Announcement

Collapse
No announcement yet.

Limit user logon times

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Limit user logon times

    HI!

    I'd like to limit user logon times on local computers in Windows XP Pro with dynamic time intervals. So the users can logon 2 hours a day overall. I know that exists the "net user" comand, but with this (as far as I know) I can setup static time intervals only (like 17:00-18:00). I've tried to google, but I found shareware programs only. I'm sure, that a script will solve my problem. If you have any other idea, please share it with me. Sorry if I'm bothering you with this question, but I'm newbie in windows scripting and administration. Thanks for answers.

  • #2
    Re: Limit user logon times

    You could have the logon script (VBS) log "Log on" and a log off script logs "Log Off" times; the log on script would also calculate a total duration from the logged info; if the duration exceeds "x" then initiate a log off.

    I couldn't code it, I'm just saying that's a possibility I can think of. I could code it in BASIC or PASCAL, if that'd help?


    Tom
    For my own and your protection, I do not provide support by private message under any circumstances. All such messages will be deleted and ignored.

    Anything you say will be misquoted and used against you

    Comment


    • #3
      Re: Limit user logon times

      There is limitlogin ( http://www.microsoft.com/technet/tec...t/default.aspx ) but i dont think it will do time limits. Just ammount of logins. Still worth looking into further.
      Server 2000 MCP
      Development: ASP, ASP.Net, PHP, VB, VB.Net, MySQL, MSSQL - Check out my blog http://tonyyeb.blogspot.com

      ** Remember to give credit where credit is due and leave reputation points sigpic where appropriate **

      Comment


      • #4
        Re: Limit user logon times

        Chris, Microsoft have done their usual trick and move the location of the page in you URL. Do you have an updated link?
        1 1 was a racehorse.
        2 2 was 1 2.
        1 1 1 1 race 1 day,
        2 2 1 1 2

        Comment


        • #5
          Re: Limit user logon times

          Originally posted by biggles77 View Post
          Chris, Microsoft have done their usual trick and move the location of the page in you URL. Do you have an updated link?
          Hi Chris

          Hmm oddd - Seems to work fine for me. Originally did a google for it - plenty of pages about it if that one doesn't work.
          Server 2000 MCP
          Development: ASP, ASP.Net, PHP, VB, VB.Net, MySQL, MSSQL - Check out my blog http://tonyyeb.blogspot.com

          ** Remember to give credit where credit is due and leave reputation points sigpic where appropriate **

          Comment


          • #6
            Re: Limit user logon times

            Postrike, sorry to go , but this is weird. This is what I get from the link. http://www.microsoft.com/library/err...t/default.aspx
            1 1 was a racehorse.
            2 2 was 1 2.
            1 1 1 1 race 1 day,
            2 2 1 1 2

            Comment


            • #7
              Re: Limit user logon times

              This is what i get:

              Utility Spotlight more ...

              Print
              E-mail
              Add to Favorites
              Rate
              RSS (Utility Spotlight)
              Add RSS to Any
              Related Articles
              Live Spaces
              Digg This
              Slashdot
              del.icio.us
              BlogThis!
              Technorati


              Limit Login Attempts With LimitLogin


              Download the code for this article: LimitLogin.exe (4,112KB)


              Ever needed to limit concurrent user logins in an Active Directory® domain? Ever wanted to keep track of information about every login in a domain? If so, LimitLogin is for you.

              LimitLogin is an application written by Yossi Saharon, a Partner Technology Specialist with Microsoft in Israel, with help from Ofer Bar, an application development consultant. The application adds the ability to limit concurrent user logins and to keep track of all login information in an Active Directory domain. LimitLogin capabilities include limiting the number of logins per user from any machine in the domain (including Terminal Server sessions), displaying the login information of any user in the domain according to specific criteria, easy management and configuration through integration with the Active Directory Microsoft® Management Console (MMC) snap-in, the ability to delete and log off a user session remotely straight from the Active Directory Users and Computers MMC snap-in, and the ability to generate login information reports in CSV and XML formats.

              While the main purpose of LimitLogin is to enforce concurrent login quotas, it can also be used purely as a login data capture solution that lets you manage your Active Directory environment more effectively. You can configure all users in the domain to have an unreachably high login quota and simply let the scripts do the work of updating your login data, without reaching the quota that was set. The UI tools allow you to set the login quota, and you can do so programmatically using the sample script code provided with the tool in Bulk_LimitUserLogins.vbs. You can also scope this script to an Organizational Unit level. The default script runs on all of the user accounts in the domain.

              LimitLogin's architecture is built around three main elements:

              A Web service that handles the back-end processing on the server
              An application directory partition that holds the login information
              Login and logoff VBS scripts


              Figure 1 Validating a User LoginWhen a user logs on to the domain, the llogin.vbs file runs and sends the host machine's data (computer name, IP address, session ID, and authenticating DC name) to the LimitLogin Web service as XML, using SOAP. The Web service uses the client's security context against Active Directory and checks to see if this user is configured for LimitLogin and has a login quota in the LimitLogin application directory partition.

              If the user does not have a login quota set, then the Web service notifies the script that it should continue to log in normally. If the user does have a login quota in place, then the Web service counts the number of registered logins the user has collected in the LimitLogin application directory partition. If the user's login quota is less than the actual number of logins registered in Active Directory, then the Web service updates the user's login information in the LimitLogin application directory partition and notifies the login script to continue login normally. If the user's login quota is equal to or exceeds the number of logins registered in Active Directory, however, then the Web service notifies the login script to log off the current session. This process is outlined in Figure 1. A related process happens with llogoff.vbs when a user logs off from the domain.

              While some similar solutions require SQL Server™ to work, LimitLogin uses your Active Directory database. It creates an application directory partition on a domain controller in the domains for which you want to use the app. LimitLogin supports Windows 2000 Professional Service Pack 4 and later, Windows 2000 Server Service Pack 4 and later, Windows XP Professional Service Pack 1 and later, and Windows Server™ 2003. You can download LimitLogin from the link at the top of this article.
              Server 2000 MCP
              Development: ASP, ASP.Net, PHP, VB, VB.Net, MySQL, MSSQL - Check out my blog http://tonyyeb.blogspot.com

              ** Remember to give credit where credit is due and leave reputation points sigpic where appropriate **

              Comment

              Working...
              X