 09:18:43 +0000

A good 3rd party solution is userlock http://www.pnltools.com/productinfo.asp?productid=17&refid=138
I use it in my AD and have no problems. It is easy to set up and manage, prvides alerts and other tools

By: juscelino

juscelino — Mon, 26 Sep 2005 17:02:26 +0000

You stated: “Microsoft say we can only do this by limiting them to one designated machine, this is not possible for us.”

Why not? Can you be more specific? In Active Directory Users and Computers, if you look in a specific user’s properties, the option is clearly there under the “Account” tab, then clicking on “Log On To…” setting…

Please clarify if I am misunderstanding your issue…