Prevent multiple login's with the same user at the same time on Lotus Domino

Hi,

I need to prevent the same user account being used simultaneously in different sessions (business license restrictions being one reason). I guess there are two typical strategies to prevent:

1. Prevent any new sessions while a session with the same user account exists.
2. Allow a new session, but disconnect any previous sessions if they exists.

How can this be done on Lotus Domino platform which by itself does not support something like this.
Or is there any 3rd party tool that can be used to integrate into the platform.

Can we write a Java Session tracking program to do implement it.
ashishanandAsked:
Who is Participating?
 
mbonaciCommented:
Here you have relevant links for what you need to develop (even demo of using C API to develop DSAPI DLL):

http://www.michaelbraly.com/archives/000108.html
0
 
objectsCommented:
> Can we write a Java Session tracking program to do implement it.

I do not believe so

0
 
mahomeCommented:
I've no idea of Lotus Domino. But assuming you have anywhere a loginAction and a userId, you could store the sessions in a map with applicationScope: (Pseudocode)

The following would be variant 2.

login (userId) {
       if (userMap.contains(userId)) {
              oldSession = userMap.get(userId)
              oldSession.invalidate()
       }
       userMap.put(userId, request.getSession())
}
              

Open in new window

0
Cloud Class® Course: Microsoft Office 2010

This course will introduce you to the interfaces and features of Microsoft Office 2010 Word, Excel, PowerPoint, Outlook, and Access. You will learn about the features that are shared between all products in the Office suite, as well as the new features that are product specific.

 
Sjef BosmanGroupware ConsultantCommented:
AFAIK, doesn't exist. Nor is it required, because Notes client licences are per person, and not per installation. Could be wrong though...
0
 
ashishanandAuthor Commented:
Hi All,

Any updates on this.
0
 
Sjef BosmanGroupware ConsultantCommented:
We kind of expect updates from your side... A response on my post would be appreciated.
0
 
ashishanandAuthor Commented:
I'm looking at concrete information, whether it is possible to restrict or not.
FYI this has got nothing to do with licensing.
0
 
Sjef BosmanGroupware ConsultantCommented:
>> (business license restrictions being one reason)
>> FYI this has got nothing to do with licensing.
Where did I misunderstand??

It is not possible to restrict a user to one single session, AFAIK, not in a Notes client, by using standard features of Domino. You can however customize the browser login-screen of your server, so maybe you can add some checking there. I suppose it doesn't prevent the user from duplicating his browser window, to continue in both screens.

See the document "Session-based name-and-password authentication for Web clients" in the Admin Help database.

It might also be doable if you force your users to use a VPN, and you check the number of logins on that link. I suppose it would still be possible then to use the same link on the same PC in two browsers.
0
 
qwaleteeCommented:
The built-in authetication mechanism does not support this. You could right your own authentication API, but it would be difficult.
0
 
ashishanandAuthor Commented:
sjef_bosman with reference to my comments "FYI this has got nothing to do with licensing.". I apologize for not mentioning that the user is using a web browser for login. Therefore, I said licensing does not come in picture.

I'm aware of  the "Session-based name-and-password authentication ..." .

As mentioned by qwaletee, I would  need to write a a customized solution. However, I would like to have some guidance on how to go about writing it and integrating it within domino env.
regards
0
 
Sjef BosmanGroupware ConsultantCommented:
No big deal :-)

Did you read the Help database on how to modify the login screen? There's a real heap of info there...
0
 
ashishanandAuthor Commented:
I'm aware of how to modify the login screen and have been doing it for quite sometime now. So modifying the login screen does not help. The core problem is on how to prevent the user from using the same id to login more than once at any give point in time.

Thanks for you help folks
0
 
mbonaciCommented:
I don't understand where did you get stuck?
The Sandbox demo is great, I mean, what more do you need?

Go ahead and we'll be here to assist...
0
 
mbonaciCommented:
Is this resolved?
0
 
ashishanandAuthor Commented:
As mentioned by mbonaci, I too believe the answer to the requirement is DSAPI. However, there are some delays from our customer in confirming the project, so we are yet to try it out.

I would thank mbonaci for his comments/contribution.

Regards
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.