compguy101101
asked on
Failure Audit 530 with Force Logoff in GP
I have an account logon time restriction violation in my security event log. I have in place a group policy that will log the user off if they are logged in within the time resriction. The event ID is 530 under security as the source. I have read that if the user is logged into outlook when they are forced log off then this may cause the event in the security log. It happens multiple time a minute per user that has the failure audit. Im not sure if that is what's causing my failure audits, but let me know what you all think.
yes that is correct. 530 will be generated only when time restriction is violated.
ASKER
Well I am still trying to figure out what to change so that I don't receive the 530 error. If you have an idea on that it would be helpful. I want to force the log off of the user which I already have set. But it does not seem to work or either because they are in Outlook they are forced to logg off so it see's them as logged in.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yes that is not what I want to do. I want to make it to where when the user is forced to log off then Everything is closed, their profile is logged off completely and I don't receive the 530 error.
Forced accept.
Computer101
EE Admin
Computer101
EE Admin