restrict microsoft vpn clients to one session per user

We have a Windows 2003 server configured for Routing and Remote Access.

The server is using Active Directory accounts for authentication.

We need a way to be able to restrict users to one session only as we have a large number of users and a limited number of available connections.

We have read the following article

http://blogs.technet.com/rrasblog/archive/2008/07/17/limit-one-connection-to-the-vpn-server-per-user.aspx
 
However, we are reluctant to introduce an unproven  dll onto the system with the possibility that it may break RRAS.

We have also seen third party solutions such as

http://www.isdecisions.com/products/userlock/limits-concurrent-logins.htm

Here we canot get approval for the board to spend on a solution for this.

Does anyone have a suggestion as to how we can achieve this?
vodyanoiAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

setasoujiroCommented:
0
JustMy2CentsCommented:
LimitLogin is really cumbersome to set up and use:

- it performs an irreversible Active Directory Schema modification (!),

- it creates a new partition in Active Directory. It also requires configuring a Web server with the .NET Framework and ASP.NET and setting it up to perform delegated Kerberos authentication,

- it requires distributing client packages that support communicating with the Web server via SOAP,

- and it is not compatible with Windows Server 2008 and Windows Server 2008 R2 ...

0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
vodyanoiAuthor Commented:
In the end we went away and assigned a static ip to each client.

In this way if multiple sessions were initiated using a particular account it just logged itself off from the earlier connected session.;
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
VPN

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.