Solved

Restrict logon times

Posted on 2015-01-02
5
93 Views
Last Modified: 2015-01-05
The log on hours would work but for people who get email on their cell phones would not work. Is there another way to restrict log in during a specific time?
0
Comment
Question by:stlhost
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 22

Assisted Solution

by:dan_blagut
dan_blagut earned 50 total points
ID: 40528951
Hello
 
in fact restrict time block also OWA/active sync. you can't dissociate unles you use Good for Enterprise.
(http://community.spiceworks.com/topic/173678-activesync-iphones-and-windows-logon-)

Dan
0
 
LVL 25

Assisted Solution

by:Lionel MM
Lionel MM earned 50 total points
ID: 40529039
If you want to prevent logging onto a domain you can use "net user" but if you users need to logon to the domain to get exchange email then this will not work. However if your exchange mail is hosted or cloud based (like Office365) then it will. I use this command in a batch file
for /F "tokens=1 delims=," %%i in (C:\Utils\UserList.csv) do net user %%i /time:monday-friday,8am-6pm
I have a list of users that I need to restrict in C:\Utils\UserList.csv (and I can add, change, delete users as needed) and then I can easily change /time:monday-friday,8am-6pm as needed and have it apply to all users in my list with just a few quick changes. Hope it can help you too--if not let me know what more specifically you need.
0
 
LVL 24

Accepted Solution

by:
VB ITS earned 350 total points
ID: 40529114
Providing that your Exchange server is on-premise and not based in the cloud then there's no real graceful solution for your question without resorting to third party software. Enabling logon hours restrictions prevents any soft of AD authentication during these periods.

May I ask why you want to restrict logins? Only reason I ask is if it's for some sort of legacy database maintenance that requires all users to be logged off in order to run then maybe we can look other ways of achieving this.
0
 
LVL 25

Assisted Solution

by:Coralon
Coralon earned 50 total points
ID: 40529440
One possibility might be to create a group policy to prevent Interactive Logins, apply it to that specific group, and then use whatever scripting method to drop people in and out of that group during that time.

What it won't do is kick people out who are logged in on workstations, TS/CTX, etc. For them, you'd have to write another script to go out to your machines and kick them out.  

Coralon
0
 
LVL 2

Author Comment

by:stlhost
ID: 40531343
Thanks everyone for the help. Basically this was to keep people from logging in and working when they shouldn't be off the clock
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A procedure for exporting installed hotfix details of remote computers using powershell
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question