Link to home
Avatar of cgsolutions
cgsolutionsFlag for United States of America

asked on

Disconnecting a Mapping on a virtual machine after the session ends.

I have a virtual machine called Virtual1 in Domain1, configured as Windows 7 64 bit. This is a shared virtual machine, and all my users connect to it with the same ID and Password.
 It’s configured to allow only one connection at a time. So only one user users that virtual machine at any given time.

I needed to have a shortcut setup in that VM, Virtual1 ,that points to a folder in Server2 (this server run windows 2008 R2). This server has a different domain with its own AD.
I have created the shortcut.

The question is: How do I manage to leave the shortcut at the desktop of Virtual1, and ALWAYS ask for credentials when double-clicked?
By ALWAYS, I mean that if the user closes the remote connection (without logging off) I don’t want the next user who logs onto the shared Virtual1 to INHERIT the credential that the previous user utilized.
Is there something like a timing trigger I can turn on at GP level?

PS.I recreated the ID’s from Domain1 onto the AD in Server2 already. And my users know they need to enter that ID and password when trying to doubleclick on the shortcut.
Avatar of George Khairallah
George Khairallah
Flag of United States of America image

How are your users connecting to that machine? RDP? VDI? or actually using a console ? (i.e: the vSphere Client) ?
If it's either of the former two, you can setup timeouts for the session to log off automatically, upon log off, you can also opt to run a log off script, both of which are in GPO:
http://www.onlinehowto.net/remote-desktop-auto-disconnect-and-auto-logoff-idle-sessions/1428 

Does that help?
ASKER CERTIFIED SOLUTION
Avatar of Member_2_6515809
Member_2_6515809

Blurred text
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
Another option I just thought of, and I'm not 100% whether this would work, but if this is the only authenticated share, and you stated that it's in a different domain... you can possibly run a klist purge command, and that may actually trigger the user to have to authenticate again.

Of course you'd have to add that to run on a regular interval, but I supposed this could become pretty annoying to the user if that command runs before the session is actually done working. So I still think the original recommendation may still be better.
Avatar of cgsolutions

ASKER

UPDATE:
The VMs connect RDP
The VMs  are managed/hosted in HyperV, running in the Win2008r2 server
Here's another link that'll help with what you want to do, now that we know that you're using RDP :)
http://technet.microsoft.com/en-us/library/cc754272