DriverGuide
English Português Español Deutsch Français 中国 Italiano 日本語 Translate
  


DriverGuide Forums



Go Back   Free Drivers Download | Request and Support Forums > Operating System Forums > Windows Server 2003

  #1  
Old 07-19-2004
Unregistered
 
Posts: n/a
Default Login HELP

I am a network administrator and have allocated 30 usernames and passwords on Windows 2003 Server. How do i set a user so that he cant log in more than once. Users can currently log into as many computers as they like. can You Pleeeeeeeeeeeeeeese HELP!
Reply With Quote
Sponsored Links
    
  #2  
Old 07-20-2004
damien
 
Posts: n/a
Default

Microsoft has included the Concurrent Connection Limiter (Cconnect) utility with Windows 2000/2003 Server Resource Kit.

If the only Cconnect function you require is concurrent logon restrictions and you're running W2K/XP systems only on the desktop in a AD environment, you can add calls to cconnect.vbs and cclogoff.vbs to the user's logon and logoff scripts. You can deploy Cconnect throughout your W2K domain without ever touching a workstation if you define your logon scripts in Group Policy under

User Configuration
Windows Settings
Scripts

Cconnect deletes active logon records from the sql db only when a user logs off correctly. This means that a user can be improperly denied logon. To fix the problem, you must use Cconnect Administrator to manually delete the old logon record. Since the number of simultaneous logons is a registry entry on the workstation, it can be circumvented by hacking the registry. A real problem is Cconnects lack of security considerations in its design. Cconnect Client stores SQL Server user and password data in clear text in the registry. By default, this account has sa privileges. If you understand this, the account's privileges can be restricted. This is not a realistic expectation. From a hacker's perspective, Cconnect installed with defaults, is a hacker's pathway to gaining elevated privileges to the sql server. If you are going to use it, get a dba to restrict the account used by Cconnect to only the tables required. If you use Cconnect on NT workstations, you will have to install some W2K-like requirements: windows scripting host, web-based enterprise management and mdac. OK, OK - there is no free lunch. After all it IS a utility in the W2K Server Resource Kit, not the Windows NT Server Resource Kit. If you have the cash, consider the application software "UserLock".


or, you can create a simple script yourself.

stty erase '^C'
stty intr ''
tt=`whoami`
tt=`who | grep $tt | wc -l`
if [ $tt -gt 1 ]
then
echo Already logged on. Please press Enter to exit.
read
exit
fi
stty intr '^C'
if [ -f /etc/bashrc ]; then
. /etc/bashrc
fi
unset tt

---------------

do not use the above script for a ROOT level Account user.

it is also possible (not for large scale usage however) to set user account logons to specific ip addresses if you do not run DNS. this works for small groups where security is paramount as it locks user info with a unique computer's ip address.
Reply With Quote
Reply [Upload Driver/Firmware]



Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Can't login admin-purchased used XP Professional Unregistered Windows XP 4 01-29-2010 09:32 AM
Windows Xp Login problem Unregistered Windows XP 1 07-02-2004 12:29 AM
login & password Me Ted Tech-to-Tech 2 12-29-2003 09:12 PM
Problem with Login to Driver Guide Randal South Tech-to-Tech 1 11-11-2003 07:50 PM


All times are GMT. The time now is 07:46 PM.



2017 DriverGuide is an iCentric Corporation Company.     All rights reserved.    


Powered by vBulletin Version 3.0.1
Copyright ©2000 - 2017, Jelsoft Enterprises Ltd.