[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

restrict microsoft vpn clients to one session per user

Posted on 2011-10-06
3
Medium Priority
?
1,635 Views
Last Modified: 2012-05-12
We have a Windows 2003 server configured for Routing and Remote Access.

The server is using Active Directory accounts for authentication.

We need a way to be able to restrict users to one session only as we have a large number of users and a limited number of available connections.

We have read the following article

http://blogs.technet.com/rrasblog/archive/2008/07/17/limit-one-connection-to-the-vpn-server-per-user.aspx
 
However, we are reluctant to introduce an unproven  dll onto the system with the possibility that it may break RRAS.

We have also seen third party solutions such as

http://www.isdecisions.com/products/userlock/limits-concurrent-logins.htm

Here we canot get approval for the board to spend on a solution for this.

Does anyone have a suggestion as to how we can achieve this?
0
Comment
Question by:vodyanoi
3 Comments
 
LVL 14

Expert Comment

by:setasoujiro
ID: 36923126
0
 
LVL 4

Accepted Solution

by:
JustMy2Cents earned 500 total points
ID: 36923459
LimitLogin is really cumbersome to set up and use:

- it performs an irreversible Active Directory Schema modification (!),

- it creates a new partition in Active Directory. It also requires configuring a Web server with the .NET Framework and ASP.NET and setting it up to perform delegated Kerberos authentication,

- it requires distributing client packages that support communicating with the Web server via SOAP,

- and it is not compatible with Windows Server 2008 and Windows Server 2008 R2 ...

0
 

Author Closing Comment

by:vodyanoi
ID: 37225789
In the end we went away and assigned a static ip to each client.

In this way if multiple sessions were initiated using a particular account it just logged itself off from the earlier connected session.;
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question