?
Solved

GPO Timeout

Posted on 2011-10-23
10
Medium Priority
?
429 Views
Last Modified: 2012-05-12
I need to Lock users after 5or 10 min of inactivity for security but I don't want them to be logged off.
 Is there an GPO on a Win 2008 server already that i can just enable? If so and where is it?
0
Comment
Question by:jackm1
  • 6
  • 4
10 Comments
 
LVL 3

Expert Comment

by:Hobett
ID: 37014997
The best way to acheive this is by using the screen saver and setting it to require a password.

This will measure inactivity and not a set session time.

The best way for tasks such as this is to use Microsoft's Group Policy Search tool.

http://gps.cloudapp.net/

You want to look under Control Panel \ Display. You will need to set the screensaver, a timeout period and that a password is required.
0
 

Author Comment

by:jackm1
ID: 37015006
I really don't want to use the screen saver function is possible, but just use a GPO
0
 
LVL 3

Expert Comment

by:Hobett
ID: 37015046
As far as I am aware there is no other functionality within the default GPOs to acheive what you require. The GPO settings configure the components of Windows to alter functionality. There is no GPO entry that states lock a user after x period of time, but there is to configure the screen saver to do it. Why do you not want to use a screensaver?

Just like the Microsoft recommended way to log a user out after x period of time is to use the winexit.scr screensaver from the 2003 resources kit.

Consider how a user would lock the computer using Win + L or Ctrl + Alt + Del, Lock Computer. Unless you wrote a script or program to monitor for inactivity and then execute this key command the functionality already exists in the screensaver.
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:jackm1
ID: 37015814
Ok, I started looking on line...Stll trying to figure this out.
If I implement this by Group Policy,where does the user get the password to unlock his screen saver?
0
 
LVL 3

Accepted Solution

by:
Hobett earned 2000 total points
ID: 37032688
As the user is logged in with their own username and password,the screen saver is locked in the context of that user. So only the user that is logged in can unlock it using their password or an administrator.
0
 

Author Comment

by:jackm1
ID: 37032836
Ok, thanks I will give it a try.
0
 

Author Comment

by:jackm1
ID: 37096402
I've requested that this question be closed as follows:

Accepted answer: 0 points for jackm1's comment http:/Q_27411132.html#37032836

for the following reason:

This is good
0
 

Author Comment

by:jackm1
ID: 37096403
This was a mistake
0
 

Author Closing Comment

by:jackm1
ID: 37096405
Thanks
0
 
LVL 3

Expert Comment

by:Hobett
ID: 37097136
Glad I could help and thank you for the points.
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
High user turnover can cause old/redundant user data to consume valuable space. UserResourceCleanup was developed to address this by automatically deleting user folders when the user account is deleted.
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question