Logon/Logoff Times

K

Kelly Armitage

I have a domain controller running Server 2003. There are several user
accounts specified with limited logon times. I accomplished through the user
properties/account tab in AD.

It works fine to prevent someone from logging in when not during the
acceptable times I have specified (from an XP SP2 machine), however it does
not boot them out when their logon time has expired. I have enable "force
shutdown when time expires" from multiple places, including group policy,
domain security policy and domain controller security policy yet it never
does boot the user off ..... only prevent them from logging in the first
place. Not much good if they can just stay connected beyond their permitted
times. Does anyone have any suggestions as to what I am missing? What else
I can try or check?

Thanks everyone :)
 
A

AaronK

You need to set the policy "force logoff when time expires"

Aaron

"Kelly Armitage" <KellyArmitage@discussions.microsoft.com> wrote in message
news:BE3DB424-EB5D-4B6D-8F26-A4B419170E71@microsoft.com...
>I have a domain controller running Server 2003. There are several user
> accounts specified with limited logon times. I accomplished through the
> user
> properties/account tab in AD.
>
> It works fine to prevent someone from logging in when not during the
> acceptable times I have specified (from an XP SP2 machine), however it
> does
> not boot them out when their logon time has expired. I have enable "force
> shutdown when time expires" from multiple places, including group policy,
> domain security policy and domain controller security policy yet it never
> does boot the user off ..... only prevent them from logging in the first
> place. Not much good if they can just stay connected beyond their
> permitted
> times. Does anyone have any suggestions as to what I am missing? What
> else
> I can try or check?
>
> Thanks everyone :)
 
K

Kelly Armitage

No, thanks for the input but that only cuts smb traffic (access to network
shares) it does not forcibly log off a user.

"AaronK" wrote:

> You need to set the policy "force logoff when time expires"
>
> Aaron
>
> "Kelly Armitage" <KellyArmitage@discussions.microsoft.com> wrote in message
> news:BE3DB424-EB5D-4B6D-8F26-A4B419170E71@microsoft.com...
> >I have a domain controller running Server 2003. There are several user
> > accounts specified with limited logon times. I accomplished through the
> > user
> > properties/account tab in AD.
> >
> > It works fine to prevent someone from logging in when not during the
> > acceptable times I have specified (from an XP SP2 machine), however it
> > does
> > not boot them out when their logon time has expired. I have enable "force
> > shutdown when time expires" from multiple places, including group policy,
> > domain security policy and domain controller security policy yet it never
> > does boot the user off ..... only prevent them from logging in the first
> > place. Not much good if they can just stay connected beyond their
> > permitted
> > times. Does anyone have any suggestions as to what I am missing? What
> > else
> > I can try or check?
> >
> > Thanks everyone :)
>
>
>
 
You must log in or register to reply here.

Similar threads

A
Trouble Playing Logon, Logoff, and Shutdown Sounds In Windows 10
Replies
0
Views
31
AnnabelleBaradine
A
A
Trouble Playing Logon, Logoff, and Shutdown Sounds In Windows 10
Replies
0
Views
25
AnnabelleBaradine
A
A
How to Prevent a Domain User from Logging into Other Domain Users' Computers?
Replies
0
Views
49
AVIJIT DAS3
A
A
How to Disable Single User Concurrent Logon
Replies
0
Views
37
Alexandros Stratakos
A
P
can windows notify users to close files, folders or browser before logoff from the computer
Replies
0
Views
30
P Mowleeswaran
P
Back
Top Bottom